Vergleich inc/class_parser.php - 1.8.5 - 1.8.33

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 13Zeile 13
	allow_html
allow_smilies
allow_mycode

	allow_html
allow_smilies
allow_mycode

 
	allow_auto_url

	nl2br
filter_badwords
me_username

	nl2br
filter_badwords
me_username

Zeile 87Zeile 88
	 * @var int
*/
public $list_count;

	 * @var int
*/
public $list_count;

 

/**
* Whether or not should a <br /> with clear: both be added at the end of the parsed message
*
* @access public
* @var boolean
*/
public $clear_needed = false;

/**
* Don't validate parser output
*/
const VALIDATION_DISABLE = 0;

/**
* Validate parser output and log errors
*/
const VALIDATION_REPORT_ONLY = 1;

/**
* Validate parser output, log errors, and block output on failure
*/
const VALIDATION_REQUIRE = 2;

/**
* Whether to validate the parser's HTML output when `allow_html` is disabled.
* Validation errors will be logged/sent/displayed according to board settings.
*
* @access public
* @var self::VALIDATION_*
*/
public $output_validation_policy = self::VALIDATION_REQUIRE;


/**
* Parses a message with the specified options.
*


/**
* Parses a message with the specified options.
*

	 * @param string The message to be parsed.
* @param array Array of yes/no options - allow_html,filter_badwords,allow_mycode,allow_smilies,nl2br,me_username,filter_cdata.

	 * @param string $message The message to be parsed.
* @param array $options Array of yes/no options

	 * @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;

	 * @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;








$original_message = $message;

$this->clear_needed = false;


		// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];

		// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];





		if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")

		if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")

Zeile 111Zeile 148
		}

// Set the options

		}

// Set the options

		$this->options = $options;


		$this->options = $options;


		$message = $plugins->run_hooks("parse_message_start", $message);


		$message = $plugins->run_hooks("parse_message_start", $message);


		// Get rid of cartridge returns for they are the workings of the devil

		// Get rid of carriage returns for they are the workings of the devil

		$message = str_replace("\r", "", $message);

// Filter bad words if requested.
if(!empty($this->options['filter_badwords']))
{
$message = $this->parse_badwords($message);

		$message = str_replace("\r", "", $message);

// Filter bad words if requested.
if(!empty($this->options['filter_badwords']))
{
$message = $this->parse_badwords($message);

		}

		}


// Filter CDATA tags if requested (syndication.php).
if(!empty($this->options['filter_cdata']))
{
$message = $this->parse_cdata($message);


// Filter CDATA tags if requested (syndication.php).
if(!empty($this->options['filter_cdata']))
{
$message = $this->parse_cdata($message);

 
		}

// If MyCode needs to be replaced, first filter out [code] and [php] tags.
$code_matches = array();
if(!empty($this->options['allow_mycode']) && $mybb->settings['allowcodemycode'] == 1)
{
// This code is reserved and could break codes
$message = str_replace("<mybb-code>\n", "<mybb_code>\n", $message);

preg_match_all("#\[(code|php)\](.*?)(\[/\\1\])+(\r\n?|\n?)#si", $message, $code_matches, PREG_SET_ORDER);
foreach($code_matches as $point => $part)
{
if(isset($part[3]))
{
$part[1] = "[".$part[1]."]";
$code_matches[$point][2] = substr_replace($part[0], "", strrpos($part[0], $part[3]), strlen($part[3]));
$code_matches[$point][2] = substr_replace($code_matches[$point][2], "", strpos($code_matches[$point][2], $part[1]), strlen($part[1]));
}
}
$message = preg_replace("#\[(code|php)\](.*?)(\[/\\1\])+(\r\n?|\n?)#si", "<mybb-code>\n", $message);

		}

if(empty($this->options['allow_html']))
{
$message = $this->parse_html($message);

		}

if(empty($this->options['allow_html']))
{
$message = $this->parse_html($message);

		}
else
{
while(preg_match("#<s(cript|tyle)(.*)>(.*)</s(cript|tyle)(.*)>#is", $message))
{
$message = preg_replace("#<s(cript|tyle)(.*)>(.*)</s(cript|tyle)(.*)>#is", "&lt;s$1$2&gt;$3&lt;/s$4$5&gt;", $message);
}

			$message = str_replace("&lt;mybb-code&gt;\n", "<mybb-code>\n", $message);
}
else
{
// Replace base, meta,script and style tags in our post - these are > dangerous <
$message = preg_replace('#<(/?)(base|meta|script|style)([^>]*)>#i', '&lt;$1$2$3&gt;', $message);
$message = $this->fix_javascript($message);





			$find = array('<?php', '<!--', '-->', '?>', "<br />\n", "<br>\n");
$replace = array('&lt;?php', '&lt;!--', '--&gt;', '?&gt;', "\n", "\n");

			$find = array("<br />\n", "<br>\n");
$replace = array("\n", "\n");

			$message = str_replace($find, $replace, $message);

			$message = str_replace($find, $replace, $message);

		}

// If MyCode needs to be replaced, first filter out [code] and [php] tags.
if(!empty($this->options['allow_mycode']) && $mybb->settings['allowcodemycode'] == 1)
{
preg_match_all("#\[(code|php)\](.*?)\[/\\1\](\r\n?|\n?)#si", $message, $code_matches, PREG_SET_ORDER);
$message = preg_replace("#\[(code|php)\](.*?)\[/\\1\](\r\n?|\n?)#si", "<mybb-code>\n", $message);
}

// Always fix bad Javascript in the message.
$message = $this->fix_javascript($message);

		}

$message = $plugins->run_hooks("parse_message_htmlsanitized", $message);










// Replace "me" code and slaps if we have a username
if(!empty($this->options['me_username']) && $mybb->settings['allowmemycode'] == 1)
{
global $lang;



// Replace "me" code and slaps if we have a username
if(!empty($this->options['me_username']) && $mybb->settings['allowmemycode'] == 1)
{
global $lang;


			$message = preg_replace('#(>|^|\r|\n)/me ([^\r\n<]*)#i', "\\1<span style=\"color: red;\">* {$this->options['me_username']} \\2</span>", $message);
$message = preg_replace('#(>|^|\r|\n)/slap ([^\r\n<]*)#i', "\\1<span style=\"color: red;\">* {$this->options['me_username']} {$lang->slaps} \\2 {$lang->with_trout}</span>", $message);

			$message = preg_replace('#(>|^|\r|\n)/me ([^\r\n<]*)#i', "\\1<span style=\"color: red;\" class=\"mycode_me\">* {$this->options['me_username']} \\2</span>", $message);
$message = preg_replace('#(>|^|\r|\n)/slap ([^\r\n<]*)#i', "\\1<span style=\"color: red;\" class=\"mycode_slap\">* {$this->options['me_username']} {$lang->slaps} \\2 {$lang->with_trout}</span>", $message);

		}

		}

 

$message = $plugins->run_hooks("parse_message_me_mycode", $message);


// If we can, parse smilies
if(!empty($this->options['allow_smilies']))


// If we can, parse smilies
if(!empty($this->options['allow_smilies']))

		{

		{

			$message = $this->parse_smilies($message, $this->options['allow_html']);

			$message = $this->parse_smilies($message, $this->options['allow_html']);

		}


		}


		// Replace MyCode if requested.
if(!empty($this->options['allow_mycode']))

		// Replace MyCode if requested.
if(!empty($this->options['allow_mycode']))

		{

		{

			$message = $this->parse_mycode($message);

			$message = $this->parse_mycode($message);

 
		}

// Filter url codes, if disabled.
if($mybb->settings['allowlinkmycode'] != 1)
{
$message = preg_replace("#\[(\/)?url{1}(.*?)\]#i", "", $message);

		}

// Parse Highlights

		}

// Parse Highlights

Zeile 193Zeile 250
			{
foreach($code_matches as $text)
{

			{
foreach($code_matches as $text)
{

					// Fix up HTML inside the code tags so it is clean
if(!empty($this->options['allow_html']))
{

					if(my_strtolower($text[1]) == "code")
{
// Fix up HTML inside the code tags so it is clean

						$text[2] = $this->parse_html($text[2]);

						$text[2] = $this->parse_html($text[2]);

					}

if(my_strtolower($text[1]) == "code")
{






						$code = $this->mycode_parse_code($text[2]);
}
elseif(my_strtolower($text[1]) == "php")

						$code = $this->mycode_parse_code($text[2]);
}
elseif(my_strtolower($text[1]) == "php")

Zeile 210Zeile 264
					$message = preg_replace("#\<mybb-code>\n?#", $code, $message, 1);
}
}

					$message = preg_replace("#\<mybb-code>\n?#", $code, $message, 1);
}
}

		}

// Replace meta and base tags in our post - these are > dangerous <
if(!empty($this->options['allow_html']))
{
$message = preg_replace_callback("#<((m[^a])|(b[^diloru>])|(s[^aemptu>]))(\s*[^>]*)>#si", create_function(
'$matches',
'return htmlspecialchars_uni($matches[0]);'
), $message);

 
		}

if(!isset($this->options['nl2br']) || $this->options['nl2br'] != 0)

		}

if(!isset($this->options['nl2br']) || $this->options['nl2br'] != 0)

Zeile 229Zeile 274
			$message = preg_replace("#(&nbsp;)+(</?(?:html|head|body|div|p|form|table|thead|tbody|tfoot|tr|td|th|ul|ol|li|div|p|blockquote|cite|hr)[^>]*>)#i", "$2", $message);
}


			$message = preg_replace("#(&nbsp;)+(</?(?:html|head|body|div|p|form|table|thead|tbody|tfoot|tr|td|th|ul|ol|li|div|p|blockquote|cite|hr)[^>]*>)#i", "$2", $message);
}


		$message = $plugins->run_hooks("parse_message_end", $message);




		if($this->clear_needed)
{
$message .= '<br class="clear" />';
}





		return $message;










		$message = $plugins->run_hooks("parse_message_end", $message);

if ($this->output_allowed($original_message, $message) === true)
{
return $message;
}
else
{
return '';
}

	}

/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.
*

	}

/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.
*

	 * @param string The message to be parsed.

