Vergleich private.php - 1.6.10 - 1.6.13 - Doku

if(($mybb->input['action'] == "do_search" || $mybb->input['action'] == "do_stuff" && ($mybb->input['quick_search'] || !$mybb->input['hop'] && !$mybb->input['moveto'] && !$mybb->input['delete'])) && $mybb->request_method == "post")
{
	$plugins->run_hooks("private_do_search_start");

if(($mybb->input['action'] == "do_search" || $mybb->input['action'] == "do_stuff" && ($mybb->input['quick_search'] || !$mybb->input['hop'] && !$mybb->input['moveto'] && !$mybb->input['delete'])) && $mybb->request_method == "post")
{
	$plugins->run_hooks("private_do_search_start");

	// Simulate coming from our advanced search form with some preset options
	if($mybb->input['quick_search'])
	{

	// Simulate coming from our advanced search form with some preset options
	if($mybb->input['quick_search'])
	{

			error($lang->error_searchflooding);
		}
	}

			error($lang->error_searchflooding);
		}
	}

	if($mybb->input['subject'] != 1 && $mybb->input['message'] != 1)
	{
		error($lang->error_nosearchresults);

	if($mybb->input['subject'] != 1 && $mybb->input['message'] != 1)
	{
		error($lang->error_nosearchresults);

	if($mybb->input['message'] == 1)
	{
		$resulttype = "pmmessages";
	}
	else

	if($mybb->input['message'] == 1)
	{
		$resulttype = "pmmessages";
	}
	else

		$resulttype = "pmsubjects";
	}

		$resulttype = "pmsubjects";
	}

	$search_data = array(
		"keywords" => $mybb->input['keywords'],
		"subject" => $mybb->input['subject'],

	$search_data = array(
		"keywords" => $mybb->input['keywords'],
		"subject" => $mybb->input['subject'],

		"status" => $mybb->input['status'],
		"folder" => $mybb->input['folder'],
	);

		"status" => $mybb->input['status'],
		"folder" => $mybb->input['folder'],
	);

	if($db->can_search == true)
	{
		require_once MYBB_ROOT."inc/functions_search.php";

	if($db->can_search == true)
	{
		require_once MYBB_ROOT."inc/functions_search.php";

		$search_results = privatemessage_perform_search_mysql($search_data);
	}
	else

		$search_results = privatemessage_perform_search_mysql($search_data);
	}
	else

	$plugins->run_hooks("private_do_search_process");

	$db->insert_query("searchlog", $searcharray);

	$plugins->run_hooks("private_do_search_process");

	$db->insert_query("searchlog", $searcharray);

	// Sender sort won't work yet
	$sortby = array('subject', 'sender', 'dateline');

	// Sender sort won't work yet
	$sortby = array('subject', 'sender', 'dateline');

	if(in_array($mybb->input['sort'], $sortby))
	{
		$sortby = $mybb->input['sort'];

	if(in_array($mybb->input['sort'], $sortby))
	{
		$sortby = $mybb->input['sort'];

	{
		$sortorder = "desc";
	}

	{
		$sortorder = "desc";
	}

	$plugins->run_hooks("private_do_search_end");
	redirect("private.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults);
}

	$plugins->run_hooks("private_do_search_end");
	redirect("private.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults);
}

	$sortby = my_strtolower(htmlspecialchars_uni($mybb->input['sortby']));

	$sortby_accepted = array('subject', 'username', 'dateline');

	$sortby = my_strtolower(htmlspecialchars_uni($mybb->input['sortby']));

	$sortby_accepted = array('subject', 'username', 'dateline');

	if(in_array($sortby, $sortby_accepted))
	{
		$query_sortby = $sortby;

	if(in_array($sortby, $sortby_accepted))
	{
		$query_sortby = $sortby;

		if($query_sortby == "username")
		{
			$query_sortby = "fromusername";
		}
	}
	else

		if($query_sortby == "username")
		{
			$query_sortby = "fromusername";
		}
	}
	else

		$sortby = $query_sortby = "dateline";
	}

		$sortby = $query_sortby = "dateline";
	}

	if($order != "asc")
	{
		$order = "desc";
	}

	if($order != "asc")
	{
		$order = "desc";
	}

	if(!$mybb->settings['threadsperpage'])
	{
		$mybb->settings['threadsperpage'] = 20;

	if(!$mybb->settings['threadsperpage'])
	{
		$mybb->settings['threadsperpage'] = 20;

	$perpage = $mybb->settings['threadsperpage'];
	$page = intval($mybb->input['page']);
	if($page > 0)

	$perpage = $mybb->settings['threadsperpage'];
	$page = intval($mybb->input['page']);
	if($page > 0)

		$start = ($page-1) * $perpage;
	}
	else

		$start = ($page-1) * $perpage;
	}
	else

		$start = 0;
		$page = 1;

		$start = 0;
		$page = 1;

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

	// Work out if we have terms to highlight
	$highlight = "";
	if($search['keywords'])
	{
		$highlight = "&amp;highlight=".urlencode($search['keywords']);
	}

	// Work out if we have terms to highlight
	$highlight = "";
	if($search['keywords'])
	{
		$highlight = "&amp;highlight=".urlencode($search['keywords']);
	}

	// Do Multi Pages
	$query = $db->simple_select("privatemessages", "COUNT(*) AS total", "pmid IN(".$db->escape_string($search['querycache']).")");
	$pmscount = $db->fetch_array($query);

	// Do Multi Pages
	$query = $db->simple_select("privatemessages", "COUNT(*) AS total", "pmid IN(".$db->escape_string($search['querycache']).")");
	$pmscount = $db->fetch_array($query);

	if($upper > $threadcount)
	{
		$upper = $threadcount;
	}
	$multipage = multipage($pmscount['total'], $perpage, $page, "private.php?action=results&amp;sid=".htmlspecialchars_uni($mybb->input['sid'])."&amp;sortby={$sortby}&amp;order={$order}");
	$messagelist = '';

	if($upper > $threadcount)
	{
		$upper = $threadcount;
	}
	$multipage = multipage($pmscount['total'], $perpage, $page, "private.php?action=results&amp;sid=".htmlspecialchars_uni($mybb->input['sid'])."&amp;sortby={$sortby}&amp;order={$order}");
	$messagelist = '';

	$icon_cache = $cache->read("posticons");

	$icon_cache = $cache->read("posticons");

	// Cache users in multiple recipients for sent & drafts folder
	// Get all recipients into an array
	$cached_users = $get_users = array();

	// Cache users in multiple recipients for sent & drafts folder
	// Get all recipients into an array
	$cached_users = $get_users = array();

		{
			$get_users = array_merge($get_users, $recipients['to']);
		}

		{
			$get_users = array_merge($get_users, $recipients['to']);
		}

		if(is_array($recipients['bcc']) && count($recipients['bcc']))

		if(is_array($recipients['bcc']) && count($recipients['bcc']))

			$get_users = array_merge($get_users, $recipients['bcc']);

			$get_users = array_merge($get_users, $recipients['bcc']);

	$get_users = implode(',', array_unique($get_users));

	$get_users = implode(',', array_unique($get_users));

	// Grab info
	if($get_users)
	{

	// Grab info
	if($get_users)
	{

			$cached_users[$user['uid']] = $user;
		}
	}

			$cached_users[$user['uid']] = $user;
		}
	}

	$query = $db->query("
		SELECT pm.*, fu.username AS fromusername, tu.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	$query = $db->query("
		SELECT pm.*, fu.username AS fromusername, tu.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	while($message = $db->fetch_array($query))
	{
		$msgalt = $msgsuffix = $msgprefix = '';

	while($message = $db->fetch_array($query))
	{
		$msgalt = $msgsuffix = $msgprefix = '';

		// Determine Folder Icon
		if($message['status'] == 0)

		// Determine Folder Icon
		if($message['status'] == 0)

			$msgfolder = 'new_pm.gif';
			$msgalt = $lang->new_pm;
			$msgprefix = "<strong>";

			$msgfolder = 'new_pm.gif';
			$msgalt = $lang->new_pm;
			$msgprefix = "<strong>";

			$msgalt = $lang->old_pm;
		}
		elseif($message['status'] == 3)

