Zeile 12 | Zeile 12 |
---|
define("IGNORE_CLEAN_VARS", "sid"); define('THIS_SCRIPT', 'private.php');
|
define("IGNORE_CLEAN_VARS", "sid"); define('THIS_SCRIPT', 'private.php');
|
$templatelist = "private_send,private_send_buddyselect,private_read,private_tracking,private_tracking_readmessage,private_tracking_unreadmessage,private_orderarrow,usercp_nav_attachments,usercp_nav_messenger_compose,private_tracking_readmessage_stop"; $templatelist .= ",private_folders,private_folders_folder,private_folders_folder_unremovable,private,usercp_nav,private_empty_folder,private_empty,private_archive_txt,private_archive_csv,private_archive_html,private_tracking_unreadmessage_stop"; $templatelist .= ",usercp_nav_messenger,usercp_nav_changename,usercp_nav_profile,usercp_nav_misc,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start,usercp_nav_editsignature,posticons_icon"; $templatelist .= ",private_messagebit,codebuttons,smilieinsert,smilieinsert_getmore,smilieinsert_smilie,smilieinsert_smilie_empty,posticons,private_send_autocomplete,private_messagebit_denyreceipt,private_read_to,postbit_online,postbit_warninglevel_formatted,postbit_iplogged_hiden";
| $templatelist = "private_send,private_send_buddyselect,private_tracking,private_tracking_readmessage,private_tracking_unreadmessage,usercp_nav_attachments,usercp_nav_messenger_compose,private_tracking_readmessage_stop"; $templatelist .= ",private_folders,private_folders_folder,private_folders_folder_unremovable,private,usercp_nav,private_empty_folder,private_archive_txt,private_archive_csv,private_archive_html,private_tracking_unreadmessage_stop"; $templatelist .= ",usercp_nav_messenger,usercp_nav_changename,multipage,multipage_end,multipage_jump_page,multipage_nextpage,multipage_page,multipage_page_current,multipage_page_link_current,multipage_prevpage,multipage_start"; $templatelist .= ",private_messagebit,codebuttons,posticons,private_send_autocomplete,private_messagebit_denyreceipt,postbit_warninglevel_formatted,private_emptyexportlink,postbit_purgespammer,postbit_gotopost,private_read";
|
$templatelist .= ",postbit_delete_pm,postbit,private_tracking_nomessage,private_nomessages,postbit_author_guest,private_multiple_recipients_user,private_multiple_recipients_bcc,private_multiple_recipients,usercp_nav_messenger_folder";
|
$templatelist .= ",postbit_delete_pm,postbit,private_tracking_nomessage,private_nomessages,postbit_author_guest,private_multiple_recipients_user,private_multiple_recipients_bcc,private_multiple_recipients,usercp_nav_messenger_folder";
|
$templatelist .= ",private_search_messagebit,private_search_results_nomessages,private_search_results,private_advanced_search,previewpost,private_send_tracking,private_send_signature,private_read_bcc,private_composelink,postbit_purgespammer"; $templatelist .= ",private_archive,private_quickreply,private_pmspace,private_limitwarning,postbit_groupimage,postbit_offline,postbit_www,postbit_replyall_pm,postbit_signature,postbit_classic,postbit_gotopost,postbit_userstar,postbit_reputation_formatted_link,postbit_icon"; $templatelist .= ",private_archive_folders_folder,private_archive_folders,postbit_warninglevel,postbit_author_user,postbit_reply_pm,postbit_forward_pm,private_messagebit_icon,private_jump_folders_folder,private_advanced_search_folders"; $templatelist .= ",private_jump_folders,postbit_avatar,postbit_warn,postbit_rep_button,postbit_email,postbit_reputation,private_move,private_read_action,postbit_away,postbit_pm,usercp_nav_messenger_tracking,postbit_find,private_emptyexportlink";
| $templatelist .= ",private_search_messagebit,private_search_results_nomessages,private_search_results,private_advanced_search,previewpost,private_send_tracking,private_send_signature,private_read_bcc,private_composelink"; $templatelist .= ",private_archive,private_quickreply,private_pmspace,private_limitwarning,postbit_groupimage,postbit_offline,postbit_www,postbit_replyall_pm,postbit_signature,postbit_classic,postbit_reputation_formatted_link"; $templatelist .= ",private_archive_folders_folder,private_archive_folders,postbit_warninglevel,postbit_author_user,postbit_forward_pm,private_messagebit_icon,private_jump_folders_folder,private_advanced_search_folders,usercp_nav_home"; $templatelist .= ",private_jump_folders,postbit_avatar,postbit_warn,postbit_rep_button,postbit_email,postbit_reputation,private_move,private_read_action,postbit_away,postbit_pm,usercp_nav_messenger_tracking,postbit_find"; $templatelist .= ",usercp_nav_editsignature,posticons_icon,postbit_icon,postbit_iplogged_hiden,usercp_nav_profile,usercp_nav_misc,postbit_userstar,private_read_to,postbit_online,private_empty,private_orderarrow,postbit_reply_pm";
