Vergleich polls.php - 1.6.4 - 1.6.12

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 6Zeile 6
 * Website: http://mybb.com
* License: http://mybb.com/about/license
*

 * Website: http://mybb.com
* License: http://mybb.com/about/license
*

 * $Id: polls.php 5486 2011-07-12 01:55:58Z jammerx2 $

 * $Id$

 */

define("IN_MYBB", 1);
define('THIS_SCRIPT', 'polls.php');


 */

define("IN_MYBB", 1);
define('THIS_SCRIPT', 'polls.php');


$templatelist = "poll_newpoll,redirect_pollposted,redirect_pollupdated,redirect_votethanks";

$templatelist = "changeuserbox,loginbox,polls_newpoll_option,polls_newpoll,polls_editpoll_option,polls_editpoll,polls_showresults_resultbit,polls_showresults";

require_once "./global.php";
require_once MYBB_ROOT."inc/functions_post.php";
require_once MYBB_ROOT."inc/class_parser.php";

require_once "./global.php";
require_once MYBB_ROOT."inc/functions_post.php";
require_once MYBB_ROOT."inc/class_parser.php";

Zeile 50Zeile 50

$query = $db->simple_select("threads", "*", "tid='".intval($mybb->input['tid'])."'");
$thread = $db->fetch_array($query);


$query = $db->simple_select("threads", "*", "tid='".intval($mybb->input['tid'])."'");
$thread = $db->fetch_array($query);

 
	if(!$thread['tid'])
{
error($lang->error_invalidthread);
}


	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);


	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);


	if(!$thread['tid'])







	// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);
}
else

	{

	{

		error($lang->error_invalidthread);






		// Is our forum closed?
if($forum['open'] == 0 && !is_moderator($fid, "caneditposts"))
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}

	}
// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_postpoll);

	}
// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_postpoll);


// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls


// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls

	if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid)) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))

	if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid)) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))

	{

	{

		error_no_permission();

		error_no_permission();

	}


	}


	if($thread['poll'])
{
error($lang->error_pollalready);
}

// Sanitize number of poll options

	if($thread['poll'])
{
error($lang->error_pollalready);
}

// Sanitize number of poll options

	if($mybb->input['numpolloptions'] > 0)
{

	if($mybb->input['numpolloptions'] > 0)
{

		$mybb->input['polloptions'] = $mybb->input['numpolloptions'];
}
if($mybb->settings['maxpolloptions'] && $mybb->input['polloptions'] > $mybb->settings['maxpolloptions'])

		$mybb->input['polloptions'] = $mybb->input['numpolloptions'];
}
if($mybb->settings['maxpolloptions'] && $mybb->input['polloptions'] > $mybb->settings['maxpolloptions'])

Zeile 101Zeile 117
	if($postoptions['public'] == 1)
{
$postoptionschecked['public'] = 'checked="checked"';

	if($postoptions['public'] == 1)
{
$postoptionschecked['public'] = 'checked="checked"';

	}

	}


$options = $mybb->input['options'];
$optionbits = '';


$options = $mybb->input['options'];
$optionbits = '';

Zeile 114Zeile 130
	}

if($mybb->input['timeout'] > 0)

	}

if($mybb->input['timeout'] > 0)

	{

	{

		$timeout = intval($mybb->input['timeout']);
}
else

		$timeout = intval($mybb->input['timeout']);
}
else

Zeile 136Zeile 152

$query = $db->simple_select("threads", "*", "tid='".intval($mybb->input['tid'])."'");
$thread = $db->fetch_array($query);


$query = $db->simple_select("threads", "*", "tid='".intval($mybb->input['tid'])."'");
$thread = $db->fetch_array($query);

	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);


 
	if(!$thread['tid'])

	if(!$thread['tid'])

	{

	{

		error($lang->error_invalidthread);

		error($lang->error_invalidthread);

	}




















	}

$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);

// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);
}
else
{
// Is our forum closed?
if($forum['open'] == 0 && !is_moderator($fid, "caneditposts"))
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}
}


// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls
if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid)) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))


// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls
if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid)) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))

Zeile 153Zeile 185
	if($thread['poll'])
{
error($lang->error_pollalready);

	if($thread['poll'])
{
error($lang->error_pollalready);