			$msgalt = $lang->old_pm;
		}
		elseif($message['status'] == 3)

			$msgfolder = 're_pm.gif';
			$msgalt = $lang->reply_pm;

			$msgfolder = 're_pm.gif';
			$msgalt = $lang->reply_pm;

		else if($message['status'] == 4)
		{
			$msgfolder = 'fw_pm.gif';
			$msgalt = $lang->fwd_pm;
		}

		else if($message['status'] == 4)
		{
			$msgfolder = 'fw_pm.gif';
			$msgalt = $lang->fwd_pm;
		}

		if($folder == 2 || $folder == 3)
		{
			// Sent Items or Drafts Folder Check

		if($folder == 2 || $folder == 3)
		{
			// Sent Items or Drafts Folder Check

					$profilelink = get_profile_link($uid);
					$user = $cached_users[$uid];
					$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']);

					$profilelink = get_profile_link($uid);
					$user = $cached_users[$uid];
					$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']);

				}
				if(is_array($recipients['bcc']) && count($recipients['bcc']))
				{

				}
				if(is_array($recipients['bcc']) && count($recipients['bcc']))
				{

						$profilelink = get_profile_link($uid);
						$user = $cached_users[$uid];
						$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']);

						$profilelink = get_profile_link($uid);
						$user = $cached_users[$uid];
						$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']);

					}
				}

					}
				}

				eval("\$tofromusername = \"".$templates->get("private_multiple_recipients")."\";");
			}
			else if($message['toid'])

				eval("\$tofromusername = \"".$templates->get("private_multiple_recipients")."\";");
			}
			else if($message['toid'])

				$tofromusername = $message['tousername'];
				$tofromuid = $message['toid'];
			}
			else
			{
				$tofromusername = $lang->not_sent;

				$tofromusername = $message['tousername'];
				$tofromuid = $message['toid'];
			}
			else
			{
				$tofromusername = $lang->not_sent;

		}
		else
		{

		}
		else
		{

				$tofromusername = $lang->mybb_engine;
			}
		}

				$tofromusername = $lang->mybb_engine;
			}
		}

		$tofromusername = build_profile_link($tofromusername, $tofromuid);

		$tofromusername = build_profile_link($tofromusername, $tofromuid);

		$denyreceipt = '';

		$denyreceipt = '';

		if($message['icon'] > 0 && $icon_cache[$message['icon']])
		{
			$icon = $icon_cache[$message['icon']];
			$icon = "<img src=\"{$icon['path']}\" alt=\"{$icon['name']}\" align=\"center\" valign=\"middle\" />";

		if($message['icon'] > 0 && $icon_cache[$message['icon']])
		{
			$icon = $icon_cache[$message['icon']];
			$icon = "<img src=\"{$icon['path']}\" alt=\"{$icon['name']}\" align=\"center\" valign=\"middle\" />";

		{
			$icon = '&#009;';
		}

		{
			$icon = '&#009;';
		}

		if(!trim($message['subject']))
		{
			$message['subject'] = $lang->pm_no_subject;

		if(!trim($message['subject']))
		{
			$message['subject'] = $lang->pm_no_subject;

		$message['subject'] = $parser->parse_badwords($message['subject']);

		$message['subject'] = $parser->parse_badwords($message['subject']);

		if(my_strlen($message['subject']) > 50)

		if(my_strlen($message['subject']) > 50)

			$message['subject'] = htmlspecialchars_uni(my_substr($message['subject'], 0, 50)."...");

			$message['subject'] = htmlspecialchars_uni(my_substr($message['subject'], 0, 50)."...");

		{
			$message['subject'] = htmlspecialchars_uni($message['subject']);

		{
			$message['subject'] = htmlspecialchars_uni($message['subject']);

		if($message['folder'] != "3")
		{
			$sendpmdate = my_date($mybb->settings['dateformat'], $message['dateline']);

		if($message['folder'] != "3")
		{
			$sendpmdate = my_date($mybb->settings['dateformat'], $message['dateline']);

		{
			$senddate = $lang->not_sent;
		}

		{
			$senddate = $lang->not_sent;
		}

		$foldername = $foldernames[$message['folder']];

		$foldername = $foldernames[$message['folder']];

		// What we do here is parse the post using our post parser, then strip the tags from it
		$parser_options = array(
			'allow_html' => 0,

		// What we do here is parse the post using our post parser, then strip the tags from it
		$parser_options = array(
			'allow_html' => 0,

		{
			$message['message'] = my_substr($message['message'], 0, 200)."...";
		}

		{
			$message['message'] = my_substr($message['message'], 0, 200)."...";
		}

		eval("\$messagelist .= \"".$templates->get("private_search_messagebit")."\";");
	}

		eval("\$messagelist .= \"".$templates->get("private_search_messagebit")."\";");
	}

	if($db->num_rows($query) == 0)
	{
		eval("\$messagelist = \"".$templates->get("private_search_results_nomessages")."\";");
	}

	if($db->num_rows($query) == 0)
	{
		eval("\$messagelist = \"".$templates->get("private_search_results_nomessages")."\";");
	}

	$plugins->run_hooks("private_results_end");

	$plugins->run_hooks("private_results_end");

	eval("\$results = \"".$templates->get("private_search_results")."\";");
	output_page($results);
}

	eval("\$results = \"".$templates->get("private_search_results")."\";");
	output_page($results);
}

if($mybb->input['action'] == "advanced_search")
{
	$plugins->run_hooks("private_advanced_search");

if($mybb->input['action'] == "advanced_search")
{
	$plugins->run_hooks("private_advanced_search");

	eval("\$advanced_search = \"".$templates->get("private_advanced_search")."\";");

	eval("\$advanced_search = \"".$templates->get("private_advanced_search")."\";");

	output_page($advanced_search);
}

	output_page($advanced_search);
}

	");
	$duplicate_check = $db->fetch_field($query, "pmid");
	if($duplicate_check)

	");
	$duplicate_check = $db->fetch_field($query, "pmid");
	if($duplicate_check)

		error($lang->error_pm_already_submitted);
	}

		error($lang->error_pm_already_submitted);
	}

	if(!$mybb->usergroup['cantrackpms'])
	{
		$mybb->input['options']['readreceipt'] = false;

	if(!$mybb->usergroup['cantrackpms'])
	{
		$mybb->input['options']['readreceipt'] = false;


	$pm['options'] = array(
		"signature" => $mybb->input['options']['signature'],


	$pm['options'] = array(
		"signature" => $mybb->input['options']['signature'],

		$pm['saveasdraft'] = 1;
	}
	$pmhandler->set_data($pm);

		$pm['saveasdraft'] = 1;
	}
	$pmhandler->set_data($pm);

	// Now let the pm handler do all the hard work.
	if(!$pmhandler->validate_pm())
	{

	// Now let the pm handler do all the hard work.
	if(!$pmhandler->validate_pm())
	{

		$plugins->run_hooks("private_do_send_end");

		if(isset($pminfo['draftsaved']))

		$plugins->run_hooks("private_do_send_end");

		if(isset($pminfo['draftsaved']))

			redirect("private.php", $lang->redirect_pmsaved);
		}
		else
		{
			redirect("private.php", $lang->redirect_pmsent);

			redirect("private.php", $lang->redirect_pmsaved);
		}
		else
		{
			redirect("private.php", $lang->redirect_pmsent);

	}
}

if($mybb->input['action'] == "send")
{
	if($mybb->usergroup['cansendpms'] == 0)

	}
}

if($mybb->input['action'] == "send")
{
	if($mybb->usergroup['cansendpms'] == 0)

		error_no_permission();

		error_no_permission();

	$plugins->run_hooks("private_send_start");

	$smilieinserter = $codebuttons = '';

	$plugins->run_hooks("private_send_start");

