Vergleich polls.php - 1.8.7 - 1.8.17

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 24Zeile 24

if($mybb->user['uid'] != 0)
{


if($mybb->user['uid'] != 0)
{

 
	$mybb->user['username'] = htmlspecialchars_uni($mybb->user['username']);

	eval("\$loginbox = \"".$templates->get("changeuserbox")."\";");
}
else

	eval("\$loginbox = \"".$templates->get("changeuserbox")."\";");
}
else

Zeile 690Zeile 691
				$votes[$i] = "0";
}
$voteslist .= $votes[$i];

				$votes[$i] = "0";
}
$voteslist .= $votes[$i];

			$numvotes = $numvotes + $votes[$i];

			$numvotes = (int)$numvotes + (int)$votes[$i];

		}
}


		}
}


Zeile 750Zeile 751

$tid = $poll['tid'];
$thread = get_thread($tid);


$tid = $poll['tid'];
$thread = get_thread($tid);

	if(!$thread)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);

	{
error($lang->error_invalidthread);

	}

$fid = $thread['fid'];


	}

$fid = $thread['fid'];


	// Get forum info
$forum = get_forum($fid);
if(!$forum)

	// Get forum info
$forum = get_forum($fid);
if(!$forum)

Zeile 767Zeile 768
	$forumpermissions = forum_permissions($forum['fid']);

$plugins->run_hooks("polls_showresults_start");

	$forumpermissions = forum_permissions($forum['fid']);

$plugins->run_hooks("polls_showresults_start");





	if($forumpermissions['canviewthreads'] == 0 || $forumpermissions['canview'] == 0 || (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
{
error_no_permission();
}

	if($forumpermissions['canviewthreads'] == 0 || $forumpermissions['canview'] == 0 || (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
{
error_no_permission();
}





	// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_pollresults);

	// Make navigation
build_forum_breadcrumb($fid);
add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_pollresults);





	$voters = $votedfor = array();

// Calculate votes

	$voters = $votedfor = array();

// Calculate votes

Zeile 794Zeile 795
		if($mybb->user['uid'] == $voter['uid'] && $mybb->user['uid'])
{
$votedfor[$voter['voteoption']] = 1;

		if($mybb->user['uid'] == $voter['uid'] && $mybb->user['uid'])
{
$votedfor[$voter['voteoption']] = 1;

		}

		}


// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')


// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')

Zeile 804Zeile 805
		}
else
{

		}
else
{

			$voters[$voter['voteoption']][$voter['uid']] = $voter['username'];

			$voters[$voter['voteoption']][$voter['uid']] = htmlspecialchars_uni($voter['username']);

		}
}


		}
}


Zeile 884Zeile 885
	}

if($poll['totvotes'])

	}

if($poll['totvotes'])

	{
$totpercent = '100%';

	{
$totpercent = '100%';

	}
else
{

	}
else
{

Zeile 898Zeile 899
	eval("\$showresults = \"".$templates->get("polls_showresults")."\";");
output_page($showresults);
}

	eval("\$showresults = \"".$templates->get("polls_showresults")."\";");
output_page($showresults);
}

 


if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request

if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request

Zeile 909Zeile 911
	if(!$poll)
{
error($lang->error_invalidpoll);

	if(!$poll)
{
error($lang->error_invalidpoll);

	}


	}


	$plugins->run_hooks("polls_vote_start");

	$plugins->run_hooks("polls_vote_start");





	$poll['timeout'] = $poll['timeout']*60*60*24;

	$poll['timeout'] = $poll['timeout']*60*60*24;





	$query = $db->simple_select("threads", "*", "poll='".(int)$poll['pid']."'");
$thread = $db->fetch_array($query);


	$query = $db->simple_select("threads", "*", "poll='".(int)$poll['pid']."'");
$thread = $db->fetch_array($query);


	if(!$thread || $thread['visible'] == 0)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);
}

	{
error($lang->error_invalidthread);
}

Zeile 926Zeile 928
	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);
if($forumpermissions['canvotepolls'] == 0)

	$fid = $thread['fid'];
$forumpermissions = forum_permissions($fid);
if($forumpermissions['canvotepolls'] == 0)

	{
error_no_permission();
}

// Get forum info

	{
error_no_permission();
}

// Get forum info

	$forum = get_forum($fid);
if(!$forum)
{

	$forum = get_forum($fid);
if(!$forum)
{

Zeile 947Zeile 949
	}

$expiretime = $poll['dateline'] + $poll['timeout'];

	}

$expiretime = $poll['dateline'] + $poll['timeout'];

	$now = TIME_NOW;

	$now = TIME_NOW;

	if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < $now && $poll['timeout']))
{
error($lang->error_pollclosed);

	if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < $now && $poll['timeout']))
{
error($lang->error_pollclosed);

	}


	}


	if(!isset($mybb->input['option']))
{
error($lang->error_nopolloptions);

	if(!isset($mybb->input['option']))
{
error($lang->error_nopolloptions);

Zeile 961Zeile 963
	// Check if the user has voted before...
if($mybb->user['uid'])
{

	// Check if the user has voted before...
if($mybb->user['uid'])
{

		$query = $db->simple_select("pollvotes", "*", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);

		$user_check = "uid='{$mybb->user['uid']}'";


