Vergleich inc/functions.php - 1.8.11 - 1.8.16

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 322	Zeile 322
/** * Turn a unix timestamp in to a "friendly" date/time format for the user. *	/** * Turn a unix timestamp in to a "friendly" date/time format for the user. *
* @param string $format A date format according to PHP's date structure.	* @param string $format A date format (either relative, normal or PHP's date() structure).
* @param int $stamp The unix timestamp the date should be generated for. * @param int\|string $offset The offset in hours that should be applied to times. (timezones) Or an empty string to determine that automatically * @param int $ty Whether or not to use today/yesterday formatting.	* @param int $stamp The unix timestamp the date should be generated for. * @param int\|string $offset The offset in hours that should be applied to times. (timezones) Or an empty string to determine that automatically * @param int $ty Whether or not to use today/yesterday formatting.
Zeile 380	Zeile 380
} $todaysdate = $yesterdaysdate = '';	} $todaysdate = $yesterdaysdate = '';
if($ty && ($format == $mybb->settings['dateformat'] \|\| $format == 'relative'))	if($ty && ($format == $mybb->settings['dateformat'] \|\| $format == 'relative' \|\| $format == 'normal'))
{ $_stamp = TIME_NOW; if($adodb == true)	{ $_stamp = TIME_NOW; if($adodb == true)
Zeile 400	Zeile 400
if($format == 'relative') { // Relative formats both date and time	if($format == 'relative') { // Relative formats both date and time
	$real_date = $real_time = ''; if($adodb == true) { $real_date = adodb_date($mybb->settings['dateformat'], $stamp + ($offset * 3600)); $real_time = $mybb->settings['datetimesep']; $real_time .= adodb_date($mybb->settings['timeformat'], $stamp + ($offset * 3600)); } else { $real_date = gmdate($mybb->settings['dateformat'], $stamp + ($offset * 3600)); $real_time = $mybb->settings['datetimesep']; $real_time .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }
if($ty != 2 && abs(TIME_NOW - $stamp) < 3600) { $diff = TIME_NOW - $stamp; $relative = array('prefix' => '', 'minute' => 0, 'plural' => $lang->rel_minutes_plural, 'suffix' => $lang->rel_ago);	if($ty != 2 && abs(TIME_NOW - $stamp) < 3600) { $diff = TIME_NOW - $stamp; $relative = array('prefix' => '', 'minute' => 0, 'plural' => $lang->rel_minutes_plural, 'suffix' => $lang->rel_ago);
if($diff < 0) { $diff = abs($diff); $relative['suffix'] = '';	if($diff < 0) { $diff = abs($diff); $relative['suffix'] = '';
$relative['prefix'] = $lang->rel_in; }	$relative['prefix'] = $lang->rel_in; }
Zeile 423	Zeile 437
if($diff <= 60) { // Less than a minute	if($diff <= 60) { // Less than a minute
$relative['prefix'] = $lang->rel_less_than; } $date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['minute'], $relative['plural'], $relative['suffix']);	$relative['prefix'] = $lang->rel_less_than; } $date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['minute'], $relative['plural'], $relative['suffix'], $real_date, $real_time);
} elseif($ty != 2 && abs(TIME_NOW - $stamp) < 43200) {	} elseif($ty != 2 && abs(TIME_NOW - $stamp) < 43200) {
Zeile 448	Zeile 462
$relative['plural'] = $lang->rel_hours_single; }	$relative['plural'] = $lang->rel_hours_single; }
$date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['hour'], $relative['plural'], $relative['suffix']);	$date = $lang->sprintf($lang->rel_time, $relative['prefix'], $relative['hour'], $relative['plural'], $relative['suffix'], $real_date, $real_time);
} else { if($ty)	} else { if($ty)
{	{
if($todaysdate == $date) {	if($todaysdate == $date) {
$date = $lang->today;	$date = $lang->sprintf($lang->today_rel, $real_date);
} else if($yesterdaysdate == $date) {	} else if($yesterdaysdate == $date) {
$date = $lang->yesterday;	$date = $lang->sprintf($lang->yesterday_rel, $real_date);
} }	} }
Zeile 473	Zeile 487
{ $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }	{ $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600)); }
	} } elseif($format == 'normal') { // Normal format both date and time if($ty != 2) { if($todaysdate == $date) { $date = $lang->today; } else if($yesterdaysdate == $date) { $date = $lang->yesterday; } } $date .= $mybb->settings['datetimesep']; if($adodb == true) { $date .= adodb_date($mybb->settings['timeformat'], $stamp + ($offset * 3600)); } else { $date .= gmdate($mybb->settings['timeformat'], $stamp + ($offset * 3600));
} } else	} } else
Zeile 699	Zeile 738
{ $forum_cache = $cache->read("forums"); if(!$forum_cache)	{ $forum_cache = $cache->read("forums"); if(!$forum_cache)
{	{
$cache->update_forums(); $forum_cache = $cache->read("forums", 1); } } return $forum_cache;	$cache->update_forums(); $forum_cache = $cache->read("forums", 1); } } return $forum_cache;
} /**	} /**
* Generate an array of all child and descendant forums for a specific forum. * * @param int $fid The forum ID	* Generate an array of all child and descendant forums for a specific forum. * * @param int $fid The forum ID
Zeile 716	Zeile 755
function get_child_list($fid) { static $forums_by_parent;	function get_child_list($fid) { static $forums_by_parent;

$forums = array(); if(!is_array($forums_by_parent)) {	$forums = array(); if(!is_array($forums_by_parent)) {
Zeile 732	Zeile 771
if(!is_array($forums_by_parent[$fid])) { return $forums;	if(!is_array($forums_by_parent[$fid])) { return $forums;
}	}
foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];	foreach($forums_by_parent[$fid] as $forum) { $forums[] = $forum['fid'];
Zeile 742	Zeile 781
{ $forums = array_merge($forums, $children); }	{ $forums = array_merge($forums, $children); }
}	}
return $forums; }	return $forums; }
Zeile 768	Zeile 807
// Send our headers. @header("Content-type: application/json; charset={$lang->settings['charset']}"); echo json_encode(array("errors" => array($error)));	// Send our headers. @header("Content-type: application/json; charset={$lang->settings['charset']}"); echo json_encode(array("errors" => array($error)));
exit; } if(!$title) { $title = $mybb->settings['bbname'];	exit; } if(!$title) { $title = $mybb->settings['bbname'];
} $timenow = my_date('relative', TIME_NOW);	} $timenow = my_date('relative', TIME_NOW);
Zeile 966	Zeile 1005
run_shutdown();	run_shutdown();
if(!my_validate_url($url, true))	if(!my_validate_url($url, true, true))
{ header("Location: {$mybb->settings['bburl']}/{$url}"); }	{ header("Location: {$mybb->settings['bburl']}/{$url}"); }
Zeile 997	Zeile 1036
{ return ''; }	{ return ''; }
	$page = (int)$page;
$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);	$url = str_replace("&", "&", $url); $url = htmlspecialchars_uni($url);
Zeile 1102	Zeile 1143
eval("\$jumptopage = \"".$templates->get("multipage_jump_page")."\";"); }	eval("\$jumptopage = \"".$templates->get("multipage_jump_page")."\";"); }
$lang->multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);	$multipage_pages = $lang->sprintf($lang->multipage_pages, $pages);
if($breadcrumb == true) {	if($breadcrumb == true) {
Zeile 1179	Zeile 1220
if($uid != $mybb->user['uid']) { // We've already cached permissions for this user, return them.	if($uid != $mybb->user['uid']) { // We've already cached permissions for this user, return them.
if($user_cache[$uid]['permissions'])	if(!empty($user_cache[$uid]['permissions']))
{ return $user_cache[$uid]['permissions']; } // This user was not already cached, fetch their user information.	{ return $user_cache[$uid]['permissions']; } // This user was not already cached, fetch their user information.
if(!$user_cache[$uid])	if(empty($user_cache[$uid]))
{ $user_cache[$uid] = get_user($uid); }	{ $user_cache[$uid] = get_user($uid); }
Zeile 1774	Zeile 1815
$iconlist = ''; $no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly	$iconlist = ''; $no_icons_checked = " checked=\"checked\""; // read post icons from cache, and sort them accordingly
$posticons_cache = $cache->read("posticons");	$posticons_cache = (array)$cache->read("posticons");
$posticons = array(); foreach($posticons_cache as $posticon) {	$posticons = array(); foreach($posticons_cache as $posticon) {
Zeile 1820	Zeile 1861
* @param string $value The cookie value. * @param int\|string $expires The timestamp of the expiry date. * @param boolean $httponly True if setting a HttpOnly cookie (supported by the majority of web browsers)	* @param string $value The cookie value. * @param int\|string $expires The timestamp of the expiry date. * @param boolean $httponly True if setting a HttpOnly cookie (supported by the majority of web browsers)
	* @param string $samesite The samesite attribute to prevent CSRF.
*/	*/
function my_setcookie($name, $value="", $expires="", $httponly=false)	function my_setcookie($name, $value="", $expires="", $httponly=false, $samesite="")
{ global $mybb;	{ global $mybb;
Zeile 1868	Zeile 1910
if($httponly == true) { $cookie .= "; HttpOnly";	if($httponly == true) { $cookie .= "; HttpOnly";
	} if($samesite != "" && $mybb->settings['cookiesamesiteflag']) { $samesite = strtolower($samesite); if($samesite == "lax" \|\| $samesite == "strict") { $cookie .= "; SameSite=".$samesite; }
} if($mybb->settings['cookiesecureflag']) { $cookie .= "; Secure"; }	} if($mybb->settings['cookiesecureflag']) { $cookie .= "; Secure"; }

