Vergleich inc/functions.php - 1.8.7 - 1.8.14

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 322	Zeile 322
/** * Turn a unix timestamp in to a "friendly" date/time format for the user. *	/** * Turn a unix timestamp in to a "friendly" date/time format for the user. *
* @param string $format A date format according to PHP's date structure.	* @param string $format A date format (either relative, normal or PHP's date() structure).
* @param int $stamp The unix timestamp the date should be generated for. * @param int\|string $offset The offset in hours that should be applied to times. (timezones) Or an empty string to determine that automatically * @param int $ty Whether or not to use today/yesterday formatting.	* @param int $stamp The unix timestamp the date should be generated for. * @param int\|string $offset The offset in hours that should be applied to times. (timezones) Or an empty string to determine that automatically * @param int $ty Whether or not to use today/yesterday formatting.
Zeile 343	Zeile 343
{ if(isset($mybb->user['uid']) && $mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user)) {	{ if(isset($mybb->user['uid']) && $mybb->user['uid'] != 0 && array_key_exists("timezone", $mybb->user)) {
$offset = $mybb->user['timezone'];	$offset = (float)$mybb->user['timezone'];
$dstcorrection = $mybb->user['dst']; } elseif(defined("IN_ADMINCP")) {	$dstcorrection = $mybb->user['dst']; } elseif(defined("IN_ADMINCP")) {
$offset = $mybbadmin['timezone'];	$offset = (float)$mybbadmin['timezone'];
$dstcorrection = $mybbadmin['dst']; } else {	$dstcorrection = $mybbadmin['dst']; } else {
$offset = $mybb->settings['timezoneoffset'];	$offset = (float)$mybb->settings['timezoneoffset'];
$dstcorrection = $mybb->settings['dstcorrection']; }	$dstcorrection = $mybb->settings['dstcorrection']; }
Zeile 380	Zeile 380
} $todaysdate = $yesterdaysdate = '';	} $todaysdate = $yesterdaysdate = '';
if($ty && ($format == $mybb->settings['dateformat'] \|\| $format == 'relative'))	if($ty && ($format == $mybb->settings['dateformat'] \|\| $format == 'relative' \|\| $format == 'normal'))
{ $_stamp = TIME_NOW; if($adodb == true)	{ $_stamp = TIME_NOW; if($adodb == true)
Zeile 400	Zeile 400
if($format == 'relative') { // Relative formats both date and time	if($format == 'relative') { // Relative formats both date and time
	$real_date = $real_time = ''; if($adodb == true) { $real_date = adodb_date($mybb->settings['dateformat'], $stamp + ($offset * 3600)); $real_time = $mybb->settings['datetimesep']; $real_time .= adodb_date($mybb->settings['timeformat'], $stamp + ($offset * 3600)); } else { $real_date = gmdate($mybb->settings['dateformat'], $stamp + ($offset * 3600)); $real_time = $mybb->settings['datetimesep']; $real_time .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }
if($ty != 2 && abs(TIME_NOW - $stamp) < 3600) { $diff = TIME_NOW - $stamp; $relative = array('prefix' => '', 'minute' => 0, 'plural' => $lang->rel_minutes_plural, 'suffix' => $lang->rel_ago);	if($ty != 2 && abs(TIME_NOW - $stamp) < 3600) { $diff = TIME_NOW - $stamp; $relative = array('prefix' => '', 'minute' => 0, 'plural' => $lang->rel_minutes_plural, 'suffix' => $lang->rel_ago);
if($diff < 0) { $diff = abs($diff); $relative['suffix'] = ''; $relative['prefix'] = $lang->rel_in; } $relative['minute'] = floor($diff / 60); if($relative['minute'] <= 1)	if($diff < 0) { $diff = abs($diff); $relative['suffix'] = ''; $relative['prefix'] = $lang->rel_in; } $relative['minute'] = floor($diff / 60); if($relative['minute'] <= 1)
{ $relative['minute'] = 1; $relative['plural'] = $lang->rel_minutes_single;	{ $relative['minute'] = 1; $relative['plural'] = $lang->rel_minutes_single;
Zeile 423	Zeile 437
if($diff <= 60) { // Less than a minute	if($diff <= 60) { // Less than a minute
$relative['prefix'] = $lang->rel_less_than; } $date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['minute'], $relative['plural'], $relative['suffix']);	$relative['prefix'] = $lang->rel_less_than; } $date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['minute'], $relative['plural'], $relative['suffix'], $real_date, $real_time);
} elseif($ty != 2 && abs(TIME_NOW - $stamp) < 43200) {	} elseif($ty != 2 && abs(TIME_NOW - $stamp) < 43200) {
Zeile 438	Zeile 452
$diff = abs($diff); $relative['suffix'] = ''; $relative['prefix'] = $lang->rel_in;	$diff = abs($diff); $relative['suffix'] = ''; $relative['prefix'] = $lang->rel_in;
}	}
$relative['hour'] = floor($diff / 3600); if($relative['hour'] <= 1)	$relative['hour'] = floor($diff / 3600); if($relative['hour'] <= 1)
Zeile 448	Zeile 462
$relative['plural'] = $lang->rel_hours_single; }	$relative['plural'] = $lang->rel_hours_single; }
$date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['hour'], $relative['plural'], $relative['suffix']);	$date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['hour'], $relative['plural'], $relative['suffix'], $real_date, $real_time);
} else {	} else {
Zeile 456	Zeile 470
{ if($todaysdate == $date) {	{ if($todaysdate == $date) {
$date = $lang->today;	$date = $lang->sprintf($lang->today_rel, $real_date);
} else if($yesterdaysdate == $date) {	} else if($yesterdaysdate == $date) {
$date = $lang->yesterday;	$date = $lang->sprintf($lang->yesterday_rel, $real_date);
} }	} }
Zeile 473	Zeile 487
{ $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }	{ $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }
	} } elseif($format == 'normal') { // Normal format both date and time if($ty != 2) { if($todaysdate == $date) { $date = $lang->today; } else if($yesterdaysdate == $date) { $date = $lang->yesterday; } } $date .= $mybb->settings['datetimesep']; if($adodb == true) { $date .= adodb_date($mybb->settings['timeformat'], $stamp + ($offset * 3600)); } else { $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600));
} } else	} } else
Zeile 480	Zeile 519
if($ty && $format == $mybb->settings['dateformat']) { if($todaysdate == $date)	if($ty && $format == $mybb->settings['dateformat']) { if($todaysdate == $date)
{	{
$date = $lang->today;	$date = $lang->today;
}	}
else if($yesterdaysdate == $date)	else if($yesterdaysdate == $date)
{	{
$date = $lang->yesterday; } }	$date = $lang->yesterday; } }
Zeile 493	Zeile 532
if($adodb == true) { $date = adodb_date($format, $stamp + ($offset * 3600));	if($adodb == true) { $date = adodb_date($format, $stamp + ($offset * 3600));
}	}
else { $date = gmdate($format, $stamp + ($offset * 3600)); } }	else { $date = gmdate($format, $stamp + ($offset * 3600)); } }
}	}
if(is_object($plugins)) { $date = $plugins->run_hooks("my_date", $date);	if(is_object($plugins)) { $date = $plugins->run_hooks("my_date", $date);
}	}
return $date; }	return $date; }
Zeile 598	Zeile 637
function verify_post_check($code, $silent=false) { global $lang;	function verify_post_check($code, $silent=false) { global $lang;
if(generate_post_check() != $code)	if(generate_post_check() !== $code)
{ if($silent == true) {	{ if($silent == true) {
Zeile 809	Zeile 848
} // AJAX error message?	} // AJAX error message?
if($mybb->get_input('ajax', MyBB::INPUT_INT)) { // Send our headers. @header("Content-type: application/json; charset={$lang->settings['charset']}");	if($mybb->get_input('ajax', MyBB::INPUT_INT)) { // Send our headers. @header("Content-type: application/json; charset={$lang->settings['charset']}");
if(empty($json_data)) { echo json_encode(array("errors" => $errors));	if(empty($json_data)) { echo json_encode(array("errors" => $errors));
}	}
else { echo json_encode(array_merge(array("errors" => $errors), $json_data));	else { echo json_encode(array_merge(array("errors" => $errors), $json_data));
} exit; } $errorlist = '';	} exit; } $errorlist = '';
foreach($errors as $error) {	foreach($errors as $error) {
Zeile 865	Zeile 904
if($mybb->user['uid']) {	if($mybb->user['uid']) {
$lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, $mybb->user['username']);	$lang->error_nopermission_user_username = $lang->sprintf($lang->error_nopermission_user_username, htmlspecialchars_uni($mybb->user['username']));
eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";"); } else	eval("\$errorpage = \"".$templates->get("error_nopermission_loggedin")."\";"); } else
Zeile 875	Zeile 914
if($_SERVER['QUERY_STRING']) { $redirect_url .= '?'.$_SERVER['QUERY_STRING'];	if($_SERVER['QUERY_STRING']) { $redirect_url .= '?'.$_SERVER['QUERY_STRING'];
} $redirect_url = htmlspecialchars_uni($redirect_url);	} $redirect_url = htmlspecialchars_uni($redirect_url);
switch($mybb->settings['username_method']) {	switch($mybb->settings['username_method']) {
Zeile 915	Zeile 954
$redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title); $plugins->run_hooks("redirect", $redirect_args);	$redirect_args = array('url' => &$url, 'message' => &$message, 'title' => &$title); $plugins->run_hooks("redirect", $redirect_args);

