Vergleich newreply.php - 1.01 - 1.13

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 83Zeile 83
	}
elseif($mybb->input['previewpost'])
{

	}
elseif($mybb->input['previewpost'])
{

		$username = $mybb->input['username'];

		$username = htmlspecialchars_uni($mybb->input['username']);

	}
eval("\$loginbox = \"".$templates->get("loginbox")."\";");
}

	}
eval("\$loginbox = \"".$templates->get("loginbox")."\";");
}

Zeile 182Zeile 182
			$message = "[quote]\n$quoted[message]\n[/quote]";
}
}

			$message = "[quote]\n$quoted[message]\n[/quote]";
}
}

	if(!$pid && !$mybb->input['previewpost'])
{
$subject = "RE: " . $thread['subject'];
}






	if($mybb->input['previewpost'])
{
$previewmessage = $mybb->input['message'];

	if($mybb->input['previewpost'])
{
$previewmessage = $mybb->input['message'];

Zeile 259Zeile 256
		$query = $db->query("SELECT u.*, f.*, i.path as iconpath, i.name as iconname FROM ".TABLE_PREFIX."users u LEFT JOIN ".TABLE_PREFIX."userfields f ON (f.ufid=u.uid) LEFT JOIN ".TABLE_PREFIX."icons i ON (i.iid='".$mybb->input['icon']."') WHERE u.uid='".$mybb->user['uid']."'");
$post = $db->fetch_array($query);
if(!$mybb->user['uid'] || !$post['username'])

		$query = $db->query("SELECT u.*, f.*, i.path as iconpath, i.name as iconname FROM ".TABLE_PREFIX."users u LEFT JOIN ".TABLE_PREFIX."userfields f ON (f.ufid=u.uid) LEFT JOIN ".TABLE_PREFIX."icons i ON (i.iid='".$mybb->input['icon']."') WHERE u.uid='".$mybb->user['uid']."'");
$post = $db->fetch_array($query);
if(!$mybb->user['uid'] || !$post['username'])

		{
$post['username'] = $mybb->input['username'];
}
else
{

		{
$post['username'] = htmlspecialchars_uni($mybb->input['username']);
}
else
{

			$post['userusername'] = $mybb->user['username'];
$post['username'] = $mybb->user['username'];
}

			$post['userusername'] = $mybb->user['username'];
$post['username'] = $mybb->user['username'];
}

Zeile 277Zeile 274
		if($mybb->input['pid'])
{
$attachwhere = "pid='".intval($mybb->input['pid'])."'";

		if($mybb->input['pid'])
{
$attachwhere = "pid='".intval($mybb->input['pid'])."'";

		}

		}

		else
{
$attachwhere = "posthash='".addslashes($mybb->input['posthash'])."'";

		else
{
$attachwhere = "posthash='".addslashes($mybb->input['posthash'])."'";

		}

		}

		$query = $db->query("SELECT * FROM ".TABLE_PREFIX."attachments WHERE $attachwhere");
while($attachment = $db->fetch_array($query)) {
$attachcache[0][$attachment['aid']] = $attachment;

		$query = $db->query("SELECT * FROM ".TABLE_PREFIX."attachments WHERE $attachwhere");
while($attachment = $db->fetch_array($query)) {
$attachcache[0][$attachment['aid']] = $attachment;

Zeile 289Zeile 286

$postbit = makepostbit($post, 1);
eval("\$preview = \"".$templates->get("previewpost")."\";");


$postbit = makepostbit($post, 1);
eval("\$preview = \"".$templates->get("previewpost")."\";");

	}

	}

	$subject = htmlspecialchars_uni($subject);

	$subject = htmlspecialchars_uni($subject);

 
	if(!$pid && !$mybb->input['previewpost'])
{
$subject = "RE: " . $thread['subject'];
}


// Setup a unique posthash for attachment management
$posthash = $mybb->input['posthash'];


// Setup a unique posthash for attachment management
$posthash = $mybb->input['posthash'];