	$smilieinserter = $codebuttons = '';

	if($mybb->settings['bbcodeinserter'] != 0 && $mybb->settings['pmsallowmycode'] != 0 && $mybb->user['showcodebuttons'] != 0)
	{
		$codebuttons = build_mycode_inserter();
		if($mybb->settings['pmsallowsmilies'] != 0)
		{
			$smilieinserter = build_clickable_smilies();

	if($mybb->settings['bbcodeinserter'] != 0 && $mybb->settings['pmsallowmycode'] != 0 && $mybb->user['showcodebuttons'] != 0)
	{
		$codebuttons = build_mycode_inserter();
		if($mybb->settings['pmsallowsmilies'] != 0)
		{
			$smilieinserter = build_clickable_smilies();


	$posticons = get_post_icons();
	$message = htmlspecialchars_uni($parser->parse_badwords($mybb->input['message']));


	$posticons = get_post_icons();
	$message = htmlspecialchars_uni($parser->parse_badwords($mybb->input['message']));

		if($options['signature'] == 1)
		{
			$optionschecked['signature'] = 'checked="checked"';

		if($options['signature'] == 1)
		{
			$optionschecked['signature'] = 'checked="checked"';

		if($options['disablesmilies'] == 1)
		{
			$optionschecked['disablesmilies'] = 'checked="checked"';
		}
		if($options['savecopy'] != 0)

		if($options['disablesmilies'] == 1)
		{
			$optionschecked['disablesmilies'] = 'checked="checked"';
		}
		if($options['savecopy'] != 0)

			$optionschecked['savecopy'] = 'checked="checked"';

			$optionschecked['savecopy'] = 'checked="checked"';

		if($options['readreceipt'] != 0)

		if($options['readreceipt'] != 0)

	// Preview
	if($mybb->input['preview'])
	{

	// Preview
	if($mybb->input['preview'])
	{

			LEFT JOIN ".TABLE_PREFIX."userfields f ON (f.ufid=u.uid)
			WHERE u.uid='".$mybb->user['uid']."'
		");

			LEFT JOIN ".TABLE_PREFIX."userfields f ON (f.ufid=u.uid)
			WHERE u.uid='".$mybb->user['uid']."'
		");

		$post = $db->fetch_array($query);

		$post['userusername'] = $mybb->user['username'];

		$post = $db->fetch_array($query);

		$post['userusername'] = $mybb->user['username'];

		else
		{
			$post['includesig'] = 1;

		else
		{
			$post['includesig'] = 1;


		// Merge usergroup data from the cache
		$data_key = array(


		// Merge usergroup data from the cache
		$data_key = array(

			$optionschecked['signature'] = 'checked="checked"';
		}
		if($mybb->usergroup['cantrackpms'] == 1)

			$optionschecked['signature'] = 'checked="checked"';
		}
		if($mybb->usergroup['cantrackpms'] == 1)

			$optionschecked['readreceipt'] = 'checked="checked"';
		}
		$optionschecked['savecopy'] = 'checked="checked"';
	}

			$optionschecked['readreceipt'] = 'checked="checked"';
		}
		$optionschecked['savecopy'] = 'checked="checked"';
	}

	// Draft, reply, forward
	if($mybb->input['pmid'] && !$mybb->input['preview'] && !$send_errors)
	{

	// Draft, reply, forward
	if($mybb->input['pmid'] && !$mybb->input['preview'] && !$send_errors)
	{

				$optionschecked['signature'] = 'checked="checked"';
			}
			if($pm['smilieoff'] == 1)

				$optionschecked['signature'] = 'checked="checked"';
			}
			if($pm['smilieoff'] == 1)

				$optionschecked['disablesmilies'] = 'checked="checked"';
			}
			if($pm['receipt'])

				$optionschecked['disablesmilies'] = 'checked="checked"';
			}
			if($pm['receipt'])

				$optionschecked['readreceipt'] = 'checked="checked"';
			}

				$optionschecked['readreceipt'] = 'checked="checked"';
			}

				foreach($recipients['to'] as $recipient)
				{
					$recipient_list['to'][] = $recipient;

				foreach($recipients['to'] as $recipient)
				{
					$recipient_list['to'][] = $recipient;

			if(isset($recipients['bcc']) && is_array($recipients['bcc']))
			{
				foreach($recipients['bcc'] as $recipient)

			if(isset($recipients['bcc']) && is_array($recipients['bcc']))
			{
				foreach($recipients['bcc'] as $recipient)

					$recipient_list['bcc'][] = $recipient;
					$recipientids .= $comma.$recipient;
					$comma = ',';

					$recipient_list['bcc'][] = $recipient;
					$recipientids .= $comma.$recipient;
					$comma = ',';

			if(!empty($recipientids))

			if(!empty($recipientids))

				$query = $db->simple_select("users", "uid, username", "uid IN ({$recipientids})");
				while($user = $db->fetch_array($query))
				{

				$query = $db->simple_select("users", "uid, username", "uid IN ({$recipientids})");
				while($user = $db->fetch_array($query))
				{

				$subject = "Fw: $subject";
			}
			elseif($mybb->input['do'] == 'reply')

				$subject = "Fw: $subject";
			}
			elseif($mybb->input['do'] == 'reply')

				$subject = "Re: $subject";
				$uid = $pm['fromid'];
				if($mybb->user['uid'] == $uid)

				$subject = "Re: $subject";
				$uid = $pm['fromid'];
				if($mybb->user['uid'] == $uid)

	if($send_errors)
	{
		$to = htmlspecialchars_uni($mybb->input['to']);

	if($send_errors)
	{
		$to = htmlspecialchars_uni($mybb->input['to']);

	}

	// Load the auto complete javascript if it is enabled.

	}

	// Load the auto complete javascript if it is enabled.

	{
		$do = '';
	}

	{
		$do = '';
	}

	// See if it's actually worth showing the buddylist icon.
	if($mybb->user['buddylist'] != '' && $mybb->settings['use_xmlhttprequest'] == 1)
	{

	// See if it's actually worth showing the buddylist icon.
	if($mybb->user['buddylist'] != '' && $mybb->settings['use_xmlhttprequest'] == 1)
	{

		eval("\$buddy_select_to = \"".$templates->get("private_send_buddyselect")."\";");
		$buddy_select = 'bcc';
		eval("\$buddy_select_bcc = \"".$templates->get("private_send_buddyselect")."\";");

		eval("\$buddy_select_to = \"".$templates->get("private_send_buddyselect")."\";");
		$buddy_select = 'bcc';
		eval("\$buddy_select_bcc = \"".$templates->get("private_send_buddyselect")."\";");


	// Hide tracking option if no permission
	$private_send = $templates->get("private_send");


	// Hide tracking option if no permission
	$private_send = $templates->get("private_send");

		$tracking = $templates->get("private_send_tracking");
	}
	eval("\$private_send_tracking = \"".$tracking."\";");

		$tracking = $templates->get("private_send_tracking");
	}
	eval("\$private_send_tracking = \"".$tracking."\";");

	// Hide signature option if no permission
	$option_signature = '';
	if($mybb->usergroup['canusesig'] && !$mybb->user['suspendsignature'])

	// Hide signature option if no permission
	$option_signature = '';
	if($mybb->usergroup['canusesig'] && !$mybb->user['suspendsignature'])

		$option_signature = $templates->get('private_send_signature');
	}
	eval("\$private_send_signature = \"".$option_signature."\";");

		$option_signature = $templates->get('private_send_signature');
	}
	eval("\$private_send_signature = \"".$option_signature."\";");

	$plugins->run_hooks("private_send_end");

	eval("\$send = \"".$private_send."\";");
	output_page($send);

	$plugins->run_hooks("private_send_end");

	eval("\$send = \"".$private_send."\";");
	output_page($send);

if($mybb->input['action'] == "read")
{
	$plugins->run_hooks("private_read");

if($mybb->input['action'] == "read")
{
	$plugins->run_hooks("private_read");


	if($pm['receipt'] == 1)
	{


	if($pm['receipt'] == 1)
	{

		{
			$receiptadd = 0;
		}

		{
			$receiptadd = 0;
		}

			'status' => 1,
			'readtime' => $time
		);

			'status' => 1,
			'readtime' => $time
		);

		if(isset($receiptadd))
		{
			$updatearray['receipt'] = $receiptadd;
		}

		$db->update_query('privatemessages', $updatearray, "pmid='{$pmid}'");

		if(isset($receiptadd))
		{
			$updatearray['receipt'] = $receiptadd;
		}

		$db->update_query('privatemessages', $updatearray, "pmid='{$pmid}'");