$mybb->cookies[$name] = $value; header($cookie, false);	$mybb->cookies[$name] = $value; header($cookie, false);
}	}
/** * Unset a cookie set by MyBB.	/** * Unset a cookie set by MyBB.
Zeile 1886	Zeile 1938
* @param string $name The cookie identifier. */ function my_unsetcookie($name)	* @param string $name The cookie identifier. */ function my_unsetcookie($name)
{ global $mybb;	{ global $mybb;
$expires = -3600; my_setcookie($name, "", $expires);	$expires = -3600; my_setcookie($name, "", $expires);
Zeile 1903	Zeile 1955
* @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)	* @return array\|boolean The cookie id's content array or false when non-existent. */ function my_get_array_cookie($name, $id)
{ global $mybb;	{ global $mybb;
if(!isset($mybb->cookies['mybb'][$name])) { return false; } $cookie = my_unserialize($mybb->cookies['mybb'][$name]);	if(!isset($mybb->cookies['mybb'][$name])) { return false; } $cookie = my_unserialize($mybb->cookies['mybb'][$name]);
if(is_array($cookie) && isset($cookie[$id])) {	if(is_array($cookie) && isset($cookie[$id])) {
return $cookie[$id]; } else	return $cookie[$id]; } else
Zeile 1939	Zeile 1991
if(isset($cookie[$name])) { $newcookie = my_unserialize($cookie[$name]);	if(isset($cookie[$name])) { $newcookie = my_unserialize($cookie[$name]);
} else	} else
{ $newcookie = array(); }	{ $newcookie = array(); }
Zeile 1975	Zeile 2027
if(strlen($str) > MAX_SERIALIZED_INPUT_LENGTH) { // input exceeds MAX_SERIALIZED_INPUT_LENGTH	if(strlen($str) > MAX_SERIALIZED_INPUT_LENGTH) { // input exceeds MAX_SERIALIZED_INPUT_LENGTH
return false; }	return false; }
if(empty($str) \|\| !is_string($str)) {	if(empty($str) \|\| !is_string($str)) {
Zeile 1985	Zeile 2037
$stack = array(); $expected = array();	$stack = array(); $expected = array();

/* * states: * 0 - initial state, expecting a single value or array	/* * states: * 0 - initial state, expecting a single value or array
Zeile 2003	Zeile 2055
$str = substr($str, 1); } else if($type == 'N' && $str[1] == ';')	$str = substr($str, 1); } else if($type == 'N' && $str[1] == ';')
{	{
$value = null; $str = substr($str, 2); }	$value = null; $str = substr($str, 2); }
Zeile 2011	Zeile 2063
{ $value = $matches[1] == '1' ? true : false; $str = substr($str, 4);	{ $value = $matches[1] == '1' ? true : false; $str = substr($str, 4);
}	}
else if($type == 'i' && preg_match('/^i:(-?[0-9]+);(.*)/s', $str, $matches)) { $value = (int)$matches[1];	else if($type == 'i' && preg_match('/^i:(-?[0-9]+);(.*)/s', $str, $matches)) { $value = (int)$matches[1];
Zeile 2152	Zeile 2204
function my_unserialize($str) { // Ensure we use the byte count for strings even when strlen() is overloaded by mb_strlen()	function my_unserialize($str) { // Ensure we use the byte count for strings even when strlen() is overloaded by mb_strlen()
if(function_exists('mb_internal_encoding') && (((int)ini_get('mbstring.func_overload')) & 2)) {	if(function_exists('mb_internal_encoding') && (((int)ini_get('mbstring.func_overload')) & 2)) {
$mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); }	$mbIntEnc = mb_internal_encoding(); mb_internal_encoding('ASCII'); }
Zeile 2366	Zeile 2418
if($force) // Force writing to cache? { if(!empty($changes))	if($force) // Force writing to cache? { if(!empty($changes))
{	{
// Calculate before writing to cache update_stats($changes); }	// Calculate before writing to cache update_stats($changes); }
Zeile 2374	Zeile 2426
$changes = $stats_changes; } else	$changes = $stats_changes; } else
{	{
$stats = $stats_changes; }	$stats = $stats_changes; }
Zeile 2407	Zeile 2459
{ $new_stats[$counter] = 0; }	{ $new_stats[$counter] = 0; }
} }	} }
else { $new_stats[$counter] = $changes[$counter];	else { $new_stats[$counter] = $changes[$counter];
Zeile 2425	Zeile 2477
{ $stats_changes = array_merge($stats, $new_stats); // Overwrite changed values return;	{ $stats_changes = array_merge($stats, $new_stats); // Overwrite changed values return;
}	}
// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {	// Fetch latest user if the user count is changing if(array_key_exists('numusers', $changes)) {
Zeile 2434	Zeile 2486
$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'] = htmlspecialchars_uni($lastmember['username']);	$lastmember = $db->fetch_array($query); $new_stats['lastuid'] = $lastmember['uid']; $new_stats['lastusername'] = $lastmember['username'] = htmlspecialchars_uni($lastmember['username']);
} if(!empty($new_stats))	} if(!empty($new_stats))
{ if(is_array($stats)) {	{ if(is_array($stats)) {
Zeile 2484	Zeile 2536
if(array_key_exists($counter, $changes)) { if(substr($changes[$counter], 0, 2) == "+-")	if(array_key_exists($counter, $changes)) { if(substr($changes[$counter], 0, 2) == "+-")
{	{
$changes[$counter] = substr($changes[$counter], 1); } // Adding or subtracting from previous value?	$changes[$counter] = substr($changes[$counter], 1); } // Adding or subtracting from previous value?
Zeile 2548	Zeile 2600
if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}";	if($posts_diff > -1) { $new_stats['numposts'] = "+{$posts_diff}";
} else	} else
{ $new_stats['numposts'] = "{$posts_diff}";	{ $new_stats['numposts'] = "{$posts_diff}";
}	}
} if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)	} if(array_key_exists('unapprovedposts', $update_query)) { $unapprovedposts_diff = $update_query['unapprovedposts'] - $forum['unapprovedposts']; if($unapprovedposts_diff > -1)
{	{
$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; }	$new_stats['numunapprovedposts'] = "+{$unapprovedposts_diff}"; }
else { $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }	else { $new_stats['numunapprovedposts'] = "{$unapprovedposts_diff}"; }
} if(array_key_exists('deletedposts', $update_query))	} if(array_key_exists('deletedposts', $update_query))
Zeile 2578	Zeile 2630
else { $new_stats['numdeletedposts'] = "{$deletedposts_diff}";	else { $new_stats['numdeletedposts'] = "{$deletedposts_diff}";
} }	} }
if(array_key_exists('deletedthreads', $update_query)) { $deletedthreads_diff = $update_query['deletedthreads'] - $forum['deletedthreads']; if($deletedthreads_diff > -1)	if(array_key_exists('deletedthreads', $update_query)) { $deletedthreads_diff = $update_query['deletedthreads'] - $forum['deletedthreads']; if($deletedthreads_diff > -1)
{	{
$new_stats['numdeletedthreads'] = "+{$deletedthreads_diff}";	$new_stats['numdeletedthreads'] = "+{$deletedthreads_diff}";
}	}
else { $new_stats['numdeletedthreads'] = "{$deletedthreads_diff}";	else { $new_stats['numdeletedthreads'] = "{$deletedthreads_diff}";
Zeile 2595	Zeile 2647
} if(!empty($new_stats))	} if(!empty($new_stats))
{	{
update_stats($new_stats); } }	update_stats($new_stats); } }
Zeile 2659	Zeile 2711
} // Adding or subtracting from previous value? if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-")	} // Adding or subtracting from previous value? if(substr($changes[$counter], 0, 1) == "+" \|\| substr($changes[$counter], 0, 1) == "-")
{	{
if((int)$changes[$counter] != 0) { $update_query[$counter] = $thread[$counter] + $changes[$counter];	if((int)$changes[$counter] != 0) { $update_query[$counter] = $thread[$counter] + $changes[$counter];
Zeile 2689	Zeile 2741
/** * Update the first post and lastpost data for a specific thread	/** * Update the first post and lastpost data for a specific thread
* * @param int $tid The thread ID	* * @param int $tid The thread ID
*/ function update_thread_data($tid) { global $db;	*/ function update_thread_data($tid) { global $db;