	}


	}


	$polloptions = $mybb->input['polloptions'];
if($mybb->settings['maxpolloptions'] && $polloptions > $mybb->settings['maxpolloptions'])

	$polloptions = $mybb->input['polloptions'];
if($mybb->settings['maxpolloptions'] && $polloptions > $mybb->settings['maxpolloptions'])

	{

	{

		$polloptions = $mybb->settings['maxpolloptions'];

		$polloptions = $mybb->settings['maxpolloptions'];

	}


	}


	$postoptions = $mybb->input['postoptions'];
if($postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;

	$postoptions = $mybb->input['postoptions'];
if($postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;

	}


	}


	if($postoptions['public'] != '1')

	if($postoptions['public'] != '1')

	{

	{

		$postoptions['public'] = 0;

		$postoptions['public'] = 0;

	}


	}


	if($polloptions < 2)
{
$polloptions = "2";
}
$optioncount = "0";
$options = $mybb->input['options'];

	if($polloptions < 2)
{
$polloptions = "2";
}
$optioncount = "0";
$options = $mybb->input['options'];

	



	for($i = 1; $i <= $polloptions; ++$i)
{
if(trim($options[$i]) != "")
{
$optioncount++;
}

	for($i = 1; $i <= $polloptions; ++$i)
{
if(trim($options[$i]) != "")
{
$optioncount++;
}

		



		if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)
{
$lengtherror = 1;
break;
}
}

		if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)
{
$lengtherror = 1;
break;
}
}

	



	if($lengtherror)
{
error($lang->error_polloptiontoolong);

	if($lengtherror)
{
error($lang->error_polloptiontoolong);

	}


	}


	if(empty($mybb->input['question']) || $optioncount < 2)
{
error($lang->error_noquestionoptions);
}

	if(empty($mybb->input['question']) || $optioncount < 2)
{
error($lang->error_noquestionoptions);
}

	



	$optionslist = '';
$voteslist = '';

	$optionslist = '';
$voteslist = '';

	for($i = 1; $i <= $optioncount; ++$i)

	for($i = 1; $i <= $polloptions; ++$i)

	{
if(trim($options[$i]) != '')
{

	{
if(trim($options[$i]) != '')
{

			if($i > 1)

			if($optionslist != '')

			{
$optionslist .= '||~|~||';
$voteslist .= '||~|~||';
}

			{
$optionslist .= '||~|~||';
$voteslist .= '||~|~||';
}

			$optionslist .= $options[$i];

			$optionslist .= trim($options[$i]);

			$voteslist .= '0';
}
}

			$voteslist .= '0';
}
}

	



	if($mybb->input['timeout'] > 0)

	if($mybb->input['timeout'] > 0)

	{

	{

		$timeout = intval($mybb->input['timeout']);

		$timeout = intval($mybb->input['timeout']);

	}

	}

	else
{
$timeout = 0;
}

	else
{
$timeout = 0;
}

	



	$newpoll = array(
"tid" => $thread['tid'],
"question" => $db->escape_string($mybb->input['question']),

	$newpoll = array(
"tid" => $thread['tid'],
"question" => $db->escape_string($mybb->input['question']),

Zeile 256Zeile 288
	}
else
{

	}
else
{

		redirect(get_forum_link($forum['fid']), $lang->redirect_pollpostedmoderated);

		redirect(get_forum_link($thread['fid']), $lang->redirect_pollpostedmoderated);

	}
}


	}
}


Zeile 267Zeile 299
	$plugins->run_hooks("polls_editpoll_start");

$query = $db->simple_select("polls", "*", "pid='$pid'");

	$plugins->run_hooks("polls_editpoll_start");

$query = $db->simple_select("polls", "*", "pid='$pid'");

	$poll = $db->fetch_array($query);







	$poll = $db->fetch_array($query);

if(!$poll['pid'])
{
error($lang->error_invalidpoll);
}


	$query = $db->simple_select("threads", "*", "poll='$pid'");
$thread = $db->fetch_array($query);
$tid = $thread['tid'];

	$query = $db->simple_select("threads", "*", "poll='$pid'");
$thread = $db->fetch_array($query);
$tid = $thread['tid'];

 
	if(!$tid)
{
error($lang->error_invalidthread);
}


	$fid = $thread['fid'];

