Vergleich modcp.php - 1.8.6 - 1.8.12

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 11	Zeile 11
define("IN_MYBB", 1); define('THIS_SCRIPT', 'modcp.php');	define("IN_MYBB", 1); define('THIS_SCRIPT', 'modcp.php');
$templatelist = "modcp_reports,modcp_reports_report,modcp_reports_multipage,modcp_reports_allreport,modcp_reports_allreports,modcp_modlogs_multipage,modcp_announcements_delete,modcp_announcements_edit,modcp_awaitingmoderation,modcp_banuser_bangroups_hidden"; $templatelist .= ",modcp_reports_allnoreports,modcp_reports_noreports,modcp_banning,modcp_banning_ban,modcp_announcements_announcement_global,modcp_no_announcements_forum,modcp_modqueue_threads_thread,modcp_awaitingthreads,modcp_banuser_bangroups"; $templatelist .= ",modcp_banning_nobanned,modcp_modqueue_threads_empty,modcp_modqueue_masscontrols,modcp_modqueue_threads,modcp_modqueue_posts_post,modcp_modqueue_posts_empty,modcp_awaitingposts,modcp_nav_editprofile";	$templatelist = "modcp_reports,modcp_reports_report,modcp_reports_multipage,modcp_reports_allreport,modcp_reports_allreports,modcp_modlogs_multipage,modcp_announcements_delete,modcp_announcements_edit,modcp_awaitingmoderation"; $templatelist .= ",modcp_reports_allnoreports,modcp_reports_noreports,modcp_banning,modcp_banning_ban,modcp_announcements_announcement_global,modcp_no_announcements_forum,modcp_modqueue_threads_thread,modcp_awaitingthreads,preview"; $templatelist .= ",modcp_banning_nobanned,modcp_modqueue_threads_empty,modcp_modqueue_masscontrols,modcp_modqueue_threads,modcp_modqueue_posts_post,modcp_modqueue_posts_empty,modcp_awaitingposts,modcp_nav_editprofile,modcp_nav_banning";
$templatelist .= ",modcp_nav,modcp_modlogs_noresults,modcp_modlogs_nologs,modcp,modcp_modqueue_posts,modcp_modqueue_attachments_attachment,modcp_modqueue_attachments_empty,modcp_modqueue_attachments,modcp_editprofile_suspensions_info"; $templatelist .= ",modcp_no_announcements_global,modcp_announcements_global,modcp_announcements_forum,modcp_announcements,modcp_editprofile_select_option,modcp_editprofile_select,modcp_finduser_noresults, modcp_nav_forums_posts";	$templatelist .= ",modcp_nav,modcp_modlogs_noresults,modcp_modlogs_nologs,modcp,modcp_modqueue_posts,modcp_modqueue_attachments_attachment,modcp_modqueue_attachments_empty,modcp_modqueue_attachments,modcp_editprofile_suspensions_info"; $templatelist .= ",modcp_no_announcements_global,modcp_announcements_global,modcp_announcements_forum,modcp_announcements,modcp_editprofile_select_option,modcp_editprofile_select,modcp_finduser_noresults, modcp_nav_forums_posts";
$templatelist .= ",codebuttons,smilieinsert,modcp_announcements_new,modcp_modqueue_empty,forumjump_bit,forumjump_special,modcp_warninglogs_warning_revoked,modcp_warninglogs_warning,modcp_ipsearch_result,modcp_nav_modqueue,modcp_banuser_liftlist";	$templatelist .= ",codebuttons,modcp_announcements_new,modcp_modqueue_empty,forumjump_bit,forumjump_special,modcp_warninglogs_warning_revoked,modcp_warninglogs_warning,modcp_ipsearch_result,modcp_nav_modqueue,modcp_banuser_liftlist";
$templatelist .= ",modcp_modlogs,modcp_finduser_user,modcp_finduser,usercp_profile_customfield,usercp_profile_profilefields,modcp_ipsearch_noresults,modcp_ipsearch_results,modcp_ipsearch_misc_info,modcp_nav_announcements,modcp_modqueue_post_link"; $templatelist .= ",modcp_editprofile,modcp_ipsearch,modcp_banuser_addusername,modcp_banuser,modcp_warninglogs_nologs,modcp_banuser_editusername,modcp_lastattachment,modcp_lastpost,modcp_lastthread,modcp_nobanned,modcp_modqueue_thread_link";	$templatelist .= ",modcp_modlogs,modcp_finduser_user,modcp_finduser,usercp_profile_customfield,usercp_profile_profilefields,modcp_ipsearch_noresults,modcp_ipsearch_results,modcp_ipsearch_misc_info,modcp_nav_announcements,modcp_modqueue_post_link"; $templatelist .= ",modcp_editprofile,modcp_ipsearch,modcp_banuser_addusername,modcp_banuser,modcp_warninglogs_nologs,modcp_banuser_editusername,modcp_lastattachment,modcp_lastpost,modcp_lastthread,modcp_nobanned,modcp_modqueue_thread_link";
$templatelist .= ",modcp_warninglogs,modcp_modlogs_result,modcp_editprofile_signature,forumjump_advanced,smilieinsert_getmore,smilieinsert_smilie,smilieinsert_smilie_empty,modcp_announcements_forum_nomod,modcp_announcements_announcement"; $templatelist .= ",multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,modcp_editprofile_away,modcp_awaitingattachments,modcp_modqueue_attachment_link,modcp_latestfivemodactions,modcp_nav_banning"; $templatelist .= ",postbit_groupimage,postbit_userstar,postbit_online,postbit_offline,postbit_away,postbit_avatar,postbit_find,postbit_pm,postbit_email,postbit_www,postbit_author_user,announcement_edit,announcement_quickdelete,postbit,preview,postmodcp_nav_announcements,modcp_nav_reportcenter,modcp_nav_modlogs"; $templatelist .= ",modcp_awaitingmoderation_none,modcp_banning_edit,modcp_banuser_bangroups_group,modcp_banuser_lift,modcp_modlogs_result_announcement,modcp_modlogs_result_forum,modcp_modlogs_result_post,modcp_modlogs_result_thread,modcp_modlogs_user";	$templatelist .= ",modcp_warninglogs,modcp_modlogs_result,modcp_editprofile_signature,forumjump_advanced,modcp_announcements_forum_nomod,modcp_announcements_announcement,usercp_profile_away,modcp_modlogs_user,modcp_editprofile_away"; $templatelist .= ",multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,modcp_awaitingattachments,modcp_modqueue_attachment_link"; $templatelist .= ",postbit_groupimage,postbit_userstar,postbit_online,postbit_offline,postbit_away,postbit_avatar,postbit_find,postbit_pm,postbit_email,postbit_www,postbit_author_user,announcement_edit,announcement_quickdelete"; $templatelist .= ",modcp_awaitingmoderation_none,modcp_banning_edit,modcp_banuser_bangroups_group,modcp_banuser_lift,modcp_modlogs_result_announcement,modcp_modlogs_result_forum,modcp_modlogs_result_post,modcp_modlogs_result_thread";
$templatelist .= ",modcp_nav_warninglogs,modcp_nav_ipsearch,modcp_nav_users,modcp_announcements_day,modcp_announcements_month_start,modcp_announcements_month_end,modcp_announcements_announcement_expired,modcp_announcements_announcement_active";	$templatelist .= ",modcp_nav_warninglogs,modcp_nav_ipsearch,modcp_nav_users,modcp_announcements_day,modcp_announcements_month_start,modcp_announcements_month_end,modcp_announcements_announcement_expired,modcp_announcements_announcement_active";
$templatelist .= ",modcp_modqueue_link_forum,modcp_modqueue_link_thread,usercp_profile_day,usercp_profile_away,modcp_ipsearch_result_regip,modcp_ipsearch_result_lastip,modcp_ipsearch_result_post,modcp_ipsearch_results_information,usercp_profile_profilefields_text"; $templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,usercp_profile_profilefields_checkbox";	$templatelist .= ",modcp_modqueue_link_forum,modcp_modqueue_link_thread,usercp_profile_day,modcp_ipsearch_result_regip,modcp_ipsearch_result_lastip,modcp_ipsearch_result_post,modcp_ipsearch_results_information,usercp_profile_profilefields_text"; $templatelist .= ",usercp_profile_profilefields_select_option,usercp_profile_profilefields_multiselect,usercp_profile_profilefields_select,usercp_profile_profilefields_textarea,usercp_profile_profilefields_radio,postbit"; $templatelist .= ",modcp_banning_remaining,postmodcp_nav_announcements,modcp_nav_reportcenter,modcp_nav_modlogs,modcp_latestfivemodactions,modcp_banuser_bangroups_hidden,modcp_banuser_bangroups,usercp_profile_profilefields_checkbox";
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_user.php";	require_once "./global.php"; require_once MYBB_ROOT."inc/functions_user.php";
Zeile 383	Zeile 384
// Reports $reports = ''; $query = $db->query("	// Reports $reports = ''; $query = $db->query("
SELECT r.*, u.username	SELECT r.*, u.username, rr.title
FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."users u ON (r.uid = u.uid)	FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."users u ON (r.uid = u.uid)
	LEFT JOIN ".TABLE_PREFIX."reportreasons rr ON (r.reasonid = rr.rid)
WHERE r.reportstatus = '0'{$tflist_reports} ORDER BY r.reports DESC LIMIT {$start}, {$perpage}	WHERE r.reportstatus = '0'{$tflist_reports} ORDER BY r.reports DESC LIMIT {$start}, {$perpage}
Zeile 509	Zeile 511
{ case 'post': $post = get_post_link($report['id'])."#pid{$report['id']}";	{ case 'post': $post = get_post_link($report['id'])."#pid{$report['id']}";
$user = build_profile_link($postcache[$report['id']]['username'], $postcache[$report['id']]['uid']);	$user = build_profile_link(htmlspecialchars_uni($postcache[$report['id']]['username']), $postcache[$report['id']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($postcache[$report['id']]['tid']);	$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($postcache[$report['id']]['tid']);
$thread_subject = htmlspecialchars_uni($postcache[$report['id']]['subject']);	$thread_subject = htmlspecialchars_uni($parser->parse_badwords($postcache[$report['id']]['subject']));
$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); break; case 'profile':	$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); break; case 'profile':
$user = build_profile_link($usercache[$report['id']]['username'], $usercache[$report['id']]['uid']);	$user = build_profile_link(htmlspecialchars_uni($usercache[$report['id']]['username']), $usercache[$report['id']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); break; case 'reputation': $reputation_link = "reputation.php?uid={$usercache[$report['id3']]['uid']}#rid{$report['id']}";	$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); break; case 'reputation': $reputation_link = "reputation.php?uid={$usercache[$report['id3']]['uid']}#rid{$report['id']}";
$bad_user = build_profile_link($usercache[$report['id2']]['username'], $usercache[$report['id2']]['uid']);	$bad_user = build_profile_link(htmlspecialchars_uni($usercache[$report['id2']]['username']), $usercache[$report['id2']]['uid']);
$report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $bad_user);	$report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $bad_user);
$good_user = build_profile_link($usercache[$report['id3']]['username'], $usercache[$report['id3']]['uid']);	$good_user = build_profile_link(htmlspecialchars_uni($usercache[$report['id3']]['username']), $usercache[$report['id3']]['uid']);
$report_data['content'] .= $lang->sprintf($lang->report_info_rep_profile, $good_user); break; } // Report reason and comment	$report_data['content'] .= $lang->sprintf($lang->report_info_rep_profile, $good_user); break; } // Report reason and comment
$report_data['comment'] = $lang->na; $report_string = "report_reason_{$report['reason']}"; if(isset($lang->$report_string))	if($report['reasonid'] > 0)
{	{
$report_data['comment'] = $lang->$report_string;	$reason = htmlspecialchars_uni($lang->parse($report['title'])); if(empty($report['reason'])) { eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment")."\";"); } else { $comment = htmlspecialchars_uni($report['reason']); eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment_extra")."\";"); }
}	}
else if(!empty($report['reason']))	else
{	{
$report_data['comment'] = htmlspecialchars_uni($report['reason']);	$report_data['comment'] = $lang->na;
} $report_reports = 1;	} $report_reports = 1;
Zeile 554	Zeile 563
{ if(is_array($usercache[$report['lastreporter']])) {	{ if(is_array($usercache[$report['lastreporter']])) {
$lastreport_user = build_profile_link($usercache[$report['lastreporter']]['username'], $report['lastreporter']);	$lastreport_user = build_profile_link(htmlspecialchars_uni($usercache[$report['lastreporter']]['username']), $report['lastreporter']);