|
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";
| require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";
|
Zeile 41 | Zeile 42 |
---|
error_no_permission(); }
|
error_no_permission(); }
|
| $update = false;
|
if(!$mybb->user['pmfolders']) {
|
if(!$mybb->user['pmfolders']) {
|
$mybb->user['pmfolders'] = "1**$%%$2**$%%$3**$%%$4**";
| $update = true; $mybb->user['pmfolders'] = "0**$%%$1**$%%$2**$%%$3**$%%$4**"; } elseif ((int)my_substr($mybb->user['pmfolders'], 0, 1) != 0) { // Old folder structure. Need to update // Since MyBB 1.8.20 fid[0] represents 'Inbox' and fid[1] represents 'Unread' $update = true; $mybb->user['pmfolders'] = '0'. ltrim(str_replace("$%%$2**", "$%%$1**$%%$2**", $mybb->user['pmfolders']), '1'); }
|
|
|
| // Folder structure update required? if($update) {
|
$sql_array = array(
|
$sql_array = array(
|
"pmfolders" => $mybb->user['pmfolders']
| "pmfolders" => $db->escape_string($mybb->user['pmfolders']),
|
); $db->update_query("users", $sql_array, "uid = ".$mybb->user['uid']);
|
); $db->update_query("users", $sql_array, "uid = ".$mybb->user['uid']);
|
}
$mybb->input['fid'] = $mybb->get_input('fid', MyBB::INPUT_INT);
| }
$mybb->input['fid'] = $mybb->get_input('fid', MyBB::INPUT_INT);
|
$folder_id = $folder_name = '';
$foldernames = array();
| $folder_id = $folder_name = '';
$foldernames = array();
|
Zeile 76 | Zeile 90 |
---|
eval("\$folderjump_folder .= \"".$templates->get("private_jump_folders_folder")."\";"); eval("\$folderoplist_folder .= \"".$templates->get("private_jump_folders_folder")."\";");
|
eval("\$folderjump_folder .= \"".$templates->get("private_jump_folders_folder")."\";"); eval("\$folderoplist_folder .= \"".$templates->get("private_jump_folders_folder")."\";");
|
eval("\$foldersearch_folder .= \"".$templates->get("private_jump_folders_folder")."\";");
| // Manipulate search folder selection to omit "Unread" if($folder_id != 1) { if($folder_id == 0) { $folder_id = 1; } eval("\$foldersearch_folder .= \"".$templates->get("private_jump_folders_folder")."\";"); }
|
}
|
}
|
| $from_fid = $mybb->input['fid'];
|
eval("\$folderjump = \"".$templates->get("private_jump_folders")."\";"); eval("\$folderoplist = \"".$templates->get("private_move")."\";");
| eval("\$folderjump = \"".$templates->get("private_jump_folders")."\";"); eval("\$folderoplist = \"".$templates->get("private_move")."\";");
|
Zeile 114 | Zeile 138 |
---|
case "results": add_breadcrumb($lang->nav_results); break;
|
case "results": add_breadcrumb($lang->nav_results); break;
|
}
| }
|
if(!empty($mybb->input['preview'])) { $mybb->input['action'] = "send";
| if(!empty($mybb->input['preview'])) { $mybb->input['action'] = "send";
|
Zeile 218 | Zeile 242 |
---|
else { $sortby = "dateline";
|
else { $sortby = "dateline";
|
}
| }
|
if(my_strtolower($mybb->get_input('sortordr')) == "asc") { $sortorder = "asc";
| if(my_strtolower($mybb->get_input('sortordr')) == "asc") { $sortorder = "asc";
|
Zeile 227 | Zeile 251 |
---|
else { $sortorder = "desc";
|
else { $sortorder = "desc";
|
}
| }
|
$plugins->run_hooks("private_do_search_end"); redirect("private.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults); }
|
$plugins->run_hooks("private_do_search_end"); redirect("private.php?action=results&sid=".$sid."&sortby=".$sortby."&order=".$sortorder, $lang->redirect_searchresults); }
|
|
|
if($mybb->input['action'] == "results") { $sid = $mybb->get_input('sid');
| if($mybb->input['action'] == "results") { $sid = $mybb->get_input('sid');
|
Zeile 245 | Zeile 269 |
---|
}
$plugins->run_hooks("private_results_start");
|
}
$plugins->run_hooks("private_results_start");
|
|
|
// Decide on our sorting fields and sorting order. $order = my_strtolower($mybb->get_input('order')); $sortby = my_strtolower($mybb->get_input('sortby'));
|
// Decide on our sorting fields and sorting order. $order = my_strtolower($mybb->get_input('order')); $sortby = my_strtolower($mybb->get_input('sortby'));
|
|
|
$sortby_accepted = array('subject', 'username', 'dateline');
if(in_array($sortby, $sortby_accepted))
|
$sortby_accepted = array('subject', 'username', 'dateline');
if(in_array($sortby, $sortby_accepted))
|
{
| {
|
$query_sortby = $sortby;
if($query_sortby == "username")
|
$query_sortby = $sortby;
if($query_sortby == "username")
|
{
| {
|
$query_sortby = "fromusername";
|
$query_sortby = "fromusername";
|
} }
| } }
|
else { $sortby = $query_sortby = "dateline";
|
else { $sortby = $query_sortby = "dateline";
|
}
| }
|
if($order != "asc")
|
if($order != "asc")
|
{
| {
|
$order = "desc"; }