if($mybb->get_input('ajax', MyBB::INPUT_INT)) { // Send our headers.	if($mybb->get_input('ajax', MyBB::INPUT_INT)) { // Send our headers.
Zeile 966	Zeile 1005
run_shutdown();	run_shutdown();
if(my_substr($url, 0, 7) !== 'http://' && my_substr($url, 0, 8) !== 'https://' && my_substr($url, 0, 1) !== '/')	if(!my_validate_url($url, true, true))
{ header("Location: {$mybb->settings['bburl']}/{$url}"); }	{ header("Location: {$mybb->settings['bburl']}/{$url}"); }
Zeile 1179	Zeile 1218
if($uid != $mybb->user['uid']) { // We've already cached permissions for this user, return them.	if($uid != $mybb->user['uid']) { // We've already cached permissions for this user, return them.
if($user_cache[$uid]['permissions'])	if(!empty($user_cache[$uid]['permissions']))
{ return $user_cache[$uid]['permissions']; } // This user was not already cached, fetch their user information.	{ return $user_cache[$uid]['permissions']; } // This user was not already cached, fetch their user information.
if(!$user_cache[$uid])	if(empty($user_cache[$uid]))
{ $user_cache[$uid] = get_user($uid); }	{ $user_cache[$uid] = get_user($uid); }
Zeile 1209	Zeile 1248
* Fetch the usergroup permissions for a specific group or series of groups combined * * @param int\|string $gid A list of groups (Can be a single integer, or a list of groups separated by a comma)	* Fetch the usergroup permissions for a specific group or series of groups combined * * @param int\|string $gid A list of groups (Can be a single integer, or a list of groups separated by a comma)
* @return array Array of permissions generated for the groups	* @return array Array of permissions generated for the groups, containing also a list of comma-separated checked groups under 'all_usergroups' index
*/ function usergroup_permissions($gid=0) {	*/ function usergroup_permissions($gid=0) {
Zeile 1224	Zeile 1263
if(count($groups) == 1) {	if(count($groups) == 1) {
	$groupscache[$gid]['all_usergroups'] = $gid;
return $groupscache[$gid]; }	return $groupscache[$gid]; }

$usergroup = array();	$usergroup = array();
	$usergroup['all_usergroups'] = $gid;
foreach($groups as $gid) {	foreach($groups as $gid) {
if(trim($gid) == "" \|\| !$groupscache[$gid])	if(trim($gid) == "" \|\| empty($groupscache[$gid]))
{ continue; }	{ continue; }
Zeile 1714	Zeile 1755
{ foreach($modcache as $modusers) {	{ foreach($modcache as $modusers) {
if(isset($modusers['users'][$uid]) && $modusers['users'][$uid]['mid'])	if(isset($modusers['users'][$uid]) && $modusers['users'][$uid]['mid'] && (!$action \|\| !empty($modusers['users'][$uid][$action])))
{ return true; }	{ return true; }
elseif(isset($user_perms['gid']) && isset($modusers['usergroups'][$user_perms['gid']]))	$groups = explode(',', $user_perms['all_usergroups']); foreach($groups as $group)
{	{
// Moderating usergroup return true;	if(trim($group) != '' && isset($modusers['usergroups'][$group]) && (!$action \|\| !empty($modusers['usergroups'][$group][$action]))) { return true; }
} } }	} } }
Zeile 1730	Zeile 1776
else { $modperms = get_moderator_permissions($fid, $uid);	else { $modperms = get_moderator_permissions($fid, $uid);

if(!$action && $modperms)	if(!$action && $modperms)
{	{
return true; } else	return true; } else
Zeile 1740	Zeile 1786
if(isset($modperms[$action]) && $modperms[$action] == 1) { return true;	if(isset($modperms[$action]) && $modperms[$action] == 1) { return true;
}	}
else { return false;	else { return false;
Zeile 1772	Zeile 1818
foreach($posticons_cache as $posticon) { $posticons[$posticon['name']] = $posticon;	foreach($posticons_cache as $posticon) { $posticons[$posticon['name']] = $posticon;
}	}
krsort($posticons);	krsort($posticons);

foreach($posticons as $dbicon) { $dbicon['path'] = str_replace("{theme}", $theme['imgdir'], $dbicon['path']);	foreach($posticons as $dbicon) { $dbicon['path'] = str_replace("{theme}", $theme['imgdir'], $dbicon['path']);
Zeile 1782	Zeile 1828
$dbicon['name'] = htmlspecialchars_uni($dbicon['name']); if($icon == $dbicon['iid'])	$dbicon['name'] = htmlspecialchars_uni($dbicon['name']); if($icon == $dbicon['iid'])
{	{
$checked = " checked=\"checked\""; $no_icons_checked = '';	$checked = " checked=\"checked\""; $no_icons_checked = '';
}	}
else { $checked = ''; } eval("\$iconlist .= \"".$templates->get("posticons_icon")."\";");	else { $checked = ''; } eval("\$iconlist .= \"".$templates->get("posticons_icon")."\";");
}	}

eval("\$posticons = \"".$templates->get("posticons")."\";");	if(!empty($iconlist)) { eval("\$posticons = \"".$templates->get("posticons")."\";"); } else { $posticons = ''; }
return $posticons; }	return $posticons; }
Zeile 1804	Zeile 1857
* * @param string $name The cookie identifier. * @param string $value The cookie value.	* * @param string $name The cookie identifier. * @param string $value The cookie value.
* @param int\|string $expires The timestamp of the expiry date.	* @param int\|string $expires The timestamp of the expiry date.
* @param boolean $httponly True if setting a HttpOnly cookie (supported by the majority of web browsers) */ function my_setcookie($name, $value="", $expires="", $httponly=false) { global $mybb;	* @param boolean $httponly True if setting a HttpOnly cookie (supported by the majority of web browsers) */ function my_setcookie($name, $value="", $expires="", $httponly=false) { global $mybb;

if(!$mybb->settings['cookiepath']) { $mybb->settings['cookiepath'] = "/";	if(!$mybb->settings['cookiepath']) { $mybb->settings['cookiepath'] = "/";
}	}
if($expires == -1)	if($expires == -1)
{	{
$expires = 0;	$expires = 0;
}	}
elseif($expires == "" \|\| $expires == null) { $expires = TIME_NOW + (606024*365); // Make the cookie expire in a years time } else	elseif($expires == "" \|\| $expires == null) { $expires = TIME_NOW + (606024*365); // Make the cookie expire in a years time } else
{	{
$expires = TIME_NOW + (int)$expires; }	$expires = TIME_NOW + (int)$expires; }
Zeile 1856	Zeile 1909
$cookie .= "; HttpOnly"; }	$cookie .= "; HttpOnly"; }
$mybb->cookies[$name] = $value;	if($mybb->settings['cookiesecureflag']) { $cookie .= "; Secure"; } $mybb->cookies[$name] = $value;
header($cookie, false); }	header($cookie, false); }
Zeile 1867	Zeile 1925
* @param string $name The cookie identifier. */ function my_unsetcookie($name)	* @param string $name The cookie identifier. */ function my_unsetcookie($name)
{	{
global $mybb; $expires = -3600;	global $mybb; $expires = -3600;
Zeile 1888	Zeile 1946
global $mybb; if(!isset($mybb->cookies['mybb'][$name]))	global $mybb; if(!isset($mybb->cookies['mybb'][$name]))
{	{
return false; }	return false; }
Zeile 2053	Zeile 2111
if(count($list) < end($expected)) { // array size less than expected	if(count($list) < end($expected)) { // array size less than expected
return false; }	return false; }
unset($list); $list = &$stack[count($stack)-1]; array_pop($stack);	unset($list); $list = &$stack[count($stack)-1]; array_pop($stack);
Zeile 2072	Zeile 2130
if(count($list) >= MAX_SERIALIZED_ARRAY_LENGTH) { // array size exceeds MAX_SERIALIZED_ARRAY_LENGTH	if(count($list) >= MAX_SERIALIZED_ARRAY_LENGTH) { // array size exceeds MAX_SERIALIZED_ARRAY_LENGTH
return false; }	return false; }
if(count($list) >= end($expected)) { // array size exceeds expected length	if(count($list) >= end($expected)) { // array size exceeds expected length
Zeile 2082	Zeile 2140
$key = $value; $state = 3;	$key = $value; $state = 3;
break;	break;
} // illegal array index type	} // illegal array index type
Zeile 2101	Zeile 2159
$list = &$data; $expected[] = $expectedLength; $state = 2;	$list = &$data; $expected[] = $expectedLength; $state = 2;
break; }	break; }
if($type != '}') { $data = $value;	if($type != '}') { $data = $value;
Zeile 2122	Zeile 2180
} return $data; }	} return $data; }

/** * Credits go to https://github.com/piwik * Wrapper for _safe_unserialize() that handles exceptions and multibyte encoding issue	/** * Credits go to https://github.com/piwik * Wrapper for _safe_unserialize() that handles exceptions and multibyte encoding issue
Zeile 2133	Zeile 2191
function my_unserialize($str) { // Ensure we use the byte count for strings even when strlen() is overloaded by mb_strlen()	function my_unserialize($str) { // Ensure we use the byte count for strings even when strlen() is overloaded by mb_strlen()
if(function_exists('mb_internal_encoding') && (((int)ini_get('mbstring.func_overload')) & 2)) { $mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); } $out = _safe_unserialize($str);	if(function_exists('mb_internal_encoding') && (((int)ini_get('mbstring.func_overload')) & 2)) { $mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); } $out = _safe_unserialize($str);
if(isset($mbIntEnc)) { mb_internal_encoding($mbIntEnc); }	if(isset($mbIntEnc)) { mb_internal_encoding($mbIntEnc); }

return $out; }	return $out; }
Zeile 2165	Zeile 2223
{ return 'N;'; }	{ return 'N;'; }

if(is_bool($value))	if(is_bool($value))
{	{
return 'b:'.(int)$value.';'; }	return 'b:'.(int)$value.';'; }

if(is_int($value)) { return 'i:'.$value.';';	if(is_int($value)) { return 'i:'.$value.';';
}	}
if(is_float($value))	if(is_float($value))
{	{
return 'd:'.str_replace(',', '.', $value).';';	return 'd:'.str_replace(',', '.', $value).';';
}	}
if(is_string($value)) { return 's:'.strlen($value).':"'.$value.'";'; }	if(is_string($value)) { return 's:'.strlen($value).':"'.$value.'";'; }

if(is_array($value))	if(is_array($value))
{	{
$out = ''; foreach($value as $k => $v) { $out .= _safe_serialize($k) . _safe_serialize($v); }	$out = ''; foreach($value as $k => $v) { $out .= _safe_serialize($k) . _safe_serialize($v); }

return 'a:'.count($value).':{'.$out.'}'; } // safe_serialize cannot my_serialize resources or objects return false;	return 'a:'.count($value).':{'.$out.'}'; } // safe_serialize cannot my_serialize resources or objects return false;
}	}
/** * Credits go to https://github.com/piwik	/** * Credits go to https://github.com/piwik
Zeile 2216	Zeile 2274
$mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); }	$mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); }