} elseif($usercache[$report['lastreporter']] > 0) {	} elseif($usercache[$report['lastreporter']] > 0) {
Zeile 635	Zeile 644
} } $postcount = (int)$report_count;	} } $postcount = (int)$report_count;
$pages = $postcount / $perpage; $pages = ceil($pages); if($mybb->get_input('page') == "last") { $page = $pages; } if($page > $pages \|\| $page <= 0) { $page = 1; } if($page) { $start = ($page-1) * $perpage; } else { $start = 0; $page = 1; }	$pages = $postcount / $perpage; $pages = ceil($pages); if($mybb->get_input('page') == "last") { $page = $pages; } if($page > $pages \|\| $page <= 0) { $page = 1; } if($page) { $start = ($page-1) * $perpage; } else { $start = 0; $page = 1; }
$upper = $start+$perpage; $multipage = multipage($postcount, $perpage, $page, "modcp.php?action=allreports");	$upper = $start+$perpage; $multipage = multipage($postcount, $perpage, $page, "modcp.php?action=allreports");
Zeile 664	Zeile 673
if($postcount > $perpage) { eval("\$allreportspages = \"".$templates->get("modcp_reports_multipage")."\";");	if($postcount > $perpage) { eval("\$allreportspages = \"".$templates->get("modcp_reports_multipage")."\";");
}	}
$plugins->run_hooks("modcp_allreports_start"); $query = $db->query("	$plugins->run_hooks("modcp_allreports_start"); $query = $db->query("
SELECT r.*, u.username, p.username AS postusername, up.uid AS postuid, t.subject AS threadsubject, prrep.username AS repusername, pr.username AS profileusername	SELECT r.*, u.username, p.username AS postusername, up.uid AS postuid, t.subject AS threadsubject, prrep.username AS repusername, pr.username AS profileusername, rr.title
FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."posts p ON (r.id=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (p.tid=t.tid)	FROM ".TABLE_PREFIX."reportedcontent r LEFT JOIN ".TABLE_PREFIX."posts p ON (r.id=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (p.tid=t.tid)
Zeile 677	Zeile 686
LEFT JOIN ".TABLE_PREFIX."users up ON (p.uid=up.uid) LEFT JOIN ".TABLE_PREFIX."users pr ON (pr.uid=r.id) LEFT JOIN ".TABLE_PREFIX."users prrep ON (prrep.uid=r.id2)	LEFT JOIN ".TABLE_PREFIX."users up ON (p.uid=up.uid) LEFT JOIN ".TABLE_PREFIX."users pr ON (pr.uid=r.id) LEFT JOIN ".TABLE_PREFIX."users prrep ON (prrep.uid=r.id2)
	LEFT JOIN ".TABLE_PREFIX."reportreasons rr ON (r.reasonid = rr.rid)
{$wflist_reports} ORDER BY r.dateline DESC LIMIT {$start}, {$perpage}	{$wflist_reports} ORDER BY r.dateline DESC LIMIT {$start}, {$perpage}
Zeile 696	Zeile 706
if($report['type'] == 'post') { $post = get_post_link($report['id'])."#pid{$report['id']}";	if($report['type'] == 'post') { $post = get_post_link($report['id'])."#pid{$report['id']}";
$user = build_profile_link($report['postusername'], $report['postuid']);	$user = build_profile_link(htmlspecialchars_uni($report['postusername']), $report['postuid']);
$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($report['id2']);	$report_data['content'] = $lang->sprintf($lang->report_info_post, $post, $user); $thread_link = get_thread_link($report['id2']);
$thread_subject = htmlspecialchars_uni($report['threadsubject']);	$thread_subject = htmlspecialchars_uni($parser->parse_badwords($report['threadsubject']));
$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); } else if($report['type'] == 'profile') {	$report_data['content'] .= $lang->sprintf($lang->report_info_post_thread, $thread_link, $thread_subject); } else if($report['type'] == 'profile') {
$user = build_profile_link($report['profileusername'], $report['id']);	$user = build_profile_link(htmlspecialchars_uni($report['profileusername']), $report['id']);
$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); } else if($report['type'] == 'reputation') {	$report_data['content'] = $lang->sprintf($lang->report_info_profile, $user); } else if($report['type'] == 'reputation') {
$user = build_profile_link($report['repusername'], $report['id2']);	$user = build_profile_link(htmlspecialchars_uni($report['repusername']), $report['id2']);
$reputation_link = "reputation.php?uid={$report['id3']}#rid{$report['id']}"; $report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $user); } // Report reason and comment	$reputation_link = "reputation.php?uid={$report['id3']}#rid{$report['id']}"; $report_data['content'] = $lang->sprintf($lang->report_info_reputation, $reputation_link, $user); } // Report reason and comment
$report_data['comment'] = $lang->na; $report_string = "report_reason_{$report['reason']}";	if($report['reasonid'] > 0) { $reason = htmlspecialchars_uni($lang->parse($report['title'])); if(empty($report['reason'])) { eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment")."\";"); } else { $comment = htmlspecialchars_uni($report['reason']); eval("\$report_data['comment'] = \"".$templates->get("modcp_reports_report_comment_extra")."\";"); } } else { $report_data['comment'] = $lang->na; }
$report['reporterlink'] = get_profile_link($report['uid']); if(!$report['username'])	$report['reporterlink'] = get_profile_link($report['uid']); if(!$report['username'])
Zeile 725	Zeile 751
$report['username'] = $lang->na_deleted; $report['reporterlink'] = $post; }	$report['username'] = $lang->na_deleted; $report['reporterlink'] = $post; }
if(isset($lang->$report_string)) { $report_data['comment'] = $lang->$report_string; } else if(!empty($report['reason'])) { $report_data['comment'] = htmlspecialchars_uni($report['reason']); }	$report['username'] = htmlspecialchars_uni($report['username']);
$report_data['reports'] = my_number_format($report['reports']); $report_data['time'] = my_date('relative', $report['dateline']);	$report_data['reports'] = my_number_format($report['reports']); $report_data['time'] = my_date('relative', $report['dateline']);
Zeile 741	Zeile 759
$plugins->run_hooks("modcp_allreports_report"); eval("\$allreports .= \"".$templates->get("modcp_reports_allreport")."\";"); }	$plugins->run_hooks("modcp_allreports_report"); eval("\$allreports .= \"".$templates->get("modcp_reports_allreport")."\";"); }
} $plugins->run_hooks("modcp_allreports_end");	} $plugins->run_hooks("modcp_allreports_end");
eval("\$allreportedcontent = \"".$templates->get("modcp_reports_allreports")."\";"); output_page($allreportedcontent); }	eval("\$allreportedcontent = \"".$templates->get("modcp_reports_allreports")."\";"); output_page($allreportedcontent); }
Zeile 773	Zeile 791
// Searching for entries by a particular user if($mybb->get_input('uid', MyBB::INPUT_INT))	// Searching for entries by a particular user if($mybb->get_input('uid', MyBB::INPUT_INT))
{	{
$where .= " AND l.uid='".$mybb->get_input('uid', MyBB::INPUT_INT)."'";	$where .= " AND l.uid='".$mybb->get_input('uid', MyBB::INPUT_INT)."'";
}	}
// Searching for entries in a specific forum if($mybb->get_input('fid', MyBB::INPUT_INT)) { $where .= " AND t.fid='".$mybb->get_input('fid', MyBB::INPUT_INT)."'";	// Searching for entries in a specific forum if($mybb->get_input('fid', MyBB::INPUT_INT)) { $where .= " AND t.fid='".$mybb->get_input('fid', MyBB::INPUT_INT)."'";
} $mybb->input['sortby'] = $mybb->get_input('sortby');	} $mybb->input['sortby'] = $mybb->get_input('sortby');
// Order? switch($mybb->input['sortby']) {	// Order? switch($mybb->input['sortby']) {
Zeile 830	Zeile 848
if($mybb->get_input('page') == "last") { $page = $pages;	if($mybb->get_input('page') == "last") { $page = $pages;
}	}
if($page > $pages \|\| $page <= 0) { $page = 1;	if($page > $pages \|\| $page <= 0) { $page = 1;
Zeile 845	Zeile 863
{ $start = 0; $page = 1;	{ $start = 0; $page = 1;
}	}
$page_url = 'modcp.php?action=modlogs&perpage='.$perpage; foreach(array('uid', 'fid') as $field) { $mybb->input[$field] = $mybb->get_input($field, MyBB::INPUT_INT);	$page_url = 'modcp.php?action=modlogs&perpage='.$perpage; foreach(array('uid', 'fid') as $field) { $mybb->input[$field] = $mybb->get_input($field, MyBB::INPUT_INT);
if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field]; }	if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field]; }
} foreach(array('sortby', 'order') as $field) {	} foreach(array('sortby', 'order') as $field) {
Zeile 862	Zeile 880
if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];	if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];
}	}
} $multipage = multipage($postcount, $perpage, $page, $page_url);	} $multipage = multipage($postcount, $perpage, $page, $page_url);
Zeile 889	Zeile 907
$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();	$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();
	$logitem['username'] = htmlspecialchars_uni($logitem['username']);
$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {	$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {
$logitem['tsubject'] = htmlspecialchars_uni($logitem['tsubject']);	$logitem['tsubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['tsubject']));
$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }	$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }
Zeile 906	Zeile 925
} if($logitem['psubject']) {	} if($logitem['psubject']) {
$logitem['psubject'] = htmlspecialchars_uni($logitem['psubject']);	$logitem['psubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['psubject']));
$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";");	$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";");
}	}
// Edited a user or managed announcement? if(!$logitem['tsubject'] \|\| !$logitem['fname'] \|\| !$logitem['psubject']) { $data = my_unserialize($logitem['data']); if(!empty($data['uid']))	// Edited a user or managed announcement? if(!$logitem['tsubject'] \|\| !$logitem['fname'] \|\| !$logitem['psubject']) { $data = my_unserialize($logitem['data']); if(!empty($data['uid']))
{	{ $data['username'] = htmlspecialchars_uni($data['username']);
$information = $lang->sprintf($lang->edited_user_info, htmlspecialchars_uni($data['username']), get_profile_link($data['uid']));	$information = $lang->sprintf($lang->edited_user_info, htmlspecialchars_uni($data['username']), get_profile_link($data['uid']));
}	}
if(!empty($data['aid'])) {	if(!empty($data['aid'])) {
$data['subject'] = htmlspecialchars_uni($data['subject']);	$data['subject'] = htmlspecialchars_uni($parser->parse_badwords($data['subject']));
$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); }	$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); }
}	} $plugins->run_hooks("modcp_modlogs_result");
eval("\$results .= \"".$templates->get("modcp_modlogs_result")."\";"); }	eval("\$results .= \"".$templates->get("modcp_modlogs_result")."\";"); }
Zeile 955	Zeile 977
if(!$user['username']) { $user['username'] = $lang->na_deleted;	if(!$user['username']) { $user['username'] = $lang->na_deleted;
}	}
$selected = ''; if($mybb->get_input('uid', MyBB::INPUT_INT) == $user['uid'])	$selected = ''; if($mybb->get_input('uid', MyBB::INPUT_INT) == $user['uid'])
Zeile 971	Zeile 993
eval("\$modlogs = \"".$templates->get("modcp_modlogs")."\";"); output_page($modlogs);	eval("\$modlogs = \"".$templates->get("modcp_modlogs")."\";"); output_page($modlogs);
}	}
if($mybb->input['action'] == "do_delete_announcement")	if($mybb->input['action'] == "do_delete_announcement")
{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'"); $announcement = $db->fetch_array($query); if(!$announcement) { error($lang->error_invalid_announcement); } if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }	{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'"); $announcement = $db->fetch_array($query); if(!$announcement) { error($lang->error_invalid_announcement); } if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }
$plugins->run_hooks("modcp_do_delete_announcement");	$plugins->run_hooks("modcp_do_delete_announcement");