		// Update the unread count - it has now changed.
		update_pm_count($mybb->user['uid'], 6);

		// Update the unread count - it has now changed.
		update_pm_count($mybb->user['uid'], 6);

				"pmnotice" => 1
			);
			$db->update_query("users", $updated_user, "uid='{$mybb->user['uid']}'");

				"pmnotice" => 1
			);
			$db->update_query("users", $updated_user, "uid='{$mybb->user['uid']}'");

	}
	// Replied PM?
	else if($pm['status'] == 3 && $pm['statustime'])
	{
		$reply_date = my_date($mybb->settings['dateformat'], $pm['statustime']);

	}
	// Replied PM?
	else if($pm['status'] == 3 && $pm['statustime'])
	{
		$reply_date = my_date($mybb->settings['dateformat'], $pm['statustime']);

		if($reply_date == $lang->today || $reply_date == $lang->yesterday)
		{
			$reply_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_replied, $reply_date);

		if($reply_date == $lang->today || $reply_date == $lang->yesterday)
		{
			$reply_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_replied, $reply_date);

			$reply_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_replied_on, $reply_date);

			$reply_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_replied_on, $reply_date);

	}
	else if($pm['status'] == 4 && $pm['statustime'])
	{
		$forward_date = my_date($mybb->settings['dateformat'], $pm['statustime']);

	}
	else if($pm['status'] == 4 && $pm['statustime'])
	{
		$forward_date = my_date($mybb->settings['dateformat'], $pm['statustime']);

		if(strpos($forward_date, $lang->today) !== false || strpos($forward_date, $lang->yesterday) !== false)
		{
			$forward_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);

		if(strpos($forward_date, $lang->today) !== false || strpos($forward_date, $lang->yesterday) !== false)
		{
			$forward_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);

			$forward_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_forwarded_on, $forward_date);
		}

			$forward_date .= $lang->comma.my_date($mybb->settings['timeformat'], $pm['statustime']);
			$actioned_on = $lang->sprintf($lang->you_forwarded_on, $forward_date);
		}

		eval("\$action_time = \"".$templates->get("private_read_action")."\";");
	}

		eval("\$action_time = \"".$templates->get("private_read_action")."\";");
	}

	{
		$pm['username'] = $lang->mybb_engine;
	}

	{
		$pm['username'] = $lang->mybb_engine;
	}

	if(!$pm['username'])

	if(!$pm['username'])

		$pm['username'] = $lang->na;
	}

		$pm['username'] = $lang->na;
	}

	$pm['recipients'] = @unserialize($pm['recipients']);

	if(is_array($pm['recipients']['to']))

	$pm['recipients'] = @unserialize($pm['recipients']);

	if(is_array($pm['recipients']['to']))

		$uid_sql = implode(',', $pm['recipients']['to']);
	}
	else
	{
		$uid_sql = $pm['toid'];
		$pm['recipients']['to'] = array($pm['toid']);

		$uid_sql = implode(',', $pm['recipients']['to']);
	}
	else
	{
		$uid_sql = $pm['toid'];
		$pm['recipients']['to'] = array($pm['toid']);


	$show_bcc = 0;


	$show_bcc = 0;

		$show_bcc = 1;
		$uid_sql .= ','.implode(',', $pm['recipients']['bcc']);
	}

		$show_bcc = 1;
		$uid_sql .= ','.implode(',', $pm['recipients']['bcc']);
	}

	// Fetch recipient names from the database
	$bcc_recipients = $to_recipients = array();
	$query = $db->simple_select('users', 'uid, username', "uid IN ({$uid_sql})");
	while($recipient = $db->fetch_array($query))

	// Fetch recipient names from the database
	$bcc_recipients = $to_recipients = array();
	$query = $db->simple_select('users', 'uid, username', "uid IN ({$uid_sql})");
	while($recipient = $db->fetch_array($query))

		// User is a BCC recipient
		if($show_bcc && in_array($recipient['uid'], $pm['recipients']['bcc']))

		// User is a BCC recipient
		if($show_bcc && in_array($recipient['uid'], $pm['recipients']['bcc']))

			$bcc_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
		}
		// User is a normal recipient

			$bcc_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
		}
		// User is a normal recipient

		{
			$to_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
		}

		{
			$to_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
		}

	if(count($bcc_recipients) > 0)
	{
		$bcc_recipients = implode(', ', $bcc_recipients);
		eval("\$bcc = \"".$templates->get("private_read_bcc")."\";");

	if(count($bcc_recipients) > 0)
	{
		$bcc_recipients = implode(', ', $bcc_recipients);
		eval("\$bcc = \"".$templates->get("private_read_bcc")."\";");

	$replyall = false;
	if(count($to_recipients) > 1)
	{
		$replyall = true;
	}

	$replyall = false;
	if(count($to_recipients) > 1)
	{
		$replyall = true;
	}

	if(count($to_recipients) > 0)
	{
		$to_recipients = implode(", ", $to_recipients);

	if(count($to_recipients) > 0)
	{
		$to_recipients = implode(", ", $to_recipients);

	}

	eval("\$pm['subject_extra'] = \"".$templates->get("private_read_to")."\";");

	}

	eval("\$pm['subject_extra'] = \"".$templates->get("private_read_to")."\";");

	add_breadcrumb($pm['subject']);
	$message = build_postbit($pm, 2);

	add_breadcrumb($pm['subject']);
	$message = build_postbit($pm, 2);

	$plugins->run_hooks("private_read_end");

	$plugins->run_hooks("private_read_end");

	eval("\$read = \"".$templates->get("private_read")."\";");
	output_page($read);
}

	eval("\$read = \"".$templates->get("private_read")."\";");
	output_page($read);
}

if($mybb->input['action'] == "tracking")
{
	if(!$mybb->usergroup['cantrackpms'])

if($mybb->input['action'] == "tracking")
{
	if(!$mybb->usergroup['cantrackpms'])

	$plugins->run_hooks("private_tracking_start");
	$readmessages = '';
	$unreadmessages = '';

	$plugins->run_hooks("private_tracking_start");
	$readmessages = '';
	$unreadmessages = '';

	// Figure out if we need to display multiple pages.
	$perpage = $mybb->settings['postsperpage'];

	// Figure out if we need to display multiple pages.
	$perpage = $mybb->settings['postsperpage'];

	$query = $db->simple_select("privatemessages", "COUNT(pmid) as readpms", "receipt='2' AND folder!='3'  AND status!='0' AND fromid='".$mybb->user['uid']."'");
	$postcount = $db->fetch_field($query, "readpms");

	$query = $db->simple_select("privatemessages", "COUNT(pmid) as readpms", "receipt='2' AND folder!='3'  AND status!='0' AND fromid='".$mybb->user['uid']."'");
	$postcount = $db->fetch_field($query, "readpms");

	{
		$page = $pages;

	{
		$page = $pages;


	if($page > $pages || $page <= 0)


	if($page > $pages || $page <= 0)


	if($page)


	if($page)

	}
	else
	{
		$start = 0;
		$page = 1;
	}

	}
	else
	{
		$start = 0;
		$page = 1;
	}

	$read_multipage = multipage($postcount, $perpage, $page, "private.php?action=tracking&amp;read_page={page}");

	$read_multipage = multipage($postcount, $perpage, $page, "private.php?action=tracking&amp;read_page={page}");

	$query = $db->query("
		SELECT pm.pmid, pm.subject, pm.toid, pm.readtime, u.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	$query = $db->query("
		SELECT pm.pmid, pm.subject, pm.toid, pm.readtime, u.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

		$readtime = my_date($mybb->settings['timeformat'], $readmessage['readtime']);
		eval("\$readmessages .= \"".$templates->get("private_tracking_readmessage")."\";");
	}

		$readtime = my_date($mybb->settings['timeformat'], $readmessage['readtime']);
		eval("\$readmessages .= \"".$templates->get("private_tracking_readmessage")."\";");
	}

	if(!$readmessages)
	{
		eval("\$readmessages = \"".$templates->get("private_tracking_nomessage")."\";");
	}

	if(!$readmessages)
	{
		eval("\$readmessages = \"".$templates->get("private_tracking_nomessage")."\";");
	}