$out = _safe_serialize($value); if(isset($mbIntEnc)) { mb_internal_encoding($mbIntEnc); }	$out = _safe_serialize($value); if(isset($mbIntEnc)) { mb_internal_encoding($mbIntEnc); }

return $out; }	return $out; }
Zeile 2232	Zeile 2290
* @return int The serverload of the system. */ function get_server_load()	* @return int The serverload of the system. */ function get_server_load()
{	{
global $mybb, $lang; $serverload = array();	global $mybb, $lang; $serverload = array();
Zeile 2397	Zeile 2455
if($new_stats[$counter] < 0) { $new_stats[$counter] = 0;	if($new_stats[$counter] < 0) { $new_stats[$counter] = 0;
} } }	} } }
} if(!$force)	} if(!$force)
Zeile 2414	Zeile 2472
$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit' => 1)); $lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid'];	$query = $db->simple_select("users", "uid, username", "", array('order_by' => 'regdate', 'order_dir' => 'DESC', 'limit' => 1)); $lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid'];
$new_stats['lastusername'] = $lastmember['username'];	$new_stats['lastusername'] = $lastmember['username'] = htmlspecialchars_uni($lastmember['username']);
} if(!empty($new_stats))	} if(!empty($new_stats))
Zeile 2426	Zeile 2484
else { $stats = $new_stats;	else { $stats = $new_stats;
} }	} }
// Update stats row for today in the database $todays_stats = array(	// Update stats row for today in the database $todays_stats = array(
Zeile 2486	Zeile 2544
{ $update_query[$counter] = 0; }	{ $update_query[$counter] = 0; }
} }	} }
// Only update if we're actually doing something if(count($update_query) > 0)	// Only update if we're actually doing something if(count($update_query) > 0)
{	{
$db->update_query("forums", $update_query, "fid='".(int)$fid."'"); }	$db->update_query("forums", $update_query, "fid='".(int)$fid."'"); }
Zeile 2501	Zeile 2559
{ $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1)	{ $threads_diff = $update_query['threads'] - $forum['threads']; if($threads_diff > -1)
{	{
$new_stats['numthreads'] = "+{$threads_diff}";	$new_stats['numthreads'] = "+{$threads_diff}";
} else { $new_stats['numthreads'] = "{$threads_diff}"; } } if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; }	}
else {	else {
$new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}";	$new_stats['numthreads'] = "{$threads_diff}";
} }	} }
if(array_key_exists('posts', $update_query))	if(array_key_exists('unapprovedthreads', $update_query)) { $unapprovedthreads_diff = $update_query['unapprovedthreads'] - $forum['unapprovedthreads']; if($unapprovedthreads_diff > -1) { $new_stats['numunapprovedthreads'] = "+{$unapprovedthreads_diff}"; } else { $new_stats['numunapprovedthreads'] = "{$unapprovedthreads_diff}"; } } if(array_key_exists('posts', $update_query))
{ $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1)	{ $posts_diff = $update_query['posts'] - $forum['posts']; if($posts_diff > -1)
Zeile 2540	Zeile 2598
{ $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)	{ $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)
{	{
$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";	$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}";
}	}
else	else
{	{
$new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; } }	$new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; } }
Zeile 2555	Zeile 2613
if($deletedposts_diff > -1) { $new_stats['numdeletedposts'] = "+{$deletedposts_diff}";	if($deletedposts_diff > -1) { $new_stats['numdeletedposts'] = "+{$deletedposts_diff}";
}	}
else { $new_stats['numdeletedposts'] = "{$deletedposts_diff}";	else { $new_stats['numdeletedposts'] = "{$deletedposts_diff}";
Zeile 2644	Zeile 2702
if((int)$changes[$counter] != 0) { $update_query[$counter] = $thread[$counter] + $changes[$counter];	if((int)$changes[$counter] != 0) { $update_query[$counter] = $thread[$counter] + $changes[$counter];
} } else {	} } else {
$update_query[$counter] = $changes[$counter]; }	$update_query[$counter] = $changes[$counter]; }
Zeile 2891	Zeile 2949
if($selitem == $forum['fid']) { $optionselected = 'selected="selected"';	if($selitem == $forum['fid']) { $optionselected = 'selected="selected"';
} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");	} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name'])); eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");
if($forum_cache[$forum['fid']]) {	if($forum_cache[$forum['fid']]) {
Zeile 2910	Zeile 2968
if($addselect) { if($showextras == 0)	if($addselect) { if($showextras == 0)
{	{
$template = "special"; } else	$template = "special"; } else
Zeile 2975	Zeile 3033
{ $str[] = $set[my_rand(0, 61)]; }	{ $str[] = $set[my_rand(0, 61)]; }

// Make sure they're in random order and convert them to a string shuffle($str);	// Make sure they're in random order and convert them to a string shuffle($str);
Zeile 3002	Zeile 3060
if($displaygroup != 0) { $usergroup = $displaygroup;	if($displaygroup != 0) { $usergroup = $displaygroup;
}	}
$ugroup = $groupscache[$usergroup]; $format = $ugroup['namestyle']; $userin = substr_count($format, "{username}");	$ugroup = $groupscache[$usergroup]; $format = $ugroup['namestyle']; $userin = substr_count($format, "{username}");

if($userin == 0) { $format = "{username}"; }	if($userin == 0) { $format = "{username}"; }

$format = stripslashes($format);	$format = stripslashes($format);

return str_replace("{username}", $username, $format);	return str_replace("{username}", $username, $format);
} /**	} /**
* Formats an avatar to a certain dimension * * @param string $avatar The avatar file name	* Formats an avatar to a certain dimension * * @param string $avatar The avatar file name
Zeile 3028	Zeile 3086
*/ function format_avatar($avatar, $dimensions = '', $max_dimensions = '') {	*/ function format_avatar($avatar, $dimensions = '', $max_dimensions = '') {
global $mybb;	global $mybb, $theme;
static $avatars; if(!isset($avatars)) { $avatars = array();	static $avatars; if(!isset($avatars)) { $avatars = array();
	} if(my_strpos($avatar, '://') !== false && !$mybb->settings['allowremoteavatars']) { // Remote avatar, but remote avatars are disallowed. $avatar = null;
} if(!$avatar) { // Default avatar	} if(!$avatar) { // Default avatar
$avatar = $mybb->settings['useravatar'];	if(defined('IN_ADMINCP')) { $theme['imgdir'] = '../images'; } $avatar = str_replace('{theme}', $theme['imgdir'], $mybb->settings['useravatar']);
$dimensions = $mybb->settings['useravatardims']; }	$dimensions = $mybb->settings['useravatardims']; }
Zeile 3214	Zeile 3283
$emoticons_enabled = "false"; if($smilies) {	$emoticons_enabled = "false"; if($smilies) {
if($mybb->settings['smilieinserter'] && $mybb->settings['smilieinsertercols'] && $mybb->settings['smilieinsertertot']) { $emoticon = ",emoticon"; } $emoticons_enabled = "true";
if(!$smiliecache) { if(!isset($smilie_cache) \|\| !is_array($smilie_cache)) { $smilie_cache = $cache->read("smilies");	if(!$smiliecache) { if(!isset($smilie_cache) \|\| !is_array($smilie_cache)) { $smilie_cache = $cache->read("smilies");
}	}
foreach($smilie_cache as $smilie) { $smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']); $smiliecache[$smilie['sid']] = $smilie; } }	foreach($smilie_cache as $smilie) { $smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']); $smiliecache[$smilie['sid']] = $smilie; } }
	if($mybb->settings['smilieinserter'] && $mybb->settings['smilieinsertercols'] && $mybb->settings['smilieinsertertot'] && !empty($smiliecache)) { $emoticon = ",emoticon"; } $emoticons_enabled = "true";
unset($smilie);	unset($smilie);
Zeile 3256	Zeile 3325
if(!$mybb->settings['smilieinserter'] \|\| !$mybb->settings['smilieinsertercols'] \|\| !$mybb->settings['smilieinsertertot'] \|\| !$smilie['showclickable']) {	if(!$mybb->settings['smilieinserter'] \|\| !$mybb->settings['smilieinsertercols'] \|\| !$mybb->settings['smilieinsertertot'] \|\| !$smilie['showclickable']) {
$hiddensmilies .= '"'.$find.'": "'.$image.'",';	$hiddensmilies .= '"'.$find.'": "'.$image.'",';
} elseif($i < $mybb->settings['smilieinsertertot']) {	} elseif($i < $mybb->settings['smilieinsertertot']) {
Zeile 3389	Zeile 3458
eval("\$getmore = \"".$templates->get("smilieinsert_getmore")."\";"); }	eval("\$getmore = \"".$templates->get("smilieinsert_getmore")."\";"); }
$smilies = "";	$smilies = '';
$counter = 0; $i = 0;	$counter = 0; $i = 0;