	 * @param string $message The message to be parsed.

	 * @return string The formatted message.
*/
function parse_html($message)

	 * @return string The formatted message.
*/
function parse_html($message)

Zeile 258Zeile 315
		global $cache, $lang, $mybb;
$this->mycode_cache = array();


		global $cache, $lang, $mybb;
$this->mycode_cache = array();


		$standard_mycode = $callback_mycode = $nestable_mycode = array();
$standard_count = $callback_count = $nestable_count = 0;

		$standard_mycode = $callback_mycode = $nestable_mycode = $nestable_callback_mycode = array();
$standard_count = $callback_count = $nestable_count = $nestable_callback_count = 0;


if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";


if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";

			$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\">$1</span>";


			$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\" class=\"mycode_b\">$1</span>";


			$standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";

			$standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";

			$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\">$1</span>";

			$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\" class=\"mycode_u\">$1</span>";


$standard_mycode['i']['regex'] = "#\[i\](.*?)\[/i\]#si";


$standard_mycode['i']['regex'] = "#\[i\](.*?)\[/i\]#si";

			$standard_mycode['i']['replacement'] = "<span style=\"font-style: italic;\">$1</span>";

			$standard_mycode['i']['replacement'] = "<span style=\"font-style: italic;\" class=\"mycode_i\">$1</span>";


$standard_mycode['s']['regex'] = "#\[s\](.*?)\[/s\]#si";


$standard_mycode['s']['regex'] = "#\[s\](.*?)\[/s\]#si";

			$standard_mycode['s']['replacement'] = "<del>$1</del>";


			$standard_mycode['s']['replacement'] = "<span style=\"text-decoration: line-through;\" class=\"mycode_s\">$1</span>";


			$standard_mycode['hr']['regex'] = "#\[hr\]#si";

			$standard_mycode['hr']['regex'] = "#\[hr\]#si";

			$standard_mycode['hr']['replacement'] = "<hr />";

			$standard_mycode['hr']['replacement'] = "<hr class=\"mycode_hr\" />";


++$standard_count;
}


++$standard_count;
}





		if($mybb->settings['allowsymbolmycode'] == 1)
{
$standard_mycode['copy']['regex'] = "#\(c\)#i";

		if($mybb->settings['allowsymbolmycode'] == 1)
{
$standard_mycode['copy']['regex'] = "#\(c\)#i";

Zeile 291Zeile 348

$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "&reg;";


$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "&reg;";





			++$standard_count;

			++$standard_count;

		}

		}


if($mybb->settings['allowlinkmycode'] == 1)
{


if($mybb->settings['allowlinkmycode'] == 1)
{

			$callback_mycode['url_simple']['regex'] = "#\[url\]([a-z]+?://)([^\r\n\"<]+?)\[/url\]#si";

			$callback_mycode['url_simple']['regex'] = "#\[url\]((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\[/url\]#si";

			$callback_mycode['url_simple']['replacement'] = array($this, 'mycode_parse_url_callback1');

			$callback_mycode['url_simple']['replacement'] = array($this, 'mycode_parse_url_callback1');


$callback_mycode['url_simple2']['regex'] = "#\[url\]([^\r\n\"<]+?)\[/url\]#i";


$callback_mycode['url_simple2']['regex'] = "#\[url\]((?!javascript:)[^\r\n\"<]+?)\[/url\]#i";

			$callback_mycode['url_simple2']['replacement'] = array($this, 'mycode_parse_url_callback2');

			$callback_mycode['url_simple2']['replacement'] = array($this, 'mycode_parse_url_callback2');


$callback_mycode['url_complex']['regex'] = "#\[url=([a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si";


$callback_mycode['url_complex']['regex'] = "#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si";

			$callback_mycode['url_complex']['replacement'] = array($this, 'mycode_parse_url_callback1');


			$callback_mycode['url_complex']['replacement'] = array($this, 'mycode_parse_url_callback1');


			$callback_mycode['url_complex2']['regex'] = "#\[url=([^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si";

			$callback_mycode['url_complex2']['regex'] = "#\[url=((?!javascript:)[^\r\n\"<]+?)\](.+?)\[/url\]#si";

			$callback_mycode['url_complex2']['replacement'] = array($this, 'mycode_parse_url_callback2');

			$callback_mycode['url_complex2']['replacement'] = array($this, 'mycode_parse_url_callback2');


++$callback_count;


++$callback_count;

		}

if($mybb->settings['allowemailmycode'] == 1)
{

		}

if($mybb->settings['allowemailmycode'] == 1)
{

			$callback_mycode['email_simple']['regex'] = "#\[email\](.*?)\[/email\]#i";

			$callback_mycode['email_simple']['regex'] = "#\[email\]((?:[a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+(?:\?.*?)?)\[/email\]#i";

			$callback_mycode['email_simple']['replacement'] = array($this, 'mycode_parse_email_callback');

			$callback_mycode['email_simple']['replacement'] = array($this, 'mycode_parse_email_callback');


$callback_mycode['email_complex']['regex'] = "#\[email=(.*?)\](.*?)\[/email\]#i";
$callback_mycode['email_complex']['replacement'] = array($this, 'mycode_parse_email_callback');

++$callback_count;


$callback_mycode['email_complex']['regex'] = "#\[email=((?:[a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+(?:\?.*?)?)\](.*?)\[/email\]#i";
$callback_mycode['email_complex']['replacement'] = array($this, 'mycode_parse_email_callback');

++$callback_count;

		}

if($mybb->settings['allowcolormycode'] == 1)
{
$nestable_mycode['color']['regex'] = "#\[color=([a-zA-Z]*|\#?[\da-fA-F]{3}|\#?[\da-fA-F]{6})](.*?)\[/color\]#si";

		}

if($mybb->settings['allowcolormycode'] == 1)
{
$nestable_mycode['color']['regex'] = "#\[color=([a-zA-Z]*|\#?[\da-fA-F]{3}|\#?[\da-fA-F]{6})](.*?)\[/color\]#si";

			$nestable_mycode['color']['replacement'] = "<span style=\"color: $1;\">$2</span>";


			$nestable_mycode['color']['replacement'] = "<span style=\"color: $1;\" class=\"mycode_color\">$2</span>";


			++$nestable_count;
}

			++$nestable_count;
}





		if($mybb->settings['allowsizemycode'] == 1)
{
$nestable_mycode['size']['regex'] = "#\[size=(xx-small|x-small|small|medium|large|x-large|xx-large)\](.*?)\[/size\]#si";

		if($mybb->settings['allowsizemycode'] == 1)
{
$nestable_mycode['size']['regex'] = "#\[size=(xx-small|x-small|small|medium|large|x-large|xx-large)\](.*?)\[/size\]#si";

			$nestable_mycode['size']['replacement'] = "<span style=\"font-size: $1;\">$2</span>";

			$nestable_mycode['size']['replacement'] = "<span style=\"font-size: $1;\" class=\"mycode_size\">$2</span>";


$callback_mycode['size_int']['regex'] = "#\[size=([0-9\+\-]+?)\](.*?)\[/size\]#si";
$callback_mycode['size_int']['replacement'] = array($this, 'mycode_handle_size_callback');

++$nestable_count;
++$callback_count;


$callback_mycode['size_int']['regex'] = "#\[size=([0-9\+\-]+?)\](.*?)\[/size\]#si";
$callback_mycode['size_int']['replacement'] = array($this, 'mycode_handle_size_callback');

++$nestable_count;
++$callback_count;

		}

if($mybb->settings['allowfontmycode'] == 1)
{
$nestable_mycode['font']['regex'] = "#\[font=([a-z0-9 ,\-_'\"]+)\](.*?)\[/font\]#si";
$nestable_mycode['font']['replacement'] = "<span style=\"font-family: $1;\">$2</span>";

		}

if($mybb->settings['allowalignmycode'] == 1)
{
$nestable_mycode['align']['regex'] = "#\[align=(left|center|right|justify)\](.*?)\[/align\]#si";
$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\" class=\"mycode_align\">$2</div>";


++$nestable_count;
}


++$nestable_count;
}


if($mybb->settings['allowalignmycode'] == 1)


if($mybb->settings['allowfontmycode'] == 1)

		{

		{

			$nestable_mycode['align']['regex'] = "#\[align=(left|center|right|justify)\](.*?)\[/align\]#si";
$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\">$2</div>";

			$nestable_callback_mycode['font']['regex'] = "#\[font=\\s*(\"?)([a-z0-9 ,\-_'\"]+)\\1\\s*\](.*?)\[/font\]#si";
$nestable_callback_mycode['font']['replacement'] = array($this, 'mycode_parse_font_callback');





			++$nestable_count;

			++$nestable_callback_count;

		}

$custom_mycode = $cache->read("mycode");

		}

$custom_mycode = $cache->read("mycode");

Zeile 389Zeile 446
		foreach($nestable_mycode as $code)
{
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		foreach($nestable_mycode as $code)
{
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		}

// Assign the nestable MyCode to the cache.

		}

// Assign the callback MyCode to the cache.

		foreach($callback_mycode as $code)
{
$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		foreach($callback_mycode as $code)
{
$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

 
		}

// Assign the nestable callback MyCode to the cache.
foreach($nestable_callback_mycode as $code)
{
$this->mycode_cache['nestable_callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);

		}

$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;

		}

$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;

 
		$this->mycode_cache['nestable_callback_count'] = $nestable_callback_count;

	}

/**
* Parses MyCode tags in a specific message with the specified options.
*

	}

/**
* Parses MyCode tags in a specific message with the specified options.
*

	 * @param string The message to be parsed.
* @param array Array of options in yes/no format. Options are allow_imgcode.