| $order = "desc"; }
|
Zeile 275 | Zeile 299 |
---|
{ $mybb->settings['threadsperpage'] = 20; }
|
{ $mybb->settings['threadsperpage'] = 20; }
|
| $query = $db->simple_select("privatemessages", "COUNT(*) AS total", "pmid IN(".$db->escape_string($search['querycache']).")"); $pmscount = $db->fetch_field($query, "total");
|
// Work out pagination, which page we're at, as well as the limits. $perpage = $mybb->settings['threadsperpage'];
| // Work out pagination, which page we're at, as well as the limits. $perpage = $mybb->settings['threadsperpage'];
|
Zeile 282 | Zeile 309 |
---|
if($page > 0) { $start = ($page-1) * $perpage;
|
if($page > 0) { $start = ($page-1) * $perpage;
|
| $pages = ceil($pmscount / $perpage); if($page > $pages) { $start = 0; $page = 1; }
|
} else {
| } else {
|
Zeile 300 | Zeile 333 |
---|
}
// Do Multi Pages
|
}
// Do Multi Pages
|
$query = $db->simple_select("privatemessages", "COUNT(*) AS total", "pmid IN(".$db->escape_string($search['querycache']).")"); $pmscount = $db->fetch_array($query);
| |
if($upper > $pmscount) { $upper = $pmscount; }
|
if($upper > $pmscount) { $upper = $pmscount; }
|
$multipage = multipage($pmscount['total'], $perpage, $page, "private.php?action=results&sid=".htmlspecialchars_uni($mybb->get_input('sid'))."&sortby={$sortby}&order={$order}");
| $multipage = multipage($pmscount, $perpage, $page, "private.php?action=results&sid=".htmlspecialchars_uni($mybb->get_input('sid'))."&sortby={$sortby}&order={$order}");
|
$messagelist = '';
$icon_cache = $cache->read("posticons");
| $messagelist = '';
$icon_cache = $cache->read("posticons");
|
Zeile 322 | Zeile 352 |
---|
if(is_array($recipients['to']) && count($recipients['to'])) { $get_users = array_merge($get_users, $recipients['to']);
|
if(is_array($recipients['to']) && count($recipients['to'])) { $get_users = array_merge($get_users, $recipients['to']);
|
}
if(isset($recipients['bcc']) && is_array($recipients['bcc']) && count($recipients['bcc']))
| }
if(isset($recipients['bcc']) && is_array($recipients['bcc']) && count($recipients['bcc']))
|
{ $get_users = array_merge($get_users, $recipients['bcc']);
|
{ $get_users = array_merge($get_users, $recipients['bcc']);
|
} }
| } }
|
$get_users = implode(',', array_unique($get_users));
// Grab info
| $get_users = implode(',', array_unique($get_users));
// Grab info
|
Zeile 341 | Zeile 371 |
---|
$cached_users[$user['uid']] = $user; } }
|
$cached_users[$user['uid']] = $user; } }
|
|
|
$query = $db->query(" SELECT pm.*, fu.username AS fromusername, tu.username as tousername FROM ".TABLE_PREFIX."privatemessages pm
| $query = $db->query(" SELECT pm.*, fu.username AS fromusername, tu.username as tousername FROM ".TABLE_PREFIX."privatemessages pm
|
Zeile 353 | Zeile 383 |
---|
"); while($message = $db->fetch_array($query)) {
|
"); while($message = $db->fetch_array($query)) {
|
$msgalt = $msgsuffix = $msgprefix = '';
| $msgalt = $msgstatus = '';
|
// Determine Folder Icon if($message['status'] == 0) {
|
// Determine Folder Icon if($message['status'] == 0) {
|
$msgfolder = 'new_pm.png';
| $msgstatus = 'new_pm';
|
$msgalt = $lang->new_pm;
|
$msgalt = $lang->new_pm;
|
$msgprefix = "<strong>"; $msgsuffix = "</strong>"; } elseif($message['status'] == 1)
| } else if($message['status'] == 1)
|
{
|
{
|
$msgfolder = 'old_pm.png';
| $msgstatus = 'old_pm';
|
$msgalt = $lang->old_pm; }
|
$msgalt = $lang->old_pm; }
|
elseif($message['status'] == 3)
| else if($message['status'] == 3)
|
{
|
{
|
$msgfolder = 're_pm.png';
| $msgstatus = 're_pm';
|
$msgalt = $lang->reply_pm; } else if($message['status'] == 4) {
|
$msgalt = $lang->reply_pm; } else if($message['status'] == 4) {
|
$msgfolder = 'fw_pm.png';
| $msgstatus = 'fw_pm';
|
$msgalt = $lang->fwd_pm; }
| $msgalt = $lang->fwd_pm; }
|
Zeile 393 | Zeile 421 |
---|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
| $user['username'] = htmlspecialchars_uni($user['username']);
|
$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); eval("\$to_users .= \"".$templates->get("private_multiple_recipients_user")."\";"); }
| $username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); eval("\$to_users .= \"".$templates->get("private_multiple_recipients_user")."\";"); }
|
Zeile 403 | Zeile 432 |
---|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
| $user['username'] = htmlspecialchars_uni($user['username']);
|
$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); eval("\$bcc_users .= \"".$templates->get("private_multiple_recipients_user")."\";"); }
| $username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); eval("\$bcc_users .= \"".$templates->get("private_multiple_recipients_user")."\";"); }