$db->delete_query("announcements", "aid='{$aid}'"); log_moderator_action(array("aid" => $announcement['aid'], "subject" => $announcement['subject']), $lang->announcement_deleted); $cache->update_forumsdisplay(); redirect("modcp.php?action=announcements", $lang->redirect_delete_announcement);	$db->delete_query("announcements", "aid='{$aid}'"); log_moderator_action(array("aid" => $announcement['aid'], "subject" => $announcement['subject']), $lang->announcement_deleted); $cache->update_forumsdisplay(); redirect("modcp.php?action=announcements", $lang->redirect_delete_announcement);
}	}
if($mybb->input['action'] == "delete_announcement")	if($mybb->input['action'] == "delete_announcement")
{ if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); }	{ if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); }
$aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'");	$aid = $mybb->get_input('aid'); $query = $db->simple_select("announcements", "aid, subject, fid", "aid='{$aid}'");

$announcement = $db->fetch_array($query);	$announcement = $db->fetch_array($query);
$announcement['subject'] = htmlspecialchars_uni($announcement['subject']);	$announcement['subject'] = htmlspecialchars_uni($parser->parse_badwords($announcement['subject']));
if(!$announcement)	if(!$announcement)
{	{
error($lang->error_invalid_announcement); }	error($lang->error_invalid_announcement); }
if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }	if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums))) { error_no_permission(); }
$plugins->run_hooks("modcp_delete_announcement");	$plugins->run_hooks("modcp_delete_announcement");

eval("\$announcements = \"".$templates->get("modcp_announcements_delete")."\";"); output_page($announcements); }	eval("\$announcements = \"".$templates->get("modcp_announcements_delete")."\";"); output_page($announcements); }

if($mybb->input['action'] == "do_new_announcement")	if($mybb->input['action'] == "do_new_announcement")
{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $announcement_fid = $mybb->get_input('fid', MyBB::INPUT_INT); if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission(); } $errors = array(); $mybb->input['title'] = $mybb->get_input('title'); if(!trim($mybb->input['title'])) { $errors[] = $lang->error_missing_title; } $mybb->input['message'] = $mybb->get_input('message'); if(!trim($mybb->input['message'])) { $errors[] = $lang->error_missing_message; }	{ verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0) { error_no_permission(); } $announcement_fid = $mybb->get_input('fid', MyBB::INPUT_INT); if(($mybb->usergroup['issupermod'] != 1 && $announcement_fid == -1) \|\| ($announcement_fid != -1 && !is_moderator($announcement_fid, "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement_fid, $unviewableforums))) { error_no_permission(); } $errors = array(); $mybb->input['title'] = $mybb->get_input('title'); if(!trim($mybb->input['title'])) { $errors[] = $lang->error_missing_title; } $mybb->input['message'] = $mybb->get_input('message'); if(!trim($mybb->input['message'])) { $errors[] = $lang->error_missing_message; }
if(!$announcement_fid) { $errors[] = $lang->error_missing_forum;	if(!$announcement_fid) { $errors[] = $lang->error_missing_forum;
Zeile 1099	Zeile 1121
$mybb->input['starttime_month'] = '01'; }	$mybb->input['starttime_month'] = '01'; }
$startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT));	$localized_time_offset = (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;	if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;
Zeile 1117	Zeile 1141
{ $mybb->input['endtime_month'] = '01'; }	{ $mybb->input['endtime_month'] = '01'; }
$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT));	$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date; } if($enddate <= $startdate)	if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date; } if($enddate <= $startdate)
{ $errors[] = $lang->error_end_before_start; } }	{ $errors[] = $lang->error_end_before_start; } }
if($mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1) {	if($mybb->get_input('allowhtml', MyBB::INPUT_INT) == 1) {
Zeile 1159	Zeile 1183
if(!$errors) { if(isset($mybb->input['preview']))	if(!$errors) { if(isset($mybb->input['preview']))
{	{
$preview = array(); $mybb->input['action'] = 'new_announcement'; }	$preview = array(); $mybb->input['action'] = 'new_announcement'; }
Zeile 1189	Zeile 1213
else { $mybb->input['action'] = 'new_announcement';	else { $mybb->input['action'] = 'new_announcement';
} }	} }
if($mybb->input['action'] == "new_announcement") { if($mybb->usergroup['canmanageannounce'] == 0)	if($mybb->input['action'] == "new_announcement") { if($mybb->usergroup['canmanageannounce'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
add_breadcrumb($lang->mcp_nav_announcements, "modcp.php?action=announcements"); add_breadcrumb($lang->add_announcement, "modcp.php?action=new_announcements");	add_breadcrumb($lang->mcp_nav_announcements, "modcp.php?action=announcements"); add_breadcrumb($lang->add_announcement, "modcp.php?action=new_announcements");
Zeile 1239	Zeile 1263
} else {	} else {
// Note: dates are in GMT timezone $starttime_time = gmdate("g:i a", TIME_NOW); $endtime_time = gmdate("g:i a", TIME_NOW); $startday = $endday = gmdate("j", TIME_NOW); $startmonth = $endmonth = gmdate("m", TIME_NOW); $startdateyear = gmdate("Y", TIME_NOW);	$localized_time = TIME_NOW + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $starttime_time = gmdate($mybb->settings['timeformat'], $localized_time); $endtime_time = gmdate($mybb->settings['timeformat'], $localized_time); $startday = $endday = gmdate("j", $localized_time); $startmonth = $endmonth = gmdate("m", $localized_time); $startdateyear = gmdate("Y", $localized_time);
$announcement = array( 'subject' => '',	$announcement = array( 'subject' => '',
Zeile 1260	Zeile 1285
// Generate form elements $startdateday = $enddateday = ''; for($day = 1; $day <= 31; ++$day)	// Generate form elements $startdateday = $enddateday = ''; for($day = 1; $day <= 31; ++$day)
{	{
if($startday == $day)	if($startday == $day)
{ $selected = " selected=\"selected\""; eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); } else { $selected = '';	{ $selected = " selected=\"selected\""; eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); } else { $selected = '';
eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); } if($endday == $day) { $selected = " selected=\"selected\"";	eval("\$startdateday .= \"".$templates->get("modcp_announcements_day")."\";"); } if($endday == $day) { $selected = " selected=\"selected\"";
eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";"); }	eval("\$enddateday .= \"".$templates->get("modcp_announcements_day")."\";"); }
else { $selected = '';	else { $selected = '';
Zeile 1292	Zeile 1317
} $startmonthsel[$startmonth] = "selected=\"selected\""; $endmonthsel[$endmonth] = "selected=\"selected\"";	} $startmonthsel[$startmonth] = "selected=\"selected\""; $endmonthsel[$endmonth] = "selected=\"selected\"";