$thread = get_thread($tid);	$thread = get_thread($tid);

// If this is a moved thread marker, don't update it - we need it to stay as it is if(strpos($thread['closed'], 'moved\|') !== false) { return;	// If this is a moved thread marker, don't update it - we need it to stay as it is if(strpos($thread['closed'], 'moved\|') !== false) { return;
} $query = $db->query("	} $query = $db->query("
SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid)	SELECT u.uid, u.username, p.username AS postusername, p.dateline FROM ".TABLE_PREFIX."posts p LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid)
Zeile 2798	Zeile 2850
else { $update_query[$counter] = $changes[$counter];	else { $update_query[$counter] = $changes[$counter];
}	}
// Less than 0? That's bad if(isset($update_query[$counter]) && $update_query[$counter] < 0)	// Less than 0? That's bad if(isset($update_query[$counter]) && $update_query[$counter] < 0)
Zeile 2806	Zeile 2858
$update_query[$counter] = 0; } }	$update_query[$counter] = 0; } }
} $db->free_result($query);	} $db->free_result($query);
// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("users", $update_query, "uid='{$uid}'");	// Only update if we're actually doing something if(count($update_query) > 0) { $db->update_query("users", $update_query, "uid='{$uid}'");
} } /**	} } /**
* Deletes a thread from the database * * @param int $tid The thread ID	* Deletes a thread from the database * * @param int $tid The thread ID
Zeile 2879	Zeile 2931
if(!is_array($forum_cache)) { cache_forums();	if(!is_array($forum_cache)) { cache_forums();
}	}
foreach($forum_cache as $fid => $forum) { if($forum['active'] != 0)	foreach($forum_cache as $fid => $forum) { if($forum['active'] != 0)
Zeile 2888	Zeile 2940
$jumpfcache[$forum['pid']][$forum['disporder']][$forum['fid']] = $forum; } }	$jumpfcache[$forum['pid']][$forum['disporder']][$forum['fid']] = $forum; } }
}	}
if(!is_array($permissioncache)) {	if(!is_array($permissioncache)) {
Zeile 2896	Zeile 2948
} if(isset($jumpfcache[$pid]) && is_array($jumpfcache[$pid]))	} if(isset($jumpfcache[$pid]) && is_array($jumpfcache[$pid]))
{	{
foreach($jumpfcache[$pid] as $main) { foreach($main as $forum) { $perms = $permissioncache[$forum['fid']];	foreach($jumpfcache[$pid] as $main) { foreach($main as $forum) { $perms = $permissioncache[$forum['fid']];

if($forum['fid'] != "0" && ($perms['canview'] != 0 \|\| $mybb->settings['hideprivateforums'] == 0) && $forum['linkto'] == '' && ($forum['showinjump'] != 0 \|\| $showall == true)) { $optionselected = "";	if($forum['fid'] != "0" && ($perms['canview'] != 0 \|\| $mybb->settings['hideprivateforums'] == 0) && $forum['linkto'] == '' && ($forum['showinjump'] != 0 \|\| $showall == true)) { $optionselected = "";

if($selitem == $forum['fid']) { $optionselected = 'selected="selected"';	if($selitem == $forum['fid']) { $optionselected = 'selected="selected"';
} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name']));	} $forum['name'] = htmlspecialchars_uni(strip_tags($forum['name']));
eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");	eval("\$forumjumpbits .= \"".$templates->get("forumjump_bit")."\";");
Zeile 2943	Zeile 2995
else { $forum_link = "'".str_replace('{fid}', "'+option", FORUM_URL);	else { $forum_link = "'".str_replace('{fid}', "'+option", FORUM_URL);
}	}
}	}

eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";"); }	eval("\$forumjump = \"".$templates->get("forumjump_".$template)."\";"); }

return $forumjump; } /** * Returns the extension of a file.	return $forumjump; } /** * Returns the extension of a file.
*	*
* @param string $file The filename. * @return string The extension of the file. */	* @param string $file The filename. * @return string The extension of the file. */
Zeile 2974	Zeile 3026
{ $set = array_merge(range(0, 9), range('A', 'Z'), range('a', 'z')); $str = array();	{ $set = array_merge(range(0, 9), range('A', 'Z'), range('a', 'z')); $str = array();

// Complex strings have always at least 3 characters, even if $length < 3 if($complex == true) {	// Complex strings have always at least 3 characters, even if $length < 3 if($complex == true) {
Zeile 2993	Zeile 3045
for($i = 0; $i < $length; ++$i) { $str[] = $set[my_rand(0, 61)];	for($i = 0; $i < $length; ++$i) { $str[] = $set[my_rand(0, 61)];
}	}
// Make sure they're in random order and convert them to a string shuffle($str);	// Make sure they're in random order and convert them to a string shuffle($str);
Zeile 3011	Zeile 3063
*/ function format_name($username, $usergroup, $displaygroup=0) {	*/ function format_name($username, $usergroup, $displaygroup=0) {
global $groupscache, $cache;	global $groupscache, $cache, $plugins;

if(!is_array($groupscache))	static $formattednames = array(); if(!isset($formattednames[$username]))
{	{
$groupscache = $cache->read("usergroups"); } if($displaygroup != 0) { $usergroup = $displaygroup; }	if(!is_array($groupscache)) { $groupscache = $cache->read("usergroups"); } if($displaygroup != 0) { $usergroup = $displaygroup; } $format = "{username}"; if(isset($groupscache[$usergroup])) { $ugroup = $groupscache[$usergroup]; if(strpos($ugroup['namestyle'], "{username}") !== false) { $format = $ugroup['namestyle']; } } $format = stripslashes($format); $parameters = compact('username', 'usergroup', 'displaygroup', 'format'); $parameters = $plugins->run_hooks('format_name', $parameters);