$extra_class = ''; foreach($smiliecache as $smilie) { if($i < $mybb->settings['smilieinsertertot'] && $smilie['showclickable'] != 0) {	$extra_class = ''; foreach($smiliecache as $smilie) { if($i < $mybb->settings['smilieinsertertot'] && $smilie['showclickable'] != 0) {
if($counter == 0) { $smilies .= "<tr>\n"; }
$smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']); $smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image'])); $smilie['name'] = htmlspecialchars_uni($smilie['name']);	$smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']); $smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image'])); $smilie['name'] = htmlspecialchars_uni($smilie['name']);

// Only show the first text to replace in the box $temp = explode("\n", $smilie['find']); // assign to temporary variable for php 5.3 compatibility $smilie['find'] = $temp[0];	// Only show the first text to replace in the box $temp = explode("\n", $smilie['find']); // assign to temporary variable for php 5.3 compatibility $smilie['find'] = $temp[0];
Zeile 3416	Zeile 3480
$onclick = " onclick=\"MyBBEditor.insertText(' $find ');\""; $extra_class = ' smilie_pointer'; eval('$smilie = "'.$templates->get('smilie', 1, 0).'";');	$onclick = " onclick=\"MyBBEditor.insertText(' $find ');\""; $extra_class = ' smilie_pointer'; eval('$smilie = "'.$templates->get('smilie', 1, 0).'";');
eval("\$smilies .= \"".$templates->get("smilieinsert_smilie")."\";");	eval("\$smilie_icons .= \"".$templates->get("smilieinsert_smilie")."\";");
++$i; ++$counter; if($counter == $mybb->settings['smilieinsertercols']) { $counter = 0;	++$i; ++$counter; if($counter == $mybb->settings['smilieinsertercols']) { $counter = 0;
$smilies .= "</tr>\n";	eval("\$smilies .= \"".$templates->get("smilieinsert_row")."\";"); $smilie_icons = '';
} } }	} } }
Zeile 3431	Zeile 3496
if($counter != 0) { $colspan = $mybb->settings['smilieinsertercols'] - $counter;	if($counter != 0) { $colspan = $mybb->settings['smilieinsertercols'] - $counter;
$smilies .= "<td colspan=\"{$colspan}\"> </td>\n</tr>\n";	eval("\$smilies .= \"".$templates->get("smilieinsert_row_empty")."\";");
} eval("\$clickablesmilies = \"".$templates->get("smilieinsert")."\";");	} eval("\$clickablesmilies = \"".$templates->get("smilieinsert")."\";");
Zeile 3644	Zeile 3709
$default_selected = array(); $selected_pid = (int)$selected_pid;	$default_selected = array(); $selected_pid = (int)$selected_pid;

if($selected_pid == 0) { $default_selected['all'] = ' selected="selected"';	if($selected_pid == 0) { $default_selected['all'] = ' selected="selected"';
}	}
else if($selected_pid == -1) { $default_selected['none'] = ' selected="selected"';	else if($selected_pid == -1) { $default_selected['none'] = ' selected="selected"';
}	}
else if($selected_pid == -2) { $default_selected['any'] = ' selected="selected"';	else if($selected_pid == -2) { $default_selected['any'] = ' selected="selected"';
}	}
foreach($prefixes as $prefix) {	foreach($prefixes as $prefix) {
Zeile 3676	Zeile 3741
/** * Gzip encodes text to a specified level	/** * Gzip encodes text to a specified level
*	*
* @param string $contents The string to encode * @param int $level The level (1-9) to encode at * @return string The encoded string	* @param string $contents The string to encode * @param int $level The level (1-9) to encode at * @return string The encoded string
Zeile 3686	Zeile 3751
if(function_exists("gzcompress") && function_exists("crc32") && !headers_sent() && !(ini_get('output_buffering') && my_strpos(' '.ini_get('output_handler'), 'ob_gzhandler'))) { $httpaccept_encoding = '';	if(function_exists("gzcompress") && function_exists("crc32") && !headers_sent() && !(ini_get('output_buffering') && my_strpos(' '.ini_get('output_handler'), 'ob_gzhandler'))) { $httpaccept_encoding = '';

if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))	if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))
{	{
$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING'];	$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING'];
}	}
if(my_strpos(" ".$httpaccept_encoding, "x-gzip")) { $encoding = "x-gzip";	if(my_strpos(" ".$httpaccept_encoding, "x-gzip")) { $encoding = "x-gzip";
}	}
if(my_strpos(" ".$httpaccept_encoding, "gzip")) { $encoding = "gzip";	if(my_strpos(" ".$httpaccept_encoding, "gzip")) { $encoding = "gzip";
Zeile 3725	Zeile 3790
return $contents; }	return $contents; }

/** * Log the actions of a moderator. *	/** * Log the actions of a moderator. *
Zeile 3735	Zeile 3800
function log_moderator_action($data, $action="") { global $mybb, $db, $session;	function log_moderator_action($data, $action="") { global $mybb, $db, $session;

$fid = 0; if(isset($data['fid'])) {	$fid = 0; if(isset($data['fid'])) {
Zeile 3745	Zeile 3810
$tid = 0; if(isset($data['tid']))	$tid = 0; if(isset($data['tid']))
{	{
$tid = (int)$data['tid']; unset($data['tid']);	$tid = (int)$data['tid']; unset($data['tid']);
}	}
$pid = 0; if(isset($data['pid']))	$pid = 0; if(isset($data['pid']))
{	{
$pid = (int)$data['pid']; unset($data['pid']);	$pid = (int)$data['pid']; unset($data['pid']);
	} $tids = array(); if(isset($data['tids'])) { $tids = (array)$data['tids']; unset($data['tids']);
} // Any remaining extra data - we my_serialize and insert in to its own column	} // Any remaining extra data - we my_serialize and insert in to its own column
Zeile 3773	Zeile 3845
"data" => $db->escape_string($data), "ipaddress" => $db->escape_binary($session->packedip) );	"data" => $db->escape_string($data), "ipaddress" => $db->escape_binary($session->packedip) );
$db->insert_query("moderatorlog", $sql_array);	if($tids) { $multiple_sql_array = array(); foreach($tids as $tid) { $sql_array['tid'] = (int)$tid; $multiple_sql_array[] = $sql_array; } $db->insert_query_multiple("moderatorlog", $multiple_sql_array); } else { $db->insert_query("moderatorlog", $sql_array); }
} /**	} /**
Zeile 3784	Zeile 3872
* @return string The formatted repuation */ function get_reputation($reputation, $uid=0)	* @return string The formatted repuation */ function get_reputation($reputation, $uid=0)
{	{
global $theme, $templates; $display_reputation = $reputation_class = ''; if($reputation < 0)	global $theme, $templates; $display_reputation = $reputation_class = ''; if($reputation < 0)
{	{
$reputation_class = "reputation_negative"; } elseif($reputation > 0) { $reputation_class = "reputation_positive";	$reputation_class = "reputation_negative"; } elseif($reputation > 0) { $reputation_class = "reputation_positive";
}	}
else	else
{	{
$reputation_class = "reputation_neutral"; }	$reputation_class = "reputation_neutral"; }

$reputation = my_number_format($reputation); if($uid != 0) { eval("\$display_reputation = \"".$templates->get("postbit_reputation_formatted_link")."\";");	$reputation = my_number_format($reputation); if($uid != 0) { eval("\$display_reputation = \"".$templates->get("postbit_reputation_formatted_link")."\";");
} else	} else
{ eval("\$display_reputation = \"".$templates->get("postbit_reputation_formatted")."\";"); }	{ eval("\$display_reputation = \"".$templates->get("postbit_reputation_formatted")."\";"); }
Zeile 3829	Zeile 3917
if($level >= 80) { $warning_class = "high_warning";	if($level >= 80) { $warning_class = "high_warning";
}	}
else if($level >= 50) { $warning_class = "moderate_warning";	else if($level >= 50) { $warning_class = "moderate_warning";
Zeile 3861	Zeile 3949
if($mybb->settings['ip_forwarded_check']) { $addresses = array();	if($mybb->settings['ip_forwarded_check']) { $addresses = array();

if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { $addresses = explode(',', strtolower($_SERVER['HTTP_X_FORWARDED_FOR']));	if(isset($_SERVER['HTTP_X_FORWARDED_FOR'])) { $addresses = explode(',', strtolower($_SERVER['HTTP_X_FORWARDED_FOR']));
Zeile 4136	Zeile 4224
$unviewable[] = $forum['fid']; } }	$unviewable[] = $forum['fid']; } }

