Vergleich inc/functions.php - 1.6.6 - 1.6.11

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 6	Zeile 6
* Website: http://mybb.com * License: http://mybb.com/about/license *	* Website: http://mybb.com * License: http://mybb.com/about/license *
* $Id: functions.php 5639 2011-10-26 09:16:47Z Tomm $	* $Id$
/ /*	/ /*
Zeile 47	Zeile 47
if(my_strpos(getenv("REQUEST_URI"), "?")) {	if(my_strpos(getenv("REQUEST_URI"), "?")) {
$debuglink = htmlspecialchars(getenv("REQUEST_URI")) . "&debug=1";	$debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "&debug=1";
} else {	} else {
$debuglink = htmlspecialchars(getenv("REQUEST_URI")) . "?debug=1";	$debuglink = htmlspecialchars_uni(getenv("REQUEST_URI")) . "?debug=1";
} if($mybb->settings['gzipoutput'] != 0)	} if($mybb->settings['gzipoutput'] != 0)
Zeile 63	Zeile 63
$gzipen = "Disabled"; }	$gzipen = "Disabled"; }
if(function_exists("memory_get_usage"))	$memory_usage = get_memory_usage(); if($memory_usage) { $memory_usage = " / Memory Usage: ".get_friendly_size($memory_usage); } else { $memory_usage = ''; } // MySQLi is still MySQL, so present it that way to the user $database_server = $db->short_title; if($database_server == 'MySQLi')
{	{
$memory_usage = " / Memory Usage: ".get_friendly_size(memory_get_peak_usage(true));	$database_server = 'MySQL';
}	}

$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";	$other = "PHP version: $phpversion / Server Load: $serverload / GZip Compression: $gzipen";
$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% MySQL)<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";	$debugstuff = "Generated in $totaltime seconds ($percentphp% PHP / $percentsql% ".$database_server.")<br />SQL Queries: $db->query_count / Global Parsing Time: $globaltime$memory_usage<br />$other<br />[<a href=\"$debuglink\" target=\"_blank\">advanced details</a>]<br />";
$contents = str_replace("<debugstuff>", $debugstuff, $contents); } if($mybb->debug_mode == true) { debug_page();	$contents = str_replace("<debugstuff>", $debugstuff, $contents); } if($mybb->debug_mode == true) { debug_page();
} }	} }
$contents = str_replace("<debugstuff>", "", $contents); $contents = $plugins->run_hooks("pre_output_page", $contents);	$contents = str_replace("<debugstuff>", "", $contents); $contents = $plugins->run_hooks("pre_output_page", $contents);

if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }	if($mybb->settings['gzipoutput'] == 1) { $contents = gzip_encode($contents, $mybb->settings['gziplevel']); }

@header("Content-type: text/html; charset={$lang->settings['charset']}");	@header("Content-type: text/html; charset={$lang->settings['charset']}");

echo $contents; $plugins->run_hooks("post_output_page");	echo $contents; $plugins->run_hooks("post_output_page");
// If the use shutdown functionality is turned off, run any shutdown related items now. if($mybb->settings['useshutdownfunc'] == 0 && $mybb->use_shutdown != true) { run_shutdown(); }
} /**	} /**
Zeile 110	Zeile 116
function add_shutdown($name, $arguments=array()) { global $shutdown_functions;	function add_shutdown($name, $arguments=array()) { global $shutdown_functions;
	if(!is_array($shutdown_functions)) { $shutdown_functions = array(); }
if(!is_array($arguments)) { $arguments = array($arguments); } if(is_array($name) && method_exists($name[0], $name[1]))	if(!is_array($arguments)) { $arguments = array($arguments); } if(is_array($name) && method_exists($name[0], $name[1]))
{ $shutdown_functions["class_".get_class($name[0])."_".$name[1]] = array('function' => $name, 'arguments' => $arguments);	{ $shutdown_functions[] = array('function' => $name, 'arguments' => $arguments);
return true; } else if(!is_array($name) && function_exists($name)) {	return true; } else if(!is_array($name) && function_exists($name)) {
$shutdown_functions[$name] = array('function' => $name, 'arguments' => $arguments);	$shutdown_functions[] = array('function' => $name, 'arguments' => $arguments);
return true; }	return true; }
Zeile 162	Zeile 173
{ require MYBB_ROOT."inc/config.php"; }	{ require MYBB_ROOT."inc/config.php"; }

if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php"; switch($config['database']['type'])	if(isset($config)) { require_once MYBB_ROOT."inc/db_".$config['database']['type'].".php"; switch($config['database']['type'])
{	{
case "sqlite": $db = new DB_SQLite;	case "sqlite": $db = new DB_SQLite;
break;	break;
case "pgsql": $db = new DB_PgSQL;	case "pgsql": $db = new DB_PgSQL;
break;	break;
case "mysqli": $db = new DB_MySQLi; break; default: $db = new DB_MySQL;	case "mysqli": $db = new DB_MySQLi; break; default: $db = new DB_MySQL;
}	}
$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);	$db->connect($config['database']); define("TABLE_PREFIX", $config['database']['table_prefix']); $db->set_table_prefix(TABLE_PREFIX);
Zeile 216	Zeile 227
// Run any shutdown functions if we have them if(is_array($shutdown_functions))	// Run any shutdown functions if we have them if(is_array($shutdown_functions))
{	{
foreach($shutdown_functions as $function) { call_user_func_array($function['function'], $function['arguments']);	foreach($shutdown_functions as $function) { call_user_func_array($function['function'], $function['arguments']);
Zeile 251	Zeile 262
{ // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");	{ // Delete the message from the queue $db->delete_query("mailqueue", "mid='{$email['mid']}'");

if($db->affected_rows() == 1) {	if($db->affected_rows() == 1) {
my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers']);	my_mail($email['mailto'], $email['subject'], $email['message'], $email['mailfrom'], "", $email['headers'], true);
} } // Update the mailqueue cache and remove the lock	} } // Update the mailqueue cache and remove the lock
Zeile 262	Zeile 273
} $plugins->run_hooks("send_mail_queue_end");	} $plugins->run_hooks("send_mail_queue_end");
} /**	} /**
* Parses the contents of a page before outputting it. * * @param string The contents of the page.	* Parses the contents of a page before outputting it. * * @param string The contents of the page.
Zeile 276	Zeile 287
$contents = str_replace('<navigation>', build_breadcrumb(1), $contents); $contents = str_replace('<archive_url>', $archive_url, $contents);	$contents = str_replace('<navigation>', build_breadcrumb(1), $contents); $contents = str_replace('<archive_url>', $archive_url, $contents);

if($htmldoctype)	if($htmldoctype)
{	{
$contents = $htmldoctype.$contents;	$contents = $htmldoctype.$contents;
}	}
else { $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }	else { $contents = "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">\n".$contents; }
$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);	$contents = str_replace("<html", "<html xmlns=\"http://www.w3.org/1999/xhtml\"", $contents);
if($lang->settings['rtl'] == 1) {	if($lang->settings['rtl'] == 1) {
Zeile 302	Zeile 313
{ $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }	{ $contents = str_replace("<body>", "<body>\n".$error_handler->show_warnings(), $contents); }

return $contents; }	return $contents; }
Zeile 328	Zeile 339
if(!$offset && $offset != '0') {	if(!$offset && $offset != '0') {
if($mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user))	if(isset($mybb->user['uid']) && $mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user))
{ $offset = $mybb->user['timezone']; $dstcorrection = $mybb->user['dst'];	{ $offset = $mybb->user['timezone']; $dstcorrection = $mybb->user['dst'];
Zeile 339	Zeile 350
$dstcorrection = $mybbadmin['dst']; } else	$dstcorrection = $mybbadmin['dst']; } else
{	{
$offset = $mybb->settings['timezoneoffset']; $dstcorrection = $mybb->settings['dstcorrection']; }	$offset = $mybb->settings['timezoneoffset']; $dstcorrection = $mybb->settings['dstcorrection']; }
Zeile 359	Zeile 370
{ $offset = 0; }	{ $offset = 0; }

if($adodb == true && function_exists('adodb_date')) { $date = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true && function_exists('adodb_date')) { $date = adodb_date($format, $stamp + ($offset * 3600));
}	}
else	else
{	{
$date = gmdate($format, $stamp + ($offset * 3600)); }	$date = gmdate($format, $stamp + ($offset * 3600)); }

if($mybb->settings['dateformat'] == $format && $ty) { $stamp = TIME_NOW;	if($mybb->settings['dateformat'] == $format && $ty) { $stamp = TIME_NOW;

if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true && function_exists('adodb_date')) { $todaysdate = adodb_date($format, $stamp + ($offset * 3600));
Zeile 397	Zeile 408
if(is_object($plugins)) { $date = $plugins->run_hooks("my_date", $date);	if(is_object($plugins)) { $date = $plugins->run_hooks("my_date", $date);
}	}
return $date; }	return $date; }
Zeile 419	Zeile 430
{ global $mybb; static $mail;	{ global $mybb; static $mail;

// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";	// Does our object not exist? Create it if(!is_object($mail)) { require_once MYBB_ROOT."inc/class_mailhandler.php";

if($mybb->settings['mail_handler'] == 'smtp') { require_once MYBB_ROOT."inc/mailhandlers/smtp.php";	if($mybb->settings['mail_handler'] == 'smtp') { require_once MYBB_ROOT."inc/mailhandlers/smtp.php";
Zeile 436	Zeile 447
$mail = new PhpMail(); } }	$mail = new PhpMail(); } }

// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') {	// Using SMTP based mail if($mybb->settings['mail_handler'] == 'smtp') {
Zeile 445	Zeile 456
$mail->keep_alive = true; } }	$mail->keep_alive = true; } }

// Using PHP based mail() else {	// Using PHP based mail() else {
Zeile 454	Zeile 465
$mail->additional_parameters = $mybb->settings['mail_parameters']; } }	$mail->additional_parameters = $mybb->settings['mail_parameters']; } }

// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();	// Build and send $mail->build_message($to, $subject, $message, $from, $charset, $headers, $format, $message_text, $return_email); return $mail->send();
Zeile 467	Zeile 478
*/ function generate_post_check() {	*/ function generate_post_check() {
global $mybb;	global $mybb, $session;
if($mybb->user['uid'])	if($mybb->user['uid'])
{	{
return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']);	return md5($mybb->user['loginkey'].$mybb->user['salt'].$mybb->user['regdate']);
}	}
// Guests get a special string	// Guests get a special string
else { return md5($mybb->settings['bburl'].$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']); } } /**	else { return md5($session->useragent.$mybb->config['database']['username'].$mybb->settings['internal']['encryption_key']); } } /**
* Verifies a POST check code is valid, if not shows an error (silently returns false on silent parameter) * * @param string The incoming POST check code	* Verifies a POST check code is valid, if not shows an error (silently returns false on silent parameter) * * @param string The incoming POST check code
Zeile 509	Zeile 520
else { return true;	else { return true;
} } /**	} } /**
* Return a parent list for the specified forum. * * @param int The forum id to get the parent list for.	* Return a parent list for the specified forum. * * @param int The forum id to get the parent list for.
Zeile 557	Zeile 568
$parentsexploded = explode(",", $parentlist); $builtlist = "("; $sep = '';	$parentsexploded = explode(",", $parentlist); $builtlist = "("; $sep = '';

foreach($parentsexploded as $key => $val) { $builtlist .= "$sep$column='$val'"; $sep = " $joiner "; }	foreach($parentsexploded as $key => $val) { $builtlist .= "$sep$column='$val'"; $sep = " $joiner "; }

$builtlist .= ")";	$builtlist .= ")";

return $builtlist;	return $builtlist;
}	}
/** * Load the forum cache in to memory *	/** * Load the forum cache in to memory *
Zeile 577	Zeile 588
function cache_forums($force=false) { global $forum_cache, $cache;	function cache_forums($force=false) { global $forum_cache, $cache;

if($force == true)	if($force == true)
{	{
$forum_cache = $cache->read("forums", 1); return $forum_cache; }	$forum_cache = $cache->read("forums", 1); return $forum_cache; }
Zeile 591	Zeile 602
{ $cache->update_forums(); $forum_cache = $cache->read("forums", 1);	{ $cache->update_forums(); $forum_cache = $cache->read("forums", 1);
}	}
} return $forum_cache; }	} return $forum_cache; }
Zeile 622	Zeile 633
{ return; }	{ return; }

foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];	foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];
Zeile 649	Zeile 660
if(!$error) { $error = $lang->unknown_error;	if(!$error) { $error = $lang->unknown_error;
} // AJAX error message? if($mybb->input['ajax']) {	} // AJAX error message? if($mybb->input['ajax']) {
// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n";	// Send our headers. @header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n";
Zeile 700	Zeile 711
if($mybb->input['ajax']) { $error = implode("\n\n", $errors);	if($mybb->input['ajax']) { $error = implode("\n\n", $errors);
// Send our headers.	// Send our headers.
@header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit;	@header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$error}</error>\n"; exit;
}	}
foreach($errors as $error) { $errorlist .= "<li>".$error."</li>\n";	foreach($errors as $error) { $errorlist .= "<li>".$error."</li>\n";
} eval("\$errors = \"".$templates->get("error_inline")."\";");	} eval("\$errors = \"".$templates->get("error_inline")."\";");
return $errors; }	return $errors; }
Zeile 735	Zeile 746
$db->update_query("sessions", $noperm_array, "sid='{$session->sid}'", 1); if($mybb->input['ajax'])	$db->update_query("sessions", $noperm_array, "sid='{$session->sid}'", 1); if($mybb->input['ajax'])
{	{
// Send our headers. header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$lang->error_nopermission_user_ajax}</error>\n";	// Send our headers. header("Content-type: text/html; charset={$lang->settings['charset']}"); echo "<error>{$lang->error_nopermission_user_ajax}</error>\n";
Zeile 746	Zeile 757
{ $lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, $mybb->user['username']); eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";");	{ $lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, $mybb->user['username']); eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";");
}	}
else { // Redirect to where the user came from	else { // Redirect to where the user came from
if($_SERVER['HTTP_REFERER'])	$redirect_url = $_SERVER['PHP_SELF']; if($_SERVER['QUERY_STRING'])
{	{
$redirect_url = htmlentities($_SERVER['HTTP_REFERER']);	$redirect_url .= '?'.$_SERVER['QUERY_STRING'];
}	}
else	$redirect_url = htmlspecialchars_uni($redirect_url); switch($mybb->settings['username_method'])
{	{
$redirect_url = '';	case 0: $lang_username = $lang->username; break; case 1: $lang_username = $lang->username1; break; case 2: $lang_username = $lang->username2; break; default: $lang_username = $lang->username; break;
}	}

eval("\$errorpage = \"".$templates->get("error_nopermission")."\";"); }	eval("\$errorpage = \"".$templates->get("error_nopermission")."\";"); }
Zeile 774	Zeile 799
function redirect($url, $message="", $title="") { global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins;	function redirect($url, $message="", $title="") { global $header, $footer, $mybb, $theme, $headerinclude, $templates, $lang, $plugins;

$redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);	$redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title);

$plugins->run_hooks("redirect", $redirect_args); if($mybb->input['ajax'])	$plugins->run_hooks("redirect", $redirect_args); if($mybb->input['ajax'])
Zeile 808	Zeile 833
{ $title = $mybb->settings['bbname']; }	{ $title = $mybb->settings['bbname']; }

// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid']))	// Show redirects only if both ACP and UCP settings are enabled, or ACP is enabled, and user is a guest. if($mybb->settings['redirects'] == 1 && ($mybb->user['showredirect'] != 0 \|\| !$mybb->user['uid']))
{	{
$url = str_replace("&", "&", $url);	$url = str_replace("&", "&", $url);
$url = htmlspecialchars($url);	$url = htmlspecialchars_uni($url);
eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage);	eval("\$redirectpage = \"".$templates->get("redirect")."\";"); output_page($redirectpage);
Zeile 824	Zeile 849
$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();	$url = str_replace(array("\n","\r",";"), "", $url); run_shutdown();
if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://')	if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://' && my_substr($url, 0, 1) !== '/')
{ header("Location: {$mybb->settings['bburl']}/{$url}"); }	{ header("Location: {$mybb->settings['bburl']}/{$url}"); }
Zeile 848	Zeile 873
* @return string The generated pagination */ function multipage($count, $perpage, $page, $url, $breadcrumb=false)	* @return string The generated pagination */ function multipage($count, $perpage, $page, $url, $breadcrumb=false)
{	{
global $theme, $templates, $lang, $mybb;	global $theme, $templates, $lang, $mybb;

if($count <= $perpage) { return; }	if($count <= $perpage) { return; }

$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url); $pages = ceil($count / $perpage);	$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url); $pages = ceil($count / $perpage);
	$prevpage = '';
if($page > 1) { $prev = $page-1;	if($page > 1) { $prev = $page-1;
Zeile 898	Zeile 924
$to = $pages; }	$to = $pages; }
	$start = '';
if($from > 1) { if($from-1 == 1)	if($from > 1) { if($from-1 == 1)
Zeile 909	Zeile 936
eval("\$start = \"".$templates->get("multipage_start")."\";"); }	eval("\$start = \"".$templates->get("multipage_start")."\";"); }
	$mppage = '';
for($i = $from; $i <= $to; ++$i) { $page_url = fetch_page_url($url, $i);	for($i = $from; $i <= $to; ++$i) { $page_url = fetch_page_url($url, $i);
Zeile 929	Zeile 957
} }	} }
	$end = '';
if($to < $pages) { if($to+1 == $pages)	if($to < $pages) { if($to+1 == $pages)
Zeile 940	Zeile 969
eval("\$end = \"".$templates->get("multipage_end")."\";"); }	eval("\$end = \"".$templates->get("multipage_end")."\";"); }
	$nextpage = '';
if($page < $pages) { $next = $page+1; $page_url = fetch_page_url($url, $next); eval("\$nextpage = \"".$templates->get("multipage_nextpage")."\";"); }	if($page < $pages) { $next = $page+1; $page_url = fetch_page_url($url, $next); eval("\$nextpage = \"".$templates->get("multipage_nextpage")."\";"); }

$lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);	$lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);

if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");	if($breadcrumb == true) { eval("\$multipage = \"".$templates->get("multipage_breadcrumb")."\";");
Zeile 969	Zeile 1000
function fetch_page_url($url, $page) { if($page <= 1)	function fetch_page_url($url, $page) { if($page <= 1)
{	{
$find = array( "-page-{page}", "&page={page}",	$find = array( "-page-{page}", "&page={page}",
Zeile 979	Zeile 1010
// Remove "Page 1" to the defacto URL $url = str_replace($find, array("", "", $page), $url); return $url;	// Remove "Page 1" to the defacto URL $url = str_replace($find, array("", "", $page), $url); return $url;
}	}
else if(strpos($url, "{page}") === false) { // If no page identifier is specified we tack it on to the end of the URL if(strpos($url, "?") === false)	else if(strpos($url, "{page}") === false) { // If no page identifier is specified we tack it on to the end of the URL if(strpos($url, "?") === false)
{	{
$url .= "?"; } else { $url .= "&";	$url .= "?"; } else { $url .= "&";
}	}
$url .= "page=$page";	$url .= "page=$page";
}	}
else { $url = str_replace("{page}", $page, $url);	else { $url = str_replace("{page}", $page, $url);
Zeile 1001	Zeile 1032
return $url; }	return $url; }

/** * Fetch the permissions for a specific user *	/** * Fetch the permissions for a specific user *
Zeile 1011	Zeile 1042
function user_permissions($uid=0) { global $mybb, $cache, $groupscache, $user_cache;	function user_permissions($uid=0) { global $mybb, $cache, $groupscache, $user_cache;

// If no user id is specified, assume it is the current user if($uid == 0) {	// If no user id is specified, assume it is the current user if($uid == 0) {
Zeile 1031	Zeile 1062
if(!$user_cache[$uid]) { $user_cache[$uid] = get_user($uid);	if(!$user_cache[$uid]) { $user_cache[$uid] = get_user($uid);
}	}
// Collect group permissions. $gid = $user_cache[$uid]['usergroup'].",".$user_cache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);	// Collect group permissions. $gid = $user_cache[$uid]['usergroup'].",".$user_cache[$uid]['additionalgroups']; $groupperms = usergroup_permissions($gid);
Zeile 1055	Zeile 1086
* @return array Array of permissions generated for the groups */ function usergroup_permissions($gid=0)	* @return array Array of permissions generated for the groups */ function usergroup_permissions($gid=0)
{	{
global $cache, $groupscache, $grouppermignore, $groupzerogreater;	global $cache, $groupscache, $grouppermignore, $groupzerogreater;

if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups"); }	if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups"); }

$groups = explode(",", $gid);	$groups = explode(",", $gid);
if(count($groups) == 1)	if(count($groups) == 1)
{ return $groupscache[$gid]; }	{ return $groupscache[$gid]; }
Zeile 1076	Zeile 1107
if(trim($gid) == "" \|\| !$groupscache[$gid]) { continue;	if(trim($gid) == "" \|\| !$groupscache[$gid]) { continue;
}	}
foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore)) { if(isset($usergroup[$perm]))	foreach($groupscache[$gid] as $perm => $access) { if(!in_array($perm, $grouppermignore)) { if(isset($usergroup[$perm]))
{	{
$permbit = $usergroup[$perm]; } else { $permbit = "";	$permbit = $usergroup[$perm]; } else { $permbit = "";
}	}
// 0 represents unlimited for numerical group permissions (i.e. private message limit) so take that into account. if(in_array($perm, $groupzerogreater) && ($access == 0 \|\| $permbit === 0)) { $usergroup[$perm] = 0; continue;	// 0 represents unlimited for numerical group permissions (i.e. private message limit) so take that into account. if(in_array($perm, $groupzerogreater) && ($access == 0 \|\| $permbit === 0)) { $usergroup[$perm] = 0; continue;
}	}
if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? {	if($access > $permbit \|\| ($access == "yes" && $permbit == "no") \|\| !$permbit) // Keep yes/no for compatibility? {
Zeile 1122	Zeile 1153
if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");	if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups");
}	}
$displaygroup = array(); $group = $groupscache[$gid];	$displaygroup = array(); $group = $groupscache[$gid];

foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field]; } return $displaygroup;	foreach($displaygroupfields as $field) { $displaygroup[$field] = $group[$field]; } return $displaygroup;
}	}
/** * Build the forum permissions for a specific forum, user or group	/** * Build the forum permissions for a specific forum, user or group
Zeile 1155	Zeile 1186
if(!$gid \|\| $gid == 0) // If no group, we need to fetch it { if($uid != 0 && $uid != $mybb->user['uid'])	if(!$gid \|\| $gid == 0) // If no group, we need to fetch it { if($uid != 0 && $uid != $mybb->user['uid'])
{	{
if(!$usercache[$uid]) { $query = $db->simple_select("users", "*", "uid='$uid'");	if(!$usercache[$uid]) { $query = $db->simple_select("users", "*", "uid='$uid'");
Zeile 1166	Zeile 1197
$groupperms = usergroup_permissions($gid); } else	$groupperms = usergroup_permissions($gid); } else
{	{
$gid = $mybb->user['usergroup'];	$gid = $mybb->user['usergroup'];

if(isset($mybb->user['additionalgroups'])) { $gid .= ",".$mybb->user['additionalgroups']; }	if(isset($mybb->user['additionalgroups'])) { $gid .= ",".$mybb->user['additionalgroups']; }

$groupperms = $mybb->usergroup;	$groupperms = $mybb->usergroup;
} }	} }
if(!is_array($forum_cache)) { $forum_cache = cache_forums();	if(!is_array($forum_cache)) { $forum_cache = cache_forums();
Zeile 1211	Zeile 1242
} } return $cached_forum_permissions[$gid];	} } return $cached_forum_permissions[$gid];
} }	} }
/** * Fetches the permissions for a specific forum/group applying the inheritance scheme. * Called by forum_permissions()	/** * Fetches the permissions for a specific forum/group applying the inheritance scheme. * Called by forum_permissions()
Zeile 1229	Zeile 1260
$groups = explode(",", $gid);	$groups = explode(",", $gid);
if(!$fpermcache[$fid]) // This forum has no custom or inherited permissions so lets just return the group permissions	if(empty($fpermcache[$fid])) // This forum has no custom or inherited permissions so lets just return the group permissions
{ return $groupperms; }	{ return $groupperms; }

$current_permissions = array(); $only_view_own_threads = 1;	$current_permissions = array(); $only_view_own_threads = 1;

foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];	foreach($groups as $gid) { if($groupscache[$gid]) { $level_permissions = $fpermcache[$fid][$gid];

// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {	// If our permissions arn't inherited we need to figure them out if(empty($level_permissions)) {
Zeile 1251	Zeile 1282
if(!empty($parents)) { foreach($parents as $parent_id)	if(!empty($parents)) { foreach($parents as $parent_id)
{	{
if(!empty($fpermcache[$parent_id][$gid])) { $level_permissions = $fpermcache[$parent_id][$gid]; break; } }	if(!empty($fpermcache[$parent_id][$gid])) { $level_permissions = $fpermcache[$parent_id][$gid]; break; } }

// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];	// If we STILL don't have forum permissions we use the usergroup itself if(empty($level_permissions)) { $level_permissions = $groupscache[$gid];
} }	} }
}	}

foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission])	foreach($level_permissions as $permission => $access) { if($access >= $current_permissions[$permission] \|\| ($access == "yes" && $current_permissions[$permission] == "no") \|\| !$current_permissions[$permission])
Zeile 1275	Zeile 1306
} }	} }
if(!$level_permissions["canonlyviewownthreads"])	if($level_permissions["canview"] && !$level_permissions["canonlyviewownthreads"])
{ $only_view_own_threads = 0; }	{ $only_view_own_threads = 0; }
Zeile 1289	Zeile 1320
} if(count($current_permissions) == 0)	} if(count($current_permissions) == 0)
{	{
$current_permissions = $groupperms; } return $current_permissions;	$current_permissions = $groupperms; } return $current_permissions;
Zeile 1304	Zeile 1335
function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;	function check_forum_password($fid, $pid=0) { global $mybb, $header, $footer, $headerinclude, $theme, $templates, $lang, $forum_cache;