|
Zeile 412 | Zeile 442 |
---|
} else if($message['toid']) {
|
} else if($message['toid']) {
|
$tofromusername = $message['tousername'];
| $tofromusername = htmlspecialchars_uni($message['tousername']);
|
$tofromuid = $message['toid']; } else { $tofromusername = $lang->not_sent;
|
$tofromuid = $message['toid']; } else { $tofromusername = $lang->not_sent;
|
} }
| } }
|
else {
|
else {
|
$tofromusername = $message['fromusername'];
| $tofromusername = htmlspecialchars_uni($message['fromusername']);
|
$tofromuid = $message['fromid']; if($tofromuid == 0) {
| $tofromuid = $message['fromid']; if($tofromuid == 0) {
|
Zeile 472 | Zeile 502 |
---|
$senddate = $lang->not_sent; }
|
$senddate = $lang->not_sent; }
|
$foldername = $foldernames[$message['folder']];
| $fid = "0"; if((int)$message['folder'] > 1) { $fid = $message['folder']; } $foldername = $foldernames[$fid];
|
// What we do here is parse the post using our post parser, then strip the tags from it $parser_options = array(
| // What we do here is parse the post using our post parser, then strip the tags from it $parser_options = array(
|
Zeile 555 | Zeile 590 |
---|
// Attempt to see if this PM is a duplicate or not $to = array_map("trim", explode(",", $mybb->get_input('to')));
|
// Attempt to see if this PM is a duplicate or not $to = array_map("trim", explode(",", $mybb->get_input('to')));
|
| $to = array_unique($to); // Filter out any duplicates
|
$to_escaped = implode("','", array_map(array($db, 'escape_string'), array_map('my_strtolower', $to))); $time_cutoff = TIME_NOW - (5 * 60 * 60); $query = $db->query("
| $to_escaped = implode("','", array_map(array($db, 'escape_string'), array_map('my_strtolower', $to))); $time_cutoff = TIME_NOW - (5 * 60 * 60); $query = $db->query("
|
Zeile 701 | Zeile 737 |
---|
{ $optionschecked['readreceipt'] = 'checked="checked"'; }
|
{ $optionschecked['readreceipt'] = 'checked="checked"'; }
|
$to = htmlspecialchars_uni($mybb->get_input('to')); $bcc = htmlspecialchars_uni($mybb->get_input('bcc'));
| $to = htmlspecialchars_uni(implode(', ', array_unique(array_map('trim', explode(',', $mybb->get_input('to')))))); $bcc = htmlspecialchars_uni(implode(', ', array_unique(array_map('trim', explode(',', $mybb->get_input('bcc'))))));
|
}
$preview = '';
| }
$preview = '';
|
Zeile 921 | Zeile 957 |
---|
if($send_errors) {
|
if($send_errors) {
|
$to = htmlspecialchars_uni($mybb->get_input('to')); $bcc = htmlspecialchars_uni($mybb->get_input('bcc'));
| $to = htmlspecialchars_uni(implode(', ', array_unique(array_map('trim', explode(',', $mybb->get_input('to')))))); $bcc = htmlspecialchars_uni(implode(', ', array_unique(array_map('trim', explode(',', $mybb->get_input('bcc'))))));
|
}
// Load the auto complete javascript if it is enabled.
| }
// Load the auto complete javascript if it is enabled.
|
Zeile 1109 | Zeile 1145 |
---|
while($recipient = $db->fetch_array($query)) { // User is a BCC recipient
|
while($recipient = $db->fetch_array($query)) { // User is a BCC recipient
|
| $recipient['username'] = htmlspecialchars_uni($recipient['username']);
|
if($show_bcc && in_array($recipient['uid'], $pm['recipients']['bcc'])) { $bcc_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
| if($show_bcc && in_array($recipient['uid'], $pm['recipients']['bcc'])) { $bcc_recipients[] = build_profile_link($recipient['username'], $recipient['uid']);
|
Zeile 1202 | Zeile 1239 |
---|
eval("\$private_send_tracking = \"".$templates->get("private_send_tracking")."\";"); }
|
eval("\$private_send_tracking = \"".$templates->get("private_send_tracking")."\";"); }
|
| $expaltext = (in_array("quickreply", $collapse)) ? "[+]" : "[-]";
|
eval("\$quickreply = \"".$templates->get("private_quickreply")."\";"); }
| eval("\$quickreply = \"".$templates->get("private_quickreply")."\";"); }
|
Zeile 1271 | Zeile 1309 |
---|
while($readmessage = $db->fetch_array($query)) { $readmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($readmessage['subject']));
|
while($readmessage = $db->fetch_array($query)) { $readmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($readmessage['subject']));
|
| $readmessage['tousername'] = htmlspecialchars_uni($readmessage['tousername']);
|
$readmessage['profilelink'] = build_profile_link($readmessage['tousername'], $readmessage['toid']); $readdate = my_date('relative', $readmessage['readtime']); eval("\$readmessages .= \"".$templates->get("private_tracking_readmessage")."\";");
| $readmessage['profilelink'] = build_profile_link($readmessage['tousername'], $readmessage['toid']); $readdate = my_date('relative', $readmessage['readtime']); eval("\$readmessages .= \"".$templates->get("private_tracking_readmessage")."\";");