$ugroup = $groupscache[$usergroup]; $format = $ugroup['namestyle']; $userin = substr_count($format, "{username}");	$format = $parameters['format'];

if($userin == 0) { $format = "{username}";	$formattednames[$username] = str_replace("{username}", $username, $format);
}	}
$format = stripslashes($format); return str_replace("{username}", $username, $format);	return $formattednames[$username];
} /**	} /**
Zeile 3333	Zeile 3401
if($mybb->settings['allowcolormycode'] == 1) { $color = "color,";	if($mybb->settings['allowcolormycode'] == 1) { $color = "color,";
}	}
if($mybb->settings['allowfontmycode'] == 1 \|\| $mybb->settings['allowsizemycode'] == 1 \|\| $mybb->settings['allowcolormycode'] == 1) { $removeformat = "removeformat\|";	if($mybb->settings['allowfontmycode'] == 1 \|\| $mybb->settings['allowsizemycode'] == 1 \|\| $mybb->settings['allowcolormycode'] == 1) { $removeformat = "removeformat\|";
}	}
if($mybb->settings['allowemailmycode'] == 1) { $email = "email,";	if($mybb->settings['allowemailmycode'] == 1) { $email = "email,";
Zeile 3348	Zeile 3416
if($mybb->settings['allowlinkmycode'] == 1) { $link = "link,unlink";	if($mybb->settings['allowlinkmycode'] == 1) { $link = "link,unlink";
}	}
if($mybb->settings['allowlistmycode'] == 1)	if($mybb->settings['allowlistmycode'] == 1)
{	{
$list = "bulletlist,orderedlist\|";	$list = "bulletlist,orderedlist\|";
}	}
if($mybb->settings['allowcodemycode'] == 1) { $code = "code,php,";	if($mybb->settings['allowcodemycode'] == 1) { $code = "code,php,";
}	}
if($mybb->user['sourceeditor'] == 1) { $sourcemode = "MyBBEditor.sourceMode(true);";	if($mybb->user['sourceeditor'] == 1) { $sourcemode = "MyBBEditor.sourceMode(true);";
}	}
eval("\$codeinsert = \"".$templates->get("codebuttons")."\";"); } }	eval("\$codeinsert = \"".$templates->get("codebuttons")."\";"); } }
Zeile 3458	Zeile 3526
{ $colspan = $mybb->settings['smilieinsertercols'] - $counter; eval("\$smilies .= \"".$templates->get("smilieinsert_row_empty")."\";");	{ $colspan = $mybb->settings['smilieinsertercols'] - $counter; eval("\$smilies .= \"".$templates->get("smilieinsert_row_empty")."\";");
}	}
eval("\$clickablesmilies = \"".$templates->get("smilieinsert")."\";"); } else { $clickablesmilies = "";	eval("\$clickablesmilies = \"".$templates->get("smilieinsert")."\";"); } else { $clickablesmilies = "";
}	}
} else { $clickablesmilies = "";	} else { $clickablesmilies = "";
}	}
return $clickablesmilies; }	return $clickablesmilies; }
Zeile 3492	Zeile 3560
{ return $prefixes_cache[$pid]; }	{ return $prefixes_cache[$pid]; }

return $prefixes_cache; }	return $prefixes_cache; }
Zeile 3502	Zeile 3570
{ // No cache $prefix_cache = $cache->read("threadprefixes", true);	{ // No cache $prefix_cache = $cache->read("threadprefixes", true);

if(!is_array($prefix_cache)) { return array(); }	if(!is_array($prefix_cache)) { return array(); }
}	}
$prefixes_cache = array(); foreach($prefix_cache as $prefix)	$prefixes_cache = array(); foreach($prefix_cache as $prefix)
Zeile 3522	Zeile 3590
else if(!empty($prefixes_cache)) { return $prefixes_cache;	else if(!empty($prefixes_cache)) { return $prefixes_cache;
}	}
return false; }	return false; }
Zeile 3543	Zeile 3611
if($fid != 'all') { $fid = (int)$fid;	if($fid != 'all') { $fid = (int)$fid;
}	}
$prefix_cache = build_prefixes(0); if(empty($prefix_cache)) {	$prefix_cache = build_prefixes(0); if(empty($prefix_cache)) {
Zeile 3629	Zeile 3697
* @return string The thread prefix selection menu */ function build_forum_prefix_select($fid, $selected_pid=0)	* @return string The thread prefix selection menu */ function build_forum_prefix_select($fid, $selected_pid=0)
{	{
global $cache, $db, $lang, $mybb, $templates; $fid = (int)$fid;	global $cache, $db, $lang, $mybb, $templates; $fid = (int)$fid;
Zeile 3714	Zeile 3782
$httpaccept_encoding = ''; if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))	$httpaccept_encoding = ''; if(isset($_SERVER['HTTP_ACCEPT_ENCODING']))
{	{
$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING']; }	$httpaccept_encoding = $_SERVER['HTTP_ACCEPT_ENCODING']; }
Zeile 3781	Zeile 3849
{ $pid = (int)$data['pid']; unset($data['pid']);	{ $pid = (int)$data['pid']; unset($data['pid']);
	} $tids = array(); if(isset($data['tids'])) { $tids = (array)$data['tids']; unset($data['tids']);
} // Any remaining extra data - we my_serialize and insert in to its own column if(is_array($data)) { $data = my_serialize($data);	} // Any remaining extra data - we my_serialize and insert in to its own column if(is_array($data)) { $data = my_serialize($data);
}	}
$sql_array = array( "uid" => (int)$mybb->user['uid'], "dateline" => TIME_NOW,	$sql_array = array( "uid" => (int)$mybb->user['uid'], "dateline" => TIME_NOW,
Zeile 3799	Zeile 3874
"data" => $db->escape_string($data), "ipaddress" => $db->escape_binary($session->packedip) );	"data" => $db->escape_string($data), "ipaddress" => $db->escape_binary($session->packedip) );
$db->insert_query("moderatorlog", $sql_array);	if($tids) { $multiple_sql_array = array(); foreach($tids as $tid) { $sql_array['tid'] = (int)$tid; $multiple_sql_array[] = $sql_array; } $db->insert_query_multiple("moderatorlog", $multiple_sql_array); } else { $db->insert_query("moderatorlog", $sql_array); }
} /**	} /**
Zeile 4675	Zeile 4766
$stamp %= $msecs; $seconds = $stamp;	$stamp %= $msecs; $seconds = $stamp;
if($years == 1)	// Prevent gross over accuracy ($options parameter will override these) if($years > 0)
{	{
$nicetime['years'] = "1".$lang_year;	$options = array_merge(array( 'days' => false, 'hours' => false, 'minutes' => false, 'seconds' => false ), $options);
}	}
else if($years > 1)	elseif($months > 0)
{	{
$nicetime['years'] = $years.$lang_years;	$options = array_merge(array( 'hours' => false, 'minutes' => false, 'seconds' => false ), $options);
}	}
if($months == 1) { $nicetime['months'] = "1".$lang_month;	elseif($weeks > 0) { $options = array_merge(array( 'minutes' => false, 'seconds' => false ), $options); } elseif($days > 0) { $options = array_merge(array( 'seconds' => false ), $options); } if(!isset($options['years']) \|\| $options['years'] !== false) { if($years == 1) { $nicetime['years'] = "1".$lang_year; } else if($years > 1) { $nicetime['years'] = $years.$lang_years; } } if(!isset($options['months']) \|\| $options['months'] !== false) { if($months == 1) { $nicetime['months'] = "1".$lang_month; } else if($months > 1) { $nicetime['months'] = $months.$lang_months; }
}	}
else if($months > 1)	if(!isset($options['weeks']) \|\| $options['weeks'] !== false)
{	{
$nicetime['months'] = $months.$lang_months;	if($weeks == 1) { $nicetime['weeks'] = "1".$lang_week; } else if($weeks > 1) { $nicetime['weeks'] = $weeks.$lang_weeks; }
}	}
if($weeks == 1) { $nicetime['weeks'] = "1".$lang_week; } else if($weeks > 1) { $nicetime['weeks'] = $weeks.$lang_weeks; } if($days == 1)	if(!isset($options['days']) \|\| $options['days'] !== false)
{	{
$nicetime['days'] = "1".$lang_day; } else if($days > 1) { $nicetime['days'] = $days.$lang_days;	if($days == 1) { $nicetime['days'] = "1".$lang_day; } else if($days > 1) { $nicetime['days'] = $days.$lang_days; }
} if(!isset($options['hours']) \|\| $options['hours'] !== false)	} if(!isset($options['hours']) \|\| $options['hours'] !== false)
Zeile 4896	Zeile 5031
$location = htmlspecialchars_uni($_SERVER['SCRIPT_NAME']); } elseif(!empty($_SERVER['PHP_SELF']))	$location = htmlspecialchars_uni($_SERVER['SCRIPT_NAME']); } elseif(!empty($_SERVER['PHP_SELF']))
{	{
$location = htmlspecialchars_uni($_SERVER['PHP_SELF']); } elseif(!empty($_ENV['PHP_SELF']))	$location = htmlspecialchars_uni($_SERVER['PHP_SELF']); } elseif(!empty($_ENV['PHP_SELF']))
Zeile 5197	Zeile 5332
{ $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";	{ $from_charset = $lang->settings['charset']; $to_charset = "UTF-8";
} else {	} else {
$from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; }	$from_charset = "UTF-8"; $to_charset = $lang->settings['charset']; }
Zeile 5344	Zeile 5479
$lang->month_11, $lang->month_12 );	$lang->month_11, $lang->month_12 );

