Vergleich xmlhttp.php - 1.2.0 - 1.2.10

 * MyBB 1.2
 * Copyright © 2006 MyBB Group, All Rights Reserved
 *

 * MyBB 1.2
 * Copyright © 2006 MyBB Group, All Rights Reserved
 *

 *

 *

 */

/**

 */

/**

	$loadstyle = "def=1";
}

	$loadstyle = "def=1";
}

$query = $db->simple_select(TABLE_PREFIX."themes", "name, tid, themebits", $loadstyle);
$theme = $db->fetch_array($query);
$theme = @array_merge($theme, unserialize($theme['themebits']));

$query = $db->simple_select(TABLE_PREFIX."themes", "name, tid, themebits", $loadstyle);
$theme = $db->fetch_array($query);
$theme = @array_merge($theme, unserialize($theme['themebits']));

	if(is_dir($theme['imgdir'].'/'.$mybb->settings['bblanguage']))
	{
		$theme['imglangdir'] = $theme['imgdir'].'/'.$mybb->settings['bblanguage'];

	if(is_dir($theme['imgdir'].'/'.$mybb->settings['bblanguage']))
	{
		$theme['imglangdir'] = $theme['imgdir'].'/'.$mybb->settings['bblanguage'];

	else
	{
		$theme['imglangdir'] = $theme['imgdir'];

	else
	{
		$theme['imglangdir'] = $theme['imgdir'];

$lang->load("global");
$lang->load("xmlhttp");

$lang->load("global");
$lang->load("xmlhttp");

$plugins->run_hooks("xmlhttp");

$plugins->run_hooks("xmlhttp");

	}
	
	// Send our headers.

	}
	
	// Send our headers.

	// Sanitize the input.
	$mybb->input['query'] = str_replace(array("%", "_"), array("\\%", "\\_"), $mybb->input['query']);

	// Sanitize the input.
	$mybb->input['query'] = str_replace(array("%", "_"), array("\\%", "\\_"), $mybb->input['query']);

		);
		$query = $db->simple_select(TABLE_PREFIX."posts", "pid,uid,dateline", "tid='".$thread['tid']."'", $query_options);
		$post = $db->fetch_array($query);

		);
		$query = $db->simple_select(TABLE_PREFIX."posts", "pid,uid,dateline", "tid='".$thread['tid']."'", $query_options);
		$post = $db->fetch_array($query);

	// Fetch forum permissions.
	$forumpermissions = forum_permissions($forum['fid']);
	

	// Fetch forum permissions.
	$forumpermissions = forum_permissions($forum['fid']);
	

		}
		else if(function_exists("mb_convert_encoding"))
		{

		}
		else if(function_exists("mb_convert_encoding"))
		{

		}
		else if(strtolower($charset) == "iso-8859-1")
		{

		}
		else if(strtolower($charset) == "iso-8859-1")
		{

	}

	// Send our headers.

	}

	// Send our headers.

	
	// Spit the subject back to the browser.
	echo $mybb->input['value'];

	
	// Spit the subject back to the browser.
	echo $mybb->input['value'];

	
	// Fetch the thread associated with this post.
	$thread = get_thread($post['tid']);

	
	// Fetch the thread associated with this post.
	$thread = get_thread($post['tid']);

	// Fetch the specific forum this thread/post is in.
	$forum = get_forum($thread['fid']);

	// Fetch the specific forum this thread/post is in.
	$forum = get_forum($thread['fid']);

		if($thread['closed'] == "yes")
		{
			xmlhttp_error($lang->thread_closed_edit_message);

		if($thread['closed'] == "yes")
		{
			xmlhttp_error($lang->thread_closed_edit_message);

		// Forum is not open, user doesn't have permission to edit, or author doesn't match this user - don't allow editing.
		else if($forum['open'] == "no" || $forumpermissions['caneditposts'] == "no" || $mybb->user['uid'] != $post['uid'] || $mybb->user['uid'] == 0)
		{

		// Forum is not open, user doesn't have permission to edit, or author doesn't match this user - don't allow editing.
		else if($forum['open'] == "no" || $forumpermissions['caneditposts'] == "no" || $mybb->user['uid'] != $post['uid'] || $mybb->user['uid'] == 0)
		{

			$lang->edit_time_limit = sprintf($lang->edit_time_limit, $mybb->settings['edittimelimit']);
			xmlhttp_error($lang->edit_time_limit);
		}

			$lang->edit_time_limit = sprintf($lang->edit_time_limit, $mybb->settings['edittimelimit']);
			xmlhttp_error($lang->edit_time_limit);
		}

	if($mybb->input['do'] == "get_post")
	{
		// Send our headers.

	if($mybb->input['do'] == "get_post")
	{
		// Send our headers.