$startdatemonth = $enddatemonth = '';	$startdatemonth = $enddatemonth = '';

eval("\$startdatemonth .= \"".$templates->get("modcp_announcements_month_start")."\";"); eval("\$enddatemonth .= \"".$templates->get("modcp_announcements_month_end")."\";"); $title = htmlspecialchars_uni($announcement['subject']); $message = htmlspecialchars_uni($announcement['message']);	eval("\$startdatemonth .= \"".$templates->get("modcp_announcements_month_start")."\";"); eval("\$enddatemonth .= \"".$templates->get("modcp_announcements_month_end")."\";"); $title = htmlspecialchars_uni($announcement['subject']); $message = htmlspecialchars_uni($announcement['message']);

$html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => ''); if($announcement['allowhtml']) {	$html_sel = $mycode_sel = $smilies_sel = array('yes' => '', 'no' => ''); if($announcement['allowhtml']) {
Zeile 1316	Zeile 1341
$mycode_sel['yes'] = ' checked="checked"'; } else	$mycode_sel['yes'] = ' checked="checked"'; } else
{	{
$mycode_sel['no'] = ' checked="checked"'; } if($announcement['allowsmilies']) { $smilies_sel['yes'] = ' checked="checked"';	$mycode_sel['no'] = ' checked="checked"'; } if($announcement['allowsmilies']) { $smilies_sel['yes'] = ' checked="checked"';
}	}
else { $smilies_sel['no'] = ' checked="checked"';	else { $smilies_sel['no'] = ' checked="checked"';
Zeile 1337	Zeile 1362
else { $end_type_sel['finite'] = ' checked="checked"';	else { $end_type_sel['finite'] = ' checked="checked"';
}	}
// MyCode editor $codebuttons = build_mycode_inserter(); $smilieinserter = build_clickable_smilies();	// MyCode editor $codebuttons = build_mycode_inserter(); $smilieinserter = build_clickable_smilies();
Zeile 1384	Zeile 1409
require_once MYBB_ROOT."inc/functions_post.php"; $postbit = build_postbit($announcementarray, 3); eval("\$preview = \"".$templates->get("previewpost")."\";");	require_once MYBB_ROOT."inc/functions_post.php"; $postbit = build_postbit($announcementarray, 3); eval("\$preview = \"".$templates->get("previewpost")."\";");
} else {	} else {
$preview = ''; }	$preview = ''; }
Zeile 1401	Zeile 1426
verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0)	verify_post_check($mybb->get_input('my_post_key')); if($mybb->usergroup['canmanageannounce'] == 0)
{ error_no_permission();	{ error_no_permission();
} // Get the announcement	} // Get the announcement
Zeile 1418	Zeile 1443
// Mod has permissions to edit this announcement if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums)))	// Mod has permissions to edit this announcement if(($mybb->usergroup['issupermod'] != 1 && $announcement['fid'] == -1) \|\| ($announcement['fid'] != -1 && !is_moderator($announcement['fid'], "canmanageannouncements")) \|\| ($unviewableforums && in_array($announcement['fid'], $unviewableforums)))
{	{
error_no_permission(); }	error_no_permission(); }
Zeile 1450	Zeile 1475
if($startdate[0] >= 24) { $startdate[0] = "00";	if($startdate[0] >= 24) { $startdate[0] = "00";
}	}
} if(stristr($mybb->input['endtime_time'], "pm"))	} if(stristr($mybb->input['endtime_time'], "pm"))
Zeile 1469	Zeile 1494
$mybb->input['starttime_month'] = '01'; }	$mybb->input['starttime_month'] = '01'; }
$startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT));	$localized_time_offset = (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $startdate = gmmktime((int)$startdate[0], (int)$startdate[1], 0, $mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;	if(!checkdate($mybb->get_input('starttime_month', MyBB::INPUT_INT), $mybb->get_input('starttime_day', MyBB::INPUT_INT), $mybb->get_input('starttime_year', MyBB::INPUT_INT)) \|\| $startdate < 0 \|\| $startdate == false) { $errors[] = $lang->error_invalid_start_date;
Zeile 1487	Zeile 1514
{ $mybb->input['endtime_month'] = '01'; }	{ $mybb->input['endtime_month'] = '01'; }
$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT));	$enddate = gmmktime((int)$enddate[0], (int)$enddate[1], 0, $mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) - $localized_time_offset;
if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;	if(!checkdate($mybb->get_input('endtime_month', MyBB::INPUT_INT), $mybb->get_input('endtime_day', MyBB::INPUT_INT), $mybb->get_input('endtime_year', MyBB::INPUT_INT)) \|\| $enddate < 0 \|\| $enddate == false) { $errors[] = $lang->error_invalid_end_date;
Zeile 1515	Zeile 1542
$allowmycode = 0; } if($mybb->get_input('allowsmilies', MyBB::INPUT_INT) == 1)	$allowmycode = 0; } if($mybb->get_input('allowsmilies', MyBB::INPUT_INT) == 1)
{	{
$allowsmilies = 1;	$allowsmilies = 1;
}	}
else { $allowsmilies = 0;	else { $allowsmilies = 0;
}	}
$plugins->run_hooks("modcp_do_edit_announcement_start"); // Proceed to update if no errors	$plugins->run_hooks("modcp_do_edit_announcement_start"); // Proceed to update if no errors
Zeile 1569	Zeile 1596
} $aid = $mybb->get_input('aid', MyBB::INPUT_INT);	} $aid = $mybb->get_input('aid', MyBB::INPUT_INT);

add_breadcrumb($lang->mcp_nav_announcements, "modcp.php?action=announcements"); add_breadcrumb($lang->edit_announcement, "modcp.php?action=edit_announcements&aid={$aid}");	add_breadcrumb($lang->mcp_nav_announcements, "modcp.php?action=announcements"); add_breadcrumb($lang->edit_announcement, "modcp.php?action=edit_announcements&aid={$aid}");
Zeile 1577	Zeile 1604
if(!isset($announcement) \|\| $mybb->request_method != 'post') { $query = $db->simple_select("announcements", "*", "aid='{$aid}'");	if(!isset($announcement) \|\| $mybb->request_method != 'post') { $query = $db->simple_select("announcements", "*", "aid='{$aid}'");
$announcement = $db->fetch_array($query); }	$announcement = $db->fetch_array($query); }
if(!$announcement) {	if(!$announcement) {
Zeile 1593	Zeile 1620
{ // No start date? Make it now. $announcement['startdate'] = TIME_NOW;	{ // No start date? Make it now. $announcement['startdate'] = TIME_NOW;
}	}
$makeshift_end = false; if(!$announcement['enddate']) {	$makeshift_end = false; if(!$announcement['enddate']) {
Zeile 1641	Zeile 1668
} else {	} else {
// Note: dates are in GMT timezone $starttime_time = gmdate('g:i a', $announcement['startdate']); $endtime_time = gmdate('g:i a', $announcement['enddate']);	$localized_time_startdate = $announcement['startdate'] + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $localized_time_enddate = $announcement['enddate'] + (float)$mybb->user['timezone']3600 + $mybb->user['dst']3600; $starttime_time = gmdate($mybb->settings['timeformat'], $localized_time_startdate); $endtime_time = gmdate($mybb->settings['timeformat'], $localized_time_enddate);

$startday = gmdate('j', $announcement['startdate']); $endday = gmdate('j', $announcement['enddate']);	$startday = gmdate('j', $localized_time_startdate); $endday = gmdate('j', $localized_time_enddate);

$startmonth = gmdate('m', $announcement['startdate']); $endmonth = gmdate('m', $announcement['enddate']);	$startmonth = gmdate('m', $localized_time_startdate); $endmonth = gmdate('m', $localized_time_enddate);