$showform = true;	$showform = true;

if(!is_array($forum_cache)) { $forum_cache = cache_forums(); if(!$forum_cache)	if(!is_array($forum_cache)) { $forum_cache = cache_forums(); if(!$forum_cache)
{ return false; }	{ return false; }
} // Loop through each of parent forums to ensure we have a password for them too	} // Loop through each of parent forums to ensure we have a password for them too
Zeile 1327	Zeile 1358
{ continue; }	{ continue; }

if($forum_cache[$parent_id]['password'] != "") { check_forum_password($parent_id, $fid);	if($forum_cache[$parent_id]['password'] != "") { check_forum_password($parent_id, $fid);
} }	} }
}	}

$password = $forum_cache[$fid]['password']; if($password) {	$password = $forum_cache[$fid]['password']; if($password) {
Zeile 1343	Zeile 1374
if($password == $mybb->input['pwverify']) { my_setcookie("forumpass[$fid]", md5($mybb->user['uid'].$mybb->input['pwverify']), null, true);	if($password == $mybb->input['pwverify']) { my_setcookie("forumpass[$fid]", md5($mybb->user['uid'].$mybb->input['pwverify']), null, true);
$showform = false; }	$showform = false; }
else { eval("\$pwnote = \"".$templates->get("forumdisplay_password_wrongpass")."\";");	else { eval("\$pwnote = \"".$templates->get("forumdisplay_password_wrongpass")."\";");
Zeile 1354	Zeile 1385
else { if(!$mybb->cookies['forumpass'][$fid] \|\| ($mybb->cookies['forumpass'][$fid] && md5($mybb->user['uid'].$password) != $mybb->cookies['forumpass'][$fid]))	else { if(!$mybb->cookies['forumpass'][$fid] \|\| ($mybb->cookies['forumpass'][$fid] && md5($mybb->user['uid'].$password) != $mybb->cookies['forumpass'][$fid]))
{	{
$showform = true; } else	$showform = true; } else
Zeile 1398	Zeile 1429
static $modpermscache; if($uid < 1)	static $modpermscache; if($uid < 1)
{ $uid = $mybb->user['uid']; } if($uid == 0) { return false; }	{ $uid = $mybb->user['uid']; } if($uid == 0) { return false; }
if(isset($modpermscache[$fid][$uid])) { return $modpermscache[$fid][$uid];	if(isset($modpermscache[$fid][$uid])) { return $modpermscache[$fid][$uid];
Zeile 1509	Zeile 1540
{ $uid = $mybb->user['uid']; }	{ $uid = $mybb->user['uid']; }

if($uid == 0)	if($uid == 0)
{	{
return false; }	return false; }
Zeile 1519	Zeile 1550
if($user_perms['issupermod'] == 1) { return true;	if($user_perms['issupermod'] == 1) { return true;
}	}
else { if(!$fid)	else { if(!$fid)
Zeile 1538	Zeile 1569
// Moderating usergroup return true; }	// Moderating usergroup return true; }
} }	} }
return false; } else { $modperms = get_moderator_permissions($fid, $uid);	return false; } else { $modperms = get_moderator_permissions($fid, $uid);

if(!$action && $modperms) { return true;	if(!$action && $modperms) { return true;
}	}
else { if($modperms[$action] == 1)	else { if($modperms[$action] == 1)
Zeile 1578	Zeile 1609
if($mybb->input['icon']) { $icon = $mybb->input['icon'];	if($mybb->input['icon']) { $icon = $mybb->input['icon'];
}	} $iconlist = '';
$no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly $posticons_cache = $cache->read("posticons");	$no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly $posticons_cache = $cache->read("posticons");
Zeile 1589	Zeile 1621
$posticons[$posticon['name']] = $posticon; } krsort($posticons);	$posticons[$posticon['name']] = $posticon; } krsort($posticons);

foreach($posticons as $dbicon) { $dbicon['path'] = htmlspecialchars_uni($dbicon['path']);	foreach($posticons as $dbicon) { $dbicon['path'] = htmlspecialchars_uni($dbicon['path']);
Zeile 1674	Zeile 1706
{ $cookie .= "; HttpOnly"; }	{ $cookie .= "; HttpOnly"; }

$mybb->cookies[$name] = $value;	$mybb->cookies[$name] = $value;

header($cookie, false); } /** * Unset a cookie set by MyBB.	header($cookie, false); } /** * Unset a cookie set by MyBB.
*	*
* @param string The cookie identifier. */ function my_unsetcookie($name) { global $mybb;	* @param string The cookie identifier. */ function my_unsetcookie($name) { global $mybb;

$expires = -3600; my_setcookie($name, "", $expires);	$expires = -3600; my_setcookie($name, "", $expires);

unset($mybb->cookies[$name]); }	unset($mybb->cookies[$name]); }
Zeile 1705	Zeile 1737
function my_get_array_cookie($name, $id) { global $mybb;	function my_get_array_cookie($name, $id) { global $mybb;

if(!isset($mybb->cookies['mybb'][$name])) { return false;	if(!isset($mybb->cookies['mybb'][$name])) { return false;
} $cookie = unserialize($mybb->cookies['mybb'][$name]);	} $cookie = my_unserialize($mybb->cookies['mybb'][$name]);
if(is_array($cookie) && isset($cookie[$id])) { return $cookie[$id]; } else	if(is_array($cookie) && isset($cookie[$id])) { return $cookie[$id]; } else
{	{
return 0; } }	return 0; } }
Zeile 1733	Zeile 1765
function my_set_array_cookie($name, $id, $value, $expires="") { global $mybb;	function my_set_array_cookie($name, $id, $value, $expires="") { global $mybb;
$cookie = $mybb->cookies['mybb']; $newcookie = unserialize($cookie[$name]); if(!is_array($newcookie)) { // Burnt / malformed cookie - reset $newcookie = array(); }	$cookie = $mybb->cookies['mybb']; $newcookie = my_unserialize($cookie[$name]);
$newcookie[$id] = $value; $newcookie = serialize($newcookie); my_setcookie("mybb[$name]", addslashes($newcookie), $expires);	$newcookie[$id] = $value; $newcookie = serialize($newcookie); my_setcookie("mybb[$name]", addslashes($newcookie), $expires);

// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie;	// Make sure our current viarables are up-to-date as well $mybb->cookies['mybb'][$name] = $newcookie;
	} /** * Verifies that data passed is an array * * @param array Data to unserialize * @return array Unserialized data array */ function my_unserialize($data) { $array = unserialize($data); if(!is_array($array)) { $array = array(); } return $array;
} /**	} /**
Zeile 1782	Zeile 1826
{ return $lang->unknown; }	{ return $lang->unknown; }

// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))	// Suhosin likes to throw a warning if exec is disabled then die - weird if($func_blacklist = @ini_get('suhosin.executor.func.blacklist'))
{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; }	{ if(strpos(",".$func_blacklist.",", 'exec') !== false) { return $lang->unknown; }
} // PHP disabled functions? if($func_blacklist = @ini_get('disable_functions'))	} // PHP disabled functions? if($func_blacklist = @ini_get('disable_functions'))
Zeile 1812	Zeile 1856
else { return $lang->unknown;	else { return $lang->unknown;
} $returnload = trim($serverload[0]);	} $returnload = trim($serverload[0]);
return $returnload;	return $returnload;
	} /** * Returns the amount of memory allocated to the script. * * @return int The amount of memory allocated to the script. */ function get_memory_usage() { if(function_exists('memory_get_peak_usage')) { return memory_get_peak_usage(true); } elseif(function_exists('memory_get_usage')) { return memory_get_usage(true); } return false;
} /**	} /**
Zeile 1832	Zeile 1894
$counters = array('numthreads','numunapprovedthreads','numposts','numunapprovedposts','numusers'); $update = array();	$counters = array('numthreads','numunapprovedthreads','numposts','numunapprovedposts','numusers'); $update = array();
foreach($counters as $counter)	foreach($counters as $counter)
{ if(array_key_exists($counter, $changes)) {	{ if(array_key_exists($counter, $changes)) {
Zeile 1840	Zeile 1902
if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)	if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-") { if(intval($changes[$counter]) != 0)
{	{
$new_stats[$counter] = $stats[$counter] + $changes[$counter]; }	$new_stats[$counter] = $stats[$counter] + $changes[$counter]; }
}	}
else { $new_stats[$counter] = $changes[$counter];	else { $new_stats[$counter] = $changes[$counter];
Zeile 1859	Zeile 1921
// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {	// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {
$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'uid', 'order_dir' => 'DESC', 'limit' => 1));	$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit' => 1));
$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username']; }	$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username']; }

if(empty($new_stats))	if(empty($new_stats))
{	{
return; }	return; }

if(is_array($stats)) { $stats = array_merge($stats, $new_stats);	if(is_array($stats)) { $stats = array_merge($stats, $new_stats);
}	}
else { $stats = $new_stats;	else { $stats = $new_stats;
Zeile 1900	Zeile 1962
function update_forum_counters($fid, $changes=array()) { global $db, $cache;	function update_forum_counters($fid, $changes=array()) { global $db, $cache;

$update_query = array();	$update_query = array();

$counters = array('threads','unapprovedthreads','posts','unapprovedposts');	$counters = array('threads','unapprovedthreads','posts','unapprovedposts');

// Fetch above counters for this forum $query = $db->simple_select("forums", implode(",", $counters), "fid='{$fid}'"); $forum = $db->fetch_array($query);	// Fetch above counters for this forum $query = $db->simple_select("forums", implode(",", $counters), "fid='{$fid}'"); $forum = $db->fetch_array($query);
foreach($counters as $counter)	foreach($counters as $counter)
{ if(array_key_exists($counter, $changes)) { // Adding or subtracting from previous value? if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-")	{ if(array_key_exists($counter, $changes)) { // Adding or subtracting from previous value? if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-")
{	{
$update_query[$counter] = $forum[$counter] + $changes[$counter];	$update_query[$counter] = $forum[$counter] + $changes[$counter];
} else {	} else {
$update_query[$counter] = $changes[$counter]; }	$update_query[$counter] = $changes[$counter]; }

// Less than 0? That's bad if(!$update_query[$counter]) { $update_query[$counter] = 0;	// Less than 0? That's bad if(!$update_query[$counter]) { $update_query[$counter] = 0;
} } }	} } }
// Only update if we're actually doing something if(count($update_query) > 0)	// Only update if we're actually doing something if(count($update_query) > 0)
Zeile 1946	Zeile 2008
$threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) {	$threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1) {
$new_stats['numthreads'] = "+{$threads_diff}"; } else {	$new_stats['numthreads'] = "+{$threads_diff}"; } else {
$new_stats['numthreads'] = "{$threads_diff}"; } }	$new_stats['numthreads'] = "{$threads_diff}"; } }

if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1)	if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1)
{	{
$new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}";	$new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}";
}	}
else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; } }	else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; } }

if(array_key_exists('posts', $update_query))	if(array_key_exists('posts', $update_query))
{	{
$posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) {	$posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1) {
Zeile 1979	Zeile 2041
$new_stats['numposts'] = "{$posts_diff}"; } }	$new_stats['numposts'] = "{$posts_diff}"; } }

if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1) { $new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";	if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1) { $new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";
} else	} else
{ $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }	{ $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }
Zeile 1997	Zeile 2059
// Update last post info update_forum_lastpost($fid);	// Update last post info update_forum_lastpost($fid);

$cache->update_forums(); }	$cache->update_forums(); }
Zeile 2042	Zeile 2104
global $db; $update_query = array();	global $db; $update_query = array();

$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');	$counters = array('replies','unapprovedposts','attachmentcount', 'attachmentcount');

// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);	// Fetch above counters for this thread $query = $db->simple_select("threads", implode(",", $counters), "tid='{$tid}'"); $thread = $db->fetch_array($query);

foreach($counters as $counter) { if(array_key_exists($counter, $changes))	foreach($counters as $counter) { if(array_key_exists($counter, $changes))
Zeile 2062	Zeile 2124
{ $update_query[$counter] = $changes[$counter]; }	{ $update_query[$counter] = $changes[$counter]; }

// Less than 0? That's bad if($update_query[$counter] < 0) {	// Less than 0? That's bad if($update_query[$counter] < 0) {
Zeile 2070	Zeile 2132
} } }	} } }

$db->free_result($query); // Only update if we're actually doing something if(count($update_query) > 0)	$db->free_result($query); // Only update if we're actually doing something if(count($update_query) > 0)
{	{
$db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }	$db->update_query("threads", $update_query, "tid='".intval($tid)."'"); }

unset($update_query, $thread); update_thread_data($tid);	unset($update_query, $thread); update_thread_data($tid);
Zeile 2092	Zeile 2154
function update_thread_data($tid) { global $db;	function update_thread_data($tid) { global $db;
	$thread = get_thread($tid); // If this is a moved thread marker, don't update it - we need it to stay as it is if(strpos($thread['closed'], 'moved\|') !== false) { return false; }
$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2101	Zeile 2172
LIMIT 1" ); $lastpost = $db->fetch_array($query);	LIMIT 1" ); $lastpost = $db->fetch_array($query);

$db->free_result($query);	$db->free_result($query);

$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p	$query = $db->query(" SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p
Zeile 2113	Zeile 2184
LIMIT 1 "); $firstpost = $db->fetch_array($query);	LIMIT 1 "); $firstpost = $db->fetch_array($query);