	$fid = $thread['fid'];





	// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_editpoll);

	// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_editpoll);



 

$forumpermissions = forum_permissions($fid);



$forumpermissions = forum_permissions($fid);


	$query = $db->simple_select("forums", "*", "fid='$fid'");
$forum = $db->fetch_array($query);


if(!$tid)
{
error($lang->error_invalidthread);
}









	// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);
}
else
{
// Is our forum closed?
if($forum['open'] == 0 && !is_moderator($fid, "caneditposts"))
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}
}


	if(!is_moderator($fid, "caneditposts"))
{
error_no_permission();
}

	if(!is_moderator($fid, "caneditposts"))
{
error_no_permission();
}

	



	$polldate = my_date($mybb->settings['dateformat'], $poll['dateline']);
if(!$mybb->input['preview'] && !$mybb->input['updateoptions'])

	$polldate = my_date($mybb->settings['dateformat'], $poll['dateline']);
if(!$mybb->input['preview'] && !$mybb->input['updateoptions'])

	{

	{

		if($poll['closed'] == 1)

		if($poll['closed'] == 1)

		{

		{

			$postoptionschecked['closed'] = 'checked="checked"';

			$postoptionschecked['closed'] = 'checked="checked"';

		}


		}


		if($poll['multiple'] == 1)

		if($poll['multiple'] == 1)

		{

		{

			$postoptionschecked['multiple'] = 'checked="checked"';

			$postoptionschecked['multiple'] = 'checked="checked"';

		}

if($poll['public'] == 1)
{
$postoptionschecked['public'] = 'checked="checked"';

		}

if($poll['public'] == 1)
{
$postoptionschecked['public'] = 'checked="checked"';

		}

$optionsarray = explode("||~|~||", $poll['options']);

		}

$optionsarray = explode("||~|~||", $poll['options']);

Zeile 322Zeile 370
		{
$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}

		{
$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}

		



		$question = htmlspecialchars_uni($poll['question']);
$numoptions = $poll['numoptions'];
$optionbits = "";
for($i = 0; $i < $numoptions; ++$i)

		$question = htmlspecialchars_uni($poll['question']);
$numoptions = $poll['numoptions'];
$optionbits = "";
for($i = 0; $i < $numoptions; ++$i)

		{

		{

			$counter = $i + 1;
$option = $optionsarray[$i];
$option = htmlspecialchars_uni($option);
$optionvotes = intval($votesarray[$i]);

			$counter = $i + 1;
$option = $optionsarray[$i];
$option = htmlspecialchars_uni($option);
$optionvotes = intval($votesarray[$i]);

			



			if(!$optionvotes)
{
$optionvotes = 0;
}

			if(!$optionvotes)
{
$optionvotes = 0;
}

			



			eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
$optionvotes = "";
}

			eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
$optionvotes = "";
}

		



		if(!$poll['timeout'])
{
$timeout = 0;

		if(!$poll['timeout'])
{
$timeout = 0;

Zeile 373Zeile 421
		{
$postoptionschecked['multiple'] = 'checked="checked"';
}

		{
$postoptionschecked['multiple'] = 'checked="checked"';
}

		



		if($postoptions['public'] == 1)

		if($postoptions['public'] == 1)

		{

		{

			$postoptionschecked['public'] = 'checked="checked"';
}

			$postoptionschecked['public'] = 'checked="checked"';
}

		



		if($postoptions['closed'] == 1)
{
$postoptionschecked['closed'] = 'checked="checked"';

		if($postoptions['closed'] == 1)
{
$postoptionschecked['closed'] = 'checked="checked"';

		}


		}


		$options = $mybb->input['options'];
$votes = $mybb->input['votes'];
$optionbits = '';

		$options = $mybb->input['options'];
$votes = $mybb->input['votes'];
$optionbits = '';

Zeile 393Zeile 441
			$option = $options[$i];
$option = htmlspecialchars_uni($option);
$optionvotes = $votes[$i];

			$option = $options[$i];
$option = htmlspecialchars_uni($option);
$optionvotes = $votes[$i];