// This needs to be in this specific order $find = array(	// This needs to be in this specific order $find = array(
Zeile 5359	Zeile 5493
'F', 'l', 'M',	'F', 'l', 'M',
);	);
$html = array( 'm',	$html = array( 'm',
Zeile 5373	Zeile 5507
'F', 'l', 'M',	'F', 'l', 'M',
);	);
$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);	$bdays = str_replace($find, $html, $bdays); $bmonth = str_replace($find, $html, $bmonth);
Zeile 5401	Zeile 5535
} return str_replace($find, $replace, $display);	} return str_replace($find, $replace, $display);
}	}
/** * Returns the age of a user with specified birthday.	/** * Returns the age of a user with specified birthday.
Zeile 5413	Zeile 5547
{ $bday = explode("-", $birthday); if(!$bday[2])	{ $bday = explode("-", $birthday); if(!$bday[2])
{	{
return; }	return; }
Zeile 5450	Zeile 5584
if(empty($firstpost['username'])) { $firstpost['username'] = $firstpost['postusername'];	if(empty($firstpost['username'])) { $firstpost['username'] = $firstpost['postusername'];
}	}
$firstpost['username'] = $db->escape_string($firstpost['username']); $update_array = array(	$firstpost['username'] = $db->escape_string($firstpost['username']); $update_array = array(
Zeile 5501	Zeile 5635
$lastpost['username'] = $firstpost['username']; $lastpost['uid'] = $firstpost['uid']; $lastpost['dateline'] = $firstpost['dateline'];	$lastpost['username'] = $firstpost['username']; $lastpost['uid'] = $firstpost['uid']; $lastpost['dateline'] = $firstpost['dateline'];
} $lastpost['username'] = $db->escape_string($lastpost['username']);	} $lastpost['username'] = $db->escape_string($lastpost['username']);
$update_array = array( 'lastpost' => (int)$lastpost['dateline'],	$update_array = array( 'lastpost' => (int)$lastpost['dateline'],
Zeile 5518	Zeile 5652
* * @param string $string The string to check the length of. * @return int The length of the string.	* * @param string $string The string to check the length of. * @return int The length of the string.
*/	*/
function my_strlen($string) { global $lang;	function my_strlen($string) { global $lang;
Zeile 5550	Zeile 5684
/** * Cuts a string at a specified point, mb strings accounted for	/** * Cuts a string at a specified point, mb strings accounted for
*	*
* @param string $string The string to cut. * @param int $start Where to cut * @param int $length (optional) How much to cut	* @param string $string The string to cut. * @param int $start Where to cut * @param int $length (optional) How much to cut
Zeile 5560	Zeile 5694
function my_substr($string, $start, $length=null, $handle_entities = false) { if($handle_entities)	function my_substr($string, $start, $length=null, $handle_entities = false) { if($handle_entities)
{	{
$string = unhtmlentities($string); } if(function_exists("mb_substr"))	$string = unhtmlentities($string); } if(function_exists("mb_substr"))
{ if($length != null) {	{ if($length != null) {
$cut_string = mb_substr($string, $start, $length); } else	$cut_string = mb_substr($string, $start, $length); } else
Zeile 5598	Zeile 5732
* * @param string $string The string to lower. * @return string The lowered string.	* * @param string $string The string to lower. * @return string The lowered string.
*/	*/
function my_strtolower($string) { if(function_exists("mb_strtolower"))	function my_strtolower($string) { if(function_exists("mb_strtolower"))
Zeile 5629	Zeile 5763
} if(function_exists("mb_strpos"))	} if(function_exists("mb_strpos"))
{	{
$position = mb_strpos($haystack, $needle, $offset);	$position = mb_strpos($haystack, $needle, $offset);
}	}
else { $position = strpos($haystack, $needle, $offset); }	else { $position = strpos($haystack, $needle, $offset); }

return $position;	return $position;
}	}
/** * Ups the case of a string, mb strings accounted for *	/** * Ups the case of a string, mb strings accounted for *
Zeile 5649	Zeile 5783
function my_strtoupper($string) { if(function_exists("mb_strtoupper"))	function my_strtoupper($string) { if(function_exists("mb_strtoupper"))
{	{
$string = mb_strtoupper($string);	$string = mb_strtoupper($string);
}	}
else { $string = strtoupper($string); }	else { $string = strtoupper($string); }

return $string;	return $string;
}	}
/** * Returns any html entities to their original character *	/** * Returns any html entities to their original character *
Zeile 5669	Zeile 5803
function unhtmlentities($string) { // Replace numeric entities	function unhtmlentities($string) { // Replace numeric entities
$string = preg_replace_callback('~&#x([0-9a-f]+);~i', create_function('$matches', 'return unichr(hexdec($matches[1]));'), $string); $string = preg_replace_callback('~&#([0-9]+);~', create_function('$matches', 'return unichr($matches[1]);'), $string);	$string = preg_replace_callback('~&#x([0-9a-f]+);~i', 'unichr_callback1', $string); $string = preg_replace_callback('~&#([0-9]+);~', 'unichr_callback2', $string);
// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl); return strtr($string, $trans_tbl);	// Replace literal entities $trans_tbl = get_html_translation_table(HTML_ENTITIES); $trans_tbl = array_flip($trans_tbl); return strtr($string, $trans_tbl);
} /** * Returns any ascii to it's character (utf-8 safe).	} /** * Returns any ascii to it's character (utf-8 safe).
* * @param int $c The ascii to characterize. * @return string\|bool The characterized ascii. False on failure	* * @param int $c The ascii to characterize. * @return string\|bool The characterized ascii. False on failure
Zeile 5690	Zeile 5824
if($c <= 0x7F) { return chr($c);	if($c <= 0x7F) { return chr($c);
}	}
else if($c <= 0x7FF) { return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F);	else if($c <= 0x7FF) { return chr(0xC0 \| $c >> 6) . chr(0x80 \| $c & 0x3F);
Zeile 5710	Zeile 5844
{ return false; }	{ return false; }
	} /** * Returns any ascii to it's character (utf-8 safe). * * @param array $matches Matches. * @return string\|bool The characterized ascii. False on failure / function unichr_callback1($matches) { return unichr(hexdec($matches[1])); } /* * Returns any ascii to it's character (utf-8 safe). * * @param array $matches Matches. * @return string\|bool The characterized ascii. False on failure */ function unichr_callback2($matches) { return unichr($matches[1]);
} /**	} /**
Zeile 5783	Zeile 5939
if(!$username && $uid == 0) { // Return Guest phrase for no UID, no guest nickname	if(!$username && $uid == 0) { // Return Guest phrase for no UID, no guest nickname
return $lang->guest;	return htmlspecialchars_uni($lang->guest);
} elseif($uid == 0) {	} elseif($uid == 0) {
Zeile 5883	Zeile 6039
{ $link = str_replace("{tid}", $tid, THREAD_URL_POST); $link = str_replace("{pid}", $pid, $link);	{ $link = str_replace("{tid}", $tid, THREAD_URL_POST); $link = str_replace("{pid}", $pid, $link);
return htmlspecialchars_uni($link); } else {	return htmlspecialchars_uni($link); } else {
$link = str_replace("{pid}", $pid, POST_URL); return htmlspecialchars_uni($link); }	$link = str_replace("{pid}", $pid, POST_URL); return htmlspecialchars_uni($link); }
Zeile 6203	Zeile 6359
* @param bool $fatal (Optional) Stop execution if it finds an error with the login. Default is True * @return bool\|int Number of logins when success, false if failed. */	* @param bool $fatal (Optional) Stop execution if it finds an error with the login. Default is True * @return bool\|int Number of logins when success, false if failed. */
function login_attempt_check($fatal = true)	function login_attempt_check($uid = 0, $fatal = true)
{	{
global $mybb, $lang, $session, $db;	global $mybb, $lang, $db;