|
Zeile 1327 | Zeile 1366 |
---|
while($unreadmessage = $db->fetch_array($query)) { $unreadmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($unreadmessage['subject']));
|
while($unreadmessage = $db->fetch_array($query)) { $unreadmessage['subject'] = htmlspecialchars_uni($parser->parse_badwords($unreadmessage['subject']));
|
| $unreadmessage['tousername'] = htmlspecialchars_uni($unreadmessage['tousername']);
|
$unreadmessage['profilelink'] = build_profile_link($unreadmessage['tousername'], $unreadmessage['toid']); $senddate = my_date('relative', $unreadmessage['dateline']); eval("\$unreadmessages .= \"".$templates->get("private_tracking_unreadmessage")."\";");
| $unreadmessage['profilelink'] = build_profile_link($unreadmessage['tousername'], $unreadmessage['toid']); $senddate = my_date('relative', $unreadmessage['dateline']); eval("\$unreadmessages .= \"".$templates->get("private_tracking_unreadmessage")."\";");
|
Zeile 1447 | Zeile 1487 |
---|
$fid = $folderinfo[0]; $foldername = get_pm_folder_name($fid, $foldername);
|
$fid = $folderinfo[0]; $foldername = get_pm_folder_name($fid, $foldername);
|
if($folderinfo[0] == "1" || $folderinfo[0] == "2" || $folderinfo[0] == "3" || $folderinfo[0] == "4")
| if((int)$folderinfo[0] < 5)
|
{ $foldername2 = get_pm_folder_name($fid); eval("\$folderlist .= \"".$templates->get("private_folders_folder_unremovable")."\";");
| { $foldername2 = get_pm_folder_name($fid); eval("\$folderlist .= \"".$templates->get("private_folders_folder_unremovable")."\";");
|
Zeile 1502 | Zeile 1542 |
---|
$fid = (int)$key; // Use default language strings if empty or value is language string
|
$fid = (int)$key; // Use default language strings if empty or value is language string
|
switch($fid)
| if($val == get_pm_folder_name($fid) || trim($val) == '')
|
{
|
{
|
case 1: if($val == $lang->folder_inbox || trim($val) == '') { $val = ''; } break; case 2: if($val == $lang->folder_sent_items || trim($val) == '') { $val = ''; } break; case 3: if($val == $lang->folder_drafts || trim($val) == '') { $val = ''; } break; case 4: if($val == $lang->folder_trash || trim($val) == '') { $val = ''; } break;
| $val = '';
|
} }
|
} }
|
if($val != '' && trim($val) == '' && !($key >= 1 && $key <= 4))
| if($val != '' && trim($val) == '' && !(is_numeric($key) && $key <= 4))
|
{ // If the name only contains whitespace and it's not a default folder, print an error error($lang->error_emptypmfoldername); }
|
{ // If the name only contains whitespace and it's not a default folder, print an error error($lang->error_emptypmfoldername); }
|
if($val != '' || ($key >= 1 && $key <= 4))
| if($val != '' || (is_numeric($key) && $key <= 4))
|
{ // If there is a name or if this is a default folder, save it $foldername = $db->escape_string(htmlspecialchars_uni($val));
| { // If there is a name or if this is a default folder, save it $foldername = $db->escape_string(htmlspecialchars_uni($val));
|
Zeile 1584 | Zeile 1601 |
---|
}
$plugins->run_hooks("private_empty_start");
|
}
$plugins->run_hooks("private_empty_start");
|
|
|
$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
|
$foldersexploded = explode("$%%$", $mybb->user['pmfolders']);
|
$folderlist = '';
| $folderlist = $unread = '';
|
foreach($foldersexploded as $key => $folders) { $folderinfo = explode("**", $folders, 2); $fid = $folderinfo[0];
|
foreach($foldersexploded as $key => $folders) { $folderinfo = explode("**", $folders, 2); $fid = $folderinfo[0];
|
$foldername = get_pm_folder_name($fid, $folderinfo[1]); $query = $db->simple_select("privatemessages", "COUNT(*) AS pmsinfolder", " folder='$fid' AND uid='".$mybb->user['uid']."'");
| if($folderinfo[0] == "1") { $fid = "1"; $unread = " AND status='0'"; } if($folderinfo[0] == "0") { $fid = "1"; } $foldername = get_pm_folder_name($folderinfo[0], $folderinfo[1]); $query = $db->simple_select("privatemessages", "COUNT(*) AS pmsinfolder", " folder='$fid'$unread AND uid='".$mybb->user['uid']."'");
|
$thing = $db->fetch_array($query); $foldercount = my_number_format($thing['pmsinfolder']); eval("\$folderlist .= \"".$templates->get("private_empty_folder")."\";"); }
|
$thing = $db->fetch_array($query); $foldercount = my_number_format($thing['pmsinfolder']); eval("\$folderlist .= \"".$templates->get("private_empty_folder")."\";"); }
|
|
|
$plugins->run_hooks("private_empty_end");
eval("\$folders = \"".$templates->get("private_empty")."\";");
| $plugins->run_hooks("private_empty_end");
eval("\$folders = \"".$templates->get("private_empty")."\";");
|
Zeile 1605 | Zeile 1631 |