			



			if(!$optionvotes)
{
$optionvotes = 0;
}

			if(!$optionvotes)
{
$optionvotes = 0;
}

			



			eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
}

			eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
}

Zeile 406Zeile 454
		if($mybb->input['timeout'] > 0)
{
$timeout = $mybb->input['timeout'];

		if($mybb->input['timeout'] > 0)
{
$timeout = $mybb->input['timeout'];

		}

		}

		else
{
$timeout = 0;

		else
{
$timeout = 0;

		}
}

		}
}


$plugins->run_hooks("polls_editpoll_end");



$plugins->run_hooks("polls_editpoll_end");


Zeile 428Zeile 476

$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);


$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);

 

if(!$poll['pid'])
{
error($lang->error_invalidpoll);
}


$query = $db->simple_select("threads", "*", "poll='".intval($mybb->input['pid'])."'");
$thread = $db->fetch_array($query);


$query = $db->simple_select("threads", "*", "poll='".intval($mybb->input['pid'])."'");
$thread = $db->fetch_array($query);


$forumpermissions = forum_permissions($thread['fid']);

$query = $db->simple_select("forums", "*", "fid='".$thread['fid']."'");
$forum = $db->fetch_array($query);

if($thread['visible'] == 0 || !$thread['tid'])

	if(!$thread['tid'])







	{
error($lang->error_invalidthread);

	{
error($lang->error_invalidthread);

	}

if(!is_moderator($thread['fid'], "caneditposts"))



















	}

$forumpermissions = forum_permissions($thread['fid']);

// Get forum info
$forum = get_forum($thread['fid']);
if(!$forum)
{
error($lang->error_invalidforum);
}
else
{
// Is our forum closed?
if($forum['open'] == 0 && !is_moderator($fid, "caneditposts"))
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}
}

if(!is_moderator($thread['fid'], "caneditposts"))

	{
error_no_permission();

	{
error_no_permission();

	}

	}


if($mybb->settings['maxpolloptions'] && $mybb->input['numoptions'] > $mybb->settings['maxpolloptions'])


if($mybb->settings['maxpolloptions'] && $mybb->input['numoptions'] > $mybb->settings['maxpolloptions'])

	{

	{

		$numoptions = $mybb->settings['maxpolloptions'];
}
elseif(!$mybb->input['numoptions'])
{
$numoptions = 2;

		$numoptions = $mybb->settings['maxpolloptions'];
}
elseif(!$mybb->input['numoptions'])
{
$numoptions = 2;

	}

	}

	else

	else

	{

	{

		$numoptions = $mybb->input['numoptions'];

		$numoptions = $mybb->input['numoptions'];

	}


	}


	$postoptions = $mybb->input['postoptions'];
if($postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;
}

	$postoptions = $mybb->input['postoptions'];
if($postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;
}

	



	if($postoptions['public'] != '1')
{
$postoptions['public'] = 0;
}

	if($postoptions['public'] != '1')
{
$postoptions['public'] = 0;
}

	



	if($postoptions['closed'] != '1')
{
$postoptions['closed'] = 0;

	if($postoptions['closed'] != '1')
{
$postoptions['closed'] = 0;

Zeile 484Zeile 549
		{
$optioncount++;
}

		{
$optioncount++;
}

		



		if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)
{
$lengtherror = 1;
break;
}

		if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)
{
$lengtherror = 1;
break;
}

	}

if($lengtherror)
{
error($lang->error_polloptiontoolong);

	}

if($lengtherror)
{
error($lang->error_polloptiontoolong);

	}

if(trim($mybb->input['question']) == '' || $optioncount < 2)
{
error($lang->error_noquestionoptions);
}

	}

if(trim($mybb->input['question']) == '' || $optioncount < 2)
{
error($lang->error_noquestionoptions);
}

	



	$optionslist = '';
$voteslist = '';
$numvotes = '';
$votes = $mybb->input['votes'];

	$optionslist = '';
$voteslist = '';
$numvotes = '';
$votes = $mybb->input['votes'];

	for($i = 1; $i <= $optioncount; ++$i)

	for($i = 1; $i <= $numoptions; ++$i)

	{
if(trim($options[$i]) != '')
{

	{
if(trim($options[$i]) != '')
{

			if($i > 1)

			if($optionslist != '')