$db->free_result($query); if(!$firstpost['username'])	$db->free_result($query); if(!$firstpost['username'])
Zeile 2145	Zeile 2216
'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");	'lastposteruid' => intval($lastpost['uid']), ); $db->update_query("threads", $update_array, "tid='{$tid}'");

unset($firstpost, $lastpost, $update_array); }	unset($firstpost, $lastpost, $update_array); }
Zeile 2164	Zeile 2235
/** * Deletes a thread from the database	/** * Deletes a thread from the database
*	*
* @param int The thread ID */ function delete_thread($tid)	* @param int The thread ID */ function delete_thread($tid)
{ global $moderation; if(!is_object($moderation)) { require_once MYBB_ROOT."inc/class_moderation.php";	{ global $moderation; if(!is_object($moderation)) { require_once MYBB_ROOT."inc/class_moderation.php";
$moderation = new Moderation; }	$moderation = new Moderation; }

return $moderation->delete_thread($tid); } /** * Deletes a post from the database	return $moderation->delete_thread($tid); } /** * Deletes a post from the database
*	*
* @param int The thread ID */ function delete_post($pid, $tid="")	* @param int The thread ID */ function delete_post($pid, $tid="")
Zeile 2216	Zeile 2287
global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang; $pid = intval($pid);	global $forum_cache, $jumpfcache, $permissioncache, $mybb, $selecteddone, $forumjump, $forumjumpbits, $gobutton, $theme, $templates, $lang; $pid = intval($pid);
	$jumpsel['default'] = '';
if($permissions)	if($permissions)
{	{
$permissions = $mybb->usergroup; }	$permissions = $mybb->usergroup; }

if(!is_array($jumpfcache)) { if(!is_array($forum_cache)) { cache_forums();	if(!is_array($jumpfcache)) { if(!is_array($forum_cache)) { cache_forums();
}	}
foreach($forum_cache as $fid => $forum) { if($forum['active'] != 0) { $jumpfcache[$forum['pid']][$forum['disporder']][$forum['fid']] = $forum;	foreach($forum_cache as $fid => $forum) { if($forum['active'] != 0) { $jumpfcache[$forum['pid']][$forum['disporder']][$forum['fid']] = $forum;
} } }	} } }
if(!is_array($permissioncache)) { $permissioncache = forum_permissions(); }	if(!is_array($permissioncache)) { $permissioncache = forum_permissions(); }
if(is_array($jumpfcache[$pid]))	if(isset($jumpfcache[$pid]) && is_array($jumpfcache[$pid]))
{ foreach($jumpfcache[$pid] as $main) {	{ foreach($jumpfcache[$pid] as $main) {
Zeile 2256	Zeile 2328
$optionselected = ""; if($selitem == $forum['fid'])	$optionselected = ""; if($selitem == $forum['fid'])
{	{
$optionselected = "selected=\"selected\""; $selecteddone = 1; }	$optionselected = "selected=\"selected\""; $selecteddone = 1; }

$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");	$forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");
Zeile 2294	Zeile 2366
else { $template = "advanced";	else { $template = "advanced";
	if(strpos(FORUM_URL, '.html') !== false) { $forum_link = "'".str_replace('{fid}', "'+this.options[this.selectedIndex].value+'", FORUM_URL)."'"; } else { $forum_link = "'".str_replace('{fid}', "'+this.options[this.selectedIndex].value", FORUM_URL); }
} eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";");	} eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";");
Zeile 2422	Zeile 2503
"editor_color" ); $editor_language = "var editor_language = {\n";	"editor_color" ); $editor_language = "var editor_language = {\n";

$editor_lang_strings = $plugins->run_hooks("mycode_add_codebuttons", $editor_lang_strings); foreach($editor_lang_strings as $key => $lang_string)	$editor_lang_strings = $plugins->run_hooks("mycode_add_codebuttons", $editor_lang_strings); foreach($editor_lang_strings as $key => $lang_string)
Zeile 2432	Zeile 2513
$string = str_replace("\"", "\\\"", $lang->$lang_string); $editor_language .= "\t{$js_lang_string}: \"{$string}\"";	$string = str_replace("\"", "\\\"", $lang->$lang_string); $editor_language .= "\t{$js_lang_string}: \"{$string}\"";
if($editor_lang_strings[$key+1])	if(isset($editor_lang_strings[$key+1]))
{ $editor_language .= ","; }	{ $editor_language .= ","; }
Zeile 2494	Zeile 2575
{ reset($smiliecache);	{ reset($smiliecache);
	$getmore = '';
if($mybb->settings['smilieinsertertot'] >= $smiliecount) { $mybb->settings['smilieinsertertot'] = $smiliecount;	if($mybb->settings['smilieinsertertot'] >= $smiliecount) { $mybb->settings['smilieinsertertot'] = $smiliecount;
Zeile 2553	Zeile 2635
/** * Builds thread prefixes and returns a selected prefix (or all)	/** * Builds thread prefixes and returns a selected prefix (or all)
*	*
* @param int The prefix ID (0 to return all) * @return array The thread prefix's values (or all thread prefixes) */	* @param int The prefix ID (0 to return all) * @return array The thread prefix's values (or all thread prefixes) */
Zeile 2567	Zeile 2649
if($pid > 0 && is_array($prefixes_cache[$pid])) { return $prefixes_cache[$pid];	if($pid > 0 && is_array($prefixes_cache[$pid])) { return $prefixes_cache[$pid];
} return $prefixes_cache; } $prefix_cache = $cache->read("threadprefixes");	} return $prefixes_cache; } $prefix_cache = $cache->read("threadprefixes");
if(!is_array($prefix_cache)) { // No cache	if(!is_array($prefix_cache)) { // No cache
Zeile 2592	Zeile 2674
} if($pid != 0 && is_array($prefixes_cache[$pid]))	} if($pid != 0 && is_array($prefixes_cache[$pid]))
{	{
return $prefixes_cache[$pid]; } else if(!empty($prefixes_cache))	return $prefixes_cache[$pid]; } else if(!empty($prefixes_cache))
Zeile 2605	Zeile 2687
/** * Build the thread prefix selection menu	/** * Build the thread prefix selection menu
*	*
* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu	* @param mixed The forum ID (integer ID or string all) * @param mixed The selected prefix ID (integer ID or string any) * @return string The thread prefix selection menu
Zeile 2613	Zeile 2695
function build_prefix_select($fid, $selected_pid=0, $multiple=0) { global $cache, $db, $lang, $mybb;	function build_prefix_select($fid, $selected_pid=0, $multiple=0) { global $cache, $db, $lang, $mybb;

if($fid != 'all') { $fid = intval($fid);	if($fid != 'all') { $fid = intval($fid);
Zeile 2787	Zeile 2869
if($data['fid'] == '') { $fid = 0;	if($data['fid'] == '') { $fid = 0;
} else {	} else {
$fid = $data['fid']; unset($data['fid']); } if($data['tid'] == '')	$fid = $data['fid']; unset($data['fid']); } if($data['tid'] == '')
{	{
$tid = 0;	$tid = 0;
} else {	} else {
$tid = $data['tid']; unset($data['tid']); }	$tid = $data['tid']; unset($data['tid']); }
Zeile 2822	Zeile 2904
"ipaddress" => $db->escape_string($session->ipaddress) ); $db->insert_query("moderatorlog", $sql_array);	"ipaddress" => $db->escape_string($session->ipaddress) ); $db->insert_query("moderatorlog", $sql_array);
}	}
/** * Get the formatted reputation for a user.	/** * Get the formatted reputation for a user.
Zeile 2834	Zeile 2916
function get_reputation($reputation, $uid=0) { global $theme;	function get_reputation($reputation, $uid=0) { global $theme;
	$display_reputation = '';
if($uid != 0) {	if($uid != 0) {
Zeile 2856	Zeile 2940
} $display_reputation .= "\">{$reputation}</strong>";	} $display_reputation .= "\">{$reputation}</strong>";

if($uid != 0) { $display_reputation .= "</a>";	if($uid != 0) { $display_reputation .= "</a>";
Zeile 2878	Zeile 2962
return "<span class=\"high_warning\">{$level}%</span>"; } else if($level >= 50)	return "<span class=\"high_warning\">{$level}%</span>"; } else if($level >= 50)
{	{
return "<span class=\"moderate_warning\">{$level}%</span>"; } else if($level >= 25)	return "<span class=\"moderate_warning\">{$level}%</span>"; } else if($level >= 25)
Zeile 2888	Zeile 2972
else { return $level."%";	else { return $level."%";
} } /**	} } /**
* Fetch the IP address of the current user. * * @return string The IP address. */ function get_ip()	* Fetch the IP address of the current user. * * @return string The IP address. */ function get_ip()
{ global $mybb, $plugins; $ip = 0; if(!preg_match("#^(10\|172\.16\|192\.168)\.#", $_SERVER['REMOTE_ADDR'])) { $ip = $_SERVER['REMOTE_ADDR']; }	{ global $mybb, $plugins; $ip = 0;

if($mybb->settings['ip_forwarded_check']) { if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses); } elseif(isset($_SERVER['HTTP_X_REAL_IP'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_REAL_IP'], $addresses); }	if(!preg_match("#^(10\|172\.16\|192\.168)\.#", $_SERVER['REMOTE_ADDR'])) { $ip = $_SERVER['REMOTE_ADDR']; } if($mybb->settings['ip_forwarded_check']) { if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_FORWARDED_FOR'], $addresses); } elseif(isset($_SERVER['HTTP_X_REAL_IP'])) { preg_match_all("#[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}#s", $_SERVER['HTTP_X_REAL_IP'], $addresses); }
if(is_array($addresses[0])) {	if(is_array($addresses[0])) {
Zeile 2929	Zeile 3013
} } }	} } }
} if(!$ip) { if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; } }	} if(!$ip) { if(isset($_SERVER['HTTP_CLIENT_IP'])) { $ip = $_SERVER['HTTP_CLIENT_IP']; } }

if($plugins) { $plugins->run_hooks("get_ip", array("ip" => $ip)); }	if($plugins) { $ip_array = array("ip" => &$ip); // Used for backwards compatibility on this hook with the updated run_hooks() function. $plugins->run_hooks("get_ip", $ip_array); }

return $ip; }	return $ip; }
/** * Fetch the friendly size (GB, MB, KB, B) for a specified file size.	/** * Fetch the friendly size (GB, MB, KB, B) for a specified file size.
Zeile 2956	Zeile 3041
function get_friendly_size($size) { global $lang;	function get_friendly_size($size) { global $lang;

if(!is_numeric($size)) { return $lang->na; }	if(!is_numeric($size)) { return $lang->na; }

// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {	// Yottabyte (1024 Zettabytes) if($size >= 1208925819614629174706176) {
Zeile 3063	Zeile 3148
global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }	global $change_dir; $theme['imgdir'] = "{$change_dir}/images"; }

return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />";	return "<img src=\"{$theme['imgdir']}/attachtypes/unknown.gif\" border=\"0\" alt=\".{$ext}\" />";
}	}
} /**	} /**
Zeile 3076	Zeile 3161
*/ function get_unviewable_forums($only_readable_threads=false) {	*/ function get_unviewable_forums($only_readable_threads=false) {
global $forum_cache, $permissioncache, $mybb, $unviewableforums, $unviewable, $templates, $forumpass; $pid = intval($pid); if(!$permissions) { $permissions = $mybb->usergroup; }	global $forum_cache, $permissioncache, $mybb, $unviewable, $templates, $forumpass;
if(!is_array($forum_cache)) { cache_forums();	if(!is_array($forum_cache)) { cache_forums();
Zeile 3093	Zeile 3171
if(!is_array($permissioncache)) { $permissioncache = forum_permissions();	if(!is_array($permissioncache)) { $permissioncache = forum_permissions();
}	}
$password_forums = array(); foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])	$password_forums = array(); foreach($forum_cache as $fid => $forum) { if($permissioncache[$forum['fid']])
{	{
$perms = $permissioncache[$forum['fid']]; } else { $perms = $mybb->usergroup;	$perms = $permissioncache[$forum['fid']]; } else { $perms = $mybb->usergroup;
}	}
$pwverified = 1;	$pwverified = 1;

if($forum['password'] != "") { if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0; }	if($forum['password'] != "") { if($mybb->cookies['forumpass'][$forum['fid']] != md5($mybb->user['uid'].$forum['password'])) { $pwverified = 0; }

$password_forums[$forum['fid']] = $forum['password'];	$password_forums[$forum['fid']] = $forum['password'];
}	}
else { // Check parents for passwords	else { // Check parents for passwords
Zeile 3128	Zeile 3206
{ $pwverified = 0; }	{ $pwverified = 0; }
}	}
} if($perms['canview'] == 0 \|\| $pwverified == 0 \|\| ($only_readable_threads == true && $perms['canviewthreads'] == 0))	} if($perms['canview'] == 0 \|\| $pwverified == 0 \|\| ($only_readable_threads == true && $perms['canviewthreads'] == 0))
Zeile 3142	Zeile 3220
} }	} }
return $unviewableforums;	if(isset($unviewableforums)) { return $unviewableforums; }
} /**	} /**
Zeile 3172	Zeile 3253
global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");	global $nav, $navbits, $templates, $theme, $lang, $mybb; eval("\$navsep = \"".$templates->get("nav_sep")."\";");

$i = 0;	$i = 0;
	$activesep = '';
if(is_array($navbits)) { reset($navbits);	if(is_array($navbits)) { reset($navbits);
Zeile 3185	Zeile 3267
if(isset($navbits[$key+2])) { $sep = $navsep;	if(isset($navbits[$key+2])) { $sep = $navsep;
} else {	} else {
$sep = ""; }	$sep = ""; }