if($mybb->settings['failedlogincount'] == 0) { return 1; } // Note: Number of logins is defaulted to 1, because using 0 seems to clear cookie data. Not really a problem as long as we account for 1 being default. // Use cookie if possible, otherwise use session // Find better solution to prevent clearing cookies $loginattempts = 0; $failedlogin = 0; if(!empty($mybb->cookies['loginattempts'])) { $loginattempts = $mybb->cookies['loginattempts']; } if(!empty($mybb->cookies['failedlogin'])) { $failedlogin = $mybb->cookies['failedlogin'];	$attempts = array(); $uid = (int)$uid; $now = TIME_NOW; // Get this user's login attempts and eventual lockout, if a uid is provided if($uid > 0) { $query = $db->simple_select("users", "loginattempts, loginlockoutexpiry", "uid='{$uid}'", 1); $attempts = $db->fetch_array($query); if($attempts['loginattempts'] <= 0) { return 0; }
}	}
// Work out if the user has had more than the allowed number of login attempts if($loginattempts > $mybb->settings['failedlogincount']) { // If so, then we need to work out if they can try to login again // Some maths to work out how long they have left and display it to them $now = TIME_NOW; if(empty($mybb->cookies['failedlogin'])) { $failedtime = $now; } else { $failedtime = $mybb->cookies['failedlogin']; } $secondsleft = $mybb->settings['failedlogintime'] * 60 + $failedtime - $now; $hoursleft = floor($secondsleft / 3600); $minsleft = floor(($secondsleft / 60) % 60); $secsleft = floor($secondsleft % 60); // This value will be empty the first time the user doesn't login in, set it if(empty($failedlogin)) { my_setcookie('failedlogin', $now); if($fatal) { error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false;	// This user has a cookie lockout, show waiting time elseif($mybb->cookies['lockoutexpiry'] && $mybb->cookies['lockoutexpiry'] > $now) { if($fatal) { $secsleft = (int)($mybb->cookies['lockoutexpiry'] - $now); $hoursleft = floor($secsleft / 3600); $minsleft = floor(($secsleft / 60) % 60); $secsleft = floor($secsleft % 60); error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft));
}	}
// Work out if the user has waited long enough before letting them login again if($mybb->cookies['failedlogin'] < ($now - $mybb->settings['failedlogintime'] * 60)) { my_setcookie('loginattempts', 1); my_unsetcookie('failedlogin'); if($mybb->user['uid'] != 0) { $update_array = array( 'loginattempts' => 1 ); $db->update_query("users", $update_array, "uid = '{$mybb->user['uid']}'"); } return 1; } // Not waited long enough else if($mybb->cookies['failedlogin'] > ($now - $mybb->settings['failedlogintime'] * 60))	return false; } if($mybb->settings['failedlogincount'] > 0 && $attempts['loginattempts'] >= $mybb->settings['failedlogincount']) { // Set the expiry dateline if not set yet if($attempts['loginlockoutexpiry'] == 0) { $attempts['loginlockoutexpiry'] = $now + ((int)$mybb->settings['failedlogintime'] * 60); // Add a cookie lockout. This is used to prevent access to the login page immediately. // A deep lockout is issued if he tries to login into a locked out account my_setcookie('lockoutexpiry', $attempts['loginlockoutexpiry']); $db->update_query("users", array( "loginlockoutexpiry" => $attempts['loginlockoutexpiry'] ), "uid='{$uid}'"); } if(empty($mybb->cookies['lockoutexpiry']))
{	{
	$failedtime = $attempts['loginlockoutexpiry']; } else { $failedtime = $mybb->cookies['lockoutexpiry']; } // Are we still locked out? if($attempts['loginlockoutexpiry'] > $now) {
if($fatal) {	if($fatal) {
	$secsleft = (int)($attempts['loginlockoutexpiry'] - $now); $hoursleft = floor($secsleft / 3600); $minsleft = floor(($secsleft / 60) % 60); $secsleft = floor($secsleft % 60);
error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false; }	error($lang->sprintf($lang->failed_login_wait, $hoursleft, $minsleft, $secsleft)); } return false; }
}	// Unlock if enough time has passed else { if($uid > 0) { $db->update_query("users", array( "loginattempts" => 0, "loginlockoutexpiry" => 0 ), "uid='{$uid}'"); } // Wipe the cookie, no matter if a guest or a member my_unsetcookie('lockoutexpiry'); return 0; } }
// User can attempt another login	// User can attempt another login
return $loginattempts;	return $attempts['loginattempts'];
} /**	} /**
Zeile 6299	Zeile 6464
*/ function validate_email_format($email) {	*/ function validate_email_format($email) {
if(strpos($email, ' ') !== false) { return false; } // Valid local characters for email addresses: http://www.remote.org/jochen/mail/info/chars.html return preg_match("/^[a-zA-Z0-9&+\-_.{}~^\?=\/]+@[a-zA-Z0-9-]+\.([a-zA-Z0-9-]+\.)[a-zA-Z0-9-]{2,}$/si", $email);	return filter_var($email, FILTER_VALIDATE_EMAIL) !== false;
} /**	} /**
Zeile 6341	Zeile 6501
{ global $db, $mybb;	{ global $db, $mybb;
if(!file_exists(MYBB_ROOT."inc/settings.php")) { $mode = "x"; } else { $mode = "w"; } $options = array( "order_by" => "title", "order_dir" => "ASC" ); $query = $db->simple_select("settings", "value, name", "", $options);	$query = $db->simple_select("settings", "value, name", "", array( 'order_by' => 'title', 'order_dir' => 'ASC', ));