---|
}
if($mybb->input['action'] == "do_empty" && $mybb->request_method == "post")
|
}
if($mybb->input['action'] == "do_empty" && $mybb->request_method == "post")
|
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
$plugins->run_hooks("private_do_empty_start");
| { // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
$plugins->run_hooks("private_do_empty_start");
|
$emptyq = ''; $mybb->input['empty'] = $mybb->get_input('empty', MyBB::INPUT_ARRAY); $keepunreadq = '';
| $emptyq = ''; $mybb->input['empty'] = $mybb->get_input('empty', MyBB::INPUT_ARRAY); $keepunreadq = '';
|
Zeile 1621 | Zeile 1647 |
---|
if(!empty($mybb->input['empty'])) { foreach($mybb->input['empty'] as $key => $val)
|
if(!empty($mybb->input['empty'])) { foreach($mybb->input['empty'] as $key => $val)
|
{
| {
|
if($val == 1) { $key = (int)$key;
| if($val == 1) { $key = (int)$key;
|
Zeile 1636 | Zeile 1662 |
---|
if($emptyq != '') { $db->delete_query("privatemessages", "($emptyq) AND uid='".$mybb->user['uid']."'{$keepunreadq}");
|
if($emptyq != '') { $db->delete_query("privatemessages", "($emptyq) AND uid='".$mybb->user['uid']."'{$keepunreadq}");
|
} }
| } }
|
// Update PM count update_pm_count();
| // Update PM count update_pm_count();
|
Zeile 1691 | Zeile 1717 |
---|
foreach($mybb->input['check'] as $key => $val) { if($pmssql)
|
foreach($mybb->input['check'] as $key => $val) { if($pmssql)
|
{
| {
|
$pmssql .= ","; } $pmssql .= "'".(int)$key."'";
| $pmssql .= ","; } $pmssql .= "'".(int)$key."'";
|
Zeile 1746 | Zeile 1772 |
---|
if($db->num_rows($query) == 1) { $db->delete_query("privatemessages", "pmid='".$mybb->get_input('pmid', MyBB::INPUT_INT)."'");
|
if($db->num_rows($query) == 1) { $db->delete_query("privatemessages", "pmid='".$mybb->get_input('pmid', MyBB::INPUT_INT)."'");
|
} else
| } else
|
{ $sql_array = array( "folder" => 4,
| { $sql_array = array( "folder" => 4,
|
Zeile 1801 | Zeile 1827 |
---|
$plugins->run_hooks("private_do_export_start");
|
$plugins->run_hooks("private_do_export_start");
|
$lang->private_messages_for = $lang->sprintf($lang->private_messages_for, $mybb->user['username']);
| $lang->private_messages_for = $lang->sprintf($lang->private_messages_for, htmlspecialchars_uni($mybb->user['username']));
|
$exdate = my_date($mybb->settings['dateformat'], TIME_NOW, 0, 0); $extime = my_date($mybb->settings['timeformat'], TIME_NOW, 0, 0); $lang->exported_date = $lang->sprintf($lang->exported_date, $exdate, $extime);
| $exdate = my_date($mybb->settings['dateformat'], TIME_NOW, 0, 0); $extime = my_date($mybb->settings['timeformat'], TIME_NOW, 0, 0); $lang->exported_date = $lang->sprintf($lang->exported_date, $exdate, $extime);
|
Zeile 1949 | Zeile 1975 |
---|
$message['subject'] = $parser->parse_badwords($message['subject']); if($message['folder'] != "3") {
|
$message['subject'] = $parser->parse_badwords($message['subject']); if($message['folder'] != "3") {
|
$senddate = my_date($mybb->settings['dateformat'], $message['dateline']); $sendtime = my_date($mybb->settings['timeformat'], $message['dateline']);
| $senddate = my_date($mybb->settings['dateformat'], $message['dateline'], "", false); $sendtime = my_date($mybb->settings['timeformat'], $message['dateline'], "", false);
|
$senddate .= " $lang->at $sendtime"; } else
| $senddate .= " $lang->at $sendtime"; } else
|
Zeile 1982 | Zeile 2008 |
---|
if($mybb->input['exporttype'] == "csv") {
|
if($mybb->input['exporttype'] == "csv") {
|
$message['message'] = addslashes($message['message']); $message['subject'] = addslashes($message['subject']); $message['tousername'] = addslashes($message['tousername']); $message['fromusername'] = addslashes($message['fromusername']);
| $message['message'] = my_escape_csv($message['message']); $message['subject'] = my_escape_csv($message['subject']); $message['tousername'] = my_escape_csv($message['tousername']); $message['fromusername'] = my_escape_csv($message['fromusername']);
|
}
if(empty($donefolder[$message['folder']]))
| }
if(empty($donefolder[$message['folder']]))
|
Zeile 2007 | Zeile 2033 |
---|
} else {
|
} else {
|
$foldername = addslashes($folderinfo[1]);
| $foldername = my_escape_csv($folderinfo[1]);
|
} $donefolder[$message['folder']] = 1; }
| } $donefolder[$message['folder']] = 1; }
|
Zeile 2072 | Zeile 2098 |
---|
if(!$mybb->input['fid'] || !array_key_exists($mybb->input['fid'], $foldernames)) {
|
if(!$mybb->input['fid'] || !array_key_exists($mybb->input['fid'], $foldernames)) {
|
$mybb->input['fid'] = 1;
| $mybb->input['fid'] = 0;
|
}
|
}
|
$folder = $mybb->input['fid']; $foldername = $foldernames[$folder];