	$query = $db->simple_select("privatemessages", "COUNT(pmid) as unreadpms", "receipt='1' AND folder!='3' AND status='0' AND fromid='".$mybb->user['uid']."'");
	$postcount = $db->fetch_field($query, "unreadpms");

	$query = $db->simple_select("privatemessages", "COUNT(pmid) as unreadpms", "receipt='1' AND folder!='3' AND status='0' AND fromid='".$mybb->user['uid']."'");
	$postcount = $db->fetch_field($query, "unreadpms");

	$page = intval($mybb->input['unread_page']);
	$pages = $postcount / $perpage;
	$pages = ceil($pages);

	$page = intval($mybb->input['unread_page']);
	$pages = $postcount / $perpage;
	$pages = ceil($pages);

		$start = 0;
		$page = 1;
	}

		$start = 0;
		$page = 1;
	}

	$unread_multipage = multipage($postcount, $perpage, $page, "private.php?action=tracking&amp;unread_page={page}");

	$unread_multipage = multipage($postcount, $perpage, $page, "private.php?action=tracking&amp;unread_page={page}");

	$query = $db->query("
		SELECT pm.pmid, pm.subject, pm.toid, pm.dateline, u.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	$query = $db->query("
		SELECT pm.pmid, pm.subject, pm.toid, pm.dateline, u.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	while($unreadmessage = $db->fetch_array($query))
	{
		$unreadmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($unreadmessage['subject']));

	while($unreadmessage = $db->fetch_array($query))
	{
		$unreadmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($unreadmessage['subject']));

		$senddate = my_date($mybb->settings['dateformat'], $unreadmessage['dateline']);
		$sendtime = my_date($mybb->settings['timeformat'], $unreadmessage['dateline']);
		eval("\$unreadmessages .= \"".$templates->get("private_tracking_unreadmessage")."\";");

		$senddate = my_date($mybb->settings['dateformat'], $unreadmessage['dateline']);
		$sendtime = my_date($mybb->settings['timeformat'], $unreadmessage['dateline']);
		eval("\$unreadmessages .= \"".$templates->get("private_tracking_unreadmessage")."\";");

	if(!$unreadmessages)
	{
		$lang->no_readmessages = $lang->no_unreadmessages;
		eval("\$unreadmessages = \"".$templates->get("private_tracking_nomessage")."\";");
	}

	if(!$unreadmessages)
	{
		$lang->no_readmessages = $lang->no_unreadmessages;
		eval("\$unreadmessages = \"".$templates->get("private_tracking_nomessage")."\";");
	}

	$plugins->run_hooks("private_tracking_end");

	$plugins->run_hooks("private_tracking_end");

	eval("\$tracking = \"".$templates->get("private_tracking")."\";");
	output_page($tracking);

	eval("\$tracking = \"".$templates->get("private_tracking")."\";");
	output_page($tracking);

if($mybb->input['action'] == "do_tracking" && $mybb->request_method == "post")
{
	// Verify incoming POST request
	verify_post_check($mybb->input['my_post_key']);

if($mybb->input['action'] == "do_tracking" && $mybb->request_method == "post")
{
	// Verify incoming POST request
	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_tracking_start");

	$plugins->run_hooks("private_do_tracking_start");

	if($mybb->input['stoptracking'])
	{
		if(is_array($mybb->input['readcheck']))

	if($mybb->input['stoptracking'])
	{
		if(is_array($mybb->input['readcheck']))

			{
				$pmids[$pmid] = intval($pmid);
			}

			{
				$pmids[$pmid] = intval($pmid);
			}

			$pmids = implode(",", $pmids);
			$query = $db->simple_select("privatemessages", "uid", "pmid IN ($pmids) AND fromid='".$mybb->user['uid']."'");
			while($pm = $db->fetch_array($query))

			$pmids = implode(",", $pmids);
			$query = $db->simple_select("privatemessages", "uid", "pmid IN ($pmids) AND fromid='".$mybb->user['uid']."'");
			while($pm = $db->fetch_array($query))

				$pmuids[$pm['uid']] = $pm['uid'];

				$pmuids[$pm['uid']] = $pm['uid'];

			$db->delete_query("privatemessages", "pmid IN ($pmids) AND receipt='1' AND status='0' AND fromid='".$mybb->user['uid']."'");
			foreach($pmuids as $uid)
			{

			$db->delete_query("privatemessages", "pmid IN ($pmids) AND receipt='1' AND status='0' AND fromid='".$mybb->user['uid']."'");
			foreach($pmuids as $uid)
			{

		}
		$plugins->run_hooks("private_do_tracking_end");
		redirect("private.php?action=tracking", $lang->redirect_pmstrackingcanceled);

		}
		$plugins->run_hooks("private_do_tracking_end");
		redirect("private.php?action=tracking", $lang->redirect_pmstrackingcanceled);

}

if($mybb->input['action'] == "folders")
{
	$plugins->run_hooks("private_folders_start");

}

if($mybb->input['action'] == "folders")
{
	$plugins->run_hooks("private_folders_start");

	$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
	foreach($foldersexploded as $key => $folders)
	{

	$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
	foreach($foldersexploded as $key => $folders)
	{

		$foldername = $folderinfo[1];
		$fid = $folderinfo[0];
		$foldername = get_pm_folder_name($fid, $foldername);

		$foldername = $folderinfo[1];
		$fid = $folderinfo[0];
		$foldername = get_pm_folder_name($fid, $foldername);

		if($folderinfo[0] == "1" || $folderinfo[0] == "2" || $folderinfo[0] == "3" || $folderinfo[0] == "4")
		{
			$foldername2 = get_pm_folder_name($fid);
			eval("\$folderlist .= \"".$templates->get("private_folders_folder_unremovable")."\";");
			unset($name);

		if($folderinfo[0] == "1" || $folderinfo[0] == "2" || $folderinfo[0] == "3" || $folderinfo[0] == "4")
		{
			$foldername2 = get_pm_folder_name($fid);
			eval("\$folderlist .= \"".$templates->get("private_folders_folder_unremovable")."\";");
			unset($name);

		else
		{
			eval("\$folderlist .= \"".$templates->get("private_folders_folder")."\";");
		}
	}

		else
		{
			eval("\$folderlist .= \"".$templates->get("private_folders_folder")."\";");
		}
	}

	$newfolders = '';
	for($i = 1; $i <= 5; ++$i)
	{

	$newfolders = '';
	for($i = 1; $i <= 5; ++$i)
	{

		$foldername = '';
		eval("\$newfolders .= \"".$templates->get("private_folders_folder")."\";");
	}

		$foldername = '';
		eval("\$newfolders .= \"".$templates->get("private_folders_folder")."\";");
	}

	$plugins->run_hooks("private_folders_end");

	$plugins->run_hooks("private_folders_end");

	eval("\$folders = \"".$templates->get("private_folders")."\";");
	output_page($folders);
}

	eval("\$folders = \"".$templates->get("private_folders")."\";");
	output_page($folders);
}

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_folders_start");

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_folders_start");

	$highestid = 2;
	$folders = '';
	@reset($mybb->input['folder']);
	foreach($mybb->input['folder'] as $key => $val)
	{

	$highestid = 2;
	$folders = '';
	@reset($mybb->input['folder']);
	foreach($mybb->input['folder'] as $key => $val)
	{

		{
			if(my_substr($key, 0, 3) == "new") // Create a new folder
			{

		{
			if(my_substr($key, 0, 3) == "new") // Create a new folder
			{

				{
					$highestid = $key;
				}

				{
					$highestid = $key;
				}

				$fid = intval($key);
				// Use default language strings if empty or value is language string
				switch($fid)