$settings = null;	$settings = '';
while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value'];	while($setting = $db->fetch_array($query)) { $mybb->settings[$setting['name']] = $setting['value'];
Zeile 6365	Zeile 6515
} $settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n";	} $settings = "<"."?php\n/*******************************\ \n DO NOT EDIT THIS FILE, PLEASE USE\n THE SETTINGS EDITOR\n\*******************************/\n\n$settings\n";
$file = @fopen(MYBB_ROOT."inc/settings.php", $mode); @fwrite($file, $settings); @fclose($file);	file_put_contents(MYBB_ROOT.'inc/settings.php', $settings, LOCK_EX);
$GLOBALS['settings'] = &$mybb->settings; }	$GLOBALS['settings'] = &$mybb->settings; }
Zeile 6462	Zeile 6611
// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html	// Sort the word array by length. Largest terms go first and work their way down to the smallest term. // This resolves problems like "test tes" where "tes" will be highlighted first, then "test" can't be highlighted because of the changed html
usort($words, create_function('$a,$b', 'return strlen($b) - strlen($a);'));	usort($words, 'build_highlight_array_sort');
// Loop through our words to build the PREG compatible strings foreach($words as $word)	// Loop through our words to build the PREG compatible strings foreach($words as $word)
Zeile 6484	Zeile 6633
} return $highlight_cache;	} return $highlight_cache;
	} /** * Sort the word array by length. Largest terms go first and work their way down to the smallest term. * * @param string $a First word. * @param string $b Second word. * @return integer Result of comparison function. */ function build_highlight_array_sort($a, $b) { return strlen($b) - strlen($a);
} /**	} /**
Zeile 6498	Zeile 6659
$dest = ''; if($src < 0)	$dest = ''; if($src < 0)
{	{
return false;	return false;
}	}
elseif($src <= 0x007f)	elseif($src <= 0x007f)
{	{
$dest .= chr($src);	$dest .= chr($src);
}	}
elseif($src <= 0x07ff) { $dest .= chr(0xc0 \| ($src >> 6));	elseif($src <= 0x07ff) { $dest .= chr(0xc0 \| ($src >> 6));
$dest .= chr(0x80 \| ($src & 0x003f)); }	$dest .= chr(0x80 \| ($src & 0x003f)); }
elseif($src <= 0xffff) { $dest .= chr(0xe0 \| ($src >> 12));	elseif($src <= 0xffff) { $dest .= chr(0xe0 \| ($src >> 12));
Zeile 6530	Zeile 6691
} return $dest;	} return $dest;
}	}
/** * Checks if a username has been disallowed for registration/use. *	/** * Checks if a username has been disallowed for registration/use. *
Zeile 6575	Zeile 6736
$banned_cache = $cache->read("bannedemails"); if($banned_cache === false)	$banned_cache = $cache->read("bannedemails"); if($banned_cache === false)
{	{
// Failed to read cache, see if we can rebuild it $cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");	// Failed to read cache, see if we can rebuild it $cache->update_bannedemails(); $banned_cache = $cache->read("bannedemails");
Zeile 6826	Zeile 6987
elseif($destination_address == $disallowed_address) { return false;	elseif($destination_address == $disallowed_address) { return false;
} } }	} } }
$post_body = ''; if(!empty($post_data))	$post_body = ''; if(!empty($post_data))
{	{
foreach($post_data as $key => $val) { $post_body .= '&'.urlencode($key).'='.urlencode($val);	foreach($post_data as $key => $val) { $post_body .= '&'.urlencode($key).'='.urlencode($val);
Zeile 6841	Zeile 7002
} if(function_exists("curl_init"))	} if(function_exists("curl_init"))
{	{
$fetch_header = $max_redirects > 0; $ch = curl_init();	$fetch_header = $max_redirects > 0; $ch = curl_init();
Zeile 6871	Zeile 7032
{ // CURLOPT_CONNECT_TO $curlopt[10243] = array(	{ // CURLOPT_CONNECT_TO $curlopt[10243] = array(
$url_components['host'].':'.$url_components['port'].':'.$destination_address ); }	$url_components['host'].':'.$url_components['port'].':'.$destination_address ); }
elseif(version_compare(PHP_VERSION, '5.5', '>=') && version_compare($curl_version, '7.21.3', '>='))	elseif(version_compare(PHP_VERSION, '5.5', '>=') && version_compare($curl_version, '7.21.3', '>='))
{	{
// CURLOPT_RESOLVE $curlopt[10203] = array( $url_components['host'].':'.$url_components['port'].':'.$destination_address	// CURLOPT_RESOLVE $curlopt[10203] = array( $url_components['host'].':'.$url_components['port'].':'.$destination_address
Zeile 6886	Zeile 7047
{ $curlopt[CURLOPT_POST] = 1; $curlopt[CURLOPT_POSTFIELDS] = $post_body;	{ $curlopt[CURLOPT_POST] = 1; $curlopt[CURLOPT_POSTFIELDS] = $post_body;
} curl_setopt_array($ch, $curlopt);	} curl_setopt_array($ch, $curlopt);
$response = curl_exec($ch);	$response = curl_exec($ch);
Zeile 6952	Zeile 7113
'verify_peer_name' => true, 'peer_name' => $url_components['host'], 'cafile' => $ca_bundle_path,	'verify_peer_name' => true, 'peer_name' => $url_components['host'], 'cafile' => $ca_bundle_path,
), )); }	), )); }
else { $context = stream_context_create(array(	else { $context = stream_context_create(array(
Zeile 6966	Zeile 7127
} $fp = @stream_socket_client($scheme.$destination_address.':'.(int)$url_components['port'], $error_no, $error, 10, STREAM_CLIENT_CONNECT, $context);	} $fp = @stream_socket_client($scheme.$destination_address.':'.(int)$url_components['port'], $error_no, $error, 10, STREAM_CLIENT_CONNECT, $context);
} else	} else
{ $fp = @fsockopen($scheme.$url_components['host'], (int)$url_components['port'], $error_no, $error, 10); }	{ $fp = @fsockopen($scheme.$url_components['host'], (int)$url_components['port'], $error_no, $error, 10); }
Zeile 6983	Zeile 7144
$headers[] = "POST {$url_components['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";	$headers[] = "POST {$url_components['path']} HTTP/1.0"; $headers[] = "Content-Length: ".strlen($post_body); $headers[] = "Content-Type: application/x-www-form-urlencoded";
}	}
else { $headers[] = "GET {$url_components['path']} HTTP/1.0";	else { $headers[] = "GET {$url_components['path']} HTTP/1.0";
Zeile 7012	Zeile 7173
$data = null; while(!feof($fp))	$data = null; while(!feof($fp))
{ $data .= fgets($fp, 12800); }	{ $data .= fgets($fp, 12800); }
fclose($fp); $data = explode("\r\n\r\n", $data, 2);	fclose($fp); $data = explode("\r\n\r\n", $data, 2);
Zeile 7062	Zeile 7223
if($result_set) { $addresses = array_column($result_set, 'ip');	if($result_set) { $addresses = array_column($result_set, 'ip');
}	}
else { return false; } }	else { return false; } }

return $addresses; }	return $addresses; }
Zeile 7078	Zeile 7239
* @return string\|bool The location of the CA bundle, false if not set */ function get_ca_bundle_path()	* @return string\|bool The location of the CA bundle, false if not set */ function get_ca_bundle_path()
{	{
if($path = ini_get('openssl.cafile')) { return $path;	if($path = ini_get('openssl.cafile')) { return $path;
Zeile 7583	Zeile 7744
array('::', '(int)"$1"?"$1":"0$1"'), $r); return $r;	array('::', '(int)"$1"?"$1":"0$1"'), $r); return $r;
} return false; } } /**	} return false; } } /**
* Fetch an binary formatted range for searching IPv4 and IPv6 IP addresses. * * @param string $ipaddress The IP address to convert to a range	* Fetch an binary formatted range for searching IPv4 and IPv6 IP addresses. * * @param string $ipaddress The IP address to convert to a range
Zeile 7603	Zeile 7764
{ // IPv6 $upper = str_replace('*', 'ffff', $ipaddress);	{ // IPv6 $upper = str_replace('*', 'ffff', $ipaddress);
$lower = str_replace('*', '0', $ipaddress); }	$lower = str_replace('*', '0', $ipaddress); }
else { // IPv4	else { // IPv4
Zeile 7667	Zeile 7828
$bit = decbin(ord($ip_pack[$i])); $bit = str_pad($bit, 8, '0', STR_PAD_LEFT); $ip_bits .= $bit;	$bit = decbin(ord($ip_pack[$i])); $bit = str_pad($bit, 8, '0', STR_PAD_LEFT); $ip_bits .= $bit;
}	}
// Significative bits (from the ip range) $ip_bits = substr($ip_bits, 0, $ip_range);	// Significative bits (from the ip range) $ip_bits = substr($ip_bits, 0, $ip_range);
Zeile 7713	Zeile 7874
static $time_start; $time = microtime(true);	static $time_start; $time = microtime(true);