$unviewableforums = implode(',', $unviewable);	$unviewableforums = implode(',', $unviewable);

return $unviewableforums; }	return $unviewableforums; }
Zeile 4649	Zeile 4737
$stamp %= $msecs; $seconds = $stamp;	$stamp %= $msecs; $seconds = $stamp;
if($years == 1)	// Prevent gross over accuracy ($options parameter will override these) if($years > 0)
{	{
$nicetime['years'] = "1".$lang_year;	$options = array_merge(array( 'days' => false, 'hours' => false, 'minutes' => false, 'seconds' => false ), $options);
}	}
else if($years > 1)	elseif($months > 0)
{	{
$nicetime['years'] = $years.$lang_years;	$options = array_merge(array( 'hours' => false, 'minutes' => false, 'seconds' => false ), $options);
}	}
if($months == 1) { $nicetime['months'] = "1".$lang_month; } else if($months > 1) { $nicetime['months'] = $months.$lang_months; } if($weeks == 1) { $nicetime['weeks'] = "1".$lang_week; } else if($weeks > 1) { $nicetime['weeks'] = $weeks.$lang_weeks; } if($days == 1) { $nicetime['days'] = "1".$lang_day; } else if($days > 1) { $nicetime['days'] = $days.$lang_days; }	elseif($weeks > 0) { $options = array_merge(array( 'minutes' => false, 'seconds' => false ), $options); } elseif($days > 0) { $options = array_merge(array( 'seconds' => false ), $options); } if(!isset($options['years']) \|\| $options['years'] !== false) { if($years == 1) { $nicetime['years'] = "1".$lang_year; } else if($years > 1) { $nicetime['years'] = $years.$lang_years; } } if(!isset($options['months']) \|\| $options['months'] !== false) { if($months == 1) { $nicetime['months'] = "1".$lang_month; } else if($months > 1) { $nicetime['months'] = $months.$lang_months; } } if(!isset($options['weeks']) \|\| $options['weeks'] !== false) { if($weeks == 1) { $nicetime['weeks'] = "1".$lang_week; } else if($weeks > 1) { $nicetime['weeks'] = $weeks.$lang_weeks; } } if(!isset($options['days']) \|\| $options['days'] !== false) { if($days == 1) { $nicetime['days'] = "1".$lang_day; } else if($days > 1) { $nicetime['days'] = $days.$lang_days; } }
if(!isset($options['hours']) \|\| $options['hours'] !== false) { if($hours == 1)	if(!isset($options['hours']) \|\| $options['hours'] !== false) { if($hours == 1)
Zeile 4694	Zeile 4826
else if($hours > 1) { $nicetime['hours'] = $hours.$lang_hours;	else if($hours > 1) { $nicetime['hours'] = $hours.$lang_hours;
} }	} }
if(!isset($options['minutes']) \|\| $options['minutes'] !== false) { if($minutes == 1)	if(!isset($options['minutes']) \|\| $options['minutes'] !== false) { if($minutes == 1)
{	{
$nicetime['minutes'] = "1".$lang_minute; } else if($minutes > 1)	$nicetime['minutes'] = "1".$lang_minute; } else if($minutes > 1)
Zeile 4710	Zeile 4842
} if(!isset($options['seconds']) \|\| $options['seconds'] !== false)	} if(!isset($options['seconds']) \|\| $options['seconds'] !== false)
{	{
if($seconds == 1) { $nicetime['seconds'] = "1".$lang_second;	if($seconds == 1) { $nicetime['seconds'] = "1".$lang_second;
}	}
else if($seconds > 1) { $nicetime['seconds'] = $seconds.$lang_seconds; }	else if($seconds > 1) { $nicetime['seconds'] = $seconds.$lang_seconds; }
}	}
if(is_array($nicetime)) { return implode(", ", $nicetime);	if(is_array($nicetime)) { return implode(", ", $nicetime);
}	}
} /**	} /**
Zeile 4749	Zeile 4881
$alttrow = $trow; return $trow;	$alttrow = $trow; return $trow;
} /**	} /**
* Add a user to a specific additional user group. * * @param int $uid The user ID	* Add a user to a specific additional user group. * * @param int $uid The user ID
Zeile 4831	Zeile 4963
$groupslist .= $comma.$gid; $comma = ","; $donegroup[$gid] = 1;	$groupslist .= $comma.$gid; $comma = ","; $donegroup[$gid] = 1;
} } }	} } }
$dispupdate = ""; if($leavegroup == $user['displaygroup'])	$dispupdate = ""; if($leavegroup == $user['displaygroup'])
Zeile 4885	Zeile 5017
{ $location = htmlspecialchars_uni($_ENV['PATH_INFO']); }	{ $location = htmlspecialchars_uni($_ENV['PATH_INFO']); }

if($quick) { return $location;	if($quick) { return $location;
}	}
if($fields == true) {	if($fields == true) {
Zeile 4909	Zeile 5041
{ continue; }	{ continue; }

$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni($name)."\" value=\"".htmlspecialchars_uni($value)."\" />\n"; } }	$form_html .= "<input type=\"hidden\" name=\"".htmlspecialchars_uni($name)."\" value=\"".htmlspecialchars_uni($value)."\" />\n"; } }
Zeile 4917	Zeile 5049
return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else	return array('location' => $location, 'form_html' => $form_html, 'form_method' => $mybb->request_method); } else
{	{
if(isset($_SERVER['QUERY_STRING'])) { $location .= "?".htmlspecialchars_uni($_SERVER['QUERY_STRING']);	if(isset($_SERVER['QUERY_STRING'])) { $location .= "?".htmlspecialchars_uni($_SERVER['QUERY_STRING']);
Zeile 4997	Zeile 5129
if(is_array($tcache[$tid])) {	if(is_array($tcache[$tid])) {
// Figure out what groups this user is in if(isset($mybb->user['additionalgroups'])) { $in_groups = explode(",", $mybb->user['additionalgroups']); } $in_groups[] = $mybb->user['usergroup'];
foreach($tcache[$tid] as $theme) { $sel = "";	foreach($tcache[$tid] as $theme) { $sel = "";
Zeile 5650	Zeile 5775
function unhtmlentities($string) { // Replace numeric entities	function unhtmlentities($string) { // Replace numeric entities
$string = preg_replace_callback('~&#x([0-9a-f]+);~i', create_function('$matches', 'return unichr(hexdec($matches[1]));'), $string); $string = preg_replace_callback('~&#([0-9]+);~', create_function('$matches', 'return unichr($matches[1]);'), $string);	$string = preg_replace_callback('~&#x([0-9a-f]+);~i', 'unichr_callback1', $string); $string = preg_replace_callback('~&#([0-9]+);~', 'unichr_callback2', $string);
// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES);	// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES);
Zeile 5691	Zeile 5816
{ return false; }	{ return false; }
	} /** * Returns any ascii to it's character (utf-8 safe). * * @param array $matches Matches. * @return string\|bool The characterized ascii. False on failure / function unichr_callback1($matches) { return unichr(hexdec($matches[1])); } /* * Returns any ascii to it's character (utf-8 safe). * * @param array $matches Matches. * @return string\|bool The characterized ascii. False on failure */ function unichr_callback2($matches) { return unichr($matches[1]);
} /**	} /**
Zeile 5701	Zeile 5848
*/ function get_event_poster($event) {	*/ function get_event_poster($event) {
	$event['username'] = htmlspecialchars_uni($event['username']);
$event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']); $event_poster = build_profile_link($event['username'], $event['author']); return $event_poster;	$event['username'] = format_name($event['username'], $event['usergroup'], $event['displaygroup']); $event_poster = build_profile_link($event['username'], $event['author']); return $event_poster;
}	}
/** * Get the event date.	/** * Get the event date.
Zeile 5715	Zeile 5863
function get_event_date($event) { global $mybb;	function get_event_date($event) { global $mybb;

$event_date = explode("-", $event['date']);	$event_date = explode("-", $event['date']);
$event_date = mktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]);	$event_date = gmmktime(0, 0, 0, $event_date[1], $event_date[0], $event_date[2]);
$event_date = my_date($mybb->settings['dateformat'], $event_date); return $event_date;	$event_date = my_date($mybb->settings['dateformat'], $event_date); return $event_date;
Zeile 5763	Zeile 5911
if(!$username && $uid == 0) { // Return Guest phrase for no UID, no guest nickname	if(!$username && $uid == 0) { // Return Guest phrase for no UID, no guest nickname
return $lang->guest;	return htmlspecialchars_uni($lang->guest);
} elseif($uid == 0) {	} elseif($uid == 0) {
Zeile 5781	Zeile 5929
if(!empty($onclick)) { $onclick = " onclick=\"{$onclick}\"";	if(!empty($onclick)) { $onclick = " onclick=\"{$onclick}\"";
}	}
return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }	return "<a href=\"{$mybb->settings['bburl']}/".get_profile_link($uid)."\"{$target}{$onclick}>{$username}</a>"; } }
Zeile 5793	Zeile 5941
* @param int $fid The forum id of the forum. * @param int $page (Optional) The page number of the forum. * @return string The url to the forum.	* @param int $fid The forum id of the forum. * @param int $page (Optional) The page number of the forum. * @return string The url to the forum.
*/	*/
function get_forum_link($fid, $page=0) { if($page > 0)	function get_forum_link($fid, $page=0) { if($page > 0)
{	{
$link = str_replace("{fid}", $fid, FORUM_URL_PAGED);	$link = str_replace("{fid}", $fid, FORUM_URL_PAGED);
$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); } else { $link = str_replace("{fid}", $fid, FORUM_URL);	$link = str_replace("{page}", $page, $link); return htmlspecialchars_uni($link); } else { $link = str_replace("{fid}", $fid, FORUM_URL);
return htmlspecialchars_uni($link); } }	return htmlspecialchars_uni($link); } }
Zeile 5820	Zeile 5968
function get_thread_link($tid, $page=0, $action='') { if($page > 1)	function get_thread_link($tid, $page=0, $action='') { if($page > 1)
{ if($action) { $link = THREAD_URL_ACTION; $link = str_replace("{action}", $action, $link); } else	{ if($action) { $link = THREAD_URL_ACTION; $link = str_replace("{action}", $action, $link); } else
{ $link = THREAD_URL_PAGED; }	{ $link = THREAD_URL_PAGED; }
Zeile 5868	Zeile 6016
else { $link = str_replace("{pid}", $pid, POST_URL);	else { $link = str_replace("{pid}", $pid, POST_URL);
return htmlspecialchars_uni($link); }	return htmlspecialchars_uni($link); }
} /**	} /**
Zeile 6043	Zeile 6191
static $forum_cache; if(!isset($forum_cache) \|\| is_array($forum_cache))	static $forum_cache; if(!isset($forum_cache) \|\| is_array($forum_cache))
{	{
$forum_cache = $cache->read("forums"); }	$forum_cache = $cache->read("forums"); }
Zeile 6171	Zeile 6319
} } }	} } }