| $fid = (int)$mybb->input['fid']; $folder = !$fid ? 1 : $fid; $foldername = $foldernames[$fid];
|
if($folder == 2 || $folder == 3) { // Sent Items Folder
| if($folder == 2 || $folder == 3) { // Sent Items Folder
|
Zeile 2127 | Zeile 2154 |
---|
eval("\$orderarrow['$sortby'] = \"".$templates->get("private_orderarrow")."\";");
// Do Multi Pages
|
eval("\$orderarrow['$sortby'] = \"".$templates->get("private_orderarrow")."\";");
// Do Multi Pages
|
$query = $db->simple_select("privatemessages", "COUNT(*) AS total", "uid='".$mybb->user['uid']."' AND folder='$folder'"); $pmscount = $db->fetch_array($query);
| $selective = ""; if($fid == 1) { $selective = " AND status='0'"; }
$query = $db->simple_select("privatemessages", "COUNT(*) AS total", "uid='".$mybb->user['uid']."' AND folder='$folder'$selective"); $pmscount = $db->fetch_field($query, "total");
|
if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
|
if(!$mybb->settings['threadsperpage'] || (int)$mybb->settings['threadsperpage'] < 1)
|
{
| {
|
$mybb->settings['threadsperpage'] = 20; }
|
$mybb->settings['threadsperpage'] = 20; }
|
|
|
$perpage = $mybb->settings['threadsperpage']; $page = $mybb->get_input('page', MyBB::INPUT_INT);
if($page > 0) { $start = ($page-1) *$perpage;
|
$perpage = $mybb->settings['threadsperpage']; $page = $mybb->get_input('page', MyBB::INPUT_INT);
if($page > 0) { $start = ($page-1) *$perpage;
|
| $pages = ceil($pmscount / $perpage); if($page > $pages) { $start = 0; $page = 1; }
|
} else {
| } else {
|
Zeile 2159 | Zeile 2198 |
---|
if($mybb->input['order'] || ($sortby && $sortby != "dateline")) {
|
if($mybb->input['order'] || ($sortby && $sortby != "dateline")) {
|
$page_url = "private.php?fid={$folder}&sortby={$sortby}&order={$mybb->input['order']}";
| $page_url = "private.php?fid={$fid}&sortby={$sortby}&order={$sortordernow}";
|
} else {
|
} else {
|
$page_url = "private.php?fid={$folder}";
| $page_url = "private.php?fid={$fid}";
|
}
|
}
|
$multipage = multipage($pmscount['total'], $perpage, $page, $page_url); $messagelist = '';
| $multipage = multipage($pmscount, $perpage, $page, $page_url); $selective = $messagelist = '';
|
$icon_cache = $cache->read("posticons");
| $icon_cache = $cache->read("posticons");
|
Zeile 2177 | Zeile 2216 |
---|
if($sortfield == "username") { $u = "u.";
|
if($sortfield == "username") { $u = "u.";
|
} else
| } else
|
{ $u = "pm."; }
| { $u = "pm."; }
|
Zeile 2190 | Zeile 2229 |
---|
FROM ".TABLE_PREFIX."privatemessages pm LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=pm.toid) WHERE pm.folder='{$folder}' AND pm.uid='{$mybb->user['uid']}'
|
FROM ".TABLE_PREFIX."privatemessages pm LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=pm.toid) WHERE pm.folder='{$folder}' AND pm.uid='{$mybb->user['uid']}'
|
ORDER BY {$u}{$sortfield} {$mybb->input['order']}
| ORDER BY {$u}{$sortfield} {$sortordernow}
|
LIMIT {$start}, {$perpage} "); while($row = $db->fetch_array($users_query))
| LIMIT {$start}, {$perpage} "); while($row = $db->fetch_array($users_query))
|
Zeile 2202 | Zeile 2241 |
---|
}
if(isset($recipients['bcc']) && is_array($recipients['bcc']) && count($recipients['bcc']))
|
}
if(isset($recipients['bcc']) && is_array($recipients['bcc']) && count($recipients['bcc']))
|
{
| {
|
$get_users = array_merge($get_users, $recipients['bcc']);
|
$get_users = array_merge($get_users, $recipients['bcc']);
|
} }
| } }
|
$get_users = implode(',', array_unique($get_users));
// Grab info if($get_users)
|
$get_users = implode(',', array_unique($get_users));
// Grab info if($get_users)
|
{
| {
|
$users_query = $db->simple_select("users", "uid, username, usergroup, displaygroup", "uid IN ({$get_users})"); while($user = $db->fetch_array($users_query)) {
| $users_query = $db->simple_select("users", "uid, username, usergroup, displaygroup", "uid IN ({$get_users})"); while($user = $db->fetch_array($users_query)) {
|
Zeile 2225 | Zeile 2264 |
---|
if($sortfield == "username") { $pm = "tu.";
|
if($sortfield == "username") { $pm = "tu.";
|
}
| }
|
else
|
else
|
{
| {
|
$pm = "pm.";
|
$pm = "pm.";
|
}
| }
|
} else {
|
} else {
|
| if($fid == 1) { $selective = " AND pm.status='0'"; }
|
if($sortfield == "username") { $pm = "fu.";
| if($sortfield == "username") { $pm = "fu.";
|
Zeile 2248 | Zeile 2292 |
---|
FROM ".TABLE_PREFIX."privatemessages pm LEFT JOIN ".TABLE_PREFIX."users fu ON (fu.uid=pm.fromid) LEFT JOIN ".TABLE_PREFIX."users tu ON (tu.uid=pm.toid)
|
FROM ".TABLE_PREFIX."privatemessages pm LEFT JOIN ".TABLE_PREFIX."users fu ON (fu.uid=pm.fromid) LEFT JOIN ".TABLE_PREFIX."users tu ON (tu.uid=pm.toid)
|
WHERE pm.folder='$folder' AND pm.uid='".$mybb->user['uid']."'