// Just starting timer, init and return if(!$time_start)	// Just starting timer, init and return if(!$time_start)
Zeile 7784	Zeile 7944
{ $filename = $path."/".$file; $handle = fopen($filename, "rb");	{ $filename = $path."/".$file; $handle = fopen($filename, "rb");
$contents = '';	$hashingContext = hash_init('sha512');
while(!feof($handle)) {	while(!feof($handle)) {
$contents .= fread($handle, 8192);	hash_update($hashingContext, fread($handle, 8192));
} fclose($handle);	} fclose($handle);
$md5 = md5($contents);	$checksum = hash_final($hashingContext);
// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes)	// Does it match any of our hashes (unix/windows new lines taken into consideration with the hashes)
if(!in_array($md5, $checksums[$file_path]))	if(!in_array($checksum, $checksums[$file_path]))
{ $bad_verify_files[] = array("status" => "changed", "path" => $file_path); }	{ $bad_verify_files[] = array("status" => "changed", "path" => $file_path); }
Zeile 7971	Zeile 8131
{ $bytes = PHP_INT_SIZE;	{ $bytes = PHP_INT_SIZE;
do {	do {
$output = secure_binary_seed_rng($bytes); // convert binary data to a decimal number if ($bytes == 4)	$output = secure_binary_seed_rng($bytes); // convert binary data to a decimal number if ($bytes == 4)
{	{
$elements = unpack('i', $output); $output = abs($elements[1]); }	$elements = unpack('i', $output); $output = abs($elements[1]); }
Zeile 7986	Zeile 8146
{ $elements = unpack('N2', $output); $output = abs($elements[1] << 32 \| $elements[2]);	{ $elements = unpack('N2', $output); $output = abs($elements[1] << 32 \| $elements[2]);
} } while($output > PHP_INT_MAX);	} } while($output > PHP_INT_MAX);
return $output; }	return $output; }
Zeile 8021	Zeile 8181
return $result; } }	return $result; } }

$seed = secure_seed_rng(); $distance = $max - $min;	$seed = secure_seed_rng(); $distance = $max - $min;
Zeile 8098	Zeile 8258
0xB9 => array(0xBF => array(0xEF => 1)), // \x{FFF9} 0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB}	0xB9 => array(0xBF => array(0xEF => 1)), // \x{FFF9} 0xBA => array(0xBF => array(0xEF => 1)), // \x{FFFA} 0xBB => array(0xBF => array(0xEF => 1)), // \x{FFFB}
);	);
// Start from the beginning and work our way in do {	// Start from the beginning and work our way in do {
Zeile 8352	Zeile 8512
} if(isset($pm['language']))	} if(isset($pm['language']))
{	{
if($pm['language'] != $mybb->user['language'] && $lang->language_exists($pm['language'])) { // Load user language	if($pm['language'] != $mybb->user['language'] && $lang->language_exists($pm['language'])) { // Load user language
Zeile 8443	Zeile 8603
} $pm['options'] = array(	} $pm['options'] = array(
"signature" => 0,
"disablesmilies" => 0, "savecopy" => 0, "readreceipt" => 0	"disablesmilies" => 0, "savecopy" => 0, "readreceipt" => 0
Zeile 8580	Zeile 8739
* * @param string $url The url to validate. * @param bool $relative_path Whether or not the url could be a relative path.	* * @param string $url The url to validate. * @param bool $relative_path Whether or not the url could be a relative path.
	* @param bool $allow_local Whether or not the url could be pointing to local networks.
* * @return bool Whether this is a valid url. */	* * @return bool Whether this is a valid url. */
function my_validate_url($url, $relative_path=false)	function my_validate_url($url, $relative_path=false, $allow_local=false)
{	{
if($relative_path && my_substr($url, 0, 1) == '/' \|\| preg_match('_^(?:(?:https?\|ftp)://)(?:\S+(?::\S)?@)?(?:(?!(?:10\|127)(?:\.\d{1,3}){3})(?!(?:169\.254\|192\.168)(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]\|2\d\|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?\|1\d\d\|2[01]\d\|22[0-3])(?:\.(?:1?\d{1,2}\|2[0-4]\d\|25[0-5])){2}(?:\.(?:[1-9]\d?\|1\d\d\|2[0-4]\d\|25[0-4]))\|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,}))\.?)(?::\d{2,5})?(?:[/?#]\S*)?$_iuS', $url))	if($allow_local)
{	{
return true;	$regex = '_^(?:(?:https?\|ftp)://)(?:\S+(?::\S)?@)?(?:(?:[1-9]\d?\|1\d\d\|2[01]\d\|22[0-3])(?:\.(?:1?\d{1,2}\|2[0-4]\d\|25[0-5])){2}(?:\.(?:[1-9]\d?\|1\d\d\|2[0-4]\d\|25[0-4]))\|(?:localhost\|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,}))\.?))(?::\d{2,5})?(?:[/?#]\S)?$_iuS'; } else { $regex = '_^(?:(?:https?\|ftp)://)(?:\S+(?::\S)?@)?(?:(?!(?:10\|127)(?:\.\d{1,3}){3})(?!(?:169\.254\|192\.168)(?:\.\d{1,3}){2})(?!172\.(?:1[6-9]\|2\d\|3[0-1])(?:\.\d{1,3}){2})(?:[1-9]\d?\|1\d\d\|2[01]\d\|22[0-3])(?:\.(?:1?\d{1,2}\|2[0-4]\d\|25[0-5])){2}(?:\.(?:[1-9]\d?\|1\d\d\|2[0-4]\d\|25[0-4]))\|(?:(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}0-9]-)[a-z\x{00a1}-\x{ffff}0-9]+)(?:\.(?:[a-z\x{00a1}-\x{ffff}]{2,}))\.?)(?::\d{2,5})?(?:[/?#]\S)?$_iuS';
}	}
	if($relative_path && my_substr($url, 0, 1) == '/' \|\| preg_match($regex, $url)) { return true; }
return false;	return false;
}	}
/** * Strip html tags from string, also removes <script> and <style> contents.	/** * Strip html tags from string, also removes <script> and <style> contents.
*	* * @deprecated
* @param string $string String to stripe * @param string $allowable_tags Allowed html tags	* @param string $string String to stripe * @param string $allowable_tags Allowed html tags
*	*
* @return string Striped string */ function my_strip_tags($string, $allowable_tags = '')	* @return string Striped string */ function my_strip_tags($string, $allowable_tags = '')
{	{
$pattern = array( '@(<)style[^(>)]?(>).?(<)/style(>)@siu', '@(<)script[^(>)]?.?(<)/script(>)@siu',	$pattern = array( '@(<)style[^(>)]?(>).?(<)/style(>)@siu', '@(<)script[^(>)]?.?(<)/script(>)@siu',
Zeile 8611	Zeile 8780
); $string = preg_replace($pattern, '', $string); return strip_tags($string, $allowable_tags);	); $string = preg_replace($pattern, '', $string); return strip_tags($string, $allowable_tags);
	} /** * Escapes a RFC 4180-compliant CSV string. * Based on https://github.com/Automattic/camptix/blob/f80725094440bf09861383b8f11e96c177c45789/camptix.php#L2867 * * @param string $string The string to be escaped * @param boolean $escape_active_content Whether or not to escape active content trigger characters * @return string The escaped string */ function my_escape_csv($string, $escape_active_content=true) { if($escape_active_content) { $active_content_triggers = array('=', '+', '-', '@'); $delimiters = array(',', ';', ':', '\|', '^', "\n", "\t", " "); $first_character = mb_substr($string, 0, 1); if( in_array($first_character, $active_content_triggers, true) \|\| in_array($first_character, $delimiters, true) ) { $string = "'".$string; } foreach($delimiters as $delimiter) { foreach($active_content_triggers as $trigger) { $string = str_replace($delimiter.$trigger, $delimiter."'".$trigger, $string); } } } $string = str_replace('"', '""', $string); return $string;
}	}