	}

	}


if($votecheck['vid'] || (isset($mybb->cookies['pollvotes'][$poll['pid']]) && $mybb->cookies['pollvotes'][$poll['pid']] !== ""))
{
error($lang->error_alreadyvoted);
}
elseif(!$mybb->user['uid'])

	else






	{

	{

		// Give a cookie to guests to inhibit revotes
if(is_array($mybb->input['option']))
{
// We have multiple options here...
$votes_cookie = implode(',', array_keys($mybb->input['option']));
}
else
{
$votes_cookie = $mybb->input['option'];
}

my_setcookie("pollvotes[{$poll['pid']}]", $votes_cookie);
}

		$user_check = "ipaddress=".$db->escape_binary($session->packedip);
}

$query = $db->simple_select("pollvotes", "*", "{$user_check} AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);













	$votesql = '';
$now = TIME_NOW;





	if($votecheck['vid'])
{
error($lang->error_alreadyvoted);
}

$votesql = array();

	$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];
$numvotes = (int)$poll['numvotes'];

	$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];
$numvotes = (int)$poll['numvotes'];

Zeile 997Zeile 989
			$total_options = 0;

foreach($option as $voteoption => $vote)

			$total_options = 0;

foreach($option as $voteoption => $vote)

			{

			{

				if($vote == 1 && isset($votesarray[$voteoption-1]))
{

				if($vote == 1 && isset($votesarray[$voteoption-1]))
{

					if($votesql)
{
$votesql .= ",";
}
$votesql .= "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($voteoption)."','$now')";




					$votesql[] = array(
"pid" => $poll['pid'],
"uid" => (int)$mybb->user['uid'],
"voteoption" => $db->escape_string($voteoption),
"dateline" => TIME_NOW,
"ipaddress" => $db->escape_binary($session->packedip)
);


					$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;
$total_options++;

					$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;
$total_options++;

Zeile 1015Zeile 1010
			{
error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions']));
}

			{
error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions']));
}

		}
}
else

		}
}
else

	{
if(is_array($option) || !isset($votesarray[$option-1]))
{
error($lang->error_nopolloptions);
}

	{
if(is_array($option) || !isset($votesarray[$option-1]))
{
error($lang->error_nopolloptions);
}

		$votesql = "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($option)."','$now')";










$votesql = array(
"pid" => $poll['pid'],
"uid" => (int)$mybb->user['uid'],
"voteoption" => $db->escape_string($option),
"dateline" => TIME_NOW,
"ipaddress" => $db->escape_binary($session->packedip)
);


		$votesarray[$option-1]++;
$numvotes = $numvotes+1;
}

		$votesarray[$option-1]++;
$numvotes = $numvotes+1;
}

Zeile 1033Zeile 1036
		error($lang->error_nopolloptions);
}


		error($lang->error_nopolloptions);
}


	$db->write_query("
INSERT INTO
".TABLE_PREFIX."pollvotes (pid,uid,voteoption,dateline)
VALUES $votesql
");





	if($poll['multiple'] == 1)
{
$db->insert_query_multiple("pollvotes", $votesql);
}
else
{
$db->insert_query("pollvotes", $votesql);
}


	$voteslist = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

	$voteslist = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

Zeile 1085Zeile 1092
	// We do not have $forum_cache available here since no forums permissions are checked in undo vote
// Get thread ID and then get forum info
$thread = get_thread($poll['tid']);

	// We do not have $forum_cache available here since no forums permissions are checked in undo vote
// Get thread ID and then get forum info
$thread = get_thread($poll['tid']);

	if(!$thread || $thread['visible'] == 0)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);
}

	{
error($lang->error_invalidthread);
}

Zeile 1119Zeile 1126

// Check if the user has voted before...
$vote_options = array();


// Check if the user has voted before...
$vote_options = array();

 


	if($mybb->user['uid'])
{

	if($mybb->user['uid'])
{

		$query = $db->simple_select("pollvotes", "vid,voteoption", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
while($voteoption = $db->fetch_array($query))
{
$vote_options[$voteoption['vid']] = $voteoption['voteoption'];
}
}
elseif(isset($mybb->cookies['pollvotes'][$poll['pid']]))
{
// for Guests, we simply see if they've got the cookie
$vote_options = explode(',', $mybb->cookies['pollvotes'][$poll['pid']]);


		$user_check = "uid='{$mybb->user['uid']}'";
}
else
{
$user_check = "uid='0' AND ipaddress=".$db->escape_binary($session->packedip);
}

$query = $db->simple_select("pollvotes", "vid,voteoption", "{$user_check} AND pid='".$poll['pid']."'");
while($voteoption = $db->fetch_array($query))
{
$vote_options[$voteoption['vid']] = $voteoption['voteoption'];

	}

if(empty($vote_options))
{
error($lang->error_notvoted);

	}

if(empty($vote_options))
{
error($lang->error_notvoted);

	}
else if(!$mybb->user['uid'])
{
// clear cookie for Guests
my_setcookie("pollvotes[{$poll['pid']}]", "");

 
	}

// Note, this is not thread safe!

	}

// Note, this is not thread safe!

Zeile 1193Zeile 1197

$plugins->run_hooks("polls_do_undovote_process");



$plugins->run_hooks("polls_do_undovote_process");


	$db->delete_query("pollvotes", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");

	$db->delete_query("pollvotes", "{$user_check} AND pid='".$poll['pid']."'");

	$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_do_undovote_end");

	$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_do_undovote_end");