| Zeile 229 | Zeile 229 |
|---|
// Deleting specific attachments from uploads directory
if(is_array($mybb->input['orphaned_files']))
{
|
// Deleting specific attachments from uploads directory
if(is_array($mybb->input['orphaned_files']))
{
|
/**
* @param string $string
*
* @return string
*/
function clean_filename($string)
{
return str_replace(array(".."), "", $string);
}
$mybb->input['orphaned_files'] = array_map("clean_filename", $mybb->input['orphaned_files']);
| |
foreach($mybb->input['orphaned_files'] as $file)
{
|
foreach($mybb->input['orphaned_files'] as $file)
{
|
| | $file = str_replace('..', '', $file);
$path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file;
$real_path = realpath($path);
if($real_path === false || strpos(str_replace('\\', '/', $real_path), str_replace('\\', '/', realpath(MYBB_ROOT)).'/') !== 0 || $real_path == realpath(MYBB_ROOT.'install/lock'))
{
$error_count++;
continue;
}
|
if(!@unlink(MYBB_ROOT.$mybb->settings['uploadspath']."/".$file))
{
$error_count++;
| if(!@unlink(MYBB_ROOT.$mybb->settings['uploadspath']."/".$file))
{
$error_count++;
|
| Zeile 337 | Zeile 337 |
|---|
{
$missing_threads = my_unserialize($mybb->input['missing_threads']);
$aids = array_merge($aids, $missing_threads);
|
{
$missing_threads = my_unserialize($mybb->input['missing_threads']);
$aids = array_merge($aids, $missing_threads);
|
}
| }
|
if($mybb->input['incomplete_attachments'])
{
$incomplete_attachments = my_unserialize($mybb->input['incomplete_attachments']);
| if($mybb->input['incomplete_attachments'])
{
$incomplete_attachments = my_unserialize($mybb->input['incomplete_attachments']);
|
| Zeile 348 | Zeile 348 |
|---|
foreach($aids as $key => $aid)
{
$aids[$key] = (int)$aid;
|
foreach($aids as $key => $aid)
{
$aids[$key] = (int)$aid;
|
}
$results += count($aids);
| }
$results += count($aids);
|
if($results == 0)
{
flash_message($lang->success_no_orphans, 'success');
| if($results == 0)
{
flash_message($lang->success_no_orphans, 'success');
|
| Zeile 364 | Zeile 364 |
|---|
$form = new Form("index.php?module=forum-attachments&action=delete_orphans", "post");
$table = new Table;
|
$form = new Form("index.php?module=forum-attachments&action=delete_orphans", "post");
$table = new Table;
|
$table->construct_header($form->generate_check_box('checkall', '1', '', array('class' => 'checkall')), array( 'width' => 1));
| $table->construct_header($form->generate_check_box('allbox', '1', '', array('class' => 'checkall')), array( 'width' => 1));
|
$table->construct_header($lang->size_attachments, array('colspan' => 2));
$table->construct_header($lang->reason_orphaned, array('width' => '20%', 'class' => 'align_center'));
$table->construct_header($lang->date_uploaded, array("class" => "align_center"));
| $table->construct_header($lang->size_attachments, array('colspan' => 2));
$table->construct_header($lang->reason_orphaned, array('width' => '20%', 'class' => 'align_center'));
$table->construct_header($lang->date_uploaded, array("class" => "align_center"));
|
| Zeile 372 | Zeile 372 |
|---|
if(is_array($bad_attachments))
{
foreach($bad_attachments as $file)
|
if(is_array($bad_attachments))
{
foreach($bad_attachments as $file)
|
{
| {
|
$file_path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file;
|
$file_path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file;
|
$filesize = get_friendly_size(filesize($file_path));
$table->construct_cell($form->generate_check_box('orphaned_files[]', $file, '', array('checked' => true)));
$table->construct_cell(get_attachment_icon(get_extension($attachment['filename'])), array('width' => 1));
$table->construct_cell("<span class=\"float_right\">{$filesize}</span>{$file}");
$table->construct_cell($lang->reason_not_in_table, array('class' => 'align_center'));
$table->construct_cell(my_date('relative', filemtime($file_path)), array('class' => 'align_center'));
$table->construct_row();
|
if(file_exists($file_path))
{
$filename = htmlspecialchars_uni($file);
$filesize = get_friendly_size(filesize($file_path));
$table->construct_cell($form->generate_check_box('orphaned_files[]', $file, '', array('checked' => true)));
$table->construct_cell(get_attachment_icon(get_extension($attachment['filename'])), array('width' => 1));
$table->construct_cell("<span class=\"float_right\">{$filesize}</span>{$filename}");
$table->construct_cell($lang->reason_not_in_table, array('class' => 'align_center'));
$table->construct_cell(my_date('relative', filemtime($file_path)), array('class' => 'align_center'));
$table->construct_row();
}
|
}
}
|
}
}
|
|
|
if(count($aids) > 0)
{
$query = $db->simple_select("attachments", "*", "aid IN (".implode(",", $aids).")");
| if(count($aids) > 0)
{
$query = $db->simple_select("attachments", "*", "aid IN (".implode(",", $aids).")");
|
| Zeile 396 | Zeile 401 |
|---|
$reason = $lang->reason_file_missing;