	 * @param string $message The message to be parsed.
* @param array $options Array of options in yes/no format. Options are allow_imgcode.

	 * @return string The parsed message.
*/
function parse_mycode($message, $options=array())

	 * @return string The parsed message.
*/
function parse_mycode($message, $options=array())

Zeile 414Zeile 478
		global $lang, $mybb;

if(empty($this->options))

		global $lang, $mybb;

if(empty($this->options))

		{

		{

			$this->options = $options;

			$this->options = $options;

		}


		}


		// Cache the MyCode globally if needed.
if($this->mycode_cache == 0)

		// Cache the MyCode globally if needed.
if($this->mycode_cache == 0)

		{

		{

			$this->cache_mycode();

			$this->cache_mycode();

		}


		}


		// Parse quotes first
$message = $this->mycode_parse_quotes($message);


		// Parse quotes first
$message = $this->mycode_parse_quotes($message);


		$message = $this->mycode_auto_url($message);

























		// Convert images when allowed.
if(!empty($this->options['allow_imgcode']))
{
$message = preg_replace_callback("#\[img\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback1'), $message);
$message = preg_replace_callback("#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback2'), $message);
$message = preg_replace_callback("#\[img align=(left|right)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback3'), $message);
$message = preg_replace_callback("#\[img=([1-9][0-9]*)x([1-9][0-9]*) align=(left|right)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback4'), $message);
}
else
{
$message = preg_replace_callback("#\[img\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback1'), $message);
$message = preg_replace_callback("#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback2'), $message);
$message = preg_replace_callback("#\[img align=(left|right)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback3'), $message);
$message = preg_replace_callback("#\[img=([1-9][0-9]*)x([1-9][0-9]*) align=(left|right)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback4'), $message);
}

// Convert videos when allow.
if(!empty($this->options['allow_videocode']))
{
$message = preg_replace_callback("#\[video=(.*?)\](.*?)\[/video\]#i", array($this, 'mycode_parse_video_callback'), $message);
}
else
{
$message = preg_replace_callback("#\[video=(.*?)\](.*?)\[/video\]#i", array($this, 'mycode_parse_video_disabled_callback'), $message);
}


$message = str_replace('$', '&#36;', $message);



$message = str_replace('$', '&#36;', $message);


Zeile 453Zeile 541
				while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);

				while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);

 
				}
}
}

// Replace the nestable callback mycodes
if($this->mycode_cache['nestable_callback_count'] > 0)
{
foreach($this->mycode_cache['nestable_callback'] as $replace)
{
while(preg_match($replace['find'], $message))
{
$message_org = $message;
$message = preg_replace_callback($replace['find'], $replace['replacement'], $message);
if ($message_org == $message)
{
break;
}

				}
}
}

				}
}
}

Zeile 471Zeile 576
			{
// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

			{
// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

			}
}

// Convert images when allowed.
if(!empty($this->options['allow_imgcode']))
{
$message = preg_replace_callback("#\[img\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback1'), $message);
$message = preg_replace_callback("#\[img=([0-9]{1,3})x([0-9]{1,3})\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback2'), $message);
$message = preg_replace_callback("#\[img align=([a-z]+)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback3'), $message);
$message = preg_replace_callback("#\[img=([0-9]{1,3})x([0-9]{1,3}) align=([a-z]+)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_callback4'), $message);
}
else
{
$message = preg_replace_callback("#\[img\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback1'), $message);
$message = preg_replace_callback("#\[img=([0-9]{1,3})x([0-9]{1,3})\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback2'), $message);
$message = preg_replace_callback("#\[img align=([a-z]+)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback3'), $message);
$message = preg_replace_callback("#\[img=([0-9]{1,3})x([0-9]{1,3}) align=([a-z]+)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is", array($this, 'mycode_parse_img_disabled_callback4'), $message);
}

			}
}





















		// Convert videos when allow.
if(!empty($this->options['allow_videocode']))
{
$message = preg_replace_callback("#\[video=(.*?)\](.*?)\[/video\]#i", array($this, 'mycode_parse_video_callback'), $message);
}
else

		if(
(!isset($this->options['allow_auto_url']) || $this->options['allow_auto_url'] == 1) &&
$mybb->settings['allowautourl'] == 1
)



		{

		{

			$message = preg_replace_callback("#\[video=(.*?)\](.*?)\[/video\]#i", array($this, 'mycode_parse_video_disabled_callback'), $message);

			$message = $this->mycode_auto_url($message);

		}

		}





		return $message;
}


		return $message;
}


Zeile 509Zeile 596
	 * @access private
*/
function cache_smilies()

	 * @access private
*/
function cache_smilies()

	{

	{

		global $cache, $mybb, $theme, $templates;
$this->smilies_cache = array();

		global $cache, $mybb, $theme, $templates;
$this->smilies_cache = array();





		$smilies = $cache->read("smilies");
if(is_array($smilies))
{
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{

		$smilies = $cache->read("smilies");
if(is_array($smilies))
{
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{

 
				if(isset($theme['imgdir']))
{
$imgdir = $theme['imgdir'];
}
else
{
$imgdir = '';
}


				$smilie['find'] = explode("\n", $smilie['find']);

				$smilie['find'] = explode("\n", $smilie['find']);

				$smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']);

				$smilie['image'] = str_replace("{theme}", $imgdir, $smilie['image']);

				$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);


				$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);


Zeile 546Zeile 642
	/**
* Parses smilie code in the specified message.
*

	/**
* Parses smilie code in the specified message.
*

	 * @param string The message being parsed.
* @param string Base URL for the image tags created by smilies.
* @param string Yes/No if HTML is allowed in the post

	 * @param string $message $message The message being parsed.
* @param int $allow_html not used


	 * @return string The parsed message.
*/
function parse_smilies($message, $allow_html=0)

	 * @return string The parsed message.
*/
function parse_smilies($message, $allow_html=0)

Zeile 556Zeile 651
		if($this->smilies_cache == 0)
{
$this->cache_smilies();

		if($this->smilies_cache == 0)
{
$this->cache_smilies();

		}


		}


		// No smilies?
if(!count($this->smilies_cache))

		// No smilies?
if(!count($this->smilies_cache))

		{

		{

			return $message;

			return $message;

		}


		}


		// First we take out any of the tags we don't want parsed between (url= etc)
preg_match_all("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#i", $message, $bad_matches, PREG_PATTERN_ORDER);

		// First we take out any of the tags we don't want parsed between (url= etc)
preg_match_all("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#i", $message, $bad_matches, PREG_PATTERN_ORDER);

		if(count($bad_matches[0]) > 0)

		if(count($bad_matches[0]) > 0)

		{
$message = preg_replace("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#si", "<mybb-bad-sm>", $message);
}

		{
$message = preg_replace("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#si", "<mybb-bad-sm>", $message);
}

Zeile 579Zeile 674
			$message = explode("<mybb-bad-sm>", $message);
$i = 0;
foreach($bad_matches[0] as $match)

			$message = explode("<mybb-bad-sm>", $message);
$i = 0;
foreach($bad_matches[0] as $match)

			{

			{

				$message[$i] .= $match;
$i++;
}

				$message[$i] .= $match;
$i++;
}

Zeile 587Zeile 682
		}

return $message;

		}

return $message;

	}


	}


	/**
* Generates a cache of badwords filters.
*

	/**
* Generates a cache of badwords filters.
*

Zeile 599Zeile 694
		global $cache;
$this->badwords_cache = array();
$this->badwords_cache = $cache->read("badwords");

		global $cache;
$this->badwords_cache = array();
$this->badwords_cache = $cache->read("badwords");

	}

/**

	}

/**

	 * Parses a list of filtered/badwords in the specified message.
*

	 * Parses a list of filtered/badwords in the specified message.
*

	 * @param string The message to be parsed.
* @param array Array of parser options in yes/no format.

	 * @param string $message The message to be parsed.
* @param array $options Array of parser options in yes/no format.

	 * @return string The parsed message.
*/
function parse_badwords($message, $options=array())

	 * @return string The parsed message.
*/
function parse_badwords($message, $options=array())

Zeile 629Zeile 724
					$badword['replacement'] = "*****";
}


					$badword['replacement'] = "*****";
}


				// Take into account the position offset for our last replacement.
$index = substr_count($badword['badword'], '*')+2;
$badword['badword'] = str_replace('\*', '([a-zA-Z0-9_]{1})', preg_quote($badword['badword'], "#"));

// Ensure we run the replacement enough times but not recursively (i.e. not while(preg_match..))
$count = preg_match_all("#(^|\W)".$badword['badword']."(\W|$)#i", $message, $matches);
for($i=0; $i < $count; ++$i)

				if(!$badword['regex'])







				{

				{

					$message = preg_replace("#(^|\W)".$badword['badword']."(\W|$)#i", "\\1".$badword['replacement'].'\\'.$index, $message);

					$badword['badword'] = $this->generate_regex($badword['badword']);

				}

				}

			}
}




$message = preg_replace('#'.$badword['badword'].'#is', $badword['replacement'], $message);
}
}

		if(!empty($this->options['strip_tags']))

		if(!empty($this->options['strip_tags']))

		{

		{

			$message = strip_tags($message);

			$message = strip_tags($message);

		}

		}

		return $message;

		return $message;

 
	}

/**
* Generates REGEX patterns based on user defined badword string.
*
* @param string $badword The word defined to replace.
* @return string The regex pattern to match the word or null on error.
*/
function generate_regex($bad_word = "")
{
if($bad_word == "")
{
return;
}

// Neutralize escape character, regex operators, multiple adjacent wildcards and generate pattern
$ptrn = array('/\\\\/', '/([\[\^\$\.\|\?\(\)\{\}]{1})/', '/\*\++/', '/\++\*/', '/\*+/');
$rplc = array('\\\\\\\\','\\\\${1}', '*', '*', '[^\s\n]*');
$bad_word = preg_replace($ptrn, $rplc, $bad_word);

// Count + and generate pattern
$bad_word = explode('+', $bad_word);
$trap = "";
$plus = 0;
foreach($bad_word as $bad_piece)
{
if($bad_piece)
{
$trap .= $plus ? '[^\s\n]{'.$plus.'}'.$bad_piece : $bad_piece;
$plus = 1;
}
else
{
$plus++;
}
}

// Handle trailing +
if($plus > 1)
{
$trap .= '[^\s\n]{'.($plus-1).'}';
}

return '\b'.$trap.'\b';

	}

/**
* Resolves nested CDATA tags in the specified message.