| WHERE pm.folder='$folder' AND pm.uid='".$mybb->user['uid']."'{$selective}
|
ORDER BY {$pm}{$sortfield} {$sortordernow} LIMIT $start, $perpage ");
| ORDER BY {$pm}{$sortfield} {$sortordernow} LIMIT $start, $perpage ");
|
Zeile 2257 | Zeile 2301 |
---|
{ while($message = $db->fetch_array($query)) {
|
{ while($message = $db->fetch_array($query)) {
|
$msgalt = $msgsuffix = $msgprefix = '';
| $msgalt = $msgstatus = '';
|
// Determine Folder Icon if($message['status'] == 0) {
|
// Determine Folder Icon if($message['status'] == 0) {
|
$msgfolder = 'new_pm.png';
| $msgstatus = 'new_pm';
|
$msgalt = $lang->new_pm;
|
$msgalt = $lang->new_pm;
|
$msgprefix = "<strong>"; $msgsuffix = "</strong>";
| |
}
|
}
|
elseif($message['status'] == 1)
| else if($message['status'] == 1)
|
{
|
{
|
$msgfolder = 'old_pm.png';
| $msgstatus = 'old_pm';
|
$msgalt = $lang->old_pm; }
|
$msgalt = $lang->old_pm; }
|
elseif($message['status'] == 3)
| else if($message['status'] == 3)
|
{
|
{
|
$msgfolder = 're_pm.png';
| $msgstatus = 're_pm';
|
$msgalt = $lang->reply_pm; }
|
$msgalt = $lang->reply_pm; }
|
elseif($message['status'] == 4)
| else if($message['status'] == 4)
|
{
|
{
|
$msgfolder = 'fw_pm.png';
| $msgstatus = 'fw_pm';
|
$msgalt = $lang->fwd_pm; }
| $msgalt = $lang->fwd_pm; }
|
Zeile 2287 | Zeile 2330 |
---|
{ // Sent Items or Drafts Folder Check $recipients = my_unserialize($message['recipients']); $to_users = $bcc_users = '';
|
{ // Sent Items or Drafts Folder Check $recipients = my_unserialize($message['recipients']); $to_users = $bcc_users = '';
|
if(count($recipients['to']) > 1 || (count($recipients['to']) == 1 && isset($recipients['bcc']) && count($recipients['bcc']) > 0))
| if(isset($recipients['to']) && count($recipients['to']) > 1 || (isset($recipients['to']) && count($recipients['to']) == 1 && isset($recipients['bcc']) && count($recipients['bcc']) > 0))
|
{ foreach($recipients['to'] as $uid) { $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
{ foreach($recipients['to'] as $uid) { $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
| $user['username'] = htmlspecialchars_uni($user['username']);
|
$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); if(!$user['username']) {
| $username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); if(!$user['username']) {
|
Zeile 2307 | Zeile 2351 |
---|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
{ $profilelink = get_profile_link($uid); $user = $cached_users[$uid];
|
| $user['username'] = htmlspecialchars_uni($user['username']);
|
$username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); if(!$user['username']) {
| $username = format_name($user['username'], $user['usergroup'], $user['displaygroup']); if(!$user['username']) {
|
Zeile 2320 | Zeile 2365 |
---|
} else if($message['toid']) {
|
} else if($message['toid']) {
|
$tofromusername = $message['tousername'];
| $tofromusername = htmlspecialchars_uni($message['tousername']);
|
$tofromuid = $message['toid'];
|
$tofromuid = $message['toid'];
|
}
| }
|
else { $tofromusername = $lang->not_sent;
| else { $tofromusername = $lang->not_sent;
|
Zeile 2330 | Zeile 2375 |
---|
} else {
|
} else {
|
$tofromusername = $message['fromusername'];
| $tofromusername = htmlspecialchars_uni($message['fromusername']);
|
$tofromuid = $message['fromid']; if($tofromuid == 0) {
| $tofromuid = $message['fromid']; if($tofromuid == 0) {
|
Zeile 2394 | Zeile 2439 |
---|
}
$pmspacebar = '';
|
}
$pmspacebar = '';
|
if($mybb->usergroup['pmquota'] != '0' && $mybb->usergroup['cancp'] != 1)
| if($mybb->usergroup['pmquota'] != 0)
|
{ $query = $db->simple_select("privatemessages", "COUNT(*) AS total", "uid='".$mybb->user['uid']."'"); $pmscount = $db->fetch_array($query);
| { $query = $db->simple_select("privatemessages", "COUNT(*) AS total", "uid='".$mybb->user['uid']."'"); $pmscount = $db->fetch_array($query);
|
Zeile 2458 | Zeile 2503 |
---|
}
$limitwarning = '';
|
}
$limitwarning = '';
|
if($mybb->usergroup['pmquota'] != "0" && $pmscount['total'] >= $mybb->usergroup['pmquota'] && $mybb->usergroup['cancp'] != 1)
| if($mybb->usergroup['pmquota'] != 0 && $pmscount['total'] >= $mybb->usergroup['pmquota'])
|
{ eval("\$limitwarning = \"".$templates->get("private_limitwarning")."\";"); }
| { eval("\$limitwarning = \"".$templates->get("private_limitwarning")."\";"); }
|