$inactiveforums = implode(",", $inactive); return $inactiveforums;	$inactiveforums = implode(",", $inactive); return $inactiveforums;
Zeile 6201	Zeile 6349
if(!empty($mybb->cookies['loginattempts'])) { $loginattempts = $mybb->cookies['loginattempts'];	if(!empty($mybb->cookies['loginattempts'])) { $loginattempts = $mybb->cookies['loginattempts'];
}	}
if(!empty($mybb->cookies['failedlogin'])) { $failedlogin = $mybb->cookies['failedlogin']; }	if(!empty($mybb->cookies['failedlogin'])) { $failedlogin = $mybb->cookies['failedlogin']; }

// Work out if the user has had more than the allowed number of login attempts if($loginattempts > $mybb->settings['failedlogincount']) {	// Work out if the user has had more than the allowed number of login attempts if($loginattempts > $mybb->settings['failedlogincount']) {
Zeile 6218	Zeile 6366
if(empty($mybb->cookies['failedlogin'])) { $failedtime = $now;	if(empty($mybb->cookies['failedlogin'])) { $failedtime = $now;
}	}
else { $failedtime = $mybb->cookies['failedlogin'];	else { $failedtime = $mybb->cookies['failedlogin'];
Zeile 6321	Zeile 6469
{ global $db, $mybb;	{ global $db, $mybb;
if(!file_exists(MYBB_ROOT."inc/settings.php")) { $mode = "x"; } else { $mode = "w"; } $options = array( "order_by" => "title", "order_dir" => "ASC" ); $query = $db->simple_select("settings", "value, name", "", $options);	$query = $db->simple_select("settings", "value, name", "", array( 'order_by' => 'title', 'order_dir' => 'ASC', ));

$settings = null;	$settings = '';
while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value']; $setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n";	while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value']; $setting['value'] = addcslashes($setting['value'], '\\"$'); $settings .= "\$settings['{$setting['name']}'] = \"{$setting['value']}\";\n";
}	} $settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n";

$settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n"; $file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings); @fclose($file);	file_put_contents(MYBB_ROOT.'inc/settings.php', $settings, LOCK_EX);
$GLOBALS['settings'] = &$mybb->settings; }	$GLOBALS['settings'] = &$mybb->settings; }
Zeile 6361	Zeile 6498
function build_highlight_array($terms) { global $mybb;	function build_highlight_array($terms) { global $mybb;

if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;	if($mybb->settings['minsearchword'] < 1) { $mybb->settings['minsearchword'] = 3;
Zeile 6401	Zeile 6538
{ $split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words))	{ $split_words = preg_split("#\s{1,}#", $phrase, -1); if(!is_array($split_words))
{ continue; }	{ continue; }
foreach($split_words as $word) { if(!$word \|\| strlen($word) < $mybb->settings['minsearchword'])	foreach($split_words as $word) { if(!$word \|\| strlen($word) < $mybb->settings['minsearchword'])
Zeile 6418	Zeile 6555
} } // Otherwise just a simple search query with no phrases	} } // Otherwise just a simple search query with no phrases
else {	else {
$terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1); if(is_array($split_words))	$terms = htmlspecialchars_uni($terms); $split_words = preg_split("#\s{1,}#", $terms, -1); if(is_array($split_words))
Zeile 6432	Zeile 6569
} $words[] = trim($word); }	} $words[] = trim($word); }
} }	} }
if(!is_array($words)) { return false;	if(!is_array($words)) { return false;
Zeile 6442	Zeile 6579
// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html
usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));	usort($words, 'build_highlight_array_sort');
// Loop through our words to build the PREG compatible strings foreach($words as $word)	// Loop through our words to build the PREG compatible strings foreach($words as $word)
Zeile 6464	Zeile 6601
} return $highlight_cache;	} return $highlight_cache;
} /**	} /** * Sort the word array by length. Largest terms go first and work their way down to the smallest term. * * @param string $a First word. * @param string $b Second word. * @return integer Result of comparison function. / function build_highlight_array_sort($a, $b) { return strlen($b) - strlen($a); } /*
* Converts a decimal reference of a character to its UTF-8 equivalent * (Code by Anne van Kesteren, http://annevankesteren.nl/2005/05/character-references) *	* Converts a decimal reference of a character to its UTF-8 equivalent * (Code by Anne van Kesteren, http://annevankesteren.nl/2005/05/character-references) *
Zeile 6482	Zeile 6631
return false; } elseif($src <= 0x007f)	return false; } elseif($src <= 0x007f)
{	{
$dest .= chr($src);	$dest .= chr($src);
}	}
elseif($src <= 0x07ff)	elseif($src <= 0x07ff)
{	{
$dest .= chr(0xc0 \| ($src >> 6));	$dest .= chr(0xc0 \| ($src >> 6));
$dest .= chr(0x80 \| ($src & 0x003f));	$dest .= chr(0x80 \| ($src & 0x003f));
} elseif($src <= 0xffff) {	} elseif($src <= 0xffff) {
Zeile 6497	Zeile 6646
$dest .= chr(0x80 \| ($src & 0x003f)); } elseif($src <= 0x10ffff)	$dest .= chr(0x80 \| ($src & 0x003f)); } elseif($src <= 0x10ffff)
{	{
$dest .= chr(0xf0 \| ($src >> 18)); $dest .= chr(0x80 \| (($src >> 12) & 0x3f)); $dest .= chr(0x80 \| (($src >> 6) & 0x3f));	$dest .= chr(0xf0 \| ($src >> 18)); $dest .= chr(0x80 \| (($src >> 12) & 0x3f)); $dest .= chr(0x80 \| (($src >> 6) & 0x3f));
Zeile 6528	Zeile 6677
// Make regular expression * match $banned_username['filter'] = str_replace('\', '(.)', preg_quote($banned_username['filter'], '#')); if(preg_match("#(^\|\b){$banned_username['filter']}($\|\b)#i", $username))	// Make regular expression * match $banned_username['filter'] = str_replace('\', '(.)', preg_quote($banned_username['filter'], '#')); if(preg_match("#(^\|\b){$banned_username['filter']}($\|\b)#i", $username))
{	{
// Updating last use if($update_lastuse == true) {	// Updating last use if($update_lastuse == true) {
Zeile 6676	Zeile 6825
"6.5" => $lang->timezone_gmt_650, "7" => $lang->timezone_gmt_700, "8" => $lang->timezone_gmt_800,	"6.5" => $lang->timezone_gmt_650, "7" => $lang->timezone_gmt_700, "8" => $lang->timezone_gmt_800,
	"8.5" => $lang->timezone_gmt_850, "8.75" => $lang->timezone_gmt_875,
"9" => $lang->timezone_gmt_900, "9.5" => $lang->timezone_gmt_950, "10" => $lang->timezone_gmt_1000,	"9" => $lang->timezone_gmt_900, "9.5" => $lang->timezone_gmt_950, "10" => $lang->timezone_gmt_1000,
Zeile 6754	Zeile 6905
*/ function fetch_remote_file($url, $post_data=array(), $max_redirects=20) {	*/ function fetch_remote_file($url, $post_data=array(), $max_redirects=20) {
global $mybb;	global $mybb, $config; if(!my_validate_url($url, true)) { return false; } $url_components = @parse_url($url); if(!isset($url_components['scheme'])) { $url_components['scheme'] = 'https'; } if(!isset($url_components['port'])) { $url_components['port'] = $url_components['scheme'] == 'https' ? 443 : 80; } if( !$url_components \|\| empty($url_components['host']) \|\| (!empty($url_components['scheme']) && !in_array($url_components['scheme'], array('http', 'https'))) \|\| (!in_array($url_components['port'], array(80, 8080, 443))) \|\| (!empty($config['disallowed_remote_hosts']) && in_array($url_components['host'], $config['disallowed_remote_hosts'])) ) { return false; } $addresses = get_ip_by_hostname($url_components['host']); $destination_address = $addresses[0]; if(!empty($config['disallowed_remote_addresses'])) { foreach($config['disallowed_remote_addresses'] as $disallowed_address) { $ip_range = fetch_ip_range($disallowed_address); $packed_address = my_inet_pton($destination_address); if(is_array($ip_range)) { if(strcmp($ip_range[0], $packed_address) <= 0 && strcmp($ip_range[1], $packed_address) >= 0) { return false; } } elseif($destination_address == $disallowed_address) { return false; } } }
$post_body = ''; if(!empty($post_data))	$post_body = ''; if(!empty($post_data))
Zeile 6768	Zeile 6971
if(function_exists("curl_init")) {	if(function_exists("curl_init")) {
$can_followlocation = @ini_get('open_basedir') === '' && !$mybb->safemode; $request_header = $max_redirects != 0 && !$can_followlocation;	$fetch_header = $max_redirects > 0;
$ch = curl_init();	$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_HEADER, $request_header); curl_setopt($ch, CURLOPT_TIMEOUT, 10); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); if($max_redirects != 0 && $can_followlocation) { curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_MAXREDIRS, $max_redirects); } if(!empty($post_body))	$curlopt = array( CURLOPT_URL => $url, CURLOPT_HEADER => $fetch_header, CURLOPT_TIMEOUT => 10, CURLOPT_RETURNTRANSFER => 1, CURLOPT_FOLLOWLOCATION => 0, ); if($ca_bundle_path = get_ca_bundle_path()) { $curlopt[CURLOPT_SSL_VERIFYPEER] = 1; $curlopt[CURLOPT_CAINFO] = $ca_bundle_path; } else { $curlopt[CURLOPT_SSL_VERIFYPEER] = 0; } $curl_version_info = curl_version(); $curl_version = $curl_version_info['version']; if(version_compare(PHP_VERSION, '7.0.7', '>=') && version_compare($curl_version, '7.49', '>=')) { // CURLOPT_CONNECT_TO $curlopt[10243] = array( $url_components['host'].':'.$url_components['port'].':'.$destination_address ); } elseif(version_compare(PHP_VERSION, '5.5', '>=') && version_compare($curl_version, '7.21.3', '>=')) { // CURLOPT_RESOLVE $curlopt[10203] = array( $url_components['host'].':'.$url_components['port'].':'.$destination_address ); } if(!empty($post_body))
{	{
curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $post_body);	$curlopt[CURLOPT_POST] = 1; $curlopt[CURLOPT_POSTFIELDS] = $post_body;
}	}
	curl_setopt_array($ch, $curlopt);
$response = curl_exec($ch);	$response = curl_exec($ch);
if($request_header)	if($fetch_header)
{ $header_size = curl_getinfo($ch, CURLINFO_HEADER_SIZE); $header = substr($response, 0, $header_size);	{ $header_size = curl_getinfo($ch, CURLINFO_HEADER_SIZE); $header = substr($response, 0, $header_size);
Zeile 6819	Zeile 7047
} curl_close($ch);	} curl_close($ch);
return $data;	return $data;
} else if(function_exists("fsockopen")) {	} else if(function_exists("fsockopen")) {
$url = @parse_url($url); if(!$url['host']) { return false; } if(!isset($url['port'])) { $url['port'] = 80; } if(!isset($url['path'])) { $url['path'] = "/"; } if(isset($url['query'])) { $url['path'] .= "?{$url['query']}"; } $scheme = ''; if($url['scheme'] == 'https') {	if(!isset($url_components['path'])) { $url_components['path'] = "/"; } if(isset($url_components['query'])) { $url_components['path'] .= "?{$url_components['query']}"; } $scheme = ''; if($url_components['scheme'] == 'https') {
$scheme = 'ssl://';	$scheme = 'ssl://';
if($url['port'] == 80)	if($url_components['port'] == 80)
{	{
$url['port'] = 443;	$url_components['port'] = 443; } } if(function_exists('stream_context_create')) { if($url_components['scheme'] == 'https' && $ca_bundle_path = get_ca_bundle_path()) { $context = stream_context_create(array( 'ssl' => array( 'verify_peer' => true, 'verify_peer_name' => true, 'peer_name' => $url_components['host'], 'cafile' => $ca_bundle_path, ), )); } else { $context = stream_context_create(array( 'ssl' => array( 'verify_peer' => false, 'verify_peer_name' => false, ), ));
}	}
	$fp = @stream_socket_client($scheme.$destination_address.':'.(int)$url_components['port'], $error_no, $error, 10, STREAM_CLIENT_CONNECT, $context); } else { $fp = @fsockopen($scheme.$url_components['host'], (int)$url_components['port'], $error_no, $error, 10);
}	}
$fp = @fsockopen($scheme.$url['host'], $url['port'], $error_no, $error, 10);
@stream_set_timeout($fp, 10); if(!$fp) {	@stream_set_timeout($fp, 10); if(!$fp) {
Zeile 6861	Zeile 7109
$headers = array(); if(!empty($post_body)) {	$headers = array(); if(!empty($post_body)) {
$headers[] = "POST {$url['path']} HTTP/1.0";	$headers[] = "POST {$url_components['path']} HTTP/1.0";
$headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded"; } else {	$headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded"; } else {
$headers[] = "GET {$url['path']} HTTP/1.0";	$headers[] = "GET {$url_components['path']} HTTP/1.0";
}	}
$headers[] = "Host: {$url['host']}";	$headers[] = "Host: {$url_components['host']}";
$headers[] = "Connection: Close"; $headers[] = '';	$headers[] = "Connection: Close"; $headers[] = '';
Zeile 6904	Zeile 7152
$status_line = current(explode("\n\n", $header, 1)); $body = $data[1];	$status_line = current(explode("\n\n", $header, 1)); $body = $data[1];
if($max_redirects != 0 && (strstr($status_line, ' 301 ') \|\| strstr($status_line, ' 302 ')))	if($max_redirects > 0 && (strstr($status_line, ' 301 ') \|\| strstr($status_line, ' 302 ')))
{ preg_match('/Location:(.*?)(?:\n\|$)/', $header, $matches);	{ preg_match('/Location:(.*?)(?:\n\|$)/', $header, $matches);
Zeile 6912	Zeile 7160
{ $data = fetch_remote_file(trim(array_pop($matches)), $post_data, --$max_redirects); }	{ $data = fetch_remote_file(trim(array_pop($matches)), $post_data, --$max_redirects); }
}	}
else { $data = $body; }	else { $data = $body; }