$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage']))	$multipage = null; $multipage_dropdown = null; if(!empty($navbit['multipage']))
Zeile 3271	Zeile 3353
{ if($fid == $forumnav['fid']) {	{ if($fid == $forumnav['fid']) {
if($pforumcache[$forumnav['pid']])	if(!empty($pforumcache[$forumnav['pid']]))
{ build_forum_breadcrumb($forumnav['pid']); }	{ build_forum_breadcrumb($forumnav['pid']); }
Zeile 3280	Zeile 3362
// Convert & to & $navbits[$navsize]['name'] = preg_replace("#&(?!\#[0-9]+;)#si", "&", $forumnav['name']);	// Convert & to & $navbits[$navsize]['name'] = preg_replace("#&(?!\#[0-9]+;)#si", "&", $forumnav['name']);
if(IN_ARCHIVE == 1)	if(defined("IN_ARCHIVE"))
{ // Set up link to forum in breadcrumb. if($pforumcache[$fid][$forumnav['pid']]['type'] == 'f' \|\| $pforumcache[$fid][$forumnav['pid']]['type'] == 'c')	{ // Set up link to forum in breadcrumb. if($pforumcache[$fid][$forumnav['pid']]['type'] == 'f' \|\| $pforumcache[$fid][$forumnav['pid']]['type'] == 'c')
Zeile 3295	Zeile 3377
elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);	elseif(!empty($multipage)) { $navbits[$navsize]['url'] = get_forum_link($forumnav['fid'], $multipage['current_page']);

$navbits[$navsize]['multipage'] = $multipage; $navbits[$navsize]['multipage']['url'] = str_replace('{fid}', $forumnav['fid'], FORUM_URL_PAGED); }	$navbits[$navsize]['multipage'] = $multipage; $navbits[$navsize]['multipage']['url'] = str_replace('{fid}', $forumnav['fid'], FORUM_URL_PAGED); }
Zeile 3335	Zeile 3417
function build_archive_link($type, $id="") { global $mybb;	function build_archive_link($type, $id="") { global $mybb;

// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows	// If the server OS is not Windows and not Apache or the PHP is running as a CGI or we have defined ARCHIVE_QUERY_STRINGS, use query strings - DIRECTORY_SEPARATOR checks if running windows
if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) { $base_url = $mybb->settings['bburl']."/archive/index.php?"; } else	//if((DIRECTORY_SEPARATOR == '\\' && is_numeric(stripos($_SERVER['SERVER_SOFTWARE'], "apache")) == false) \|\| is_numeric(stripos(SAPI_NAME, "cgi")) !== false \|\| defined("ARCHIVE_QUERY_STRINGS")) if($mybb->settings['seourls_archive'] == 1)
{ $base_url = $mybb->settings['bburl']."/archive/index.php/";	{ $base_url = $mybb->settings['bburl']."/archive/index.php/";
	} else { $base_url = $mybb->settings['bburl']."/archive/index.php?";
} switch($type)	} switch($type)
Zeile 3366	Zeile 3449
/** * Prints a debug information page	/** * Prints a debug information page
*/	*/
function debug_page() {	function debug_page() {
global $db, $debug, $templates, $templatelist, $mybb, $maintimer, $globaltime, $ptimer, $parsetime;	global $db, $debug, $templates, $templatelist, $mybb, $maintimer, $globaltime, $ptimer, $parsetime, $lang;
$totaltime = $maintimer->totaltime; $phptime = $maintimer->format($maintimer->totaltime - $db->query_time);	$totaltime = $maintimer->totaltime; $phptime = $maintimer->format($maintimer->totaltime - $db->query_time);
Zeile 3385	Zeile 3468
if($mybb->settings['gzipoutput'] != 0) { $gzipen = "Enabled";	if($mybb->settings['gzipoutput'] != 0) { $gzipen = "Enabled";
}	}
else { $gzipen = "Disabled";	else { $gzipen = "Disabled";
Zeile 3402	Zeile 3485
echo "<table bgcolor=\"#666666\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n"; echo "<td bgcolor=\"#CCCCCC\" colspan=\"4\"><b><span style=\"size:2;\">Page Generation Statistics</span></b></td>\n";	echo "<table bgcolor=\"#666666\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n"; echo "<td bgcolor=\"#CCCCCC\" colspan=\"4\"><b><span style=\"size:2;\">Page Generation Statistics</span></b></td>\n";
echo "</tr>\n";	echo "</tr>\n";
echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Page Generation Time:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$totaltime seconds</font></td>\n";	echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Page Generation Time:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$totaltime seconds</font></td>\n";
Zeile 3420	Zeile 3503
echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$mybb->config['database']['type']}, xml</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Global.php Processing Time:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$globaltime seconds</font></td>\n";	echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$mybb->config['database']['type']}, xml</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Global.php Processing Time:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$globaltime seconds</font></td>\n";
echo "</tr>\n";	echo "</tr>\n";
echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">PHP Version:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$phpversion</font></td>\n";	echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">PHP Version:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">$phpversion</font></td>\n";
Zeile 3434	Zeile 3517
echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".count($templates->cache)." (".intval(count(explode(",", $templatelist)))." Cached / ".intval(count($templates->uncached_templates))." Manually Loaded)</font></td>\n"; echo "</tr>\n";	echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".count($templates->cache)." (".intval(count(explode(",", $templatelist)))." Cached / ".intval(count($templates->uncached_templates))." Manually Loaded)</font></td>\n"; echo "</tr>\n";
if(function_exists("memory_get_usage"))	$memory_usage = get_memory_usage(); if(!$memory_usage)
{	{
$memory_usage = memory_get_peak_usage(true); $memory_limit = @ini_get("memory_limit"); echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Usage:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">".get_friendly_size($memory_usage)." ({$memory_usage} bytes)</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Limit:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_limit}</font></td>\n"; echo "</tr>\n";	$memory_usage = $lang->unknown;
}	}
	else { $memory_usage = get_friendly_size($memory_usage)." ({$memory_usage} bytes)"; } $memory_limit = @ini_get("memory_limit"); echo "<tr>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Usage:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_usage}</font></td>\n"; echo "<td bgcolor=\"#EFEFEF\" width=\"25%\"><b><font face=\"Tahoma\" size=\"2\">Memory Limit:</font></b></td>\n"; echo "<td bgcolor=\"#FEFEFE\" width=\"25%\"><font face=\"Tahoma\" size=\"2\">{$memory_limit}</font></td>\n"; echo "</tr>\n";
echo "</table>\n";	echo "</table>\n";
Zeile 3473	Zeile 3561
echo "<br />\n"; }	echo "<br />\n"; }
if(count($templates->uncached_templates > 0))	if(count($templates->uncached_templates) > 0)
{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";	{ echo "<table style=\"background-color: #666;\" width=\"95%\" cellpadding=\"4\" cellspacing=\"1\" align=\"center\">\n"; echo "<tr>\n";
Zeile 3546	Zeile 3634
case "all": $db->update_query("reportedposts", array('reportstatus' => 1), "reportstatus='0'"); break;	case "all": $db->update_query("reportedposts", array('reportstatus' => 1), "reportstatus='0'"); break;
}	}
$arguments = array('id' => $id, 'type' => $type); $plugins->run_hooks("mark_reports", $arguments); $cache->update_reportedposts();	$arguments = array('id' => $id, 'type' => $type); $plugins->run_hooks("mark_reports", $arguments); $cache->update_reportedposts();
Zeile 3571	Zeile 3659
$hsecs = 60*60; $msecs = 60;	$hsecs = 60*60; $msecs = 60;
if($options['short'] == true)	if(isset($options['short']))
{ $lang_year = $lang->year_short; $lang_years = $lang->years_short;	{ $lang_year = $lang->year_short; $lang_years = $lang->years_short;
Zeile 3634	Zeile 3722
$nicetime['months'] = "1".$lang_month; } else if($months > 1)	$nicetime['months'] = "1".$lang_month; } else if($months > 1)
{	{
$nicetime['months'] = $months.$lang_months; }	$nicetime['months'] = $months.$lang_months; }
Zeile 3656	Zeile 3744
$nicetime['days'] = $days.$lang_days; }	$nicetime['days'] = $days.$lang_days; }
if($options['hours'] !== false)	if(!isset($options['hours']) \|\| $options['hours'] !== false)
{ if($hours == 1) {	{ if($hours == 1) {
Zeile 3668	Zeile 3756
} }	} }
if($options['minutes'] !== false)	if(!isset($options['minutes']) \|\| $options['minutes'] !== false)
{ if($minutes == 1) {	{ if($minutes == 1) {
Zeile 3680	Zeile 3768
} }	} }
if($options['seconds'] !== false)	if(!isset($options['seconds']) \|\| $options['seconds'] !== false)
{ if($seconds == 1) {	{ if($seconds == 1) {
Zeile 3808	Zeile 3896
$groupslist .= $comma.$gid; $comma = ","; $donegroup[$gid] = 1;	$groupslist .= $comma.$gid; $comma = ","; $donegroup[$gid] = 1;
} }	} }
}	}

$dispupdate = ""; if($leavegroup == $user['displaygroup']) {	$dispupdate = ""; if($leavegroup == $user['displaygroup']) {
Zeile 3823	Zeile 3911
SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");	SET additionalgroups='$groupslist' $dispupdate WHERE uid='".intval($uid)."' ");

$cache->update_moderators(); }	$cache->update_moderators(); }
Zeile 3844	Zeile 3932
if(!empty($_SERVER['PATH_INFO'])) { $location = htmlspecialchars_uni($_SERVER['PATH_INFO']);	if(!empty($_SERVER['PATH_INFO'])) { $location = htmlspecialchars_uni($_SERVER['PATH_INFO']);
}	}
elseif(!empty($_ENV['PATH_INFO']))	elseif(!empty($_ENV['PATH_INFO']))
{	{
$location = htmlspecialchars_uni($_ENV['PATH_INFO']);	$location = htmlspecialchars_uni($_ENV['PATH_INFO']);
}	}
elseif(!empty($_ENV['PHP_SELF']))	elseif(!empty($_ENV['PHP_SELF']))
{	{
$location = htmlspecialchars_uni($_ENV['PHP_SELF']);	$location = htmlspecialchars_uni($_ENV['PHP_SELF']);
} else {	} else {
$location = htmlspecialchars_uni($_SERVER['PHP_SELF']); }	$location = htmlspecialchars_uni($_SERVER['PHP_SELF']); }

if($fields == true) { global $mybb;	if($fields == true) { global $mybb;

if(!is_array($ignore)) { $ignore = array($ignore); }	if(!is_array($ignore)) { $ignore = array($ignore); }

$form_html = "";	$form_html = "";
$field_parts = explode('&', $field_parts);
if(!empty($mybb->input)) { foreach($mybb->input as $name => $value)	if(!empty($mybb->input)) { foreach($mybb->input as $name => $value)
Zeile 3878	Zeile 3964
{ continue; }	{ continue; }
$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars((string)$name)."\" value=\"".htmlspecialchars((string)$value)."\" />\n";	$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni((string)$name)."\" value=\"".htmlspecialchars_uni((string)$value)."\" />\n";
} }	} }

return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else	return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else
Zeile 3895	Zeile 3981
{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }	{ $location .= "?".htmlspecialchars_uni($_ENV['QUERY_STRING']); }

if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST")) { $post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');	if((isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == "POST") \|\| (isset($_ENV['REQUEST_METHOD']) && $_ENV['REQUEST_METHOD'] == "POST")) { $post_array = array('action', 'fid', 'pid', 'tid', 'uid', 'eid');

foreach($post_array as $var) { if(isset($_POST[$var]))	foreach($post_array as $var) { if(isset($_POST[$var]))
Zeile 3907	Zeile 3993
$addloc[] = urlencode($var).'='.urlencode($_POST[$var]); } }	$addloc[] = urlencode($var).'='.urlencode($_POST[$var]); } }

if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)	if(isset($addloc) && is_array($addloc)) { if(strpos($location, "?") === false)
Zeile 4001	Zeile 4087
if($theme['pid'] != 0) {	if($theme['pid'] != 0) {
$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.$theme['name']."</option>";	$themeselect .= "<option value=\"".$theme['tid']."\"$sel>".$depth.htmlspecialchars_uni($theme['name'])."</option>";
$depthit = $depth."--"; }	$depthit = $depth."--"; }
Zeile 4078	Zeile 4164
static $charset; static $use_mb; static $use_iconv;	static $charset; static $use_mb; static $use_iconv;

if(!isset($charset))	if(!isset($charset))
{	{
$charset = my_strtolower($lang->settings['charset']);	$charset = my_strtolower($lang->settings['charset']);
}	}
if($charset == "utf-8") { return $str; }	if($charset == "utf-8") { return $str; }

if(!isset($use_iconv))	if(!isset($use_iconv))
{	{
$use_iconv = function_exists("iconv");	$use_iconv = function_exists("iconv");
}	}
if(!isset($use_mb)) { $use_mb = function_exists("mb_convert_encoding"); }	if(!isset($use_mb)) { $use_mb = function_exists("mb_convert_encoding"); }

if($use_iconv \|\| $use_mb)	if($use_iconv \|\| $use_mb)
{ if($to) {	{ if($to) {
$from_charset = $lang->settings['charset']; $to_charset = "UTF-8";	$from_charset = $lang->settings['charset']; $to_charset = "UTF-8";
}	}
else { $from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; } if($use_iconv)	else { $from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; } if($use_iconv)
{	{
return iconv($from_charset, $to_charset."//IGNORE", $str); } else	return iconv($from_charset, $to_charset."//IGNORE", $str); } else
Zeile 4132	Zeile 4218
} } else	} } else
{	{
return $str; } }	return $str; } }
Zeile 4150	Zeile 4236
if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);	if($mybb->settings['wordwrap'] > 0) { $message = convert_through_utf8($message);

if(!($new_message = @preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#u", "$0", $message))) {	if(!($new_message = @preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#u", "$0", $message))) {
$new_message = preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#", "$0", $message);	$new_message = preg_replace("#(((?>[^\s&/<>\"\\-\[\]])\|(&\#[a-z0-9]{1,10};)){{$mybb->settings['wordwrap']}})#", "$0", $message);
}	}