}
else if($missing_threads[$attachment['aid']])
|
$reason = $lang->reason_file_missing;
}
else if($missing_threads[$attachment['aid']])
|
{
| {
|
$reason = $lang->reason_thread_deleted;
}
else if($incomplete_attachments[$attachment['aid']])
| $reason = $lang->reason_thread_deleted;
}
else if($incomplete_attachments[$attachment['aid']])
|
| Zeile 492 | Zeile 497 |
|---|
{
$incomplete_attachments = my_serialize($incomplete_attachments);
echo $form->generate_hidden_field("incomplete_attachments", $incomplete_attachments);
|
{
$incomplete_attachments = my_serialize($incomplete_attachments);
echo $form->generate_hidden_field("incomplete_attachments", $incomplete_attachments);
|
}
$form->end();
echo "<script type=\"text/javascript\">$(function() {
window.setTimeout(
function() {
$(\"#redirect_form\").submit();
}, 100
);
});</script>";
| }
$form->end();
echo "<script type=\"text/javascript\">$(function() {
window.setTimeout(
function() {
$(\"#redirect_form\").trigger('submit');
}, 100
);
});</script>";
|
exit;
}
// Running first step, scan the file system
| exit;
}
// Running first step, scan the file system
|
| Zeile 620 | Zeile 625 |
|---|
echo "<script type=\"text/javascript\">$(function() {
window.setTimeout(
function() {
|
echo "<script type=\"text/javascript\">$(function() {
window.setTimeout(
function() {
|
$(\"#redirect_form\").submit();
| $(\"#redirect_form\").trigger('submit');
|
}, 100
);
});</script>";
| }, 100
);
});</script>";
|
| Zeile 649 | Zeile 654 |
|---|
}
$errors = array();
|
}
$errors = array();
|
| |
// Normal users only
if($mybb->get_input('user_types', MyBB::INPUT_INT) == 1)
{
$user_types = 1;
}
// Guests only
elseif($mybb->get_input('user_types', MyBB::INPUT_INT) == -1)
{
$user_types = -1;
$search_sql .= " AND a.uid='0'";
}
// Users & Guests
else
{
$user_types = 0;
}
|
// Username matching
if($mybb->input['username'])
{
$user = get_user_by_username($mybb->input['username']);
|
// Username matching
if($mybb->input['username'])
{
$user = get_user_by_username($mybb->input['username']);
|
|
|
if(!$user['uid'])
{
|
if(!$user['uid'])
{
|
$errors[] = $lang->error_invalid_username;
| if($user_types == 1)
{
$errors[] = $lang->error_invalid_username;
}
else
{
// Don't error if we are searching for guests or users & guests
$search_sql .= " AND p.username LIKE '%".$db->escape_string_like($mybb->input['username'])."%'";
}
|
}
else
{
| }
else
{
|
| Zeile 799 | Zeile 830 |
|---|
$form = new Form("index.php?module=forum-attachments&action=delete", "post");
$table = new Table;
|
$form = new Form("index.php?module=forum-attachments&action=delete", "post");
$table = new Table;
|
$table->construct_header($form->generate_check_box('checkall', '1', '', array('class' => 'checkall')), array( 'width' => 1));
| $table->construct_header($form->generate_check_box('allbox', '1', '', array('class' => 'checkall')), array( 'width' => 1));
|
$table->construct_header($lang->attachments, array('colspan' => 2));
$table->construct_header($lang->size, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->posted_by, array('width' => '20%', 'class' => 'align_center'));
| $table->construct_header($lang->attachments, array('colspan' => 2));
$table->construct_header($lang->size, array('width' => '10%', 'class' => 'align_center'));
$table->construct_header($lang->posted_by, array('width' => '20%', 'class' => 'align_center'));
|
| Zeile 868 | Zeile 899 |
|---|
$form_container->output_row($lang->type_contains, "", $form->generate_text_box('mimetype', $mybb->input['mimetype'], array('id' => 'mimetype')), 'mimetype');
$form_container->output_row($lang->forum_is, "", $form->generate_forum_select('forum[]', $mybb->input['forum'], array('multiple' => true, 'size' => 5, 'id' => 'forum')), 'forum');
$form_container->output_row($lang->username_is, "", $form->generate_text_box('username', htmlspecialchars_uni($mybb->get_input('username')), array('id' => 'username')), 'username');
|
$form_container->output_row($lang->type_contains, "", $form->generate_text_box('mimetype', $mybb->input['mimetype'], array('id' => 'mimetype')), 'mimetype');
$form_container->output_row($lang->forum_is, "", $form->generate_forum_select('forum[]', $mybb->input['forum'], array('multiple' => true, 'size' => 5, 'id' => 'forum')), 'forum');
$form_container->output_row($lang->username_is, "", $form->generate_text_box('username', htmlspecialchars_uni($mybb->get_input('username')), array('id' => 'username')), 'username');
|
| | $form_container->output_row($lang->poster_is, "", $form->generate_select_box('user_types', array('0' => $lang->poster_is_either, '1' => $lang->poster_is_user, '-1' => $lang->poster_is_guest), $mybb->get_input('user_types', MyBB::INPUT_INT), array('id' => 'guests')), 'user_types');
|
$more_options = array(
"less_than" => $lang->more_than,
|
$more_options = array(
"less_than" => $lang->more_than,
|