return $data;	return $data;
} else if(empty($post_data)) { return @implode("", @file($url)); } else { return false; } }	} else { return false; } } /** * Resolves a hostname into a set of IP addresses. * * @param string $hostname The hostname to be resolved * @return array\|bool The resulting IP addresses. False on failure / function get_ip_by_hostname($hostname) { $addresses = @gethostbynamel($hostname); if(!$addresses) { $result_set = @dns_get_record($hostname, DNS_A \| DNS_AAAA); if($result_set) { $addresses = array_column($result_set, 'ip'); } else { return false; } } return $addresses; } /* * Returns the location of the CA bundle defined in the PHP configuration. * * @return string\|bool The location of the CA bundle, false if not set */ function get_ca_bundle_path() { if($path = ini_get('openssl.cafile')) { return $path; } if($path = ini_get('curl.cainfo')) { return $path; } return false; }
/** * Checks if a particular user is a super administrator. *	/** * Checks if a particular user is a super administrator. *
Zeile 6944	Zeile 7234
{ global $mybb; $super_admins = str_replace(" ", "", $mybb->config['super_admins']);	{ global $mybb; $super_admins = str_replace(" ", "", $mybb->config['super_admins']);
}	}
if(my_strpos(",{$super_admins},", ",{$uid},") === false)	if(my_strpos(",{$super_admins},", ",{$uid},") === false)
{	{
return false;	return false;
}	}
else { return true;	else { return true;
Zeile 6960	Zeile 7250
* Checks if a user is a member of a particular group * Originates from frostschutz's PluginLibrary * github.com/frostschutz	* Checks if a user is a member of a particular group * Originates from frostschutz's PluginLibrary * github.com/frostschutz
*	*
* @param array\|int\|string A selection of groups (as array or comma seperated) to check or -1 for any group * @param bool\|array\|int False assumes the current user. Otherwise an user array or an id can be passed * @return array Array of groups specified in the first param to which the user belongs	* @param array\|int\|string A selection of groups (as array or comma seperated) to check or -1 for any group * @param bool\|array\|int False assumes the current user. Otherwise an user array or an id can be passed * @return array Array of groups specified in the first param to which the user belongs
Zeile 6968	Zeile 7258
function is_member($groups, $user = false) { global $mybb;	function is_member($groups, $user = false) { global $mybb;

if(empty($groups)) { return array();	if(empty($groups)) { return array();
Zeile 6977	Zeile 7267
if($user == false) { $user = $mybb->user;	if($user == false) { $user = $mybb->user;
}	}
else if(!is_array($user))	else if(!is_array($user))
{	{
// Assume it's a UID $user = get_user($user); }	// Assume it's a UID $user = get_user($user); }

$memberships = array_map('intval', explode(',', $user['additionalgroups'])); $memberships[] = $user['usergroup'];	$memberships = array_map('intval', explode(',', $user['additionalgroups'])); $memberships[] = $user['usergroup'];
Zeile 6992	Zeile 7282
if((int)$groups == -1) { return $memberships;	if((int)$groups == -1) { return $memberships;
}	}
else { if(is_string($groups))	else { if(is_string($groups))
{	{
$groups = explode(',', $groups);	$groups = explode(',', $groups);
}	}
else { $groups = (array)$groups;	else { $groups = (array)$groups;
Zeile 7007	Zeile 7297
} $groups = array_filter(array_map('intval', $groups));	} $groups = array_filter(array_map('intval', $groups));