$new_message = convert_through_utf8($new_message, false);	$new_message = convert_through_utf8($new_message, false);

return $new_message; }	return $new_message; }

return $message;	return $message;
} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) *	} /** * Workaround for date limitation in PHP to establish the day of a birthday (Provided by meme) *
* @param int The month of the birthday * @param int The day of the birthday * @param int The year of the bithday	* @param int The month of the birthday * @param int The day of the birthday * @param int The year of the bithday
Zeile 4264	Zeile 4350
$lang->month_11, $lang->month_12 );	$lang->month_11, $lang->month_12 );

// This needs to be in this specific order $find = array(	// This needs to be in this specific order $find = array(
Zeile 4295	Zeile 4381
$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);	$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);

$replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),	$replace = array( sprintf('%02s', $bm), sprintf('%02s', $bd),
Zeile 4308	Zeile 4394
$wd, ($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );	$wd, ($bm == 9 ? my_substr($bmonth[$bm-1], 0, 4) : my_substr($bmonth[$bm-1], 0, 3)), );

// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)	// Do we have the full month in our output? // If so there's no need for the short month if(strpos($display, 'F') !== false)
Zeile 4316	Zeile 4402
array_pop($find); array_pop($replace); }	array_pop($find); array_pop($replace); }

return str_replace($find, $replace, $display); }	return str_replace($find, $replace, $display); }
Zeile 4379	Zeile 4465
*/ function my_strlen($string) {	*/ function my_strlen($string) {
global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string); if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string); // Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); } $string = trim($string);	global $lang; $string = preg_replace("#&\#([0-9]+);#", "-", $string); if(strtolower($lang->settings['charset']) == "utf-8") { // Get rid of any excess RTL and LTR override for they are the workings of the devil $string = str_replace(dec_to_utf8(8238), "", $string); $string = str_replace(dec_to_utf8(8237), "", $string); // Remove dodgy whitespaces $string = str_replace(chr(0xCA), "", $string); } $string = trim($string);

if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); }	if(function_exists("mb_strlen")) { $string_length = mb_strlen($string); } else { $string_length = strlen($string); }

return $string_length;	return $string_length;
} /**	} /**
Zeile 4426	Zeile 4512
if($length != "") { $cut_string = mb_substr($string, $start, $length);	if($length != "") { $cut_string = mb_substr($string, $start, $length);
} else	} else
{ $cut_string = mb_substr($string, $start); }	{ $cut_string = mb_substr($string, $start); }
Zeile 4437	Zeile 4523
if($length != "") { $cut_string = substr($string, $start, $length);	if($length != "") { $cut_string = substr($string, $start, $length);
}	}
else { $cut_string = substr($string, $start);	else { $cut_string = substr($string, $start);
Zeile 4447	Zeile 4533
if($handle_entities) { $cut_string = htmlspecialchars_uni($cut_string);	if($handle_entities) { $cut_string = htmlspecialchars_uni($cut_string);
}	}
return $cut_string; }	return $cut_string; }
Zeile 4466	Zeile 4552
else { $string = strtolower($string);	else { $string = strtolower($string);
}	}
return $string; }	return $string; }
Zeile 4487	Zeile 4573
} if(function_exists("mb_strpos"))	} if(function_exists("mb_strpos"))
{	{
$position = mb_strpos($haystack, $needle, $offset); } else	$position = mb_strpos($haystack, $needle, $offset); } else
Zeile 4507	Zeile 4593
function my_strtoupper($string) { if(function_exists("mb_strtoupper"))	function my_strtoupper($string) { if(function_exists("mb_strtoupper"))
{	{
$string = mb_strtoupper($string);	$string = mb_strtoupper($string);
}	}
else { $string = strtoupper($string); } return $string;	else { $string = strtoupper($string); } return $string;
}	}
/** * Returns any html entities to their original character	/** * Returns any html entities to their original character
Zeile 4525	Zeile 4611
* @return int The un-htmlentitied' string. */ function unhtmlentities($string)	* @return int The un-htmlentitied' string. */ function unhtmlentities($string)
{	{
// Replace numeric entities	// Replace numeric entities
$string = preg_replace('~&#x([0-9a-f]+);~ei', 'unichr(hexdec("\\1"))', $string); $string = preg_replace('~&#([0-9]+);~e', 'unichr("\\1")', $string);	$string = preg_replace_callback('~&#x([0-9a-f]+);~i', create_function('$matches', 'return unichr(hexdec($matches[1]));'), $string); $string = preg_replace_callback('~&#([0-9]+);~', create_function('$matches', 'return unichr($matches[1]);'), $string);
// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);	// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl);
return strtr($string, $trans_tbl); }

/**	return strtr($string, $trans_tbl); } /**
* Returns any ascii to it's character (utf-8 safe). * * @param string The ascii to characterize. * @return int The characterized ascii. */ function unichr($c)	* Returns any ascii to it's character (utf-8 safe). * * @param string The ascii to characterize. * @return int The characterized ascii. */ function unichr($c)
{ if($c <= 0x7F) { return chr($c); }	{ if($c <= 0x7F) { return chr($c); }
else if($c <= 0x7FF)	else if($c <= 0x7FF)
{ return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }	{ return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0xFFFF)	else if($c <= 0xFFFF)
{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	{ return chr(0xE0 \| $c >> 12) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else if($c <= 0x10FFFF) {	else if($c <= 0x10FFFF) {
return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }	return chr(0xF0 \| $c >> 18) . chr(0x80 \| $c >> 12 & 0x3F) . chr(0x80 \| $c >> 6 & 0x3F) . chr(0x80 \| $c & 0x3F); }
else {	else {
return false; }	return false; }
} /**	} /**
Zeile 4575	Zeile 4661
* * @param array The event data array. * @return string The link to the event poster.	* * @param array The event data array. * @return string The link to the event poster.
*/	*/
function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);	function get_event_poster($event) { $event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']);
Zeile 4592	Zeile 4678
function get_event_date($event) { global $mybb;	function get_event_date($event) { global $mybb;

$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);	$event_date = explode("-", $event['date']); $event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]); $event_date = my_date($mybb->settings['dateformat'], $event_date);
Zeile 4659	Zeile 4745
{ $onclick = " onclick=\"{$onclick}\""; }	{ $onclick = " onclick=\"{$onclick}\""; }

return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }	return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }
Zeile 4707	Zeile 4793
{ $link = THREAD_URL_PAGED; }	{ $link = THREAD_URL_PAGED; }
$link = str_replace("{tid}", $tid, $link);	$link = str_replace("{tid}", $tid, $link);
$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); }
Zeile 4767	Zeile 4853
* @param int The year * @param int The month * @param int The day (optional)	* @param int The year * @param int The month * @param int The day (optional)
* @return string The URL of the calendar	* @return string The URL of the calendar
*/ function get_calendar_link($calendar, $year=0, $month=0, $day=0) {	*/ function get_calendar_link($calendar, $year=0, $month=0, $day=0) {
Zeile 4776	Zeile 4862
$link = str_replace("{month}", $month, CALENDAR_URL_DAY); $link = str_replace("{year}", $year, $link); $link = str_replace("{day}", $day, $link);	$link = str_replace("{month}", $month, CALENDAR_URL_DAY); $link = str_replace("{year}", $year, $link); $link = str_replace("{day}", $day, $link);
$link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link); }	$link = str_replace("{calendar}", $calendar, $link); return htmlspecialchars_uni($link); }
else if($month > 0)	else if($month > 0)
{	{
$link = str_replace("{month}", $month, CALENDAR_URL_MONTH); $link = str_replace("{year}", $year, $link);	$link = str_replace("{month}", $month, CALENDAR_URL_MONTH); $link = str_replace("{year}", $year, $link);
$link = str_replace("{calendar}", $calendar, $link);	$link = str_replace("{calendar}", $calendar, $link);
return htmlspecialchars_uni($link); } else if($year > 0) { $link = str_replace("{year}", $year, CALENDAR_URL_YEAR); $link = str_replace("{calendar}", $calendar, $link);	return htmlspecialchars_uni($link); } else if($year > 0) { $link = str_replace("{year}", $year, CALENDAR_URL_YEAR); $link = str_replace("{calendar}", $calendar, $link);
return htmlspecialchars_uni($link); }	return htmlspecialchars_uni($link); }
else { $link = str_replace("{calendar}", $calendar, CALENDAR_URL);	else { $link = str_replace("{calendar}", $calendar, CALENDAR_URL);
Zeile 4801	Zeile 4887
/** * Build the link to a specified week on the calendar	/** * Build the link to a specified week on the calendar
*	*
* @param int The ID of the calendar * @param int The year * @param int The week	* @param int The ID of the calendar * @param int The year * @param int The week
Zeile 4825	Zeile 4911
* @return array The users data */ function get_user($uid)	* @return array The users data */ function get_user($uid)
{	{
global $mybb, $db; static $user_cache;	global $mybb, $db; static $user_cache;
Zeile 4836	Zeile 4922
return $mybb->user; } elseif(isset($user_cache[$uid]))	return $mybb->user; } elseif(isset($user_cache[$uid]))
{	{
return $user_cache[$uid]; }	return $user_cache[$uid]; }
else	elseif(($uid > 0))
{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query); return $user_cache[$uid]; }	{ $query = $db->simple_select("users", "*", "uid='{$uid}'"); $user_cache[$uid] = $db->fetch_array($query); return $user_cache[$uid]; }
	return array();
} /**	} /**
Zeile 4861	Zeile 4948
static $forum_cache; if(!isset($forum_cache) \|\| is_array($forum_cache))	static $forum_cache; if(!isset($forum_cache) \|\| is_array($forum_cache))
{	{
$forum_cache = $cache->read("forums"); }	$forum_cache = $cache->read("forums"); }
Zeile 4882	Zeile 4969
return false; } }	return false; } }
} }	} }
return $forum_cache[$fid]; }	return $forum_cache[$fid]; }
Zeile 4894	Zeile 4981
* @param int The thread id of the thread. * @param boolean Whether or not to recache the thread. * @return string The database row of the thread.	* @param int The thread id of the thread. * @param boolean Whether or not to recache the thread. * @return string The database row of the thread.
*/	*/
function get_thread($tid, $recache = false) { global $db; static $thread_cache; if(isset($thread_cache[$tid]) && !$recache)	function get_thread($tid, $recache = false) { global $db; static $thread_cache; if(isset($thread_cache[$tid]) && !$recache)
{	{
return $thread_cache[$tid];	return $thread_cache[$tid];
} else {	} else {
$query = $db->simple_select("threads", "*", "tid='".intval($tid)."'"); $thread = $db->fetch_array($query);	$query = $db->simple_select("threads", "*", "tid='".intval($tid)."'"); $thread = $db->fetch_array($query);
Zeile 4950	Zeile 5037
else { $post_cache[$pid] = false;	else { $post_cache[$pid] = false;
return false; } } }	return false; } } }
/** * Get inactivate forums. * * @return string The comma separated values of the inactivate forum. */ function get_inactive_forums()	/** * Get inactivate forums. * * @return string The comma separated values of the inactivate forum. */ function get_inactive_forums()
{	{
global $forum_cache, $cache, $inactiveforums;	global $forum_cache, $cache, $inactiveforums;

if(!$forum_cache)	if(!$forum_cache)
{	{
cache_forums(); } $inactive = array(); foreach($forum_cache as $fid => $forum)	cache_forums(); } $inactive = array(); foreach($forum_cache as $fid => $forum)
{	{
if($forum['active'] == 0) { $inactive[] = $fid;	if($forum['active'] == 0) { $inactive[] = $fid;
Zeile 4983	Zeile 5070
$inactive[] = $fid1; } }	$inactive[] = $fid1; } }
}	}
} $inactiveforums = implode(",", $inactive);	} $inactiveforums = implode(",", $inactive);
Zeile 5006	Zeile 5093
return 1; } // Note: Number of logins is defaulted to 1, because using 0 seems to clear cookie data. Not really a problem as long as we account for 1 being default.	return 1; } // Note: Number of logins is defaulted to 1, because using 0 seems to clear cookie data. Not really a problem as long as we account for 1 being default.