$startdateyear = gmdate('Y', $announcement['startdate']); $enddateyear = gmdate('Y', $announcement['enddate']);	$startdateyear = gmdate('Y', $localized_time_startdate); $enddateyear = gmdate('Y', $localized_time_enddate);
$errored = false; }	$errored = false; }
Zeile 1841	Zeile 1870
eval("\$icon = \"".$templates->get("modcp_announcements_announcement_active")."\";"); }	eval("\$icon = \"".$templates->get("modcp_announcements_announcement_active")."\";"); }
$subject = htmlspecialchars_uni($announcement['subject']);	$subject = htmlspecialchars_uni($parser->parse_badwords($announcement['subject']));
eval("\$announcements_global .= \"".$templates->get("modcp_announcements_announcement_global")."\";"); }	eval("\$announcements_global .= \"".$templates->get("modcp_announcements_announcement_global")."\";"); }
Zeile 2098	Zeile 2127
{ if($thread['threadusername'] != "") {	{ if($thread['threadusername'] != "") {
	$thread['threadusername'] = htmlspecialchars_uni($thread['threadusername']);
$profile_link = $thread['threadusername']; } else	$profile_link = $thread['threadusername']; } else
Zeile 2107	Zeile 2137
} else {	} else {
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$profile_link = build_profile_link($thread['username'], $thread['uid']); }	$profile_link = build_profile_link($thread['username'], $thread['uid']); }
Zeile 2208	Zeile 2239
{ $altbg = alt_trow(); $post['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($post['threadsubject']));	{ $altbg = alt_trow(); $post['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($post['threadsubject']));
	$post['subject'] = htmlspecialchars_uni($parser->parse_badwords($post['subject']));
$post['threadlink'] = get_thread_link($post['tid']); $post['postlink'] = get_post_link($post['pid'], $post['tid']); $forum_link = get_forum_link($post['fid']);	$post['threadlink'] = get_thread_link($post['tid']); $post['postlink'] = get_post_link($post['pid'], $post['tid']); $forum_link = get_forum_link($post['fid']);
Zeile 2218	Zeile 2250
{ if($post['postusername'] != "") {	{ if($post['postusername'] != "") {
	$post['postusername'] = htmlspecialchars_uni($post['postusername']);
$profile_link = $post['postusername']; } else	$profile_link = $post['postusername']; } else
Zeile 2227	Zeile 2260
} else {	} else {
	$post['username'] = htmlspecialchars_uni($post['username']);
$profile_link = build_profile_link($post['username'], $post['uid']); }	$profile_link = build_profile_link($post['username'], $post['uid']); }
Zeile 2340	Zeile 2374
$attachdate = my_date('relative', $attachment['dateuploaded']);	$attachdate = my_date('relative', $attachment['dateuploaded']);
$attachment['postsubject'] = htmlspecialchars_uni($attachment['postsubject']);	$attachment['postsubject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['postsubject']));
$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);	$attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
$attachment['threadsubject'] = htmlspecialchars_uni($attachment['threadsubject']);	$attachment['threadsubject'] = htmlspecialchars_uni($parser->parse_badwords($attachment['threadsubject']));
$attachment['filesize'] = get_friendly_size($attachment['filesize']); $link = get_post_link($attachment['pid'], $attachment['tid']) . "#pid{$attachment['pid']}"; $thread_link = get_thread_link($attachment['tid']);	$attachment['filesize'] = get_friendly_size($attachment['filesize']); $link = get_post_link($attachment['pid'], $attachment['tid']) . "#pid{$attachment['pid']}"; $thread_link = get_thread_link($attachment['tid']);
	$attachment['username'] = htmlspecialchars_uni($attachment['username']);
$profile_link = build_profile_link($attachment['username'], $attachment['uid']); eval("\$attachments .= \"".$templates->get("modcp_modqueue_attachments_attachment")."\";");	$profile_link = build_profile_link($attachment['username'], $attachment['uid']); eval("\$attachments .= \"".$templates->get("modcp_modqueue_attachments_attachment")."\";");
Zeile 2605	Zeile 2640
// New suspension for this user... bad user! $extra_user_updates[$option['update_field']] = 1; if($suspend_length == "-1")	// New suspension for this user... bad user! $extra_user_updates[$option['update_field']] = 1; if($suspend_length == "-1")
{	{
$extra_user_updates[$option['update_length']] = 0; } else	$extra_user_updates[$option['update_length']] = 0; } else
Zeile 2620	Zeile 2655
// Those with javascript turned off will be able to select both - cheeky! // Check to make sure we're not moderating AND suspending posting if(isset($extra_user_updates) && $extra_user_updates['moderateposts'] && $extra_user_updates['suspendposting'])	// Those with javascript turned off will be able to select both - cheeky! // Check to make sure we're not moderating AND suspending posting if(isset($extra_user_updates) && $extra_user_updates['moderateposts'] && $extra_user_updates['suspendposting'])
{	{
$errors[] = $lang->suspendmoderate_error;	$errors[] = $lang->suspendmoderate_error;
}	}
if(is_array($errors)) { $mybb->input['action'] = "editprofile";	if(is_array($errors)) { $mybb->input['action'] = "editprofile";
}	}
else { $plugins->run_hooks("modcp_do_editprofile_update");	else { $plugins->run_hooks("modcp_do_editprofile_update");
Zeile 2650	Zeile 2685
if($mybb->input['action'] == "editprofile") { if($mybb->usergroup['caneditprofiles'] == 0)	if($mybb->input['action'] == "editprofile") { if($mybb->usergroup['caneditprofiles'] == 0)
{	{
error_no_permission(); }	error_no_permission(); }

add_breadcrumb($lang->mcp_nav_editprofile, "modcp.php?action=editprofile"); $user = get_user($mybb->get_input('uid', MyBB::INPUT_INT)); if(!$user)	add_breadcrumb($lang->mcp_nav_editprofile, "modcp.php?action=editprofile"); $user = get_user($mybb->get_input('uid', MyBB::INPUT_INT)); if(!$user)
{	{
error($lang->error_nomember);	error($lang->error_nomember);
}	}
// Check if the current user has permission to edit this user if(!modcp_can_manage_user($user['uid']))	// Check if the current user has permission to edit this user if(!modcp_can_manage_user($user['uid']))
{	{
error_no_permission();	error_no_permission();
} if($user['website'] == "" \|\| $user['website'] == "http://") { $user['website'] = "http://"; }	} if(!my_validate_url($user['website'])) { $user['website'] = ''; }
if($user['icq'] != "0") { $user['icq'] = (int)$user['icq']; } if(!$errors)	if($user['icq'] != "0") { $user['icq'] = (int)$user['icq']; } if(!$errors)
{	{
$mybb->input = array_merge($user, $mybb->input); $birthday = explode('-', $user['birthday']); if(!isset($birthday[1]))	$mybb->input = array_merge($user, $mybb->input); $birthday = explode('-', $user['birthday']); if(!isset($birthday[1]))
Zeile 2687	Zeile 2722
$birthday[1] = ''; } if(!isset($birthday[2]))	$birthday[1] = ''; } if(!isset($birthday[2]))
{	{
$birthday[2] = ''; } list($mybb->input['birthday_day'], $mybb->input['birthday_month'], $mybb->input['birthday_year']) = $birthday;	$birthday[2] = ''; } list($mybb->input['birthday_day'], $mybb->input['birthday_month'], $mybb->input['birthday_year']) = $birthday;
Zeile 2695	Zeile 2730
else { $errors = inline_error($errors);	else { $errors = inline_error($errors);
}	}
// Sanitize all input foreach(array('usertitle', 'website', 'icq', 'aim', 'yahoo', 'skype', 'google', 'signature', 'birthday_day', 'birthday_month', 'birthday_year') as $field)	// Sanitize all input foreach(array('usertitle', 'website', 'icq', 'aim', 'yahoo', 'skype', 'google', 'signature', 'birthday_day', 'birthday_month', 'birthday_year') as $field)
Zeile 2711	Zeile 2746
$displaygroupfields = array('usertitle'); $display_group = usergroup_displaygroup($user['displaygroup']);	$displaygroupfields = array('usertitle'); $display_group = usergroup_displaygroup($user['displaygroup']);

if(!empty($display_group['usertitle'])) { $defaulttitle = htmlspecialchars_uni($display_group['usertitle']);	if(!empty($display_group['usertitle'])) { $defaulttitle = htmlspecialchars_uni($display_group['usertitle']);
Zeile 2734	Zeile 2769
$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); if(empty($user['usertitle']))	$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); if(empty($user['usertitle']))
{	{
$lang->current_custom_usertitle = ''; }	$lang->current_custom_usertitle = ''; }
Zeile 2844	Zeile 2879
{ foreach($pfcache as $profilefield) {	{ foreach($pfcache as $profilefield) {
$userfield = $code = $select = $val = $options = $expoptions = $useropts = $seloptions = '';	$userfield = $code = $select = $val = $options = $expoptions = $useropts = ''; $seloptions = array();
$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);	$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);
Zeile 2860	Zeile 2896
if(isset($mybb->input['profile_fields'][$field])) { $userfield = $mybb->input['profile_fields'][$field];	if(isset($mybb->input['profile_fields'][$field])) { $userfield = $mybb->input['profile_fields'][$field];
} } else	} } else
{ $userfield = $user_fields[$field]; }	{ $userfield = $user_fields[$field]; }
Zeile 2875	Zeile 2911
else { $useropts = explode("\n", $userfield);	else { $useropts = explode("\n", $userfield);
}	}
if(is_array($useropts)) { foreach($useropts as $key => $val) { $seloptions[$val] = $val; }	if(is_array($useropts)) { foreach($useropts as $key => $val) { $seloptions[$val] = $val; }
} $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val]) { $sel = " selected=\"selected\""; } eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length'])	} $expoptions = explode("\n", $options); if(is_array($expoptions)) { foreach($expoptions as $key => $val) { $val = trim($val); $val = str_replace("\n", "\\n", $val); $sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val]) { $sel = " selected=\"selected\""; } eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length'])
{ $profilefield['length'] = 3; }	{ $profilefield['length'] = 3; }
Zeile 2924	Zeile 2960
eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); }	eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); }
if(!$profilefield['length']) { $profilefield['length'] = 1; }	if(!$profilefield['length']) { $profilefield['length'] = 1; }
eval("\$code = \"".$templates->get("usercp_profile_profilefields_select")."\";"); }	eval("\$code = \"".$templates->get("usercp_profile_profilefields_select")."\";"); }
Zeile 3014	Zeile 3050
eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }	eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }
	$user['username'] = htmlspecialchars_uni($user['username']);
$lang->edit_profile = $lang->sprintf($lang->edit_profile, $user['username']); $profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']);	$lang->edit_profile = $lang->sprintf($lang->edit_profile, $user['username']); $profile_link = build_profile_link(format_name($user['username'], $user['usergroup'], $user['displaygroup']), $user['uid']);
	$user['signature'] = htmlspecialchars_uni($user['signature']);
$codebuttons = build_mycode_inserter("signature"); // Do we mark the suspend signature box?	$codebuttons = build_mycode_inserter("signature"); // Do we mark the suspend signature box?
Zeile 3116	Zeile 3154
break; case "moderateposts": eval("\$moderateposts_info = \"".$templates->get("modcp_editprofile_suspensions_info")."\";");	break; case "moderateposts": eval("\$moderateposts_info = \"".$templates->get("modcp_editprofile_suspensions_info")."\";");
break;	break;
case "suspendposting": eval("\$suspendposting_info = \"".$templates->get("modcp_editprofile_suspensions_info")."\";"); break;	case "suspendposting": eval("\$suspendposting_info = \"".$templates->get("modcp_editprofile_suspensions_info")."\";"); break;
} }	} }
// Generate the boxes for this option $selection_options = ''; foreach($periods as $key => $value) { $string = $option['select_option']."_period"; if($mybb->get_input($string) == $key)	// Generate the boxes for this option $selection_options = ''; foreach($periods as $key => $value) { $string = $option['select_option']."_period"; if($mybb->get_input($string) == $key)
{	{
$selected = "selected=\"selected\"";	$selected = "selected=\"selected\"";
}	}
else { $selected = ''; }	else { $selected = ''; }