			{
$optionslist .= "||~|~||";
$voteslist .= "||~|~||";
}

			{
$optionslist .= "||~|~||";
$voteslist .= "||~|~||";
}

			
$optionslist .= $options[$i];


$optionslist .= trim($options[$i]);

			if(intval($votes[$i]) <= 0)
{
$votes[$i] = "0";

			if(intval($votes[$i]) <= 0)
{
$votes[$i] = "0";

Zeile 525Zeile 590
			$numvotes = $numvotes + $votes[$i];
}
}

			$numvotes = $numvotes + $votes[$i];
}
}

	



	if($mybb->input['timeout'] > 0)
{
$timeout = intval($mybb->input['timeout']);

	if($mybb->input['timeout'] > 0)
{
$timeout = intval($mybb->input['timeout']);

Zeile 534Zeile 599
	{
$timeout = 0;
}

	{
$timeout = 0;
}

	



	$updatedpoll = array(
"question" => $db->escape_string($mybb->input['question']),
"options" => $db->escape_string($optionslist),
"votes" => $db->escape_string($voteslist),

	$updatedpoll = array(
"question" => $db->escape_string($mybb->input['question']),
"options" => $db->escape_string($optionslist),
"votes" => $db->escape_string($voteslist),

		"numoptions" => intval($numoptions),

		"numoptions" => intval($optioncount),

		"numvotes" => $numvotes,
"timeout" => $timeout,
"closed" => $postoptions['closed'],

		"numvotes" => $numvotes,
"timeout" => $timeout,
"closed" => $postoptions['closed'],

Zeile 552Zeile 617
	$db->update_query("polls", $updatedpoll, "pid='".intval($mybb->input['pid'])."'");

$plugins->run_hooks("polls_do_editpoll_end");

	$db->update_query("polls", $updatedpoll, "pid='".intval($mybb->input['pid'])."'");

$plugins->run_hooks("polls_do_editpoll_end");

	



	$modlogdata['fid'] = $thread['fid'];
$modlogdata['tid'] = $thread['tid'];
log_moderator_action($modlogdata, $lang->poll_edited);

	$modlogdata['fid'] = $thread['fid'];
$modlogdata['tid'] = $thread['tid'];
log_moderator_action($modlogdata, $lang->poll_edited);

Zeile 564Zeile 629
{
$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);

{
$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);

 

if(!$poll['pid'])
{
error($lang->error_invalidpoll);
}


	$tid = $poll['tid'];
$query = $db->simple_select("threads", "*", "tid='$tid'");
$thread = $db->fetch_array($query);

	$tid = $poll['tid'];
$query = $db->simple_select("threads", "*", "tid='$tid'");
$thread = $db->fetch_array($query);

 
	if(!$thread['tid'])
{
error($lang->error_invalidthread);
}


	$fid = $thread['fid'];

// Get forum info

	$fid = $thread['fid'];

// Get forum info

Zeile 580Zeile 656

$plugins->run_hooks("polls_showresults_start");



$plugins->run_hooks("polls_showresults_start");


	if($forumpermissions['canviewthreads'] == 0 || $forumpermissions['canview'] == 0)

	if($forumpermissions['canviewthreads'] == 0 || $forumpermissions['canview'] == 0 || ($forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))

	{

	{

		error($lang->error_pollpermissions);
}

if(!$poll['pid'])
{
error($lang->error_invalidpoll);
}

if(!$thread['tid'])
{
error($lang->error_invalidthread);

		error_no_permission();











	}

// Make navigation

	}

// Make navigation

Zeile 604Zeile 670

// Calculate votes
$query = $db->query("


// Calculate votes
$query = $db->query("

		SELECT v.*, u.username 
FROM ".TABLE_PREFIX."pollvotes v
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=v.uid)
WHERE v.pid='{$poll['pid']}'

		SELECT v.*, u.username
FROM ".TABLE_PREFIX."pollvotes v
LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=v.uid)
WHERE v.pid='{$poll['pid']}'

		ORDER BY u.username
");
while($voter = $db->fetch_array($query))

		ORDER BY u.username
");
while($voter = $db->fetch_array($query))