		
		$post['message'] = htmlspecialchars_uni($post['message']);
		

		
		$post['message'] = htmlspecialchars_uni($post['message']);
		

		if(strtolower($charset) != "utf-8")
		{
			if(function_exists("iconv"))

		if(strtolower($charset) != "utf-8")
		{
			if(function_exists("iconv"))

				$message = iconv("UTF-8", $charset, $message);
			}
			else if(function_exists("mb_convert_encoding"))
			{

				$message = iconv("UTF-8", $charset, $message);
			}
			else if(function_exists("mb_convert_encoding"))
			{

			}
			else if(strtolower($charset) == "iso-8859-1")
			{

			}
			else if(strtolower($charset) == "iso-8859-1")
			{

		//die(str_replace("&", "&", $message));
		if($debug_this == 1)
		{

		//die(str_replace("&", "&", $message));
		if($debug_this == 1)
		{

			fwrite($fp, $message."\n\n\n");
			fclose($fp);
		}

			fwrite($fp, $message."\n\n\n");
			fclose($fp);
		}

			$attachcache[$attachment['pid']][$attachment['aid']] = $attachment;
		}
		

			$attachcache[$attachment['pid']][$attachment['aid']] = $attachment;
		}
		

		
		get_post_attachments($post['pid'], $post);
		

		
		get_post_attachments($post['pid'], $post);
		

	// Join the post IDs back together
	$quoted_posts = implode(",", $quoted_posts);

	// Join the post IDs back together
	$quoted_posts = implode(",", $quoted_posts);

	// Fetch unviewable forums
	$unviewable_forums = get_unviewable_forums();
	if($unviewable_forums)

	// Fetch unviewable forums
	$unviewable_forums = get_unviewable_forums();
	if($unviewable_forums)

	if(!$mybb->input['load_all'])
	{
		$from_tid = "p.tid != '".intval($mybb->input['tid'])."' AND ";

	if(!$mybb->input['load_all'])
	{
		$from_tid = "p.tid != '".intval($mybb->input['tid'])."' AND ";

	else
	{
		$from_tid = '';

	else
	{
		$from_tid = '';

	// Query for any posts in the list which are not within the specified thread
	$query = $db->query("

	// Query for any posts in the list which are not within the specified thread
	$query = $db->query("

		FROM ".TABLE_PREFIX."posts p
		LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
		LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid)

		FROM ".TABLE_PREFIX."posts p
		LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid)
		LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid)

	");
	while($quoted_post = $db->fetch_array($query))

	");
	while($quoted_post = $db->fetch_array($query))

		// Swap username over if we have a registered user
		if($quoted_post['userusername'])
		{

		// Swap username over if we have a registered user
		if($quoted_post['userusername'])
		{

		$quoted_post['message'] = preg_replace('#(^|\r|\n)/me ([^\r\n<]*)#i', "\\1* {$quoted_post['username']} \\2", $quoted_post['message']);
		$quoted_post['message'] = preg_replace('#(^|\r|\n)/slap ([^\r\n<]*)#i', "\\1* {$quoted_post['username']} {$lang->slaps} \\2 {$lang->with_trout}", $quoted_post['message']);
		$quoted_post['message'] = preg_replace("#\[attachment=([0-9]+?)\]#i", '', $quoted_post['message']);

		$quoted_post['message'] = preg_replace('#(^|\r|\n)/me ([^\r\n<]*)#i', "\\1* {$quoted_post['username']} \\2", $quoted_post['message']);
		$quoted_post['message'] = preg_replace('#(^|\r|\n)/slap ([^\r\n<]*)#i', "\\1* {$quoted_post['username']} {$lang->slaps} \\2 {$lang->with_trout}", $quoted_post['message']);
		$quoted_post['message'] = preg_replace("#\[attachment=([0-9]+?)\]#i", '', $quoted_post['message']);

		// Tack on to list of messages
		$message .= "[quote={$quoted_post['username']}]\n{$quoted_post['message']}\n[/quote]\n\n";
	}

		// Tack on to list of messages
		$message .= "[quote={$quoted_post['username']}]\n{$quoted_post['message']}\n[/quote]\n\n";
	}

	// Send our headers.
	header("Content-type: text/plain; charset={$charset}");
	echo $message;

	// Send our headers.
	header("Content-type: text/plain; charset={$charset}");
	echo $message;

 */
function xmlhttp_error($message)
{

 */
function xmlhttp_error($message)
{

	// Send our headers.

	// Send our headers.

	
	// Send the error message.
	echo "<error>".$message."</error>";

	
	// Send the error message.
	echo "<error>".$message."</error>";