eval("\$selection_options .= \"".$templates->get("modcp_editprofile_select_option")."\";"); }	eval("\$selection_options .= \"".$templates->get("modcp_editprofile_select_option")."\";"); }
Zeile 3171	Zeile 3209
if($mybb->input['action'] == "finduser") { if($mybb->usergroup['caneditprofiles'] == 0)	if($mybb->input['action'] == "finduser") { if($mybb->usergroup['caneditprofiles'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
add_breadcrumb($lang->mcp_nav_users, "modcp.php?action=finduser");	add_breadcrumb($lang->mcp_nav_users, "modcp.php?action=finduser");
Zeile 3201	Zeile 3239
// Sort order & direction switch($mybb->get_input('sortby'))	// Sort order & direction switch($mybb->get_input('sortby'))
{	{
case "lastvisit": $sortby = "lastvisit"; break;	case "lastvisit": $sortby = "lastvisit"; break;
Zeile 3229	Zeile 3267
// Figure out if we need to display multiple pages. if($mybb->get_input('page') != "last")	// Figure out if we need to display multiple pages. if($mybb->get_input('page') != "last")
{	{
$page = $mybb->get_input('page'); }	$page = $mybb->get_input('page'); }
Zeile 3242	Zeile 3280
} if($page > $pages \|\| $page <= 0)	} if($page > $pages \|\| $page <= 0)
{ $page = 1; }	{ $page = 1; }
if($page) { $start = ($page-1) * $perpage; } else	if($page) { $start = ($page-1) * $perpage; } else
{	{
$start = 0; $page = 1; } $page_url = 'modcp.php?action=finduser'; foreach(array('username', 'sortby', 'order') as $field)	$start = 0; $page = 1; } $page_url = 'modcp.php?action=finduser'; foreach(array('username', 'sortby', 'order') as $field)
{ $mybb->input[$field] = urlencode($mybb->get_input($field));	{
if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];	if(!empty($mybb->input[$field])) { $page_url .= "&{$field}=".$mybb->input[$field];
Zeile 3277	Zeile 3314
while($user = $db->fetch_array($query)) { $alt_row = alt_trow();	while($user = $db->fetch_array($query)) { $alt_row = alt_trow();
	$user['username'] = htmlspecialchars_uni($user['username']);
$user['username'] = format_name($user['username'], $user['usergroup'], $user['displaygroup']); $user['postnum'] = my_number_format($user['postnum']); $regdate = my_date('relative', $user['regdate']);	$user['username'] = format_name($user['username'], $user['usergroup'], $user['displaygroup']); $user['postnum'] = my_number_format($user['postnum']); $regdate = my_date('relative', $user['regdate']);
Zeile 3286	Zeile 3324
$lastdate = $lang->lastvisit_never; if($user['lastvisit'])	$lastdate = $lang->lastvisit_never; if($user['lastvisit'])
{	{
// We have had at least some active time, hide it instead $lastdate = $lang->lastvisit_hidden; }	// We have had at least some active time, hide it instead $lastdate = $lang->lastvisit_hidden; }
Zeile 3483	Zeile 3521
while($row = $db->fetch_array($query)) { $trow = alt_trow();	while($row = $db->fetch_array($query)) { $trow = alt_trow();
	$row['username'] = htmlspecialchars_uni($row['username']);
$username = format_name($row['username'], $row['usergroup'], $row['displaygroup']); $username_link = build_profile_link($username, $row['uid']);	$username = format_name($row['username'], $row['usergroup'], $row['displaygroup']); $username_link = build_profile_link($username, $row['uid']);
	$row['mod_username'] = htmlspecialchars_uni($row['mod_username']);
$mod_username = format_name($row['mod_username'], $row['mod_usergroup'], $row['mod_displaygroup']); $mod_username_link = build_profile_link($mod_username, $row['mod_uid']); $issued_date = my_date($mybb->settings['dateformat'], $row['dateline']).' '.my_date($mybb->settings['timeformat'], $row['dateline']);	$mod_username = format_name($row['mod_username'], $row['mod_usergroup'], $row['mod_displaygroup']); $mod_username_link = build_profile_link($mod_username, $row['mod_uid']); $issued_date = my_date($mybb->settings['dateformat'], $row['dateline']).' '.my_date($mybb->settings['timeformat'], $row['dateline']);
Zeile 3557	Zeile 3597
{ if(!is_array($ip_range)) {	{ if(!is_array($ip_range)) {
$post_ip_sql = "ipaddress=".$db->escape_binary($ip_range);	$post_ip_sql = "p.ipaddress=".$db->escape_binary($ip_range);
} else {	} else {
$post_ip_sql = "ipaddress BETWEEN ".$db->escape_binary($ip_range[0])." AND ".$db->escape_binary($ip_range[1]);	$post_ip_sql = "p.ipaddress BETWEEN ".$db->escape_binary($ip_range[0])." AND ".$db->escape_binary($ip_range[1]);
} }	} }
Zeile 3569	Zeile 3609
if($post_ip_sql) {	if($post_ip_sql) {
$query = $db->simple_select('posts', 'COUNT(pid) AS count', "$post_ip_sql AND visible >= -1");	$where_sql = ''; $unviewable_forums = get_unviewable_forums(true); if($unviewable_forums) { $where_sql .= " AND p.fid NOT IN ({$unviewable_forums})"; } if($inactiveforums) { $where_sql .= " AND p.fid NOT IN ({$inactiveforums})"; } // Check group permissions if we can't view threads not started by us $onlyusfids = array(); $group_permissions = forum_permissions(); foreach($group_permissions as $fid => $forumpermissions) { if(isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] == 1) { $onlyusfids[] = $fid; } } if(!empty($onlyusfids)) { $where_sql .= " AND ((t.fid IN(".implode(',', $onlyusfids).") AND t.uid='{$mybb->user['uid']}') OR t.fid NOT IN(".implode(',', $onlyusfids)."))"; } // Moderators can view unapproved/deleted posts if($mybb->usergroup['issupermod'] != 1) { $unapprove_forums = array(); $deleted_forums = array(); $visible_sql = " AND (p.visible = 1 AND t.visible = 1)"; $query = $db->simple_select("moderators", "fid, canviewunapprove, canviewdeleted", "(id='{$mybb->user['uid']}' AND isgroup='0') OR (id='{$mybb->user['usergroup']}' AND isgroup='1')"); while($moderator = $db->fetch_array($query)) { if($moderator['canviewunapprove'] == 1) { $unapprove_forums[] = $moderator['fid']; } if($moderator['canviewdeleted'] == 1) { $deleted_forums[] = $moderator['fid']; } } if(!empty($unapprove_forums)) { $visible_sql .= " OR (p.visible = 0 AND p.fid IN(".implode(',', $unapprove_forums).")) OR (t.visible = 0 AND t.fid IN(".implode(',', $unapprove_forums)."))"; } if(!empty($deleted_forums)) { $visible_sql .= " OR (p.visible = -1 AND p.fid IN(".implode(',', $deleted_forums).")) OR (t.visible = -1 AND t.fid IN(".implode(',', $deleted_forums)."))"; } } else { // Super moderators (and admins) $visible_sql = " AND p.visible >= -1"; } $query = $db->query(" SELECT COUNT(p.pid) AS count FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = p.tid) WHERE {$post_ip_sql}{$where_sql}{$visible_sql} ");
$post_results = $db->fetch_field($query, "count"); } }	$post_results = $db->fetch_field($query, "count"); } }
Zeile 3658	Zeile 3768
{ $query = $db->simple_select('users', 'username, uid, regip, lastip', $user_ip_sql, array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit_start' => $start, 'limit' => $perpage));	{ $query = $db->simple_select('users', 'username, uid, regip, lastip', $user_ip_sql, array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit_start' => $start, 'limit' => $perpage));

while($ipaddress = $db->fetch_array($query)) { $result = false;	while($ipaddress = $db->fetch_array($query)) { $result = false;
	$ipaddress['username'] = htmlspecialchars_uni($ipaddress['username']);
$profile_link = build_profile_link($ipaddress['username'], $ipaddress['uid']); $trow = alt_trow(); $ip = false;	$profile_link = build_profile_link($ipaddress['username'], $ipaddress['uid']); $trow = alt_trow(); $ip = false;
Zeile 3711	Zeile 3822
if(isset($mybb->input['search_posts']) && $post_results && (!isset($mybb->input['search_users']) \|\| (isset($mybb->input['search_users']) && $post_limit > 0))) { $ipaddresses = $tids = $uids = array();	if(isset($mybb->input['search_posts']) && $post_results && (!isset($mybb->input['search_users']) \|\| (isset($mybb->input['search_users']) && $post_limit > 0))) { $ipaddresses = $tids = $uids = array();
$query = $db->simple_select('posts', 'username AS postusername, uid, subject, pid, tid, ipaddress', "$post_ip_sql AND visible >= -1", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit_start' => $post_start, 'limit' => $post_limit));