return array_intersect($groups, $memberships); }	return array_intersect($groups, $memberships); }
Zeile 7052	Zeile 7342
if($in_escape) { $strings[] = trim($string);	if($in_escape) { $strings[] = trim($string);
} else	} else
{ $split_strings = explode($delimeter, $string); foreach($split_strings as $string)	{ $split_strings = explode($delimeter, $string); foreach($split_strings as $string)
Zeile 7300	Zeile 7590
$ip_long = sprintf("%u", ip2long($ip)); if(!$ip_long)	$ip_long = sprintf("%u", ip2long($ip)); if(!$ip_long)
{	{
return 0; } }	return 0; } }
Zeile 7330	Zeile 7620
$long += 4294967296; } return long2ip($long);	$long += 4294967296; } return long2ip($long);
}	}
/** * Converts a human readable IP address to its packed in_addr representation	/** * Converts a human readable IP address to its packed in_addr representation
Zeile 7341	Zeile 7631
function my_inet_pton($ip) { if(function_exists('inet_pton'))	function my_inet_pton($ip) { if(function_exists('inet_pton'))
{	{
return @inet_pton($ip);	return @inet_pton($ip);
} else {	} else {
/** * Replace inet_pton() *	/** * Replace inet_pton() *
Zeile 7375	Zeile 7665
{ $length = (!$doub \|\| $doub == $rcount - 1 ? 2 : 1); array_splice($r, $doub, $length, array_fill(0, 8 + $length - $rcount, 0));	{ $length = (!$doub \|\| $doub == $rcount - 1 ? 2 : 1); array_splice($r, $doub, $length, array_fill(0, 8 + $length - $rcount, 0));
}	}
$r = array_map('hexdec', $r); array_unshift($r, 'n*'); $r = call_user_func_array('pack', $r);	$r = array_map('hexdec', $r); array_unshift($r, 'n*'); $r = call_user_func_array('pack', $r);
Zeile 7422	Zeile 7712
array('::', '(int)"$1"?"$1":"0$1"'), $r); return $r;	array('::', '(int)"$1"?"$1":"0$1"'), $r); return $r;
} return false;	} return false;
} }	} }
Zeile 7582	Zeile 7872
global $mybb, $checksums, $bad_verify_files; // We don't need to check these types of files	global $mybb, $checksums, $bad_verify_files; // We don't need to check these types of files
$ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "logo.gif", "logo.png");	$ignore = array(".", "..", ".svn", "config.php", "settings.php", "Thumb.db", "config.default.php", "lock", "htaccess.txt", "htaccess-nginx.txt", "logo.gif", "logo.png");
$ignore_ext = array("attach"); if(substr($path, -1, 1) == "/")	$ignore_ext = array("attach"); if(substr($path, -1, 1) == "/")
Zeile 7671	Zeile 7961
* * @param int $int The integer * @return string The signed equivalent	* * @param int $int The integer * @return string The signed equivalent
*/	*/
function signed($int) { if($int < 0)	function signed($int) { if($int < 0)
Zeile 7700	Zeile 7990
$output = random_bytes($bytes); } catch (Exception $e) { }	$output = random_bytes($bytes); } catch (Exception $e) { }
} if(strlen($output) < $bytes) { if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $bytes); @fclose($handle); } } else { return $output;	} if(strlen($output) < $bytes) { if(@is_readable('/dev/urandom') && ($handle = @fopen('/dev/urandom', 'rb'))) { $output = @fread($handle, $bytes); @fclose($handle); } } else { return $output;
} if(strlen($output) < $bytes)	} if(strlen($output) < $bytes)
Zeile 7720	Zeile 8010
if(function_exists('mcrypt_create_iv')) { if (DIRECTORY_SEPARATOR == '/')	if(function_exists('mcrypt_create_iv')) { if (DIRECTORY_SEPARATOR == '/')
{	{
$source = MCRYPT_DEV_URANDOM;	$source = MCRYPT_DEV_URANDOM;
}	}
else { $source = MCRYPT_RAND; } $output = @mcrypt_create_iv($bytes, $source);	else { $source = MCRYPT_RAND; } $output = @mcrypt_create_iv($bytes, $source);
} } else	} } else
{ return $output; }	{ return $output; }
Zeile 7792	Zeile 8082
$output = substr($output, 0, ($bytes * 2)); $output = pack('H*', $output);	$output = substr($output, 0, ($bytes * 2)); $output = pack('H*', $output);
return $output; } else	return $output; } else
{ return $output; }	{ return $output; }
Zeile 8164	Zeile 8454
else { return !preg_match("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", $input);	else { return !preg_match("#[^\\x00-\\x7F][\\x80-\\xBF]{3,}#", $input);
} }	} }
}	}

/** * Send a Private Message to a user. *	/** * Send a Private Message to a user. *
Zeile 8179	Zeile 8469
function send_pm($pm, $fromid = 0, $admin_override=false) { global $lang, $mybb, $db, $session;	function send_pm($pm, $fromid = 0, $admin_override=false) { global $lang, $mybb, $db, $session;

if($mybb->settings['enablepms'] == 0) { return false;	if($mybb->settings['enablepms'] == 0) { return false;
Zeile 8286	Zeile 8576
"disablesmilies" => 0, "savecopy" => 0, "readreceipt" => 0	"disablesmilies" => 0, "savecopy" => 0, "readreceipt" => 0
); $pm['saveasdraft'] = 0;	); $pm['saveasdraft'] = 0;
// Admin override $pmhandler->admin_override = (int)$admin_override; $pmhandler->set_data($pm);	// Admin override $pmhandler->admin_override = (int)$admin_override; $pmhandler->set_data($pm);

if($pmhandler->validate_pm()) { $pmhandler->insert_pm();	if($pmhandler->validate_pm()) { $pmhandler->insert_pm();
return true; } return false; } /**	return true; } return false; } /**
* Log a user spam block from StopForumSpam (or other spam service providers...) * * @param string $username The username that the user was using.	* Log a user spam block from StopForumSpam (or other spam service providers...) * * @param string $username The username that the user was using.
Zeile 8335	Zeile 8625
'ipaddress' => $db->escape_binary($ip_address), 'dateline' => (int)TIME_NOW, 'data' => $db->escape_string(@my_serialize($data)),	'ipaddress' => $db->escape_binary($ip_address), 'dateline' => (int)TIME_NOW, 'data' => $db->escape_string(@my_serialize($data)),
);	);
return (bool)$db->insert_query('spamlog', $insert_array); }	return (bool)$db->insert_query('spamlog', $insert_array); }
Zeile 8350	Zeile 8640
* @return bool Whether the file was copied successfully. */ function copy_file_to_cdn($file_path = '', &$uploaded_path = null)	* @return bool Whether the file was copied successfully. */ function copy_file_to_cdn($file_path = '', &$uploaded_path = null)
{	{
global $mybb, $plugins; $success = false;	global $mybb, $plugins; $success = false;
Zeile 8381	Zeile 8671
if(!($dir_exists = is_dir($cdn_upload_path))) { $dir_exists = @mkdir($cdn_upload_path, 0777, true);	if(!($dir_exists = is_dir($cdn_upload_path))) { $dir_exists = @mkdir($cdn_upload_path, 0777, true);
}	}
if($dir_exists) { if(($cdn_upload_path = realpath($cdn_upload_path)) !== false)	if($dir_exists) { if(($cdn_upload_path = realpath($cdn_upload_path)) !== false)
Zeile 8394	Zeile 8684
$uploaded_path = $cdn_upload_path; } }	$uploaded_path = $cdn_upload_path; } }
} }	} }
if(is_object($plugins))	if(is_object($plugins))
{	{
$hook_args = array( 'file_path' => &$file_path, 'real_file_path' => &$real_file_path,	$hook_args = array( 'file_path' => &$file_path, 'real_file_path' => &$real_file_path,
Zeile 8406	Zeile 8696
'uploaded_path' => &$uploaded_path, 'success' => &$success, );	'uploaded_path' => &$uploaded_path, 'success' => &$success, );

$plugins->run_hooks('copy_file_to_cdn_end', $hook_args); } }	$plugins->run_hooks('copy_file_to_cdn_end', $hook_args); } }
return $success;	return $success; } /** * Validate an url * * @param string $url The url to validate. * @param bool $relative_path Whether or not the url could be a relative path. * @param bool $allow_local Whether or not the url could be pointing to local networks. * * @return bool Whether this is a valid url. / function my_validate_url($url, $relative_path=false, $allow_local=false) { if($allow_local) { $regex = '_^(?:(?:https?\|ftp)://)(?:\S+(?::\S)?@)?(?:(?:[1-9]\d?\|1\d\d\|2[01]\d\|22[0-3])(?:\.(?:1?\d{1,2}\|2[0-4]\d\|25[0-5])){2}(?:\.(?:[1-9]\d?\|1\d\d\|2[0-4]\d\|25[0-4]))\|(?:localhost\|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,}))\.?))(?::\d{2,5})?(?:[/?#]\S)?$_iuS'; } else { $regex = '_^(?:(?:https?\|ftp)://)(?:\S+(?::\S)?@)?(?:(?!(?:10\|127)(?:\.\d{1,3}){3})(?!(?:169\.254\|192\.168)(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]\|2\d\|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?\|1\d\d\|2[01]\d\|22[0-3])(?:\.(?:1?\d{1,2}\|2[0-4]\d\|25[0-5])){2}(?:\.(?:[1-9]\d?\|1\d\d\|2[0-4]\d\|25[0-4]))\|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,}))\.?)(?::\d{2,5})?(?:[/?#]\S)?$_iuS'; } if($relative_path && my_substr($url, 0, 1) == '/' \|\| preg_match($regex, $url)) { return true; } return false; } /* * Strip html tags from string, also removes <script> and <style> contents. * * @param string $string String to stripe * @param string $allowable_tags Allowed html tags * * @return string Striped string / function my_strip_tags($string, $allowable_tags = '') { $pattern = array( '@(<)style[^(>)]?(>).?(<)/style(>)@siu', '@(<)script[^(>)]?.?(<)/script(>)@siu', '@<style[^>]?>.?</style>@siu', '@<script[^>]?.?</script>@siu', ); $string = preg_replace($pattern, '', $string); return strip_tags($string, $allowable_tags); } /* * Escapes a RFC 4180-compliant CSV string. * Based on https://github.com/Automattic/camptix/blob/f80725094440bf09861383b8f11e96c177c45789/camptix.php#L2867 * * @param string $string The string to be escaped * @param boolean $escape_active_content Whether or not to escape active content trigger characters * @return string The escaped string */ function my_escape_csv($string, $escape_active_content=true) { if($escape_active_content) { $active_content_triggers = array('=', '+', '-', '@'); $delimiters = array(',', ';', ':', '\|', '^', "\n", "\t", " "); $first_character = mb_substr($string, 0, 1); if( in_array($first_character, $active_content_triggers, true) \|\| in_array($first_character, $delimiters, true) ) { $string = "'".$string; } foreach($delimiters as $delimiter) { foreach($active_content_triggers as $trigger) { $string = str_replace($delimiter.$trigger, $delimiter."'".$trigger, $string); } } } $string = str_replace('"', '""', $string); return $string;
}	}