	}

/**
* Resolves nested CDATA tags in the specified message.

	 *
* @param string The message to be parsed.
* @return string The parsed message.
*/

	 *
* @param string $message The message to be parsed.
* @return string The parsed message.
*/

	function parse_cdata($message)

	function parse_cdata($message)

	{

	{

		$message = str_replace(']]>', ']]]]><![CDATA[>', $message);

		$message = str_replace(']]>', ']]]]><![CDATA[>', $message);


return $message;
}



return $message;
}


	/**

	/**

 	 * Attempts to move any javascript references in the specified message.

	 * Attempts to move any javascript references in the specified message.

	 *
* @param string The message to be parsed.
* @return string The parsed message.

	 *
* @param string The message to be parsed.
* @return string The parsed message.

Zeile 671Zeile 806
	{
$js_array = array(
"#(&\#(0*)106;?|&\#(0*)74;?|&\#x(0*)4a;?|&\#x(0*)6a;?|j)((&\#(0*)97;?|&\#(0*)65;?|a)(&\#(0*)118;?|&\#(0*)86;?|v)(&\#(0*)97;?|&\#(0*)65;?|a)(\s)?(&\#(0*)115;?|&\#(0*)83;?|s)(&\#(0*)99;?|&\#(0*)67;?|c)(&\#(0*)114;?|&\#(0*)82;?|r)(&\#(0*)105;?|&\#(0*)73;?|i)(&\#112;?|&\#(0*)80;?|p)(&\#(0*)116;?|&\#(0*)84;?|t)(&\#(0*)58;?|\:))#i",

	{
$js_array = array(
"#(&\#(0*)106;?|&\#(0*)74;?|&\#x(0*)4a;?|&\#x(0*)6a;?|j)((&\#(0*)97;?|&\#(0*)65;?|a)(&\#(0*)118;?|&\#(0*)86;?|v)(&\#(0*)97;?|&\#(0*)65;?|a)(\s)?(&\#(0*)115;?|&\#(0*)83;?|s)(&\#(0*)99;?|&\#(0*)67;?|c)(&\#(0*)114;?|&\#(0*)82;?|r)(&\#(0*)105;?|&\#(0*)73;?|i)(&\#112;?|&\#(0*)80;?|p)(&\#(0*)116;?|&\#(0*)84;?|t)(&\#(0*)58;?|\:))#i",

			"#(o)(nmouseover\s?=)#i",
"#(o)(nmouseout\s?=)#i",
"#(o)(nmousedown\s?=)#i",
"#(o)(nmousemove\s?=)#i",
"#(o)(nmouseup\s?=)#i",
"#(o)(nclick\s?=)#i",
"#(o)(ndblclick\s?=)#i",
"#(o)(nload\s?=)#i",
"#(o)(nsubmit\s?=)#i",
"#(o)(nblur\s?=)#i",
"#(o)(nchange\s?=)#i",
"#(o)(nfocus\s?=)#i",
"#(o)(nselect\s?=)#i",
"#(o)(nunload\s?=)#i",
"#(o)(nkeypress\s?=)#i",
"#(o)(nerror\s?=)#i",
"#(o)(nreset\s?=)#i",
"#(o)(nabort\s?=)#i"
);

$message = preg_replace($js_array, "$1<strong></strong>$2$6", $message);

return $message;
}


			"#([\s\"']on)([a-z]+\s*=)#i",
);

// Add invisible white space
$message = preg_replace($js_array, "$1\xE2\x80\x8C$2$6", $message);

return $message;
}


















	/**
* Handles fontsize.
*

	/**
* Handles fontsize.
*

	* @param string The original size.
* @param string The text within a size tag.

	* @param int $size The original size.
* @param string $text The text within a size tag.

	* @return string The parsed text.
*/
function mycode_handle_size($size, $text)
{

	* @return string The parsed text.
*/
function mycode_handle_size($size, $text)
{

		$size = (int)$size+10;








		global $templates;

$size = (int)$size;

if($size < 1)
{
$size = 1;
}


if($size > 50)
{
$size = 50;


if($size > 50)
{
$size = 50;

		}

$text = "<span style=\"font-size: {$size}pt;\">".str_replace("\'", "'", $text)."</span>";

return $text;
}

/**


		}

$text = str_replace("\'", "'", $text);

eval("\$mycode_size = \"".$templates->get("mycode_size_int", 1, 0)."\";");
return $mycode_size;
}

/**

	* Handles fontsize.

	* Handles fontsize.

	*
* @param array Matches.

	*
* @param array $matches Matches.

	* @return string The parsed text.

	* @return string The parsed text.

	*/

	*/

	function mycode_handle_size_callback($matches)
{
return $this->mycode_handle_size($matches[1], $matches[2]);

	function mycode_handle_size_callback($matches)
{
return $this->mycode_handle_size($matches[1], $matches[2]);

Zeile 731Zeile 858
	/**
* Parses quote MyCode.
*

	/**
* Parses quote MyCode.
*

	* @param string The message to be parsed
* @param boolean Are we formatting as text?

	* @param string $message The message to be parsed
* @param boolean $text_only Are we formatting as text?

	* @return string The parsed message.
*/
function mycode_parse_quotes($message, $text_only=false)

	* @return string The parsed message.
*/
function mycode_parse_quotes($message, $text_only=false)

	{

	{

		global $lang, $templates, $theme, $mybb;

// Assign pattern and replace values.

		global $lang, $templates, $theme, $mybb;

// Assign pattern and replace values.

Zeile 745Zeile 872

if($text_only == false)
{


if($text_only == false)
{

			$replace = "<blockquote><cite>$lang->quote</cite>$1</blockquote>\n";

			$replace = "<blockquote class=\"mycode_quote\"><cite>$lang->quote</cite>$1</blockquote>\n";

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback1');
}
else
{

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback1');
}
else
{

			$replace = "\n{$lang->quote}\n--\n$1\n--\n";

			$replace = empty($this->options['signature_parse']) ? "\n{$lang->quote}\n--\n$1\n--\n" : "$1";

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback2');
}

do

			$replace_callback = array($this, 'mycode_parse_post_quotes_callback2');
}

do

		{

		{

			// preg_replace has erased the message? Restore it...
$previous_message = $message;
$message = preg_replace($pattern, $replace, $message, -1, $count);

			// preg_replace has erased the message? Restore it...
$previous_message = $message;
$message = preg_replace($pattern, $replace, $message, -1, $count);

Zeile 786Zeile 913
	/**
* Parses quotes with post id and/or dateline.
*

	/**
* Parses quotes with post id and/or dateline.
*

	* @param string The message to be parsed
* @param string The username to be parsed
* @param boolean Are we formatting as text?

	* @param string $message The message to be parsed
* @param string $username The username to be parsed
* @param boolean $text_only Are we formatting as text?

	* @return string The parsed message.
*/
function mycode_parse_post_quotes($message, $username, $text_only=false)

	* @return string The parsed message.
*/
function mycode_parse_post_quotes($message, $username, $text_only=false)

Zeile 807Zeile 934

$username .= "'";
$delete_quote = true;


$username .= "'";
$delete_quote = true;





		preg_match("#pid=(?:&quot;|\"|')?([0-9]+)[\"']?(?:&quot;|\"|')?#i", $username, $match);

		preg_match("#pid=(?:&quot;|\"|')?([0-9]+)[\"']?(?:&quot;|\"|')?#i", $username, $match);

		if((int)$match[1])

		if(isset($match[1]) && (int)$match[1])

		{
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";

		{
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";

Zeile 823Zeile 950
			}

$username = preg_replace("#(?:&quot;|\"|')? pid=(?:&quot;|\"|')?[0-9]+[\"']?(?:&quot;|\"|')?#i", '', $username);

			}

$username = preg_replace("#(?:&quot;|\"|')? pid=(?:&quot;|\"|')?[0-9]+[\"']?(?:&quot;|\"|')?#i", '', $username);

			$delete_quote = false;
}

			$delete_quote = false;
}


unset($match);
preg_match("#dateline=(?:&quot;|\"|')?([0-9]+)(?:&quot;|\"|')?#i", $username, $match);


unset($match);
preg_match("#dateline=(?:&quot;|\"|')?([0-9]+)(?:&quot;|\"|')?#i", $username, $match);

		if((int)$match[1])
{

		if(isset($match[1]) && (int)$match[1])
{

			if($match[1] < TIME_NOW)
{

			if($match[1] < TIME_NOW)
{

				$postdate = my_date('relative', (int)$match[1]);








				if($text_only)
{
$postdate = my_date('normal', (int)$match[1]);
}
else
{
$postdate = my_date('relative', (int)$match[1]);
}

				$date = " ({$postdate})";
}
$username = preg_replace("#(?:&quot;|\"|')? dateline=(?:&quot;|\"|')?[0-9]+(?:&quot;|\"|')?#i", '', $username);
$delete_quote = false;

				$date = " ({$postdate})";
}
$username = preg_replace("#(?:&quot;|\"|')? dateline=(?:&quot;|\"|')?[0-9]+(?:&quot;|\"|')?#i", '', $username);
$delete_quote = false;

		}


		}


		if($delete_quote)
{

		if($delete_quote)
{

			$username = my_substr($username, 0, my_strlen($username)-1);