	$query = $db->query(" SELECT p.username AS postusername, p.uid, p.subject, p.pid, p.tid, p.ipaddress FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = p.tid) WHERE {$post_ip_sql}{$where_sql}{$visible_sql} ORDER BY p.dateline desc LIMIT {$post_start}, {$post_limit} ");
while($ipaddress = $db->fetch_array($query)) { $tids[$ipaddress['tid']] = $ipaddress['pid'];	while($ipaddress = $db->fetch_array($query)) { $tids[$ipaddress['tid']] = $ipaddress['pid'];
Zeile 3735	Zeile 3851
while($user = $db->fetch_array($query)) { $ipaddresses[$uids[$user['uid']]]['username'] = $user['username'];	while($user = $db->fetch_array($query)) { $ipaddresses[$uids[$user['uid']]]['username'] = $user['username'];
}	}
unset($uids); foreach($ipaddresses as $ipaddress) { $ip = my_inet_ntop($db->unescape_binary($ipaddress['ipaddress']));	unset($uids); foreach($ipaddresses as $ipaddress) { $ip = my_inet_ntop($db->unescape_binary($ipaddress['ipaddress']));
if(!$ipaddress['username']) $ipaddress['username'] = $ipaddress['postusername']; // Guest username support	if(!$ipaddress['username']) { $ipaddress['username'] = $ipaddress['postusername']; // Guest username support } $ipaddress['username'] = htmlspecialchars_uni($ipaddress['username']);
$trow = alt_trow(); if(!$ipaddress['subject']) {	$trow = alt_trow(); if(!$ipaddress['subject']) {
Zeile 3749	Zeile 3869
} $ipaddress['postlink'] = get_post_link($ipaddress['pid'], $ipaddress['tid']);	} $ipaddress['postlink'] = get_post_link($ipaddress['pid'], $ipaddress['tid']);
$ipaddress['subject'] = htmlspecialchars_uni($ipaddress['subject']);	$ipaddress['subject'] = htmlspecialchars_uni($parser->parse_badwords($ipaddress['subject']));
$ipaddress['profilelink'] = build_profile_link($ipaddress['username'], $ipaddress['uid']);	$ipaddress['profilelink'] = build_profile_link($ipaddress['username'], $ipaddress['uid']);

eval("\$subject = \"".$templates->get("modcp_ipsearch_result_post")."\";"); eval("\$results .= \"".$templates->get("modcp_ipsearch_result")."\";"); } }	eval("\$subject = \"".$templates->get("modcp_ipsearch_result_post")."\";"); eval("\$results .= \"".$templates->get("modcp_ipsearch_result")."\";"); } }
}	}
if(!$results) { eval("\$results = \"".$templates->get("modcp_ipsearch_noresults")."\";");	if(!$results) { eval("\$results = \"".$templates->get("modcp_ipsearch_noresults")."\";");
}	}
if($ipaddressvalue) {	if($ipaddressvalue) {
Zeile 3774	Zeile 3894
$ipaddress = $ipaddress_url = $misc_info_link = ''; if(!strstr($mybb->input['ipaddress'], "*") && !strstr($mybb->input['ipaddress'], "/"))	$ipaddress = $ipaddress_url = $misc_info_link = ''; if(!strstr($mybb->input['ipaddress'], "*") && !strstr($mybb->input['ipaddress'], "/"))
{	{
$ipaddress = htmlspecialchars_uni($mybb->input['ipaddress']); $ipaddress_url = urlencode($mybb->input['ipaddress']); eval("\$misc_info_link = \"".$templates->get("modcp_ipsearch_results_information")."\";"); } eval("\$ipsearch_results = \"".$templates->get("modcp_ipsearch_results")."\";");	$ipaddress = htmlspecialchars_uni($mybb->input['ipaddress']); $ipaddress_url = urlencode($mybb->input['ipaddress']); eval("\$misc_info_link = \"".$templates->get("modcp_ipsearch_results_information")."\";"); } eval("\$ipsearch_results = \"".$templates->get("modcp_ipsearch_results")."\";");
}	}
// Fetch filter options if(!$mybb->input['ipaddress']) {	// Fetch filter options if(!$mybb->input['ipaddress']) {
Zeile 3795	Zeile 3915
$postsearchselect = "checked=\"checked\""; } if(isset($mybb->input['search_users']))	$postsearchselect = "checked=\"checked\""; } if(isset($mybb->input['search_users']))
{	{
$usersearchselect = "checked=\"checked\"";	$usersearchselect = "checked=\"checked\"";
} $plugins->run_hooks("modcp_ipsearch_end");	} $plugins->run_hooks("modcp_ipsearch_end");
eval("\$ipsearch = \"".$templates->get("modcp_ipsearch")."\";"); output_page($ipsearch);	eval("\$ipsearch = \"".$templates->get("modcp_ipsearch")."\";"); output_page($ipsearch);
Zeile 3808	Zeile 3928
if($mybb->input['action'] == "iplookup") { if($mybb->usergroup['canuseipsearch'] == 0)	if($mybb->input['action'] == "iplookup") { if($mybb->usergroup['canuseipsearch'] == 0)
{ error_no_permission(); }	{ error_no_permission(); }
$mybb->input['ipaddress'] = $mybb->get_input('ipaddress'); $lang->ipaddress_misc_info = $lang->sprintf($lang->ipaddress_misc_info, htmlspecialchars_uni($mybb->input['ipaddress'])); $ipaddress_location = $lang->na;	$mybb->input['ipaddress'] = $mybb->get_input('ipaddress'); $lang->ipaddress_misc_info = $lang->sprintf($lang->ipaddress_misc_info, htmlspecialchars_uni($mybb->input['ipaddress'])); $ipaddress_location = $lang->na;
Zeile 3821	Zeile 3941
{ // Return GeoIP information if it is available to us if(function_exists('geoip_record_by_name'))	{ // Return GeoIP information if it is available to us if(function_exists('geoip_record_by_name'))
{	{
$ip_record = @geoip_record_by_name($mybb->input['ipaddress']); if($ip_record) {	$ip_record = @geoip_record_by_name($mybb->input['ipaddress']); if($ip_record) {
Zeile 3848	Zeile 3968
echo($iplookup); exit; }	echo($iplookup); exit; }

if($mybb->input['action'] == "banning") { if($mybb->usergroup['canbanusers'] == 0)	if($mybb->input['action'] == "banning") { if($mybb->usergroup['canbanusers'] == 0)
{	{
error_no_permission(); }	error_no_permission(); }
Zeile 3861	Zeile 3981
if(!$mybb->settings['threadsperpage']) { $mybb->settings['threadsperpage'] = 20;	if(!$mybb->settings['threadsperpage']) { $mybb->settings['threadsperpage'] = 20;
}	}
// Figure out if we need to display multiple pages. $perpage = $mybb->settings['threadsperpage']; if($mybb->get_input('page') != "last") { $page = $mybb->get_input('page', MyBB::INPUT_INT);	// Figure out if we need to display multiple pages. $perpage = $mybb->settings['threadsperpage']; if($mybb->get_input('page') != "last") { $page = $mybb->get_input('page', MyBB::INPUT_INT);
}	}
$query = $db->simple_select("banned", "COUNT(uid) AS count"); $banned_count = $db->fetch_field($query, "count");	$query = $db->simple_select("banned", "COUNT(uid) AS count"); $banned_count = $db->fetch_field($query, "count");
Zeile 3878	Zeile 3998
$pages = ceil($pages); if($mybb->get_input('page') == "last")	$pages = ceil($pages); if($mybb->get_input('page') == "last")
{	{
$page = $pages;	$page = $pages;
}	}
if($page > $pages \|\| $page <= 0)	if($page > $pages \|\| $page <= 0)
{ $page = 1; }	{ $page = 1; }
if($page) { $start = ($page-1) * $perpage;	if($page) { $start = ($page-1) * $perpage;
}	}
else { $start = 0;	else { $start = 0;
Zeile 3899	Zeile 4019
$upper = $start+$perpage; $multipage = multipage($postcount, $perpage, $page, "modcp.php?action=banning");	$upper = $start+$perpage; $multipage = multipage($postcount, $perpage, $page, "modcp.php?action=banning");

$plugins->run_hooks("modcp_banning_start"); $query = $db->query("	$plugins->run_hooks("modcp_banning_start"); $query = $db->query("
Zeile 3915	Zeile 4035
$bannedusers = ''; while($banned = $db->fetch_array($query)) {	$bannedusers = ''; while($banned = $db->fetch_array($query)) {
	$banned['username'] = htmlspecialchars_uni($banned['username']);
$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin	$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin
Zeile 3922	Zeile 4043
if($mybb->user['uid'] == $banned['admin'] \|\| !$banned['adminuser'] \|\| $mybb->usergroup['issupermod'] == 1 \|\| $mybb->usergroup['cancp'] == 1) { eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";");	if($mybb->user['uid'] == $banned['admin'] \|\| !$banned['adminuser'] \|\| $mybb->usergroup['issupermod'] == 1 \|\| $mybb->usergroup['cancp'] == 1) { eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";");
}	}