Zeile 616Zeile 682
		if($mybb->user['uid'] == $voter['uid'] && $mybb->user['uid'])
{
$votedfor[$voter['voteoption']] = 1;

		if($mybb->user['uid'] == $voter['uid'] && $mybb->user['uid'])
{
$votedfor[$voter['voteoption']] = 1;

		}

		}


// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')


// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')

Zeile 629Zeile 695
			$voters[$voter['voteoption']][$voter['uid']] = $voter['username'];
}
}

			$voters[$voter['voteoption']][$voter['uid']] = $voter['username'];
}
}

	



	$optionsarray = explode("||~|~||", $poll['options']);
$votesarray = explode("||~|~||", $poll['votes']);
for($i = 1; $i <= $poll['numoptions']; ++$i)
{
$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}

	$optionsarray = explode("||~|~||", $poll['options']);
$votesarray = explode("||~|~||", $poll['votes']);
for($i = 1; $i <= $poll['numoptions']; ++$i)
{
$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}

	



	$polloptions = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

	$polloptions = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

Zeile 657Zeile 723
		{
$optionbg = 'trow2';
$votestar = '*';

		{
$optionbg = 'trow2';
$votestar = '*';

		}
else
{

		}
else
{

			$optionbg = 'trow1';
$votestar = '';

			$optionbg = 'trow1';
$votestar = '';

		}


		}


		if($votes == '0')

		if($votes == '0')

		{

		{

			$percent = '0';
}
else
{
$percent = number_format($votes / $poll['totvotes'] * 100, 2);

			$percent = '0';
}
else
{
$percent = number_format($votes / $poll['totvotes'] * 100, 2);

		}


		}


		$imagewidth = round($percent/3) * 5;
$comma = '';
$guest_comma = '';

		$imagewidth = round($percent/3) * 5;
$comma = '';
$guest_comma = '';

Zeile 703Zeile 769
		}
eval("\$polloptions .= \"".$templates->get("polls_showresults_resultbit")."\";");
}

		}
eval("\$polloptions .= \"".$templates->get("polls_showresults_resultbit")."\";");
}

	



	if($poll['totvotes'])

	if($poll['totvotes'])

	{

	{

		$totpercent = '100%';

		$totpercent = '100%';

	}

	}

	else
{
$totpercent = '0%';
}

	else
{
$totpercent = '0%';
}





	$plugins->run_hooks("polls_showresults_end");

$poll['question'] = htmlspecialchars_uni($poll['question']);

	$plugins->run_hooks("polls_showresults_end");

$poll['question'] = htmlspecialchars_uni($poll['question']);

Zeile 722Zeile 788
if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request

if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request

	verify_post_check($mybb->input['my_post_key']);

$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);
$poll['timeout'] = $poll['timeout']*60*60*24;

	verify_post_check($mybb->input['my_post_key']);









	$plugins->run_hooks("polls_vote_start");





	$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);
$poll['timeout'] = $poll['timeout']*60*60*24;

$plugins->run_hooks("polls_vote_start");


if(!$poll['pid'])
{


if(!$poll['pid'])
{

Zeile 737Zeile 803

$query = $db->simple_select("threads", "*", "poll='".$poll['pid']."'");
$thread = $db->fetch_array($query);


$query = $db->simple_select("threads", "*", "poll='".$poll['pid']."'");
$thread = $db->fetch_array($query);


if(!$thread['tid'])
{


if(!$thread['tid'] || $thread['visible'] == 0)
{

		error($lang->error_invalidthread);

		error($lang->error_invalidthread);

	}


	}


	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);
if($forumpermissions['canvotepolls'] == 0)

	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);
if($forumpermissions['canvotepolls'] == 0)

	{

	{

		error_no_permission();

		error_no_permission();

 
	}

// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);
}
else
{
// Is our forum closed?
if ($forum['open'] == 0)
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}

	}

$expiretime = $poll['dateline'] + $poll['timeout'];

	}

$expiretime = $poll['dateline'] + $poll['timeout'];

Zeile 756Zeile 838
	{
error($lang->error_pollclosed);
}

	{
error($lang->error_pollclosed);
}

	



	if(!isset($mybb->input['option']))

	if(!isset($mybb->input['option']))

	{

	{

		error($lang->error_nopolloptions);
}

		error($lang->error_nopolloptions);
}

	