			$username = my_substr($username, 0, my_strlen($username)-1, true);

		}

		}

		



		if(!empty($this->options['allow_html']))
{
$username = htmlspecialchars_uni($username);

		if(!empty($this->options['allow_html']))
{
$username = htmlspecialchars_uni($username);

Zeile 861Zeile 995
				$span = "<span>{$date}</span>";
}


				$span = "<span>{$date}</span>";
}


			return "<blockquote><cite>{$span}{$username} {$lang->wrote}{$linkback}</cite>{$message}</blockquote>\n";


			eval("\$mycode_quote = \"".$templates->get("mycode_quote_post", 1, 0)."\";");
return $mycode_quote;

		}
}

/**
* Parses quotes with post id and/or dateline.
*

		}
}

/**
* Parses quotes with post id and/or dateline.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The parsed message.
*/
function mycode_parse_post_quotes_callback1($matches)

	* @return string The parsed message.
*/
function mycode_parse_post_quotes_callback1($matches)

Zeile 879Zeile 1014
	/**
* Parses quotes with post id and/or dateline.
*

	/**
* Parses quotes with post id and/or dateline.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The parsed message.
*/
function mycode_parse_post_quotes_callback2($matches)

	* @return string The parsed message.
*/
function mycode_parse_post_quotes_callback2($matches)

Zeile 890Zeile 1025
	/**
* Parses code MyCode.
*

	/**
* Parses code MyCode.
*

	* @param string The message to be parsed
* @param boolean Are we formatting as text?

	* @param string $code The message to be parsed
* @param boolean $text_only Are we formatting as text?

	* @return string The parsed message.
*/
function mycode_parse_code($code, $text_only=false)
{

	* @return string The parsed message.
*/
function mycode_parse_code($code, $text_only=false)
{

		global $lang;

		global $lang, $templates;


if($text_only == true)


if($text_only == true)

		{
return "\n{$lang->code}\n--\n{$code}\n--\n";
}


		{
return empty($this->options['signature_parse']) ? "\n{$lang->code}\n--\n{$code}\n--\n" : $code;
}


		// Clean the string before parsing.
$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
$original = preg_replace('#^\t*#', '', $code);

		// Clean the string before parsing.
$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
$original = preg_replace('#^\t*#', '', $code);





		if(empty($original))
{
return;
}

		if(empty($original))
{
return;
}





		$code = str_replace('$', '&#36;', $code);
$code = preg_replace('#\$([0-9])#', '\\\$\\1', $code);
$code = str_replace('\\', '&#92;', $code);
$code = str_replace("\t", '&nbsp;&nbsp;&nbsp;&nbsp;', $code);
$code = str_replace(" ", '&nbsp;&nbsp;', $code);

		$code = str_replace('$', '&#36;', $code);
$code = preg_replace('#\$([0-9])#', '\\\$\\1', $code);
$code = str_replace('\\', '&#92;', $code);
$code = str_replace("\t", '&nbsp;&nbsp;&nbsp;&nbsp;', $code);
$code = str_replace(" ", '&nbsp;&nbsp;', $code);


return "<div class=\"codeblock\">\n<div class=\"title\">".$lang->code."\n</div><div class=\"body\" dir=\"ltr\"><code>".$code."</code></div></div>\n";
}

/**



eval("\$mycode_code = \"".$templates->get("mycode_code", 1, 0)."\";");
return $mycode_code;
}

/**

	* Parses code MyCode.

	* Parses code MyCode.

	*
* @param array Matches.

	*
* @param array $matches Matches.

	* @return string The parsed message.
*/
function mycode_parse_code_callback($matches)

	* @return string The parsed message.
*/
function mycode_parse_code_callback($matches)

Zeile 936Zeile 1072
	/**
* Parses PHP code MyCode.
*

	/**
* Parses PHP code MyCode.
*

	* @param string The message to be parsed
* @param boolean Whether or not it should return it as pre-wrapped in a div or not.
* @param boolean Are we formatting as text?

	* @param string $str The message to be parsed
* @param boolean $bare_return Whether or not it should return it as pre-wrapped in a div or not.
* @param boolean $text_only Are we formatting as text?

	* @return string The parsed message.
*/
function mycode_parse_php($str, $bare_return = false, $text_only = false)
{

	* @return string The parsed message.
*/
function mycode_parse_php($str, $bare_return = false, $text_only = false)
{

		global $lang;

		global $lang, $templates;


if($text_only == true)
{


if($text_only == true)
{

			return "\n{$lang->php_code}\n--\n$str\n--\n";

			return empty($this->options['signature_parse']) ? "\n{$lang->php_code}\n--\n{$str}\n--\n" : $str;

		}

// Clean the string before parsing except tab spaces.

		}

// Clean the string before parsing except tab spaces.

Zeile 960Zeile 1096
		{
return;
}

		{
return;
}


$str = str_replace('&amp;', '&', $str);
$str = str_replace('&lt;', '<', $str);
$str = str_replace('&gt;', '>', $str);

 

// See if open and close tags are provided.
$added_open_tag = false;


// See if open and close tags are provided.
$added_open_tag = false;

Zeile 971Zeile 1103
		{
$added_open_tag = true;
$str = "<?php \n".$str;

		{
$added_open_tag = true;
$str = "<?php \n".$str;

		}

		}


$added_end_tag = false;
if(!preg_match("#\?>\s*$#si", $str))


$added_end_tag = false;
if(!preg_match("#\?>\s*$#si", $str))

Zeile 993Zeile 1125
		if($added_open_tag)
{
$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\">&lt;\?php( |&nbsp;)(<br />?)#", "<code><span style=\"color: #$1\">", $code);

		if($added_open_tag)
{
$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\">&lt;\?php( |&nbsp;)(<br />?)#", "<code><span style=\"color: #$1\">", $code);

		}

		}


if($added_end_tag)
{
$code = str_replace("?&gt;</span></code>", "</span></code>", $code);
// Wait a minute. It fails highlighting? Stupid highlighter.
$code = str_replace("?&gt;</code>", "</code>", $code);


if($added_end_tag)
{
$code = str_replace("?&gt;</span></code>", "</span></code>", $code);
// Wait a minute. It fails highlighting? Stupid highlighter.
$code = str_replace("?&gt;</code>", "</code>", $code);

		}

		}


$code = preg_replace("#<span style=\"color: \#([A-Z0-9]{6})\"></span>#", "", $code);
$code = str_replace("<code>", "<div dir=\"ltr\"><code>", $code);


$code = preg_replace("#<span style=\"color: \#([A-Z0-9]{6})\"></span>#", "", $code);
$code = str_replace("<code>", "<div dir=\"ltr\"><code>", $code);

Zeile 1013Zeile 1145
		}

// Send back the code all nice and pretty

		}

// Send back the code all nice and pretty

		return "<div class=\"codeblock phpcodeblock\"><div class=\"title\">$lang->php_code\n</div><div class=\"body\">".$code."</div></div>\n";
}

/**


		eval("\$mycode_php = \"".$templates->get("mycode_php", 1, 0)."\";");
return $mycode_php;
}

/**

	* Parses PHP code MyCode.
*

	* Parses PHP code MyCode.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The parsed message.
*/
function mycode_parse_php_callback($matches)

	* @return string The parsed message.
*/
function mycode_parse_php_callback($matches)

	{

	{

		return $this->mycode_parse_php($matches[1], false, true);
}

/**
* Parses URL MyCode.
*

		return $this->mycode_parse_php($matches[1], false, true);
}

/**
* Parses URL MyCode.
*

	* @param string The URL to link to.
* @param string The name of the link.

	* @param string $url The URL to link to.
* @param string $name The name of the link.

	* @return string The built-up link.
*/
function mycode_parse_url($url, $name="")
{

	* @return string The built-up link.
*/
function mycode_parse_url($url, $name="")
{

 
		global $templates;

		if(!preg_match("#^[a-z0-9]+://#i", $url))
{
$url = "http://".$url;

		if(!preg_match("#^[a-z0-9]+://#i", $url))
{
$url = "http://".$url;

		}

if(!empty($this->options['allow_html']))

		}

if(!empty($this->options['allow_html']))

		{
$url = $this->parse_html($url);

		{
$url = $this->parse_html($url);

		}

		}


if(!$name)


if(!$name)

		{

		{

			$name = $url;

			$name = $url;

		}


		}


		if($name == $url && (!isset($this->options['shorten_urls']) || !empty($this->options['shorten_urls'])))
{
$name = htmlspecialchars_decode($name);

		if($name == $url && (!isset($this->options['shorten_urls']) || !empty($this->options['shorten_urls'])))
{
$name = htmlspecialchars_decode($name);

Zeile 1061Zeile 1195
			$name = htmlspecialchars_uni($name);
}


			$name = htmlspecialchars_uni($name);
}


		$nofollow = '';

 
		if(!empty($this->options['nofollow_on']))

		if(!empty($this->options['nofollow_on']))

		{
$nofollow = " rel=\"nofollow\"";
}





		{
$rel = " rel=\"noopener nofollow\"";
}
else
{
$rel = " rel=\"noopener\"";
}


// Fix some entities in URLs


// Fix some entities in URLs

		$entities = array('$' => '%24', '&#36;' => '%24', '^' => '%5E', '`' => '%60', '[' => '%5B', ']' => '%5D', '{' => '%7B', '}' => '%7D', '"' => '%22', '<' => '%3C', '>' => '%3E', ' ' => '%20');
$url = str_replace(array_keys($entities), array_values($entities), $url);



















		$url = $this->encode_url($url);
$name = $this->parse_badwords(preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $name)); // Fix & but allow unicode, filter bad words

eval("\$mycode_url = \"".$templates->get("mycode_url", 1, 0)."\";");
return $mycode_url;
}