// Use cookie if possible, otherwise use session	// Use cookie if possible, otherwise use session
// Session stops user clearing cookies to bypass the login // Also use the greater of the two numbers present, stops people using scripts with altered cookie data to stay the same $cookielogins = intval($mybb->cookies['loginattempts']); $cookietime = $mybb->cookies['failedlogin'];	// Find better solution to prevent clearing cookies $loginattempts = 0; $failedlogin = 0;

if(empty($cookielogins) \|\| $cookielogins < $session->logins) { $loginattempts = $session->logins; } else { $loginattempts = $cookielogins; } if(empty($cookietime) \|\| $cookietime < $session->failedlogin)	if(!empty($mybb->cookies['loginattempts']))
{	{
$failedlogin = $session->failedlogin;	$loginattempts = $mybb->cookies['loginattempts'];
}	}
else	if(!empty($mybb->cookies['failedlogin']))
{	{
$failedlogin = $cookietime;	$failedlogin = $mybb->cookies['failedlogin'];
} // Work out if the user has had more than the allowed number of login attempts	} // Work out if the user has had more than the allowed number of login attempts
Zeile 5056	Zeile 5134
if(empty($failedlogin)) { my_setcookie('failedlogin', $now);	if(empty($failedlogin)) { my_setcookie('failedlogin', $now);
if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft));	if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft));
} return false;	} return false;
Zeile 5085	Zeile 5163
{ error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); }	{ error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); }

return false; } }	return false; } }

// User can attempt another login return $loginattempts;	// User can attempt another login return $loginattempts;
} /**	} /**
* Validates the format of an email address. * * @param string The string to check.	* Validates the format of an email address. * * @param string The string to check.
Zeile 5103	Zeile 5181
function validate_email_format($email) { if(strpos($email, ' ') !== false)	function validate_email_format($email) { if(strpos($email, ' ') !== false)
{	{
return false; } // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html	return false; } // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html
Zeile 5120	Zeile 5198
function email_already_in_use($email, $uid="") { global $db;	function email_already_in_use($email, $uid="") { global $db;

$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; } $query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string($email)."'{$uid_string}");	$uid_string = ""; if($uid) { $uid_string = " AND uid != '".intval($uid)."'"; } $query = $db->simple_select("users", "COUNT(email) as emails", "email = '".$db->escape_string($email)."'{$uid_string}");

if($db->fetch_field($query, "emails") > 0) { return true; }	if($db->fetch_field($query, "emails") > 0) { return true; }

return false; }	return false; }
Zeile 5173	Zeile 5251
$setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }	$setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n"; }

$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);	$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n?".">"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings);
Zeile 5181	Zeile 5259
$GLOBALS['settings'] = &$mybb->settings; }	$GLOBALS['settings'] = &$mybb->settings; }

/** * Build a PREG compatible array of search highlight terms to replace in posts. *	/** * Build a PREG compatible array of search highlight terms to replace in posts. *
Zeile 5195	Zeile 5273
if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;	if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;
}	}
if(is_array($terms)) {	if(is_array($terms)) {
Zeile 5268	Zeile 5346
{ return false; }	{ return false; }

// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));
Zeile 5279	Zeile 5357
$word = trim($word); $word = my_strtolower($word);	$word = trim($word); $word = my_strtolower($word);

// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {	// Special boolean operators should be stripped if($word == "" \|\| $word == "or" \|\| $word == "not" \|\| $word == "and") {
Zeile 5287	Zeile 5365
} // Now make PREG compatible	} // Now make PREG compatible
$find = "#(?!<.?)(".preg_quote($word, "#").")(?![^<>]?>)#i";	$find = "#(?!<.?)(".preg_quote($word, "#").")(?![^<>]?>)#ui";
$replacement = "<span class=\"highlight\" style=\"padding-left: 0px; padding-right: 0px;\">$1</span>"; $highlight_cache[$find] = $replacement; }	$replacement = "<span class=\"highlight\" style=\"padding-left: 0px; padding-right: 0px;\">$1</span>"; $highlight_cache[$find] = $replacement; }
Zeile 5307	Zeile 5385
if($src < 0) {	if($src < 0) {
return false; }	return false; }
elseif($src <= 0x007f)	elseif($src <= 0x007f)
{	{
$dest .= chr($src); } elseif($src <= 0x07ff)	$dest .= chr($src); } elseif($src <= 0x07ff)
Zeile 5348	Zeile 5426
* @return boolean True if banned, false if not banned */ function is_banned_username($username, $update_lastuse=false)	* @return boolean True if banned, false if not banned */ function is_banned_username($username, $update_lastuse=false)
{	{
global $db; $query = $db->simple_select('banfilters', 'filter, fid', "type='2'"); while($banned_username = $db->fetch_array($query))	global $db; $query = $db->simple_select('banfilters', 'filter, fid', "type='2'"); while($banned_username = $db->fetch_array($query))
Zeile 5356	Zeile 5434
// Make regular expression * match $banned_username['filter'] = str_replace('\', '(.)', preg_quote($banned_username['filter'], '#')); if(preg_match("#(^\|\b){$banned_username['filter']}($\|\b)#i", $username))	// Make regular expression * match $banned_username['filter'] = str_replace('\', '(.)', preg_quote($banned_username['filter'], '#')); if(preg_match("#(^\|\b){$banned_username['filter']}($\|\b)#i", $username))
{ // Updating last use if($update_lastuse == true) {	{ // Updating last use if($update_lastuse == true) {
$db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_username['fid']}'"); } return true; } } // Still here - good username	$db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_username['fid']}'"); } return true; } } // Still here - good username
return false; } /**	return false; } /**
* Check if a specific email address has been banned. * * @param string The email address.	* Check if a specific email address has been banned. * * @param string The email address.
Zeile 5381	Zeile 5459
global $cache, $db; $banned_cache = $cache->read("bannedemails");	global $cache, $db; $banned_cache = $cache->read("bannedemails");
if(!$banned_cache) {	if($banned_cache === false) { // Failed to read cache, see if we can rebuild it
$cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");	$cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");
} foreach($banned_cache as $banned_email) { // Make regular expression * match $banned_email['filter'] = str_replace('\', '(.)', preg_quote($banned_email['filter'], '#')); if(preg_match("#{$banned_email['filter']}#i", $email)) { // Updating last use if($update_lastuse == true)	} if(is_array($banned_cache) && !empty($banned_cache)) { foreach($banned_cache as $banned_email) { // Make regular expression * match $banned_email['filter'] = str_replace('\', '(.)', preg_quote($banned_email['filter'], '#')); if(preg_match("#{$banned_email['filter']}#i", $email))
{	{
$db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_email['fid']}'");	// Updating last use if($update_lastuse == true) { $db->update_query("banfilters", array("lastuse" => TIME_NOW), "fid='{$banned_email['fid']}'"); } return true;
}	}
return true;
} }	} }

// Still here - good email return false; }	// Still here - good email return false; }
Zeile 5417	Zeile 5500
function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;	function is_banned_ip($ip_address, $update_lastuse=false) { global $db, $cache;

$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }	$banned_ips = $cache->read("bannedips"); if(!is_array($banned_ips)) { return false; }

foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }	foreach($banned_ips as $banned_ip) { if(!$banned_ip['filter']) { continue; }

// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#'));	// Make regular expression * match $banned_ip['filter'] = str_replace('\', '(.)', preg_quote($banned_ip['filter'], '#'));
if(preg_match("#{$banned_ip['filter']}#i", $ip_address))	if(preg_match("#^{$banned_ip['filter']}$#i", $ip_address))
{ // Updating last use if($update_lastuse == true)	{ // Updating last use if($update_lastuse == true)
Zeile 5443	Zeile 5526
return true; } }	return true; } }

// Still here - good ip return false; }	// Still here - good ip return false; }
Zeile 5544	Zeile 5628
foreach($post_data as $key => $val) { $post_body .= '&'.urlencode($key).'='.urlencode($val);	foreach($post_data as $key => $val) { $post_body .= '&'.urlencode($key).'='.urlencode($val);
}	}
$post_body = ltrim($post_body, '&'); }	$post_body = ltrim($post_body, '&'); }

if(function_exists("curl_init")) { $ch = curl_init();	if(function_exists("curl_init")) { $ch = curl_init();
Zeile 5564	Zeile 5648
curl_close($ch); return $data; }	curl_close($ch); return $data; }
else if(function_exists("fsockopen"))	else if(function_exists("fsockopen"))
{ $url = @parse_url($url); if(!$url['host'])	{ $url = @parse_url($url); if(!$url['host'])
Zeile 5595	Zeile 5679
$headers[] = "POST {$url['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";	$headers[] = "POST {$url['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";
}	}
else { $headers[] = "GET {$url['path']} HTTP/1.0"; }	else { $headers[] = "GET {$url['path']} HTTP/1.0"; }

$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close"; $headers[] = '';	$headers[] = "Host: {$url['host']}"; $headers[] = "Connection: Close"; $headers[] = '';

if(!empty($post_body)) { $headers[] = $post_body;	if(!empty($post_body)) { $headers[] = $post_body;
Zeile 5614	Zeile 5698
// If we have no post body, we need to add an empty element to make sure we've got \r\n\r\n before the (non-existent) body starts $headers[] = ''; }	// If we have no post body, we need to add an empty element to make sure we've got \r\n\r\n before the (non-existent) body starts $headers[] = ''; }
$headers = implode("\r\n", $headers);	$headers = implode("\r\n", $headers);
if(!@fwrite($fp, $headers)) { return false;	if(!@fwrite($fp, $headers)) { return false;
Zeile 5647	Zeile 5731
function is_super_admin($uid) { global $mybb;	function is_super_admin($uid) { global $mybb;

$mybb->config['super_admins'] = str_replace(" ", "", $mybb->config['super_admins']); if(my_strpos(",{$mybb->config['super_admins']},", ",{$uid},") === false)	$mybb->config['super_admins'] = str_replace(" ", "", $mybb->config['super_admins']); if(my_strpos(",{$mybb->config['super_admins']},", ",{$uid},") === false)
{	{
return false;	return false;
}	}
else { return true;	else { return true;
} } /**	} } /**
* Split a string based on the specified delimeter, ignoring said delimeter in escaped strings. * Ex: the "quick brown fox" jumped, could return 1 => the, 2 => quick brown fox, 3 => jumped *	* Split a string based on the specified delimeter, ignoring said delimeter in escaped strings. * Ex: the "quick brown fox" jumped, could return 1 => the, 2 => quick brown fox, 3 => jumped *
Zeile 5682	Zeile 5766
return preg_quote($string, "#"); } $escape_preg = "(".implode("\|", array_map("escaped_explode_escape", $escape)).")";	return preg_quote($string, "#"); } $escape_preg = "(".implode("\|", array_map("escaped_explode_escape", $escape)).")";
}	}
else { $escape_preg = preg_quote($escape, "#");	else { $escape_preg = preg_quote($escape, "#");
Zeile 5695	Zeile 5779
} foreach($quoted_strings as $string) {	} foreach($quoted_strings as $string) {
if($string != "")	if($string != "")
{ if($in_escape) {	{ if($in_escape) {
Zeile 5733	Zeile 5817
if($ip == "*") {	if($ip == "*") {
return array(ip2long('0.0.0.0'), ip2long('255.255.255.255'));	return array(my_ip2long('128.0.0.0'), my_ip2long('127.255.255.255'));
} if(strpos($ip, ".") === false) { $ip = str_replace("", "", $ip); if(count($ip_bits) == 4)	} if(strpos($ip, ".") === false) { $ip = str_replace("", "", $ip); if(count($ip_bits) == 4)
{ return ip2long($ip);	{ return my_ip2long($ip);
} else {	} else {
return array(ip2long($ip.".0"), ip2long($ip.".255"));	return array(my_ip2long($ip.".0"), my_ip2long($ip.".255"));
} } // Wildcard based IP provided	} } // Wildcard based IP provided
Zeile 5766	Zeile 5850
} $sep = "."; }	} $sep = "."; }
return array(ip2long($ip_string1), ip2long($ip_string2));	return array(my_ip2long($ip_string1), my_ip2long($ip_string2));
}	}
}	}
/** * Fetch a list of ban times for a user account.	/** * Fetch a list of ban times for a user account.
Zeile 5801	Zeile 5885
); $ban_times = $plugins->run_hooks("functions_fetch_ban_times", $ban_times);	); $ban_times = $plugins->run_hooks("functions_fetch_ban_times", $ban_times);

$ban_times['---'] = $lang->permanent; return $ban_times; }	$ban_times['---'] = $lang->permanent; return $ban_times; }
Zeile 5835	Zeile 5919
function expire_warnings() { global $db;	function expire_warnings() { global $db;

$users = array();	$users = array();

$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w	$query = $db->query(" SELECT w.wid, w.uid, w.points, u.warningpoints FROM ".TABLE_PREFIX."warnings w
Zeile 5850	Zeile 5934
"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");	"expired" => 1 ); $db->update_query("warnings", $updated_warning, "wid='{$warning['wid']}'");

if(array_key_exists($warning['uid'], $users))	if(array_key_exists($warning['uid'], $users))
{	{
$users[$warning['uid']] -= $warning['points'];	$users[$warning['uid']] -= $warning['points'];
}	}
else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }	else { $users[$warning['uid']] = $warning['warningpoints']-$warning['points']; } }

foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }	foreach($users as $uid => $warningpoints) { if($warningpoints < 0) { $warningpoints = 0; }

$updated_user = array( "warningpoints" => intval($warningpoints) );	$updated_user = array( "warningpoints" => intval($warningpoints) );
Zeile 5889	Zeile 5973
return false; } $old_umask = umask(0);	return false; } $old_umask = umask(0);

// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode));	// We convert the octal string to a decimal number because passing a octal string doesn't work with chmod // and type casting subsequently removes the prepended 0 which is needed for octal numbers $result = chmod($file, octdec($mode));
Zeile 5906	Zeile 5990
function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;	function my_rmdir_recursive($path, $ignore=array()) { global $orig_dir;

if(!isset($orig_dir))	if(!isset($orig_dir))
{	{
$orig_dir = $path; }	$orig_dir = $path; }
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) { while(($file = @readdir($dh)) !== false) { if($file == '.' \|\| $file == '..' \|\| $file == '.svn' \|\| in_array($path.'/'.$file, $ignore) \|\| !my_rmdir_recursive($path.'/'.$file)) { continue; } } @closedir($dh); }
// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true; }	// Are we done? Don't delete the main folder too and return true if($path == $orig_dir) { return true; }
return @rmdir($path); } return @unlink($path);	return @rmdir($path); } return @unlink($path);
} /**	} /**
Zeile 5951	Zeile 6035
{ $count += count($array2); }	{ $count += count($array2); }

return $count; }	return $count; }
Zeile 5969	Zeile 6053
if(!$ip_long) { $ip_long = sprintf("%u", ip2long($ip));	if(!$ip_long) { $ip_long = sprintf("%u", ip2long($ip));

if(!$ip_long) { return 0;	if(!$ip_long) { return 0;
Zeile 5979	Zeile 6063
if($ip_long >= 2147483648) // Won't occur on 32-bit PHP { $ip_long -= 4294967296;	if($ip_long >= 2147483648) // Won't occur on 32-bit PHP { $ip_long -= 4294967296;
}	}
return $ip_long; }	return $ip_long; }
Zeile 5989	Zeile 6073
* * @param integer The IP to convert (will accept 64-bit IPs as well) * @return string IP in IPv4 format	* * @param integer The IP to convert (will accept 64-bit IPs as well) * @return string IP in IPv4 format
*/	*/
function my_long2ip($long) { // On 64-bit machines is_int will return true. On 32-bit it will return false	function my_long2ip($long) { // On 64-bit machines is_int will return true. On 32-bit it will return false
Zeile 6011	Zeile 6095
function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;	function verify_files($path=MYBB_ROOT, $count=0) { global $mybb, $checksums, $bad_verify_files;

// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");	// We don't need to check these types of files $ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif"); $ignore_ext = array("attach");

if(substr($path, -1, 1) == "/") { $path = substr($path, 0, -1); }	if(substr($path, -1, 1) == "/") { $path = substr($path, 0, -1); }

if(!is_array($bad_verify_files))	if(!is_array($bad_verify_files))
{	{
$bad_verify_files = array(); }	$bad_verify_files = array(); }

// Make sure that we're in a directory and it's not a symbolic link	// Make sure that we're in a directory and it's not a symbolic link
if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {	if(@is_dir($path) && !@is_link($path)) { if($dh = @opendir($path)) {
// Loop through all the files/directories in this directory	// Loop through all the files/directories in this directory
while(($file = @readdir($dh)) !== false) {	while(($file = @readdir($dh)) !== false) {
if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext)) { continue; }	if(in_array($file, $ignore) \|\| in_array(get_extension($file), $ignore_ext)) { continue; }

// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1)); continue; }	// Recurse through the directory tree if(is_dir($path."/".$file)) { verify_files($path."/".$file, ($count+1)); continue; }

// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;	// We only need the last part of the path (from the MyBB directory to the file. i.e. inc/functions.php) $file_path = ".".str_replace(substr(MYBB_ROOT, 0, -1), "", $path)."/".$file;

// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {	// Does this file even exist in our official list? Perhaps it's a plugin if(array_key_exists($file_path, $checksums)) {
Zeile 6060	Zeile 6144
$contents .= fread($handle, 8192); } fclose($handle);	$contents .= fread($handle, 8192); } fclose($handle);

$md5 = md5($contents);	$md5 = md5($contents);

// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))	// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes) if(!in_array($md5, $checksums[$file_path]))
{	{
$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);	$bad_verify_files[] = array("status" => "changed", "path" => $file_path); } } unset($checksums[$file_path]);
} @closedir($dh); } }	} @closedir($dh); } }
if($count == 0) { if(!empty($checksums))	if($count == 0) { if(!empty($checksums))
Zeile 6089	Zeile 6173
} } }	} } }

// uh oh if($count == 0) {	// uh oh if($count == 0) {
Zeile 6099	Zeile 6183
/** * Returns a signed value equal to an integer	/** * Returns a signed value equal to an integer
*	*
* @param int The integer * @return string The signed equivalent */	* @param int The integer * @return string The signed equivalent */
Zeile 6122	Zeile 6206
* @return int An integer equivalent of a secure hexadecimal seed */ function secure_seed_rng($count=8)	* @return int An integer equivalent of a secure hexadecimal seed */ function secure_seed_rng($count=8)
{	{
$output = '';	$output = '';

// Try the unix/linux method if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle); }	// Try the unix/linux method if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $count); @fclose($handle); }

// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';	// Didn't work? Do we still not have enough bytes? Use our own (less secure) rng generator if(strlen($output) < $count) { $output = '';

// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();	// Close to what PHP basically uses internally to seed, but not quite. $unique_state = microtime().@getmypid();

for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state)); } }	for($i = 0; $i < $count; $i += 16) { $unique_state = md5(microtime().$unique_state); $output .= pack('H*', md5($unique_state)); } }

// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));	// /dev/urandom and openssl will always be twice as long as $count. base64_encode will roughly take up 33% more space but crc32 will put it to 32 characters $output = hexdec(substr(dechex(crc32(base64_encode($output))), 0, $count));

return $output; }	return $output; }

/** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *	/** * Wrapper function for mt_rand. Automatically seeds using a secure seed once. *
* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())	* @param int Optional lowest value to be returned (default: 0) * @param int Optional highest value to be returned (default: mt_getrandmax())
* @param boolean True forces it to reseed the RNG first * @return int An integer equivalent of a secure hexadecimal seed */	* @param boolean True forces it to reseed the RNG first * @return int An integer equivalent of a secure hexadecimal seed */
Zeile 6172	Zeile 6256
$seeded = true; $obfuscator = abs((int) secure_seed_rng());	$seeded = true; $obfuscator = abs((int) secure_seed_rng());

// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) { $obfuscator -= mt_getrandmax();	// Ensure that $obfuscator is <= mt_getrandmax() for 64 bit systems. if($obfuscator > mt_getrandmax()) { $obfuscator -= mt_getrandmax();
} }	} }
if($min !== null && $max !== null) { $distance = $max - $min; if ($distance > 0)	if($min !== null && $max !== null) { $distance = $max - $min; if ($distance > 0)
{	{
return $min + (int)((float)($distance + 1) * (float)(mt_rand() ^ $obfuscator) / (mt_getrandmax() + 1)); } else	return $min + (int)((float)($distance + 1) * (float)(mt_rand() ^ $obfuscator) / (mt_getrandmax() + 1)); } else
Zeile 6216	Zeile 6300
0x0D => 1, 0x0B => 1, 0xAD => 1,	0x0D => 1, 0x0B => 1, 0xAD => 1,
0xC2 => array(0xA0 => 1, 0xAD => 1, 0xBF => 1, 0x81 => 1, 0x8D => 1, 0x90 => 1, 0x9D => 1,),	0xA0 => 1, 0xAD => 1, 0xBF => 1, 0x81 => 1, 0x8D => 1, 0x90 => 1, 0x9D => 1,
0xCC => array(0xB7 => 1, 0xB8 => 1), // \x{0337} or \x{0338} 0xE1 => array(0x85 => array(0x9F => 1, 0xA0 => 1)), // \x{115F} or \x{1160} 0xE2 => array(0x80 => array(0x80 => 1, 0x81 => 1, 0x82 => 1, 0x83 => 1, 0x84 => 1, 0x85 => 1, 0x86 => 1, 0x87 => 1, 0x88 => 1, 0x89 => 1, 0x8A => 1, 0x8B => 1, // \x{2000} to \x{200B}	0xCC => array(0xB7 => 1, 0xB8 => 1), // \x{0337} or \x{0338} 0xE1 => array(0x85 => array(0x9F => 1, 0xA0 => 1)), // \x{115F} or \x{1160} 0xE2 => array(0x80 => array(0x80 => 1, 0x81 => 1, 0x82 => 1, 0x83 => 1, 0x84 => 1, 0x85 => 1, 0x86 => 1, 0x87 => 1, 0x88 => 1, 0x89 => 1, 0x8A => 1, 0x8B => 1, // \x{2000} to \x{200B}
Zeile 6234	Zeile 6318
0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );	0xBE => array(0xA0 => 1), // \x{FFA0} 0xBF => array(0xB9 => 1, 0xBA => 1, 0xBB => 1)), // \x{FFF9} to \x{FFFB} );

$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1,	$hex_chrs_rev = array( 0x20 => 1, 0x09 => 1,
Zeile 6280	Zeile 6364
0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );	0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB} );

// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);	// Start from the beginning and work our way in do { // Check to see if we have matched a first character in our utf-16 array $offset = match_sequence($string, $hex_chrs);
if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset); }	if(!$offset) { // If not, then we must have a "good" character and we don't need to do anymore processing break; } $string = substr($string, $offset); }
while(++$i);	while(++$i);

// Start from the end and work our way in $string = strrev($string); do	// Start from the end and work our way in $string = strrev($string); do
Zeile 6305	Zeile 6389
{ // If not, then we must have a "good" character and we don't need to do anymore processing break;	{ // If not, then we must have a "good" character and we don't need to do anymore processing break;
}	}
$string = substr($string, $offset); } while(++$i); $string = strrev($string);	$string = substr($string, $offset); } while(++$i); $string = strrev($string);

if($charlist !== false) { $string = trim($string, $charlist);	if($charlist !== false) { $string = trim($string, $charlist);
Zeile 6319	Zeile 6403
{ $string = trim($string); }	{ $string = trim($string); }

return $string; }	return $string; }

function match_sequence($string, $array, $i=0, $n=0) { if($string === "") { return 0; }	function match_sequence($string, $array, $i=0, $n=0) { if($string === "") { return 0; }

$ord = ord($string[$i]); if(array_key_exists($ord, $array)) {	$ord = ord($string[$i]); if(array_key_exists($ord, $array)) {
Zeile 6342	Zeile 6426
} return $n; }	} return $n; }

return 0;	return 0;
}	}
/** * Obtain the version of GD installed.	/** * Obtain the version of GD installed.
Zeile 6354	Zeile 6438
function gd_version() { static $gd_version;	function gd_version() { static $gd_version;

if($gd_version)	if($gd_version)
{	{
return $gd_version;	return $gd_version;
}	}
if(!extension_loaded('gd')) { return;	if(!extension_loaded('gd')) { return;
}	}
if(function_exists("gd_info")) { $gd_info = gd_info();	if(function_exists("gd_info")) { $gd_info = gd_info();
preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0];	preg_match('/\d/', $gd_info['GD Version'], $gd); $gd_version = $gd[0];
} else	} else
{	{
ob_start(); phpinfo(8); $info = ob_get_contents();	ob_start(); phpinfo(8); $info = ob_get_contents();
Zeile 6380	Zeile 6464
preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }	preg_match('/\d/', $info, $gd); $gd_version = $gd[0]; }

return $gd_version;	return $gd_version;
}	} /** * Handles 4 byte UTF-8 characters. * * This can be used to either reject strings which contain 4 byte UTF-8 * characters, or replace them with question marks. This is limited to UTF-8 * collated databases using MySQL. * * Original: http://www.avidheap.org/2013/a-quick-way-to-normalize-a-utf8-string-when-your-mysql-database-is-not-utf8mb4 * * @param string The string to be checked. * @param bool If false don't return the string, only the boolean result. * @return mixed Return a string if the second parameter is true, boolean otherwise. / function utf8_handle_4byte_string($input, $return=true) { global $config; if($config['database']['type'] != 'mysql' && $config['database']['type'] != 'mysqli') { if($return == true) { return $input; } return true; } $contains_4bytes = false; if(!empty($input)) { $utf8_2byte = 0xC0 /1100 0000/; $utf8_2byte_bmask = 0xE0 /1110 0000/; $utf8_3byte = 0xE0 /1110 0000/; $utf8_3byte_bmask = 0XF0 /1111 0000/; $utf8_4byte = 0xF0 /1111 0000/; $utf8_4byte_bmask = 0xF8 /1111 1000*/; $sanitized = ""; $len = strlen($input); for($i = 0; $i < $len; ++$i) { $mb_char = $input[$i]; // Potentially a multibyte sequence $byte = ord($mb_char); if(($byte & $utf8_2byte_bmask) == $utf8_2byte) { $mb_char .= $input[++$i]; } elseif(($byte & $utf8_3byte_bmask) == $utf8_3byte) { $mb_char .= $input[++$i]; $mb_char .= $input[++$i]; } elseif(($byte & $utf8_4byte_bmask) == $utf8_4byte) { $contains_4bytes = true; // Replace with ? to avoid MySQL exception $mb_char = '?'; $i += 3; } $sanitized .= $mb_char; if($contains_4bytes == true && $return == false) { return false; } } $input = $sanitized; }

	if($contains_4bytes == false && $return == false) { return true; } return $input; }
?>	?>