Zeile 229 | Zeile 229 |
---|
// Deleting specific attachments from uploads directory if(is_array($mybb->input['orphaned_files'])) {
|
// Deleting specific attachments from uploads directory if(is_array($mybb->input['orphaned_files'])) {
|
/** * @param string $string * * @return string */ function clean_filename($string) { return str_replace(array(".."), "", $string); } $mybb->input['orphaned_files'] = array_map("clean_filename", $mybb->input['orphaned_files']);
| |
foreach($mybb->input['orphaned_files'] as $file) {
|
foreach($mybb->input['orphaned_files'] as $file) {
|
| $file = str_replace('..', '', $file); $path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file; $real_path = realpath($path);
if($real_path === false || strpos(str_replace('\\', '/', $real_path), str_replace('\\', '/', realpath(MYBB_ROOT)).'/') !== 0 || $real_path == realpath(MYBB_ROOT.'install/lock')) { $error_count++; continue; }
|
if(!@unlink(MYBB_ROOT.$mybb->settings['uploadspath']."/".$file)) { $error_count++;
| if(!@unlink(MYBB_ROOT.$mybb->settings['uploadspath']."/".$file)) { $error_count++;
|
Zeile 364 | Zeile 364 |
---|
$form = new Form("index.php?module=forum-attachments&action=delete_orphans", "post");
$table = new Table;
|
$form = new Form("index.php?module=forum-attachments&action=delete_orphans", "post");
$table = new Table;
|
$table->construct_header($form->generate_check_box('checkall', '1', '', array('class' => 'checkall')), array( 'width' => 1));
| $table->construct_header($form->generate_check_box('allbox', '1', '', array('class' => 'checkall')), array( 'width' => 1));
|
$table->construct_header($lang->size_attachments, array('colspan' => 2)); $table->construct_header($lang->reason_orphaned, array('width' => '20%', 'class' => 'align_center')); $table->construct_header($lang->date_uploaded, array("class" => "align_center"));
| $table->construct_header($lang->size_attachments, array('colspan' => 2)); $table->construct_header($lang->reason_orphaned, array('width' => '20%', 'class' => 'align_center')); $table->construct_header($lang->date_uploaded, array("class" => "align_center"));
|
Zeile 374 | Zeile 374 |
---|
foreach($bad_attachments as $file) { $file_path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file;
|
foreach($bad_attachments as $file) { $file_path = MYBB_ROOT.$mybb->settings['uploadspath']."/".$file;
|
$filesize = get_friendly_size(filesize($file_path)); $table->construct_cell($form->generate_check_box('orphaned_files[]', $file, '', array('checked' => true))); $table->construct_cell(get_attachment_icon(get_extension($attachment['filename'])), array('width' => 1)); $table->construct_cell("<span class=\"float_right\">{$filesize}</span>{$file}"); $table->construct_cell($lang->reason_not_in_table, array('class' => 'align_center')); $table->construct_cell(my_date('relative', filemtime($file_path)), array('class' => 'align_center')); $table->construct_row();
| if(file_exists($file_path)) { $filename = htmlspecialchars_uni($file); $filesize = get_friendly_size(filesize($file_path)); $table->construct_cell($form->generate_check_box('orphaned_files[]', $file, '', array('checked' => true))); $table->construct_cell(get_attachment_icon(get_extension($attachment['filename'])), array('width' => 1)); $table->construct_cell("<span class=\"float_right\">{$filesize}</span>{$filename}"); $table->construct_cell($lang->reason_not_in_table, array('class' => 'align_center')); $table->construct_cell(my_date('relative', filemtime($file_path)), array('class' => 'align_center')); $table->construct_row(); }
|
} }
if(count($aids) > 0) { $query = $db->simple_select("attachments", "*", "aid IN (".implode(",", $aids).")");
|
} }
if(count($aids) > 0) { $query = $db->simple_select("attachments", "*", "aid IN (".implode(",", $aids).")");
|
while($attachment = $db->fetch_array($query))
| while($attachment = $db->fetch_array($query))
|
{ $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
| { $attachment['filename'] = htmlspecialchars_uni($attachment['filename']);
|
Zeile 461 | Zeile 466 |
---|