	// Check if the user has voted before...
if($mybb->user['uid'])
{
$query = $db->simple_select("pollvotes", "*", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);

	// Check if the user has voted before...
if($mybb->user['uid'])
{
$query = $db->simple_select("pollvotes", "*", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);

	}


	}


	if($votecheck['vid'] || (isset($mybb->cookies['pollvotes'][$poll['pid']]) && $mybb->cookies['pollvotes'][$poll['pid']] !== ""))
{
error($lang->error_alreadyvoted);

	if($votecheck['vid'] || (isset($mybb->cookies['pollvotes'][$poll['pid']]) && $mybb->cookies['pollvotes'][$poll['pid']] !== ""))
{
error($lang->error_alreadyvoted);

Zeile 788Zeile 870

my_setcookie("pollvotes[{$poll['pid']}]", $votes_cookie);
}


my_setcookie("pollvotes[{$poll['pid']}]", $votes_cookie);
}

	



	$votesql = '';
$now = TIME_NOW;
$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];

	$votesql = '';
$now = TIME_NOW;
$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];

	$numvotes = $poll['numvotes'];

	$numvotes = (int)$poll['numvotes'];

	if($poll['multiple'] == 1)

	if($poll['multiple'] == 1)

	{
foreach($option as $voteoption => $vote)
{
if($vote == 1 && isset($votesarray[$voteoption-1]))

	{
if(is_array($option))
{
foreach($option as $voteoption => $vote)

			{

			{

				if($votesql)

				if($vote == 1 && isset($votesarray[$voteoption-1]))

				{

				{

					$votesql .= ",";







					if($votesql)
{
$votesql .= ",";
}
$votesql .= "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($voteoption)."','$now')";
$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;

				}

				}

				$votesql .= "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($voteoption)."','$now')";
$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;

 
			}
}
}
else
{

			}
}
}
else
{

		if(!isset($votesarray[$option-1]))

		if(is_array($option) || !isset($votesarray[$option-1]))

		{
error($lang->error_nopolloptions);
}
$votesql = "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($option)."','$now')";
$votesarray[$option-1]++;
$numvotes = $numvotes+1;

		{
error($lang->error_nopolloptions);
}
$votesql = "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($option)."','$now')";
$votesarray[$option-1]++;
$numvotes = $numvotes+1;

 
	}

if(!$votesql)
{
error($lang->error_nopolloptions);

	}

$db->write_query("

	}

$db->write_query("

		INSERT INTO 
".TABLE_PREFIX."pollvotes (pid,uid,voteoption,dateline)

		INSERT INTO
".TABLE_PREFIX."pollvotes (pid,uid,voteoption,dateline)

		VALUES $votesql
");
$voteslist = '';

		VALUES $votesql
");
$voteslist = '';

Zeile 838Zeile 928
	$updatedpoll = array(
"votes" => $db->escape_string($voteslist),
"numvotes" => intval($numvotes),

	$updatedpoll = array(
"votes" => $db->escape_string($voteslist),
"numvotes" => intval($numvotes),

	);

$plugins->run_hooks("polls_vote_process");

$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_vote_end");

	);

$plugins->run_hooks("polls_vote_process");

$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_vote_end");


redirect(get_thread_link($poll['tid']), $lang->redirect_votethanks);
}


redirect(get_thread_link($poll['tid']), $lang->redirect_votethanks);
}

Zeile 852Zeile 942
if($mybb->input['action'] == "do_undovote")
{
verify_post_check($mybb->input['my_post_key']);

if($mybb->input['action'] == "do_undovote")
{
verify_post_check($mybb->input['my_post_key']);

	



	$plugins->run_hooks("polls_do_undovote_start");
if($mybb->usergroup['canundovotes'] != 1)
{
error_no_permission();
}

	$plugins->run_hooks("polls_do_undovote_start");
if($mybb->usergroup['canundovotes'] != 1)
{
error_no_permission();
}

	



	$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);

	$query = $db->simple_select("polls", "*", "pid='".intval($mybb->input['pid'])."'");
$poll = $db->fetch_array($query);

	


	$poll['numvotes'] = (int)$poll['numvotes'];


	if(!$poll['pid'])

	if(!$poll['pid'])