/**
* Parses font MyCode.
*
* @param array $matches Matches.
* @return string The HTML <span> tag with styled font.
*/
function mycode_parse_font_callback($matches)
{
// Replace any occurrence(s) of double quotes in fonts with single quotes.
// A back-fix for double-quote-containing MyBB font tags in existing
// posts prior to the client-side aspect of this fix for the
// browser-independent SCEditor bug of issue #4182.
$fonts = str_replace('"', "'", $matches[2]);





		$name = preg_replace("#&amp;\#([0-9]+);#si", "&#$1;", $name); // Fix & but allow unicode
$link = "<a href=\"$url\" target=\"_blank\"{$nofollow}>$name</a>";
return $link;

		return "<span style=\"font-family: {$fonts};\" class=\"mycode_font\">{$matches[3]}</span>";



	}

/**
* Parses URL MyCode.
*

	}

/**
* Parses URL MyCode.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The built-up link.
*/
function mycode_parse_url_callback1($matches)

	* @return string The built-up link.
*/
function mycode_parse_url_callback1($matches)

Zeile 1089Zeile 1242
			$matches[3] = '';
}
return $this->mycode_parse_url($matches[1].$matches[2], $matches[3]);

			$matches[3] = '';
}
return $this->mycode_parse_url($matches[1].$matches[2], $matches[3]);

	}

/**

	}

/**

	* Parses URL MyCode.
*

	* Parses URL MyCode.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The built-up link.
*/
function mycode_parse_url_callback2($matches)

	* @return string The built-up link.
*/
function mycode_parse_url_callback2($matches)

Zeile 1109Zeile 1262
	/**
* Parses IMG MyCode.
*

	/**
* Parses IMG MyCode.
*

	 * @param string The URL to the image
* @param array Optional array of dimensions



	 * @param string $url The URL to the image
* @param array $dimensions Optional array of dimensions
* @param string $align
* @return string

	 */
function mycode_parse_img($url, $dimensions=array(), $align='')

	 */
function mycode_parse_img($url, $dimensions=array(), $align='')

	{
global $lang;

	{
global $lang, $templates;

		$url = trim($url);
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);

if(!empty($this->options['allow_html']))

		$url = trim($url);
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);

if(!empty($this->options['allow_html']))

		{

		{

			$url = $this->parse_html($url);

			$url = $this->parse_html($url);

		}

		}


$css_align = '';
if($align == "right")


$css_align = '';
if($align == "right")

		{
$css_align = " style=\"float: right;\"";
}

		{
$css_align = ' style="float: right;"';
}

		else if($align == "left")
{

		else if($align == "left")
{

			$css_align = " style=\"float: left;\"";






			$css_align = ' style="float: left;"';
}

if($align)
{
$this->clear_needed = true;

		}

		}

		$alt = basename($url);

 




 
		$alt = basename($url);

		$alt = htmlspecialchars_decode($alt);
if(my_strlen($alt) > 55)
{
$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}

		$alt = htmlspecialchars_decode($alt);
if(my_strlen($alt) > 55)
{
$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}

		$alt = htmlspecialchars_uni($alt);


		$alt = $this->encode_url($alt);
$alt = preg_replace("#&(?!\#[0-9]+;)#si", "&amp;", $alt); // fix & but allow unicode


$alt = $lang->sprintf($lang->posted_image, $alt);


$alt = $lang->sprintf($lang->posted_image, $alt);

 
		$width = $height = '';

		if(isset($dimensions[0]) && $dimensions[0] > 0 && isset($dimensions[1]) && $dimensions[1] > 0)
{

		if(isset($dimensions[0]) && $dimensions[0] > 0 && isset($dimensions[1]) && $dimensions[1] > 0)
{

			return "<img src=\"{$url}\" width=\"{$dimensions[0]}\" height=\"{$dimensions[1]}\" border=\"0\" alt=\"{$alt}\"{$css_align} />";


			$width = " width=\"{$dimensions[0]}\"";
$height = " height=\"{$dimensions[1]}\"";

		}

		}

		else
{
return "<img src=\"{$url}\" border=\"0\" alt=\"{$alt}\"{$css_align} />";
}
}



$url = $this->encode_url($url);

eval("\$mycode_img = \"".$templates->get("mycode_img", 1, 0)."\";");
return $mycode_img;
}


/**
* Parses IMG MyCode.
*


/**
* Parses IMG MyCode.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_callback1($matches)
{
return $this->mycode_parse_img($matches[2]);

	 * @return string Image code.
*/
function mycode_parse_img_callback1($matches)
{
return $this->mycode_parse_img($matches[2]);

	}

/**
* Parses IMG MyCode.
*
* @param array Matches.

	}

/**
* Parses IMG MyCode.
*
* @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_callback2($matches)

	 * @return string Image code.
*/
function mycode_parse_img_callback2($matches)

Zeile 1178Zeile 1342
	/**
* Parses IMG MyCode.
*

	/**
* Parses IMG MyCode.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_callback3($matches)
{
return $this->mycode_parse_img($matches[3], array(), $matches[1]);

	 * @return string Image code.
*/
function mycode_parse_img_callback3($matches)
{
return $this->mycode_parse_img($matches[3], array(), $matches[1]);

	}


	}


	/**
* Parses IMG MyCode.

	/**
* Parses IMG MyCode.

	 *
* @param array Matches.

	 *
* @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_callback4($matches)

	 * @return string Image code.
*/
function mycode_parse_img_callback4($matches)

Zeile 1200Zeile 1364
	/**
* Parses IMG MyCode disabled.
*

	/**
* Parses IMG MyCode disabled.
*

	 * @param string The URL to the image


	 * @param string $url The URL to the image
* @return string

	 */
function mycode_parse_img_disabled($url)
{

	 */
function mycode_parse_img_disabled($url)
{

Zeile 1209Zeile 1374
		$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);
$url = str_replace("\'", "'", $url);

		$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);
$url = str_replace("\'", "'", $url);





		$image = $lang->sprintf($lang->posted_image, $this->mycode_parse_url($url));
return $image;
}

		$image = $lang->sprintf($lang->posted_image, $this->mycode_parse_url($url));
return $image;
}

Zeile 1217Zeile 1382
	/**
* Parses IMG MyCode disabled.
*

	/**
* Parses IMG MyCode disabled.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback1($matches)

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback1($matches)

Zeile 1228Zeile 1393
	/**
* Parses IMG MyCode disabled.
*

	/**
* Parses IMG MyCode disabled.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback2($matches)

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback2($matches)

Zeile 1239Zeile 1404
	/**
* Parses IMG MyCode disabled.
*

	/**
* Parses IMG MyCode disabled.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback3($matches)

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback3($matches)

Zeile 1250Zeile 1415
	/**
* Parses IMG MyCode disabled.
*

	/**
* Parses IMG MyCode disabled.
*

	 * @param array Matches.

	 * @param array $matches Matches.

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback4($matches)
{
return $this->mycode_parse_img_disabled($matches[5]);

	 * @return string Image code.
*/
function mycode_parse_img_disabled_callback4($matches)
{
return $this->mycode_parse_img_disabled($matches[5]);

	}

/**
* Parses email MyCode.
*
* @param string The email address to link to.
* @param string The name for the link.

	}

/**
* Parses email MyCode.
*
* @param string $email The email address to link to.
* @param string $name The name for the link.

	* @return string The built-up email link.
*/
function mycode_parse_email($email, $name="")

	* @return string The built-up email link.
*/
function mycode_parse_email($email, $name="")

	{



	{
global $templates;


		if(!$name)

		if(!$name)

		{

		{

			$name = $email;
}

			$name = $email;
}

		if(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+$/si", $email))
{
return "<a href=\"mailto:$email\">".$name."</a>";
}
elseif(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+\?(.*?)$/si", $email))
{
return "<a href=\"mailto:".htmlspecialchars_uni($email)."\">".$name."</a>";
}
else
{
return $email;
}


$email = $this->encode_url($email);

eval("\$mycode_email = \"".$templates->get("mycode_email", 1, 0)."\";");
return $mycode_email;








	}

/**
* Parses email MyCode.
*

	}

/**
* Parses email MyCode.
*

	* @param array Matches

	* @param array $matches Matches

	* @return string The built-up email link.

	* @return string The built-up email link.

	*/
function mycode_parse_email_callback($matches)
{

	*/
function mycode_parse_email_callback($matches)
{

		if(!isset($matches[2]))
{
$matches[2] = '';

		if(!isset($matches[2]))
{
$matches[2] = '';

Zeile 1303Zeile 1463
	/**
* Parses video MyCode.
*

	/**
* Parses video MyCode.
*

	* @param string The video provider.
* @param string The video to link to.

	* @param string $video The video provider.
* @param string $url The video to link to.