} // Check if the thread/post for this attachment is missing else if(!$attachment['pid'] && $attachment['attachment_pid'])
|
} // Check if the thread/post for this attachment is missing else if(!$attachment['pid'] && $attachment['attachment_pid'])
|
{
| {
|
$missing_threads[$attachment['aid']] = $attachment['aid']; } // Check if the attachment was uploaded > 24 hours ago but not assigned to a thread
| $missing_threads[$attachment['aid']] = $attachment['aid']; } // Check if the attachment was uploaded > 24 hours ago but not assigned to a thread
|
Zeile 489 | Zeile 494 |
---|
echo $form->generate_hidden_field("missing_threads", $missing_threads); } if(is_array($incomplete_attachments) && count($incomplete_attachments) > 0)
|
echo $form->generate_hidden_field("missing_threads", $missing_threads); } if(is_array($incomplete_attachments) && count($incomplete_attachments) > 0)
|
{
| {
|
$incomplete_attachments = my_serialize($incomplete_attachments); echo $form->generate_hidden_field("incomplete_attachments", $incomplete_attachments); }
| $incomplete_attachments = my_serialize($incomplete_attachments); echo $form->generate_hidden_field("incomplete_attachments", $incomplete_attachments); }
|
Zeile 497 | Zeile 502 |
---|
echo "<script type=\"text/javascript\">$(function() { window.setTimeout( function() {
|
echo "<script type=\"text/javascript\">$(function() { window.setTimeout( function() {
|
$(\"#redirect_form\").submit();
| $(\"#redirect_form\").trigger('submit');
|
}, 100 ); });</script>";
| }, 100 ); });</script>";
|
Zeile 535 | Zeile 540 |
---|
if(is_dir($real_dir.'/'.$file)) { scan_attachments_directory($false_dir.$file);
|
if(is_dir($real_dir.'/'.$file)) { scan_attachments_directory($false_dir.$file);
|
}
| }
|
else if(my_substr($file, -7, 7) == ".attach") { $attachments_to_check["$false_dir$file"] = $false_dir.$file;
| else if(my_substr($file, -7, 7) == ".attach") { $attachments_to_check["$false_dir$file"] = $false_dir.$file;
|
Zeile 554 | Zeile 559 |
---|
if(count($attachments_to_check) > 0) { if($bad_attachments)
|
if(count($attachments_to_check) > 0) { if($bad_attachments)
|
{
| {
|
$bad_attachments = @array_merge($bad_attachments, $attachments_to_check);
|
$bad_attachments = @array_merge($bad_attachments, $attachments_to_check);
|
}
| }
|
else { $bad_attachments = $attachments_to_check; } } $attachments_to_check = array();
|
else { $bad_attachments = $attachments_to_check; } } $attachments_to_check = array();
|
}
| }
|
} } closedir($dh);
| } } closedir($dh);
|
Zeile 608 | Zeile 613 |
---|
scan_attachments_directory(); global $bad_attachments;
|
scan_attachments_directory(); global $bad_attachments;
|
|
|
$form = new Form("index.php?module=forum-attachments&action=orphans&step=2", "post", "redirect_form", 0, ""); // Scan complete if(is_array($bad_attachments) && count($bad_attachments) > 0)
| $form = new Form("index.php?module=forum-attachments&action=orphans&step=2", "post", "redirect_form", 0, ""); // Scan complete if(is_array($bad_attachments) && count($bad_attachments) > 0)
|
Zeile 620 | Zeile 625 |
---|
echo "<script type=\"text/javascript\">$(function() { window.setTimeout( function() {
|
echo "<script type=\"text/javascript\">$(function() { window.setTimeout( function() {
|
$(\"#redirect_form\").submit();
| $(\"#redirect_form\").trigger('submit');
|
}, 100 ); });</script>"; exit; } }
|
}, 100 ); });</script>"; exit; } }
|
|
|
if(!$mybb->input['action']) { $plugins->run_hooks("admin_forum_attachments_start");
| if(!$mybb->input['action']) { $plugins->run_hooks("admin_forum_attachments_start");
|
Zeile 649 | Zeile 654 |
---|
}
$errors = array();
|
}
$errors = array();
|
| // Normal users only if($mybb->get_input('user_types', MyBB::INPUT_INT) == 1) { $user_types = 1; } // Guests only elseif($mybb->get_input('user_types', MyBB::INPUT_INT) == -1) { $user_types = -1; $search_sql .= " AND a.uid='0'"; } // Users & Guests else { $user_types = 0; }
|
// Username matching if($mybb->input['username'])
| // Username matching if($mybb->input['username'])
|
Zeile 657 | Zeile 679 |
---|
if(!$user['uid']) {
|
if(!$user['uid']) {