				$fid = intval($key);
				// Use default language strings if empty or value is language string
				switch($fid)

						break;
				}
			}

						break;
				}
			}

			if($val != '' && trim($val) == '' && !($key >= 1 && $key <= 4))
			{
				// If the name only contains whitespace and it's not a default folder, print an error
				error($lang->error_emptypmfoldername);
			}

			if($val != '' && trim($val) == '' && !($key >= 1 && $key <= 4))
			{
				// If the name only contains whitespace and it's not a default folder, print an error
				error($lang->error_emptypmfoldername);
			}

			if($val != '' || ($key >= 1 && $key <= 4))
			{

			if($val != '' || ($key >= 1 && $key <= 4))
			{

				if(my_strpos($foldername, "$%%$") === false)

				if(my_strpos($foldername, "$%%$") === false)

					if($folders != '')
					{
						$folders .= "$%%$";

					if($folders != '')
					{
						$folders .= "$%%$";

				{
					error($lang->error_invalidpmfoldername);
				}

				{
					error($lang->error_invalidpmfoldername);
				}

			else
			{
				// Delete PMs from the folder

			else
			{
				// Delete PMs from the folder


	$sql_array = array(
		"pmfolders" => $folders


	$sql_array = array(
		"pmfolders" => $folders

	$db->update_query("users", $sql_array, "uid='".$mybb->user['uid']."'");

	$db->update_query("users", $sql_array, "uid='".$mybb->user['uid']."'");

	// Update PM count
	update_pm_count();

	// Update PM count
	update_pm_count();

	$plugins->run_hooks("private_do_folders_end");

	$plugins->run_hooks("private_do_folders_end");

	redirect("private.php", $lang->redirect_pmfoldersupdated);
}

if($mybb->input['action'] == "empty")
{
	$plugins->run_hooks("private_empty_start");

	redirect("private.php", $lang->redirect_pmfoldersupdated);
}

if($mybb->input['action'] == "empty")
{
	$plugins->run_hooks("private_empty_start");

	$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
	$folderlist = '';
	foreach($foldersexploded as $key => $folders)

	$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
	$folderlist = '';
	foreach($foldersexploded as $key => $folders)

		$foldercount = my_number_format($thing['pmsinfolder']);
		eval("\$folderlist .= \"".$templates->get("private_empty_folder")."\";");
	}

		$foldercount = my_number_format($thing['pmsinfolder']);
		eval("\$folderlist .= \"".$templates->get("private_empty_folder")."\";");
	}

	$plugins->run_hooks("private_empty_end");

	$plugins->run_hooks("private_empty_end");

	eval("\$folders = \"".$templates->get("private_empty")."\";");
	output_page($folders);
}

	eval("\$folders = \"".$templates->get("private_empty")."\";");
	output_page($folders);
}

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_empty_start");

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_empty_start");

	$emptyq = '';
	if(is_array($mybb->input['empty']))
	{

	$emptyq = '';
	if(is_array($mybb->input['empty']))
	{

				$emptyq .= "folder='$key'";
			}
		}

				$emptyq .= "folder='$key'";
			}
		}

		if($emptyq != '')
		{
			if($mybb->input['keepunread'] == 1)

		if($emptyq != '')
		{
			if($mybb->input['keepunread'] == 1)

			$db->delete_query("privatemessages", "($emptyq) AND uid='".$mybb->user['uid']."' $keepunreadq");
		}
	}

			$db->delete_query("privatemessages", "($emptyq) AND uid='".$mybb->user['uid']."' $keepunreadq");
		}
	}

	// Update PM count
	update_pm_count();

	// Update PM count
	update_pm_count();

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_stuff");

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_stuff");

	if($mybb->input['hop'])

	if($mybb->input['hop'])

		header("Location: private.php?fid=".intval($mybb->input['jumpto']));
	}
	elseif($mybb->input['moveto'])
	{
		if(is_array($mybb->input['check']))

		header("Location: private.php?fid=".intval($mybb->input['jumpto']));
	}
	elseif($mybb->input['moveto'])
	{
		if(is_array($mybb->input['check']))

			foreach($mybb->input['check'] as $key => $val)
			{
				$sql_array = array(

			foreach($mybb->input['check'] as $key => $val)
			{
				$sql_array = array(

		if(!empty($mybb->input['fromfid']))
		{
			redirect("private.php?fid=".intval($mybb->input['fromfid']), $lang->redirect_pmsmoved);

		if(!empty($mybb->input['fromfid']))
		{
			redirect("private.php?fid=".intval($mybb->input['fromfid']), $lang->redirect_pmsmoved);

			redirect("private.php", $lang->redirect_pmsmoved);
		}
	}

			redirect("private.php", $lang->redirect_pmsmoved);
		}
	}

					$pmssql .= ",";
				}
				$pmssql .= "'".intval($key)."'";

					$pmssql .= ",";
				}
				$pmssql .= "'".intval($key)."'";

			$query = $db->simple_select("privatemessages", "pmid, folder", "pmid IN ($pmssql) AND uid='".$mybb->user['uid']."' AND folder='4'", array('order_by' => 'pmid'));
			while($delpm = $db->fetch_array($query))
			{
				$deletepms[$delpm['pmid']] = 1;
			}

			$query = $db->simple_select("privatemessages", "pmid, folder", "pmid IN ($pmssql) AND uid='".$mybb->user['uid']."' AND folder='4'", array('order_by' => 'pmid'));
			while($delpm = $db->fetch_array($query))
			{
				$deletepms[$delpm['pmid']] = 1;
			}

			reset($mybb->input['check']);
			foreach($mybb->input['check'] as $key => $val)
			{

			reset($mybb->input['check']);
			foreach($mybb->input['check'] as $key => $val)
			{

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_delete_start");

	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_delete_start");

	$query = $db->simple_select("privatemessages", "*", "pmid='".intval($mybb->input['pmid'])."' AND uid='".$mybb->user['uid']."' AND folder='4'", array('order_by' => 'pmid'));
	if($db->num_rows($query) == 1)
	{

	$query = $db->simple_select("privatemessages", "*", "pmid='".intval($mybb->input['pmid'])."' AND uid='".$mybb->user['uid']."' AND folder='4'", array('order_by' => 'pmid'));
	if($db->num_rows($query) == 1)
	{

if($mybb->input['action'] == "export")
{
	$plugins->run_hooks("private_export_start");

if($mybb->input['action'] == "export")
{
	$plugins->run_hooks("private_export_start");

	$folderlist = "<select name=\"exportfolders[]\" multiple=\"multiple\">\n";
	$folderlist .= "<option value=\"all\" selected=\"selected\">$lang->all_folders</option>";

	$folderlist = "<select name=\"exportfolders[]\" multiple=\"multiple\">\n";
	$folderlist .= "<option value=\"all\" selected=\"selected\">$lang->all_folders</option>";

		$folderlist .= "<option value=\"$folderinfo[0]\">$folderinfo[1]</option>\n";
	}
	$folderlist .= "</select>\n";

		$folderlist .= "<option value=\"$folderinfo[0]\">$folderinfo[1]</option>\n";
	}
	$folderlist .= "</select>\n";

	$plugins->run_hooks("private_export_end");

	$plugins->run_hooks("private_export_end");

	eval("\$archive = \"".$templates->get("private_archive")."\";");

	eval("\$archive = \"".$templates->get("private_archive")."\";");

	output_page($archive);
}

	output_page($archive);
}

if($mybb->input['action'] == "do_export" && $mybb->request_method == "post")
{
	// Verify incoming POST request
	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_export_start");

if($mybb->input['action'] == "do_export" && $mybb->request_method == "post")
{
	// Verify incoming POST request
	verify_post_check($mybb->input['my_post_key']);

	$plugins->run_hooks("private_do_export_start");

	$lang->private_messages_for = $lang->sprintf($lang->private_messages_for, $mybb->user['username']);
	$exdate = my_date($mybb->settings['dateformat'], TIME_NOW, 0, 0);
	$extime = my_date($mybb->settings['timeformat'], TIME_NOW, 0, 0);

	$lang->private_messages_for = $lang->sprintf($lang->private_messages_for, $mybb->user['username']);
	$exdate = my_date($mybb->settings['dateformat'], TIME_NOW, 0, 0);
	$extime = my_date($mybb->settings['timeformat'], TIME_NOW, 0, 0);

		$folderinfo[1] = get_pm_folder_name($folderinfo[0], $folderinfo[1]);
		$foldersexploded[$key] = implode("**", $folderinfo);
	}