	* @return string The built-up video code.
*/
function mycode_parse_video($video, $url)
{

	* @return string The built-up video code.
*/
function mycode_parse_video($video, $url)
{

		global $templates;

		global $mybb, $templates;


if(empty($video) || empty($url))


if(empty($video) || empty($url))

 
		{
return "[video={$video}]{$url}[/video]";
}

// Check URL is a valid URL first, as `parse_url` doesn't check validity.
if(false === filter_var($url, FILTER_VALIDATE_URL))

		{
return "[video={$video}]{$url}[/video]";
}

$parsed_url = @parse_url(urldecode($url));

		{
return "[video={$video}]{$url}[/video]";
}

$parsed_url = @parse_url(urldecode($url));

		if($parsed_url == false)
{

		if($parsed_url === false)
{

			return "[video={$video}]{$url}[/video]";

			return "[video={$video}]{$url}[/video]";

		}




		}

$bbdomain = parse_url($mybb->settings['bburl'], PHP_URL_HOST);


		$fragments = array();
if($parsed_url['fragment'])

		$fragments = array();
if($parsed_url['fragment'])

		{

		{

			$fragments = explode("&", $parsed_url['fragment']);

			$fragments = explode("&", $parsed_url['fragment']);

 
		}

if($video == "liveleak")
{
// The query part can start with any alphabet, but set only 'i' to catch in index key later
$parsed_url['query'] = "i".substr($parsed_url['query'], 1);

		}

$queries = explode("&", $parsed_url['query']);

		}

$queries = explode("&", $parsed_url['query']);

Zeile 1343Zeile 1517
		switch($video)
{
case "dailymotion":

		switch($video)
{
case "dailymotion":

				list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here








				if(isset($path[2]))
{
list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here
}
else
{
$id = $path[1]; // http://dai.ly/fds123
}

				break;
case "metacafe":
$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/

				break;
case "metacafe":
$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/

Zeile 1352Zeile 1533
			case "myspacetv":
$id = $path[4]; // http://www.myspace.com/video/fds/fds/123
break;

			case "myspacetv":
$id = $path[4]; // http://www.myspace.com/video/fds/fds/123
break;

			case "facebook":
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
break;
case "veoh":
$id = $path[2]; // http://www.veoh.com/watch/123












			case "facebook":
if(isset($input['v']))
{
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
}
elseif(substr($path[3], 0, 3) == 'vb.')
{
$id = $path[4]; // https://www.facebook.com/fds/videos/vb.123/123/
}
else
{
$id = $path[3]; // https://www.facebook.com/fds/videos/123/
}
break;
case "mixer":
$id = $path[1]; // https://mixer.com/streamer

				break;
case "liveleak":
$id = $input['i']; // http://www.liveleak.com/view?i=123
break;
case "yahoo":

				break;
case "liveleak":
$id = $input['i']; // http://www.liveleak.com/view?i=123
break;
case "yahoo":

				$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html








				if(isset($path[2]))
{
$id = $path[2]; // http://xy.screen.yahoo.com/fds/fds-123.html
}
else
{
$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html
}

				// Support for localized portals
$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))

				// Support for localized portals
$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))

Zeile 1375Zeile 1574
				}
break;
case "vimeo":

				}
break;
case "vimeo":

				$id = $path[1]; // http://vimeo.com/fds123








				if(isset($path[3]))
{
$id = $path[3]; // http://vimeo.com/fds/fds/fds123
}
else
{
$id = $path[1]; // http://vimeo.com/fds123
}

				break;
case "youtube":
if($fragments[0])

				break;
case "youtube":
if($fragments[0])

				{

				{

					$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123

					$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123

				}

				}

				elseif($input['v'])

				elseif($input['v'])

				{

				{

					$id = $input['v']; // http://www.youtube.com/watch?v=fds123

					$id = $input['v']; // http://www.youtube.com/watch?v=fds123

				}

				}

				else

				else

				{

				{

					$id = $path[1]; // http://www.youtu.be/fds123

					$id = $path[1]; // http://www.youtu.be/fds123

				}


















				}
break;
case "twitch":
if(count($path) >= 3 && $path[1] == 'videos')
{
// Direct video embed with URL like: https://www.twitch.tv/videos/179723472
$id = 'video=v'.$path[2];
}
elseif(count($path) >= 4 && $path[2] == 'v')
{
// Direct video embed with URL like: https://www.twitch.tv/waypoint/v/179723472
$id = 'video=v'.$path[3];
}
elseif(count($path) >= 2)
{
// Channel (livestream) embed with URL like: https://twitch.tv/waypoint
$id = 'channel='.$path[1];
}

				break;
default:
return "[video={$video}]{$url}[/video]";

				break;
default:
return "[video={$video}]{$url}[/video]";

		}

		}


if(empty($id))
{
return "[video={$video}]{$url}[/video]";
}



if(empty($id))
{
return "[video={$video}]{$url}[/video]";
}


		$id = htmlspecialchars_uni($id);

eval("\$video_code = \"".$templates->get("video_{$video}_embed")."\";");

		$id = $this->encode_url($id);







 
		eval("\$video_code = \"".$templates->get("video_{$video}_embed", 1, 0)."\";");

		return $video_code;
}

/**
* Parses video MyCode.
*

		return $video_code;
}

/**
* Parses video MyCode.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The built-up video code.
*/
function mycode_parse_video_callback($matches)

	* @return string The built-up video code.
*/
function mycode_parse_video_callback($matches)

Zeile 1421Zeile 1643
	/**
* Parses video MyCode disabled.
*

	/**
* Parses video MyCode disabled.
*

	 * @param string The URL to the video


	 * @param string $url The URL to the video
* @return string

	 */
function mycode_parse_video_disabled($url)
{

	 */
function mycode_parse_video_disabled($url)
{

Zeile 1438Zeile 1661
	/**
* Parses video MyCode disabled.
*

	/**
* Parses video MyCode disabled.
*

	* @param array Matches.

	* @param array $matches Matches.

	* @return string The built-up video code.
*/
function mycode_parse_video_disabled_callback($matches)

	* @return string The built-up video code.
*/
function mycode_parse_video_disabled_callback($matches)

Zeile 1449Zeile 1672
	/**
* Parses URLs automatically.
*

	/**
* Parses URLs automatically.
*

	* @param string The message to be parsed

	* @param string $message The message to be parsed

	* @return string The parsed message.
*/
function mycode_auto_url($message)
{

	* @return string The parsed message.
*/
function mycode_auto_url($message)
{

		$message = " ".$message;

 
		// Links should end with slashes, numbers, characters and braces but not with dots, commas or question marks

		// Links should end with slashes, numbers, characters and braces but not with dots, commas or question marks

		$message = preg_replace_callback("#([\>\s\(\)])(http|https|ftp|news|irc|ircs|irc6){1}://([^\/\"\s\<\[\.]+\.([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#iu", array($this, 'mycode_auto_url_callback'), $message);
$message = preg_replace_callback("#([\>\s\(\)])(www|ftp)\.(([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#iu", array($this, 'mycode_auto_url_callback'), $message);
$message = my_substr($message, 1);


















		// Don't create links within existing links (handled up-front in the callback function).
$message = preg_replace_callback(
"~
<a\\s[^>]*>.*?</a>| # match and return existing links
(?<=^|[\s\(\)\[\>]) # character preceding the link
(?P<prefix>
(?:http|https|ftp|news|irc|ircs|irc6)://| # scheme, or
(?:www|ftp)\. # common subdomain
)
(?P<link>
(?:[^\/\"\s\<\[\.]+\.)*[\w]+ # host
(?::[0-9]+)? # port
(?:/(?:[^\"\s<\[&]|\[\]|&(?:amp|lt|gt);)*)? # path, query, fragment; exclude unencoded characters
[\w\/\)]
)
(?![^<>]*?>) # not followed by unopened > (within HTML tags)
~iusx",
array($this, 'mycode_auto_url_callback'),
$message
);


return $message;
}


return $message;
}

Zeile 1466Zeile 1705
	/**
* Parses URLs automatically.
*

	/**
* Parses URLs automatically.
*

	* @param array Matches

	* @param array $matches Matches

	* @return string The parsed message.
*/

	* @return string The parsed message.
*/

	function mycode_auto_url_callback($matches)

	function mycode_auto_url_callback($matches=array())

	{

	{

 
		// If we matched a preexisting link (the part of the regexes in mycode_auto_url() before the pipe symbol),
// then simply return it - we don't create links within existing links.
if(count($matches) == 1)
{
return $matches[0];
}


		$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces

		$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces

		while(my_substr($matches[3], -1) == ')')
{
if(substr_count($matches[3], ')') > substr_count($matches[3], '('))
{
$matches[3] = my_substr($matches[3], 0, -1);

		while(my_substr($matches['link'], -1) == ')')
{
if(substr_count($matches['link'], ')') > substr_count($matches['link'], '('))
{
$matches['link'] = my_substr($matches['link'], 0, -1);

				$external = ')'.$external;

				$external = ')'.$external;

			}

			}

			else
{
break;
}

// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)

			else
{
break;
}

// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)

			$last_char = my_substr($matches[3], -1);

			$last_char = my_substr($matches['link'], -1);

			while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{

			while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{

				$matches[3] = my_substr($matches[3], 0, -1);

				$matches[4] = my_substr($matches['link'], 0, -1);

				$external = $last_char.$external;

				$external = $last_char.$external;

				$last_char = my_substr($matches[3], -1);
}
}
if($matches[2] == 'www' || $matches[2] == 'ftp')
{
return "{$matches[1]}[url]{$matches[2]}.{$matches[3]}[/url]{$external}";
}
else
{
return "{$matches[1]}[url]{$matches[2]}://{$matches[3]}[/url]{$external}";

				$last_char = my_substr($matches['link'], -1);
}









		}

		}

 
		$url = $matches['prefix'].$matches['link'];

return $this->mycode_parse_url($url, $url).$external;

	}

/**
* Parses list MyCode.
*

	}

/**
* Parses list MyCode.
*

	* @param string The message to be parsed
* @param string The list type

	* @param string $message The message to be parsed
* @param string $type The list type

	* @return string The parsed message.
*/
function mycode_parse_list($message, $type="")
{
// No list elements? That's invalid HTML
if(strpos($message, '[*]') === false)

	* @return string The parsed message.
*/
function mycode_parse_list($message, $type="")
{
// No list elements? That's invalid HTML
if(strpos($message, '[*]') === false)

		{

		{

			$message = "[*]{$message}";

			$message = "[*]{$message}";

		}

$message = preg_replace("#\s*\[\*\]\s*#", "</li>\n<li>", $message);
$message .= "</li>";

		}








		if($type)


		$message = preg_split("#[^\S\n\r]*\[\*\]\s*#", $message);
if(isset($message[0]) && trim($message[0]) == '')

		{

		{

			$list = "\n<ol type=\"$type\">$message</ol>\n";

			array_shift($message);

		}

		}

		else



		$message = '<li>'.implode("</li>\n<li>", $message)."</li>\n";

if($type)

		{

		{

			$list = "<ul>$message</ul>\n";