$admin_profile = build_profile_link($banned['adminuser'], $banned['admin']);	$admin_profile = build_profile_link(htmlspecialchars_uni($banned['adminuser']), $banned['admin']);
$trow = alt_trow();	$trow = alt_trow();
Zeile 3932	Zeile 4053
{ $banned['reason'] = htmlspecialchars_uni($parser->parse_badwords($banned['reason'])); }	{ $banned['reason'] = htmlspecialchars_uni($parser->parse_badwords($banned['reason'])); }
else { $banned['reason'] = $lang->na; } if($banned['lifted'] == 'perm' \|\| $banned['lifted'] == '' \|\| $banned['bantime'] == 'perm' \|\| $banned['bantime'] == '---')	else { $banned['reason'] = $lang->na; } if($banned['lifted'] == 'perm' \|\| $banned['lifted'] == '' \|\| $banned['bantime'] == 'perm' \|\| $banned['bantime'] == '---')
{ $banlength = $lang->permanent; $timeremaining = $lang->na;	{ $banlength = $lang->permanent; $timeremaining = $lang->na;
Zeile 3949	Zeile 4070
$timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";	$timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";
if($remaining < 3600)	$banned_class = ''; $ban_remaining = "{$timeremaining} {$lang->ban_remaining}"; if($remaining <= 0)
{	{
$timeremaining = "<span style=\"color: red;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "imminent_banned"; $ban_remaining = $lang->ban_ending_imminently; } if($remaining < 3600) { $banned_class = "high_banned";
} else if($remaining < 86400) {	} else if($remaining < 86400) {
$timeremaining = "<span style=\"color: maroon;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "moderate_banned";
} else if($remaining < 604800)	} else if($remaining < 604800)
{ $timeremaining = "<span style=\"color: green;\">({$timeremaining} {$lang->ban_remaining})</span>"; }	{ $banned_class = "low_banned"; }
else {	else {
$timeremaining = "({$timeremaining} {$lang->ban_remaining})";	$banned_class = "normal_banned";
}	}
	eval('$timeremaining = "'.$templates->get('modcp_banning_remaining').'";');
} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");	} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");
Zeile 4216	Zeile 4347
$mybb->input['uid'] = $mybb->get_input('uid', MyBB::INPUT_INT); if($mybb->input['uid']) {	$mybb->input['uid'] = $mybb->get_input('uid', MyBB::INPUT_INT); if($mybb->input['uid']) {
add_breadcrumb($lang->mcp_nav_ban_user);	add_breadcrumb($lang->mcp_nav_editing_ban);
} else {	} else {
add_breadcrumb($lang->mcp_nav_editing_ban);	add_breadcrumb($lang->mcp_nav_ban_user);
} $plugins->run_hooks("modcp_banuser_start");	} $plugins->run_hooks("modcp_banuser_start");
Zeile 4240	Zeile 4371
$banned = $db->fetch_array($query); if($banned['username']) {	$banned = $db->fetch_array($query); if($banned['username']) {
$username = htmlspecialchars_uni($banned['username']);	$username = $banned['username'] = htmlspecialchars_uni($banned['username']);
$banreason = htmlspecialchars_uni($banned['reason']); $uid = $mybb->input['uid']; $user = get_user($banned['uid']);	$banreason = htmlspecialchars_uni($banned['reason']); $uid = $mybb->input['uid']; $user = get_user($banned['uid']);
Zeile 4261	Zeile 4392
if($mybb->input['uid']) { $user = get_user($mybb->input['uid']);	if($mybb->input['uid']) { $user = get_user($mybb->input['uid']);
	$user['username'] = htmlspecialchars_uni($user['username']);
$username = $user['username']; } else	$username = $user['username']; } else
Zeile 4301	Zeile 4433
$dateline = $banned['dateline']; }	$dateline = $banned['dateline']; }
$thatime = my_date("D, jS M Y @ g:ia", ban_date2timestamp($time, $dateline));	$thatime = my_date("D, jS M Y @ {$mybb->settings['timeformat']}", ban_date2timestamp($time, $dateline));
$thattime = " ({$thatime})"; }	$thattime = " ({$thatime})"; }
Zeile 4326	Zeile 4458
eval("\$bangroup_option .= \"".$templates->get("modcp_banuser_bangroups_group")."\";"); $banned_group = $group['gid']; ++$numgroups;	eval("\$bangroup_option .= \"".$templates->get("modcp_banuser_bangroups_group")."\";"); $banned_group = $group['gid']; ++$numgroups;
} }	} }
if($numgroups == 0) { error($lang->no_banned_group); } elseif($numgroups > 1)	if($numgroups == 0) { error($lang->no_banned_group); } elseif($numgroups > 1)
{	{
eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups")."\";");	eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups")."\";");
}	}
else { eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups_hidden")."\";");	else { eval("\$bangroups = \"".$templates->get("modcp_banuser_bangroups_hidden")."\";");
}	}
if(!empty($banned['uid'])) { eval("\$lift_link = \"".$templates->get("modcp_banuser_lift")."\";");	if(!empty($banned['uid'])) { eval("\$lift_link = \"".$templates->get("modcp_banuser_lift")."\";");
Zeile 4376	Zeile 4508
redirect("modcp.php", $lang->redirect_modnotes); }	redirect("modcp.php", $lang->redirect_modnotes); }

if(!$mybb->input['action']) { $awaitingattachments = $awaitingposts = $awaitingthreads = $awaitingmoderation = ''; if($mybb->usergroup['canmanagemodqueue'] == 1)	if(!$mybb->input['action']) { $awaitingattachments = $awaitingposts = $awaitingthreads = $awaitingmoderation = ''; if($mybb->usergroup['canmanagemodqueue'] == 1)
{	{
if($mybb->settings['enableattachments'] == 1 && ($nummodqueueattach > 0 \|\| $mybb->usergroup['issupermod'] == 1)) { if($nummodqueueposts > 0 \|\| $mybb->usergroup['issupermod'] == 1)	if($mybb->settings['enableattachments'] == 1 && ($nummodqueueattach > 0 \|\| $mybb->usergroup['issupermod'] == 1)) { if($nummodqueueposts > 0 \|\| $mybb->usergroup['issupermod'] == 1)
Zeile 4416	Zeile 4548
"); $attachment = $db->fetch_array($query); $attachment['date'] = my_date('relative', $attachment['dateuploaded']);	"); $attachment = $db->fetch_array($query); $attachment['date'] = my_date('relative', $attachment['dateuploaded']);
	$attachment['username'] = htmlspecialchars_uni($attachment['username']);
$attachment['profilelink'] = build_profile_link($attachment['username'], $attachment['uid']); $attachment['link'] = get_post_link($attachment['pid'], $attachment['tid']); $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);	$attachment['profilelink'] = build_profile_link($attachment['username'], $attachment['uid']); $attachment['link'] = get_post_link($attachment['pid'], $attachment['tid']); $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
Zeile 4453	Zeile 4586
"); $post = $db->fetch_array($query); $post['date'] = my_date('relative', $post['dateline']);	"); $post = $db->fetch_array($query); $post['date'] = my_date('relative', $post['dateline']);
	$post['username'] = htmlspecialchars_uni($post['username']);
$post['profilelink'] = build_profile_link($post['username'], $post['uid']); $post['link'] = get_post_link($post['pid'], $post['tid']); $post['subject'] = $post['fullsubject'] = $parser->parse_badwords($post['subject']);	$post['profilelink'] = build_profile_link($post['username'], $post['uid']); $post['link'] = get_post_link($post['pid'], $post['tid']); $post['subject'] = $post['fullsubject'] = $parser->parse_badwords($post['subject']);
Zeile 4484	Zeile 4618
$query = $db->simple_select("threads", "tid, subject, uid, username, dateline", "visible='0' {$flist_queue_threads}", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit' => 1)); $thread = $db->fetch_array($query); $thread['date'] = my_date('relative', $thread['dateline']);	$query = $db->simple_select("threads", "tid, subject, uid, username, dateline", "visible='0' {$flist_queue_threads}", array('order_by' => 'dateline', 'order_dir' => 'DESC', 'limit' => 1)); $thread = $db->fetch_array($query); $thread['date'] = my_date('relative', $thread['dateline']);
	$thread['username'] = htmlspecialchars_uni($thread['username']);
$thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']); $thread['link'] = get_thread_link($thread['tid']); $thread['subject'] = $thread['fullsubject'] = $parser->parse_badwords($thread['subject']);	$thread['profilelink'] = build_profile_link($thread['username'], $thread['uid']); $thread['link'] = get_thread_link($thread['tid']); $thread['subject'] = $thread['fullsubject'] = $parser->parse_badwords($thread['subject']);
Zeile 4539	Zeile 4674
$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();	$logitem['action'] = htmlspecialchars_uni($logitem['action']); $log_date = my_date('relative', $logitem['dateline']); $trow = alt_trow();
	$logitem['username'] = htmlspecialchars_uni($logitem['username']);
$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {	$username = format_name($logitem['username'], $logitem['usergroup'], $logitem['displaygroup']); $logitem['profilelink'] = build_profile_link($username, $logitem['uid']); $logitem['ipaddress'] = my_inet_ntop($db->unescape_binary($logitem['ipaddress'])); if($logitem['tsubject']) {
$logitem['tsubject'] = htmlspecialchars_uni($logitem['tsubject']);	$logitem['tsubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['tsubject']));
$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }	$logitem['thread'] = get_thread_link($logitem['tid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_thread")."\";"); }
Zeile 4556	Zeile 4692
} if($logitem['psubject']) {	} if($logitem['psubject']) {
$logitem['psubject'] = htmlspecialchars_uni($logitem['psubject']);	$logitem['psubject'] = htmlspecialchars_uni($parser->parse_badwords($logitem['psubject']));
$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }	$logitem['post'] = get_post_link($logitem['pid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_post")."\";"); }
Zeile 4571	Zeile 4707
} if($data['aid']) {	} if($data['aid']) {
$data['subject'] = htmlspecialchars_uni($data['subject']);	$data['subject'] = htmlspecialchars_uni($parser->parse_badwords($data['subject']));
$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }	$data['announcement'] = get_announcement_link($data['aid']); eval("\$information .= \"".$templates->get("modcp_modlogs_result_announcement")."\";"); } }
	$plugins->run_hooks("modcp_modlogs_result");
eval("\$modlogresults .= \"".$templates->get("modcp_modlogs_result")."\";"); }	eval("\$modlogresults .= \"".$templates->get("modcp_modlogs_result")."\";"); }
Zeile 4611	Zeile 4749
$bannedusers = ''; foreach($banned_cache as $banned) {	$bannedusers = ''; foreach($banned_cache as $banned) {
	$banned['username'] = htmlspecialchars_uni($banned['username']);
$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin	$profile_link = build_profile_link($banned['username'], $banned['uid']); // Only show the edit & lift links if current user created ban, or is super mod/admin
Zeile 4620	Zeile 4759
eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";"); }	eval("\$edit_link = \"".$templates->get("modcp_banning_edit")."\";"); }
$admin_profile = build_profile_link($banned['adminuser'], $banned['admin']);	$admin_profile = build_profile_link(htmlspecialchars_uni($banned['adminuser']), $banned['admin']);
$trow = alt_trow();	$trow = alt_trow();
Zeile 4644	Zeile 4783
$remaining = $banned['remaining']; $timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";	$remaining = $banned['remaining']; $timeremaining = nice_time($remaining, array('short' => 1, 'seconds' => false))."";
	$banned_class = ''; $ban_remaining = "{$timeremaining} {$lang->ban_remaining}";
if($remaining <= 0)	if($remaining <= 0)
{ $timeremaining = "<span style=\"color: red;\">({$lang->ban_ending_imminently})</span>";	{ $banned_class = "imminent_banned"; $ban_remaining = $lang->ban_ending_imminently;
} else if($remaining < 3600) {	} else if($remaining < 3600) {
$timeremaining = "<span style=\"color: red;\">({$timeremaining} {$lang->ban_remaining})</span>"; } else if($remaining < 86400) { $timeremaining = "<span style=\"color: maroon;\">({$timeremaining} {$lang->ban_remaining})</span>";	$banned_class = "high_banned"; } else if($remaining < 86400) { $banned_class = "moderate_banned";
} else if($remaining < 604800)	} else if($remaining < 604800)
{ $timeremaining = "<span style=\"color: green;\">({$timeremaining} {$lang->ban_remaining})</span>"; }	{ $banned_class = "low_banned"; }
else {	else {
$timeremaining = "({$timeremaining} {$lang->ban_remaining})";	$banned_class = "normal_banned";
}	}
	eval('$timeremaining = "'.$templates->get('modcp_banning_remaining').'";');
} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");	} eval("\$bannedusers .= \"".$templates->get("modcp_banning_ban")."\";");