		$folderinfo[1] = get_pm_folder_name($folderinfo[0], $folderinfo[1]);
		$foldersexploded[$key] = implode("**", $folderinfo);
	}

	if($mybb->input['pmid'])
	{
		$wsql = "pmid='".intval($mybb->input['pmid'])."' AND uid='".$mybb->user['uid']."'";

	if($mybb->input['pmid'])
	{
		$wsql = "pmid='".intval($mybb->input['pmid'])."' AND uid='".$mybb->user['uid']."'";

	else
	{
		if($mybb->input['daycut'] && ($mybb->input['dayway'] != "disregard"))

	else
	{
		if($mybb->input['daycut'] && ($mybb->input['dayway'] != "disregard"))

			$datecut = TIME_NOW-($mybb->input['daycut'] * 86400);
			$wsql = "pm.dateline";
			if($mybb->input['dayway'] == "older")

			$datecut = TIME_NOW-($mybb->input['daycut'] * 86400);
			$wsql = "pm.dateline";
			if($mybb->input['dayway'] == "older")

				$wsql .= "<=";

				$wsql .= "<=";

			else
			{
				$wsql .= ">=";

			else
			{
				$wsql .= ">=";

		{
			$wsql = "1=1";
		}

		{
			$wsql = "1=1";
		}

		if(is_array($mybb->input['exportfolders']))
		{
			$folderlst = '';

		if(is_array($mybb->input['exportfolders']))
		{
			$folderlst = '';

		{
			error($lang->error_pmnoarchivefolders);
		}

		{
			error($lang->error_pmnoarchivefolders);
		}

		if($mybb->input['exportunread'] != 1)
		{
			$wsql .= " AND pm.status!='0'";

		if($mybb->input['exportunread'] != 1)
		{
			$wsql .= " AND pm.status!='0'";

	{
		error($lang->error_nopmsarchive);
	}

	{
		error($lang->error_nopmsarchive);
	}

	$pmsdownload = '';
	while($message = $db->fetch_array($query))
	{

	$pmsdownload = '';
	while($message = $db->fetch_array($query))
	{

				else
				{
					$tofromusername = build_profile_link($message['tousername'], $tofromuid);

				else
				{
					$tofromusername = build_profile_link($message['tousername'], $tofromuid);

			{
				$tofromusername = $lang->not_sent;
			}

			{
				$tofromusername = $lang->not_sent;
			}

			if($mybb->input['exporttype'] == "txt")
			{
				$tofromusername = $message['fromusername'];

			if($mybb->input['exporttype'] == "txt")
			{
				$tofromusername = $message['fromusername'];

			else
			{
				$tofromusername = build_profile_link($message['fromusername'], $tofromuid);
			}

			else
			{
				$tofromusername = build_profile_link($message['fromusername'], $tofromuid);
			}

			if($tofromuid == 0)
			{
				$tofromusername = $lang->mybb_engine;
			}
			$tofrom = $lang->from;
		}

			if($tofromuid == 0)
			{
				$tofromusername = $lang->mybb_engine;
			}
			$tofrom = $lang->from;
		}

		if($tofromuid == 0)
		{
			$message['fromusername'] = $lang->mybb_engine;
		}

		if($tofromuid == 0)
		{
			$message['fromusername'] = $lang->mybb_engine;
		}

		if(!$message['toid'] && $message['folder'] == 3)
		{
			$message['tousername'] = $lang->not_sent;

		if(!$message['toid'] && $message['folder'] == 3)
		{
			$message['tousername'] = $lang->not_sent;


		$message['subject'] = $parser->parse_badwords($message['subject']);
		if($message['folder'] != "3")


		$message['subject'] = $parser->parse_badwords($message['subject']);
		if($message['folder'] != "3")

			$senddate = my_date($mybb->settings['dateformat'], $message['dateline']);
			$sendtime = my_date($mybb->settings['timeformat'], $message['dateline']);
			$senddate .= " $lang->at $sendtime";

			$senddate = my_date($mybb->settings['dateformat'], $message['dateline']);
			$sendtime = my_date($mybb->settings['timeformat'], $message['dateline']);
			$senddate .= " $lang->at $sendtime";

		{
			$senddate = $lang->not_sent;
		}

		{
			$senddate = $lang->not_sent;
		}

		if($mybb->input['exporttype'] == "html")
		{
			$parser_options = array(

		if($mybb->input['exporttype'] == "html")
		{
			$parser_options = array(

				"me_username" => $mybb->user['username'],
				"filter_badwords" => 1
			);

				"me_username" => $mybb->user['username'],
				"filter_badwords" => 1
			);

			$message['message'] = $parser->parse_message($message['message'], $parser_options);
			$message['subject'] = htmlspecialchars_uni($message['subject']);
		}

			$message['message'] = $parser->parse_message($message['message'], $parser_options);
			$message['subject'] = htmlspecialchars_uni($message['subject']);
		}

		if($mybb->input['exporttype'] == "txt" || $mybb->input['exporttype'] == "csv")
		{
			$message['message'] = str_replace("\r\n", "\n", $message['message']);
			$message['message'] = str_replace("\n", "\r\n", $message['message']);
		}

		if($mybb->input['exporttype'] == "txt" || $mybb->input['exporttype'] == "csv")
		{
			$message['message'] = str_replace("\r\n", "\n", $message['message']);
			$message['message'] = str_replace("\n", "\r\n", $message['message']);
		}

		if($mybb->input['exporttype'] == "csv")
		{
			$message['message'] = addslashes($message['message']);

		if($mybb->input['exporttype'] == "csv")
		{
			$message['message'] = addslashes($message['message']);

			$message['tousername'] = addslashes($message['tousername']);
			$message['fromusername'] = addslashes($message['fromusername']);
		}

			$message['tousername'] = addslashes($message['tousername']);
			$message['fromusername'] = addslashes($message['fromusername']);
		}

		if(!$donefolder[$message['folder']])
		{
			reset($foldersexploded);

		if(!$donefolder[$message['folder']])
		{
			reset($foldersexploded);

				}
			}
		}

				}
			}
		}

		eval("\$pmsdownload .= \"".$templates->get("private_archive_".$mybb->input['exporttype']."_message", 1, 0)."\";");
		$ids .= ",'{$message['pmid']}'";

		eval("\$pmsdownload .= \"".$templates->get("private_archive_".$mybb->input['exporttype']."_message", 1, 0)."\";");
		$ids .= ",'{$message['pmid']}'";


	if($mybb->input['exporttype'] == "html")
	{
		// Gather global stylesheet for HTML
		$query = $db->simple_select("themestylesheets", "stylesheet", "sid = '1'", array('limit' => 1));
		$css = $db->fetch_field($query, "stylesheet");


	if($mybb->input['exporttype'] == "html")
	{
		// Gather global stylesheet for HTML
		$query = $db->simple_select("themestylesheets", "stylesheet", "sid = '1'", array('limit' => 1));
		$css = $db->fetch_field($query, "stylesheet");


	$plugins->run_hooks("private_do_export_end");


	$plugins->run_hooks("private_do_export_end");

		// Update PM count
		update_pm_count();
	}

		// Update PM count
		update_pm_count();
	}

	if($mybb->input['exporttype'] == "html")
	{
		$filename = "pm-archive.html";

	if($mybb->input['exporttype'] == "html")
	{
		$filename = "pm-archive.html";

		$filename = "pm-archive.txt";
		$contenttype = "text/plain";
	}

		$filename = "pm-archive.txt";
		$contenttype = "text/plain";
	}

	$archived = str_replace("\\\'","'",$archived);
	header("Content-disposition: filename=$filename");
	header("Content-type: ".$contenttype);

	$archived = str_replace("\\\'","'",$archived);
	header("Content-disposition: filename=$filename");
	header("Content-type: ".$contenttype);

	if($mybb->input['exporttype'] == "html")

	if($mybb->input['exporttype'] == "html")

		output_page($archived);
	}
	else

		output_page($archived);
	}
	else

		echo $archived;
	}
}

		echo $archived;
	}
}

if(!$mybb->input['action'])
{
	$plugins->run_hooks("private_start");

if(!$mybb->input['action'])
{
	$plugins->run_hooks("private_start");

	if(!$mybb->input['fid'] || !array_key_exists($mybb->input['fid'], $foldernames))
	{
		$mybb->input['fid'] = 1;
	}

	if(!$mybb->input['fid'] || !array_key_exists($mybb->input['fid'], $foldernames))
	{
		$mybb->input['fid'] = 1;
	}