			$list = "\n<ol type=\"$type\" class=\"mycode_list\">$message</ol>\n";
}
else
{
$list = "<ul class=\"mycode_list\">$message</ul>\n";

		}
$list = preg_replace("#<(ol type=\"$type\"|ul)>\s*</li>#", "<$1>", $list);
return $list;

		}
$list = preg_replace("#<(ol type=\"$type\"|ul)>\s*</li>#", "<$1>", $list);
return $list;

Zeile 1537Zeile 1782
	/**
* Parses list MyCode.
*

	/**
* Parses list MyCode.
*

	* @param array Matches

	* @param array $matches Matches

	* @return string The parsed message.
*/
function mycode_parse_list_callback($matches)

	* @return string The parsed message.
*/
function mycode_parse_list_callback($matches)

Zeile 1548Zeile 1793
	/**
* Prepares list MyCode by finding the matching list tags.
*

	/**
* Prepares list MyCode by finding the matching list tags.
*

	* @param array Matches

	* @param array $matches Matches

	* @return string Temporary replacements.
*/
function mycode_prepare_list($matches)

	* @return string Temporary replacements.
*/
function mycode_prepare_list($matches)

Zeile 1585Zeile 1830
	/**
* Strips smilies from a string
*

	/**
* Strips smilies from a string
*

	 * @param string The message for smilies to be stripped from

	 * @param string $message The message for smilies to be stripped from

	 * @return string The message with smilies stripped
*/
function strip_smilies($message)

	 * @return string The message with smilies stripped
*/
function strip_smilies($message)

Zeile 1594Zeile 1839
		{
$this->cache_smilies();
}

		{
$this->cache_smilies();
}

		if(is_array($this->smilies_cache))
{
$message = str_replace($this->smilies_cache, array_keys($this->smilies_cache), $message);
}

		if(is_array($this->smilies_cache))
{
$message = str_replace($this->smilies_cache, array_keys($this->smilies_cache), $message);
}

		return $message;
}

		return $message;
}





	/**
* Highlights a string
*

	/**
* Highlights a string
*

	 * @param string The message to be highligted
* @param string The highlight keywords

	 * @param string $message The message to be highligted
* @param string $highlight The highlight keywords

	 * @return string The message with highlight bbcodes
*/
function highlight_message($message, $highlight)

	 * @return string The message with highlight bbcodes
*/
function highlight_message($message, $highlight)

Zeile 1618Zeile 1863
		if(is_array($this->highlight_cache) && !empty($this->highlight_cache))
{
$message = preg_replace(array_keys($this->highlight_cache), $this->highlight_cache, $message);

		if(is_array($this->highlight_cache) && !empty($this->highlight_cache))
{
$message = preg_replace(array_keys($this->highlight_cache), $this->highlight_cache, $message);

		}

return $message;

		}

return $message;

	}

/**
* Parses message to plain text equivalents of MyCode.
*

	}

/**
* Parses message to plain text equivalents of MyCode.
*

	 * @param string The message to be parsed


	 * @param string $message The message to be parsed
* @param array $options

	 * @return string The parsed message.
*/
function text_parse_message($message, $options=array())
{
global $plugins;

	 * @return string The parsed message.
*/
function text_parse_message($message, $options=array())
{
global $plugins;





		if(empty($this->options))
{
$this->options = $options;

		if(empty($this->options))
{
$this->options = $options;

 
		}
else
{
foreach($options as $option_name => $option_value)
{
$this->options[$option_name] = $option_value;
}

		}

// Filter bad words if requested.
if(!empty($this->options['filter_badwords']))
{
$message = $this->parse_badwords($message);

		}

// Filter bad words if requested.
if(!empty($this->options['filter_badwords']))
{
$message = $this->parse_badwords($message);

		}


		}


		// Parse quotes first
$message = $this->mycode_parse_quotes($message, true);

		// Parse quotes first
$message = $this->mycode_parse_quotes($message, true);





		$message = preg_replace_callback("#\[php\](.*?)\[/php\](\r\n?|\n?)#is", array($this, 'mycode_parse_php_callback'), $message);
$message = preg_replace_callback("#\[code\](.*?)\[/code\](\r\n?|\n?)#is", array($this, 'mycode_parse_code_callback'), $message);

		$message = preg_replace_callback("#\[php\](.*?)\[/php\](\r\n?|\n?)#is", array($this, 'mycode_parse_php_callback'), $message);
$message = preg_replace_callback("#\[code\](.*?)\[/code\](\r\n?|\n?)#is", array($this, 'mycode_parse_code_callback'), $message);





		$find = array(
"#\[(b|u|i|s|url|email|color|img)\](.*?)\[/\\1\]#is",

		$find = array(
"#\[(b|u|i|s|url|email|color|img)\](.*?)\[/\\1\]#is",

			"#\[img=([0-9]{1,3})x([0-9]{1,3})\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=([a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=([^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",
);



			"#\[(email|color|size|font|align|video)=[^]]*\](.*?)\[/\\1\]#is",
"#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=((?!javascript:)[^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",
"#\[attachment=([0-9]+?)\]#i",
);


$replace = array(


$replace = array(

 
			"$2",

			"$2",
"$4",
"$3 ($1$2)",
"$2 ($1)",

			"$2",
"$4",
"$3 ($1$2)",
"$2 ($1)",

 
			"",

		);

		);

		$message = preg_replace($find, $replace, $message);








		
$messageBefore = "";
// The counter limit for this "for" loop is for defensive programming purpose only. It protects against infinite repetition.
for($cnt = 1; $cnt < 20 && $message != $messageBefore; $cnt++)
{
$messageBefore = $message;
$message = preg_replace($find, $replace, $messageBefore);
}


// Replace "me" code and slaps if we have a username
if(!empty($this->options['me_username']))
{
global $lang;


// Replace "me" code and slaps if we have a username
if(!empty($this->options['me_username']))
{
global $lang;





			$message = preg_replace('#(>|^|\r|\n)/me ([^\r\n<]*)#i', "\\1* {$this->options['me_username']} \\2", $message);
$message = preg_replace('#(>|^|\r|\n)/slap ([^\r\n<]*)#i', "\\1* {$this->options['me_username']} {$lang->slaps} \\2 {$lang->with_trout}", $message);

			$message = preg_replace('#(>|^|\r|\n)/me ([^\r\n<]*)#i', "\\1* {$this->options['me_username']} \\2", $message);
$message = preg_replace('#(>|^|\r|\n)/slap ([^\r\n<]*)#i', "\\1* {$this->options['me_username']} {$lang->slaps} \\2 {$lang->with_trout}", $message);

		}

		}


// Reset list cache
$this->list_elements = array();


// Reset list cache
$this->list_elements = array();

Zeile 1680Zeile 1944

// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);


// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);





		// Replace all lists
for($i = $this->list_count; $i > 0; $i--)

		// Replace all lists
for($i = $this->list_count; $i > 0; $i--)

		{

		{

			// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

			// Ignores missing end tags
$message = preg_replace_callback("#\s?\[list(=(a|A|i|I|1))?&{$i}\](.*?)(\[/list&{$i}\]|$)(\r\n?|\n?)#si", array($this, 'mycode_parse_list_callback'), $message, 1);

		}

		}


// Run plugin hooks
$message = $plugins->run_hooks("text_parse_message", $message);

return $message;


// Run plugin hooks
$message = $plugins->run_hooks("text_parse_message", $message);

return $message;

 
	}

/**
* Replaces certain characters with their entities in a URL.
*
* @param string $url The URL to be escaped.
* @return string The escaped URL.
*/
function encode_url($url)
{
$entities = array('$' => '%24', '&#36;' => '%24', '^' => '%5E', '`' => '%60', '[' => '%5B', ']' => '%5D', '{' => '%7B', '}' => '%7D', '"' => '%22', '<' => '%3C', '>' => '%3E', ' ' => '%20');

$url = str_replace(array_keys($entities), array_values($entities), $url);

return $url;
}

/**
* Determines whether the resulting HTML syntax is acceptable for output,
* according to the parser's validation policy and HTML support.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function output_allowed($source, $output)
{
if($this->output_validation_policy === self::VALIDATION_DISABLE || !empty($this->options['allow_html']))
{
return true;
}
else
{
$output_valid = $this->validate_output($source, $output);

if($this->output_validation_policy === self::VALIDATION_REPORT_ONLY)
{
return true;
}
else
{
return $output_valid === true;
}
}
}

/**
* Validate HTML syntax and pass errors to the error handler.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function validate_output($source, $output)
{
global $error_handler;

$ignored_error_codes = array(
// entities may be broken through smilie parsing; cache_smilies() method workaround doesn't cover all entities
'XML_ERR_INVALID_DEC_CHARREF' => 7,
'XML_ERR_INVALID_CHAR' => 9,

'XML_ERR_UNDECLARED_ENTITY' => 26, // unrecognized HTML entities
'XML_ERR_ATTRIBUTE_WITHOUT_VALUE' => 41,
'XML_ERR_TAG_NAME_MISMATCH' => 76, // the parser may output tags closed in different levels and siblings
);

libxml_use_internal_errors(true);
@libxml_disable_entity_loader(true);

simplexml_load_string('<root>'.$output.'</root>', 'SimpleXMLElement', 524288 /* LIBXML_PARSEHUGE */);

$errors = libxml_get_errors();

libxml_use_internal_errors(false);

if(
$errors &&
array_diff(
array_column($errors, 'code'),
$ignored_error_codes
)
)
{
$data = array(
'sourceHtmlEntities' => htmlspecialchars_uni($source),
'outputHtmlEntities' => htmlspecialchars_uni($output),
'errors' => $errors,
);
$error_message = "Parser output validation failed.\n";
$error_message .= var_export($data, true);

$error_handler->error(E_USER_WARNING, $error_message, __FILE__, __LINE__, false);

return false;
} else {
return true;
}

	}
}

	}
}