	{

	{

		error($lang->error_invalidpoll);
}

		error($lang->error_invalidpoll);
}

 

// We do not have $forum_cache available here since no forums permissions are checked in undo vote
// Get thread ID and then get forum info
$query = $db->simple_select("threads", "*", "tid='".intval($poll['tid'])."'");
$thread = $db->fetch_array($query);
if(!$thread['tid'] || $thread['visible'] == 0)
{
error($lang->error_invalidthread);
}

$fid = $thread['fid'];

// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);
}
else
{
// Is our forum closed?
if ($forum['open'] == 0)
{
// Doesn't look like it is
error($lang->error_closedinvalidforum);
}
}


	$poll['timeout'] = $poll['timeout']*60*60*24;

	$poll['timeout'] = $poll['timeout']*60*60*24;

	





	$expiretime = $poll['dateline'] + $poll['timeout'];
if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < TIME_NOW && $poll['timeout']))
{
error($lang->error_pollclosed);
}

	$expiretime = $poll['dateline'] + $poll['timeout'];
if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < TIME_NOW && $poll['timeout']))
{
error($lang->error_pollclosed);
}

	



	// Check if the user has voted before...
$vote_options = array();
if($mybb->user['uid'])

	// Check if the user has voted before...
$vote_options = array();
if($mybb->user['uid'])

Zeile 891Zeile 1010
		$vote_options = explode(',', $mybb->cookies['pollvotes'][$poll['pid']]);
}
$votecheck = !empty($vote_options);

		$vote_options = explode(',', $mybb->cookies['pollvotes'][$poll['pid']]);
}
$votecheck = !empty($vote_options);

	



	if(!$votecheck)

	if(!$votecheck)

	{

	{

		error($lang->error_notvoted);

		error($lang->error_notvoted);

	}

	}

	else if(!$mybb->user['uid'])
{
// clear cookie for Guests
my_setcookie("pollvotes[{$poll['pid']}]", "");

	else if(!$mybb->user['uid'])
{
// clear cookie for Guests
my_setcookie("pollvotes[{$poll['pid']}]", "");

	}	


	}


	// Note, this is not thread safe!
$votesarray = explode("||~|~||", $poll['votes']);
if(count($votesarray) > $poll['numoptions'])
{
$votesarray = array_slice(0, $poll['numoptions']);
}

	// Note, this is not thread safe!
$votesarray = explode("||~|~||", $poll['votes']);
if(count($votesarray) > $poll['numoptions'])
{
$votesarray = array_slice(0, $poll['numoptions']);
}

	



	if($poll['multiple'] == 1)
{
foreach($vote_options as $vote)

	if($poll['multiple'] == 1)
{
foreach($vote_options as $vote)

Zeile 918Zeile 1037
				--$votesarray[$vote-1];
--$poll['numvotes'];
}

				--$votesarray[$vote-1];
--$poll['numvotes'];
}

		}

		}

	}
else
{

	}
else
{

Zeile 929Zeile 1048
			--$poll['numvotes'];
}
}

			--$poll['numvotes'];
}
}

	



	// check if anything < 0 - possible if Guest vote undoing is allowed (generally Guest unvoting should be disabled >_>)
if($poll['numvotes'] < 0)

	// check if anything < 0 - possible if Guest vote undoing is allowed (generally Guest unvoting should be disabled >_>)
if($poll['numvotes'] < 0)

	{

	{

		$poll['numvotes'] = 0;

		$poll['numvotes'] = 0;

	}


	}


	foreach($votesarray as $i => $votes)
{
if($votes < 0)

	foreach($votesarray as $i => $votes)
{
if($votes < 0)

Zeile 943Zeile 1062
			$votesarray[$i] = 0;
}
}

			$votesarray[$i] = 0;
}
}

	



	$voteslist = implode("||~|~||", $votesarray);
$updatedpoll = array(
"votes" => $db->escape_string($voteslist),

	$voteslist = implode("||~|~||", $votesarray);
$updatedpoll = array(
"votes" => $db->escape_string($voteslist),

Zeile 959Zeile 1078

redirect(get_thread_link($poll['tid']), $lang->redirect_unvoted);
}


redirect(get_thread_link($poll['tid']), $lang->redirect_unvoted);
}



 
?>

?>