	$folder = $mybb->input['fid'];
	$foldername = $foldernames[$folder];

	$folder = $mybb->input['fid'];
	$foldername = $foldernames[$folder];


	$perpage = $mybb->settings['threadsperpage'];
	$page = intval($mybb->input['page']);


	$perpage = $mybb->settings['threadsperpage'];
	$page = intval($mybb->input['page']);

	if(intval($mybb->input['page']) > 0)
	{
		$start = ($page-1) *$perpage;
	}
	else

	if(intval($mybb->input['page']) > 0)
	{
		$start = ($page-1) *$perpage;
	}
	else

		$start = 0;
		$page = 1;
	}

		$start = 0;
		$page = 1;
	}

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

	$end = $start + $perpage;
	$lower = $start+1;
	$upper = $end;

	if($upper > $threadcount)

	if($upper > $threadcount)

		$upper = $threadcount;
	}
	$multipage = multipage($pmscount['total'], $perpage, $page, "private.php?fid=$folder");
	$messagelist = '';

		$upper = $threadcount;
	}
	$multipage = multipage($pmscount['total'], $perpage, $page, "private.php?fid=$folder");
	$messagelist = '';

	$icon_cache = $cache->read("posticons");

	$icon_cache = $cache->read("posticons");

	// Cache users in multiple recipients for sent & drafts folder
	if($folder == 2 || $folder == 3)

	// Cache users in multiple recipients for sent & drafts folder
	if($folder == 2 || $folder == 3)

		// Get all recipients into an array
		$cached_users = $get_users = array();
		$users_query = $db->simple_select("privatemessages", "recipients", "folder='$folder' AND uid='{$mybb->user['uid']}'", array('limit_start' => $start, 'limit' => $perpage, 'order_by' => 'dateline', 'order_dir' => 'DESC'));

		// Get all recipients into an array
		$cached_users = $get_users = array();
		$users_query = $db->simple_select("privatemessages", "recipients", "folder='$folder' AND uid='{$mybb->user['uid']}'", array('limit_start' => $start, 'limit' => $perpage, 'order_by' => 'dateline', 'order_dir' => 'DESC'));

			{
				$get_users = array_merge($get_users, $recipients['to']);
			}

			{
				$get_users = array_merge($get_users, $recipients['to']);
			}

			if(is_array($recipients['bcc']) && count($recipients['bcc']))

			if(is_array($recipients['bcc']) && count($recipients['bcc']))

				$get_users = array_merge($get_users, $recipients['bcc']);

				$get_users = array_merge($get_users, $recipients['bcc']);

		$get_users = implode(',', array_unique($get_users));

		$get_users = implode(',', array_unique($get_users));

		// Grab info
		if($get_users)
		{

		// Grab info
		if($get_users)
		{

			}
		}
	}

			}
		}
	}

	$query = $db->query("
		SELECT pm.*, fu.username AS fromusername, tu.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

	$query = $db->query("
		SELECT pm.*, fu.username AS fromusername, tu.username as tousername
		FROM ".TABLE_PREFIX."privatemessages pm

		ORDER BY pm.dateline DESC
		LIMIT $start, $perpage
	");

		ORDER BY pm.dateline DESC
		LIMIT $start, $perpage
	");

	if($db->num_rows($query) > 0)
	{
		while($message = $db->fetch_array($query))

	if($db->num_rows($query) > 0)
	{
		while($message = $db->fetch_array($query))

				$msgfolder = 'fw_pm.gif';
				$msgalt = $lang->fwd_pm;
			}

				$msgfolder = 'fw_pm.gif';
				$msgalt = $lang->fwd_pm;
			}

			if($folder == 2 || $folder == 3)
			{ // Sent Items or Drafts Folder Check
				$recipients = unserialize($message['recipients']);

			if($folder == 2 || $folder == 3)
			{ // Sent Items or Drafts Folder Check
				$recipients = unserialize($message['recipients']);

						{
							$username = $lang->na;
						}

						{
							$username = $lang->na;
						}

					}
					if(is_array($recipients['bcc']) && count($recipients['bcc']))
					{

					}
					if(is_array($recipients['bcc']) && count($recipients['bcc']))
					{

							{
								$username = $lang->na;
							}

							{
								$username = $lang->na;
							}

						}
					}

						}
					}

					eval("\$tofromusername = \"".$templates->get("private_multiple_recipients")."\";");
				}
				else if($message['toid'])

					eval("\$tofromusername = \"".$templates->get("private_multiple_recipients")."\";");
				}
				else if($message['toid'])

				{
					$tofromusername = $lang->mybb_engine;
				}

				{
					$tofromusername = $lang->mybb_engine;
				}

				if(!$tofromusername)
				{
					$tofromuid = 0;
					$tofromusername = $lang->na;
				}
			}

				if(!$tofromusername)
				{
					$tofromuid = 0;
					$tofromusername = $lang->na;
				}
			}

			$tofromusername = build_profile_link($tofromusername, $tofromuid);

			$tofromusername = build_profile_link($tofromusername, $tofromuid);

			{
				eval("\$denyreceipt = \"".$templates->get("private_messagebit_denyreceipt")."\";");

			{
				eval("\$denyreceipt = \"".$templates->get("private_messagebit_denyreceipt")."\";");

			{
				$denyreceipt = '';
			}

			{
				$denyreceipt = '';
			}

			if($message['icon'] > 0 && $icon_cache[$message['icon']])
			{
				$icon = $icon_cache[$message['icon']];
				$icon = "<img src=\"{$icon['path']}\" alt=\"{$icon['name']}\" align=\"center\" valign=\"middle\" />";

			if($message['icon'] > 0 && $icon_cache[$message['icon']])
			{
				$icon = $icon_cache[$message['icon']];
				$icon = "<img src=\"{$icon['path']}\" alt=\"{$icon['name']}\" align=\"center\" valign=\"middle\" />";

			else
			{
				$icon = '&#009;';
			}

			else
			{
				$icon = '&#009;';
			}

			if(!trim($message['subject']))
			{
				$message['subject'] = $lang->pm_no_subject;

			if(!trim($message['subject']))
			{
				$message['subject'] = $lang->pm_no_subject;

		if($pmscount['total'] == 0)
		{
			$spaceused = 0;

		if($pmscount['total'] == 0)
		{
			$spaceused = 0;

		{
			$spaceused = $pmscount['total'] / $mybb->usergroup['pmquota'] * 100;
		}

		{
			$spaceused = $pmscount['total'] / $mybb->usergroup['pmquota'] * 100;
		}

			if(intval($belowhalf) > 100)
			{
				$belowhalf = "100%";

			if(intval($belowhalf) > 100)
			{
				$belowhalf = "100%";

		}
		else
		{

		}
		else
		{

				$overhalf = "100%";
			}
		}

				$overhalf = "100%";
			}
		}

		eval("\$pmspacebar = \"".$templates->get("private_pmspace")."\";");
	}

		eval("\$pmspacebar = \"".$templates->get("private_pmspace")."\";");
	}

	if($mybb->usergroup['pmquota'] != "0" && $pmscount['total'] >= $mybb->usergroup['pmquota'] && $mybb->usergroup['cancp'] != 1)
	{
		eval("\$limitwarning = \"".$templates->get("private_limitwarning")."\";");
	}

	if($mybb->usergroup['pmquota'] != "0" && $pmscount['total'] >= $mybb->usergroup['pmquota'] && $mybb->usergroup['cancp'] != 1)
	{
		eval("\$limitwarning = \"".$templates->get("private_limitwarning")."\";");
	}

	$plugins->run_hooks("private_end");

	$plugins->run_hooks("private_end");

	eval("\$folder = \"".$templates->get("private")."\";");
	output_page($folder);
}

	eval("\$folder = \"".$templates->get("private")."\";");
	output_page($folder);
}