|
$errors[] = $lang->error_invalid_username;
| if($user_types == 1) { $errors[] = $lang->error_invalid_username; } else { // Don't error if we are searching for guests or users & guests $search_sql .= " AND p.username LIKE '%".$db->escape_string_like($mybb->input['username'])."%'"; }
|
} else {
| } else {
|
Zeile 799 | Zeile 830 |
---|
$form = new Form("index.php?module=forum-attachments&action=delete", "post");
$table = new Table;
|
$form = new Form("index.php?module=forum-attachments&action=delete", "post");
$table = new Table;
|
$table->construct_header($form->generate_check_box('checkall', '1', '', array('class' => 'checkall')), array( 'width' => 1));
| $table->construct_header($form->generate_check_box('allbox', '1', '', array('class' => 'checkall')), array( 'width' => 1));
|
$table->construct_header($lang->attachments, array('colspan' => 2)); $table->construct_header($lang->size, array('width' => '10%', 'class' => 'align_center')); $table->construct_header($lang->posted_by, array('width' => '20%', 'class' => 'align_center'));
| $table->construct_header($lang->attachments, array('colspan' => 2)); $table->construct_header($lang->size, array('width' => '10%', 'class' => 'align_center')); $table->construct_header($lang->posted_by, array('width' => '20%', 'class' => 'align_center'));
|
Zeile 827 | Zeile 858 |
---|
if($num_results > $mybb->input['perpage']) { $pagination_url = "index.php?module=forum-attachments&results=1";
|
if($num_results > $mybb->input['perpage']) { $pagination_url = "index.php?module=forum-attachments&results=1";
|
$pagination_vars = array('perpage', 'sortby', 'order', 'filename', 'mimetype', 'username', 'fid', 'downloads', 'downloads_dir', 'dateuploaded', 'dateuploaded_dir', 'filesize', 'filesize_dir');
| $pagination_vars = array('perpage', 'sortby', 'order', 'filename', 'mimetype', 'username', 'downloads', 'downloads_dir', 'dateuploaded', 'dateuploaded_dir', 'filesize', 'filesize_dir');
|
foreach($pagination_vars as $var) { if($mybb->input[$var]) { $pagination_url .= "&{$var}=".urlencode($mybb->input[$var]);
|
foreach($pagination_vars as $var) { if($mybb->input[$var]) { $pagination_url .= "&{$var}=".urlencode($mybb->input[$var]);
|
| } } if(is_array($mybb->input['forum']) && !empty($mybb->input['forum'])) { foreach($mybb->input['forum'] as $fid) { $pagination_url .= "&forum[]=".(int)$fid;
|
} } $pagination = draw_admin_pagination($mybb->input['page'], $mybb->input['perpage'], $num_results, $pagination_url);
| } } $pagination = draw_admin_pagination($mybb->input['page'], $mybb->input['perpage'], $num_results, $pagination_url);
|
Zeile 868 | Zeile 906 |
---|
$form_container->output_row($lang->type_contains, "", $form->generate_text_box('mimetype', $mybb->input['mimetype'], array('id' => 'mimetype')), 'mimetype'); $form_container->output_row($lang->forum_is, "", $form->generate_forum_select('forum[]', $mybb->input['forum'], array('multiple' => true, 'size' => 5, 'id' => 'forum')), 'forum'); $form_container->output_row($lang->username_is, "", $form->generate_text_box('username', htmlspecialchars_uni($mybb->get_input('username')), array('id' => 'username')), 'username');
|
$form_container->output_row($lang->type_contains, "", $form->generate_text_box('mimetype', $mybb->input['mimetype'], array('id' => 'mimetype')), 'mimetype'); $form_container->output_row($lang->forum_is, "", $form->generate_forum_select('forum[]', $mybb->input['forum'], array('multiple' => true, 'size' => 5, 'id' => 'forum')), 'forum'); $form_container->output_row($lang->username_is, "", $form->generate_text_box('username', htmlspecialchars_uni($mybb->get_input('username')), array('id' => 'username')), 'username');
|
| $form_container->output_row($lang->poster_is, "", $form->generate_select_box('user_types', array('0' => $lang->poster_is_either, '1' => $lang->poster_is_user, '-1' => $lang->poster_is_guest), $mybb->get_input('user_types', MyBB::INPUT_INT), array('id' => 'guests')), 'user_types');
|
$more_options = array( "less_than" => $lang->more_than,
| $more_options = array( "less_than" => $lang->more_than,
|