Vergleich usercp.php - 1.8.26 - 1.8.33

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 32	Zeile 32
require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";	require_once "./global.php"; require_once MYBB_ROOT."inc/functions_post.php";
	require_once MYBB_ROOT."inc/functions_search.php";
require_once MYBB_ROOT."inc/functions_user.php"; require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser;	require_once MYBB_ROOT."inc/functions_user.php"; require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser;
Zeile 50	Zeile 51
usercp_menu();	usercp_menu();
$server_http_referer = htmlentities($_SERVER['HTTP_REFERER']); if(my_strpos($server_http_referer, $mybb->settings['bburl'].'/') !== 0)	$server_http_referer = ''; if(isset($_SERVER['HTTP_REFERER']))
{	{
if(my_strpos($server_http_referer, '/') === 0)	$server_http_referer = htmlentities($_SERVER['HTTP_REFERER']); if(my_strpos($server_http_referer, $mybb->settings['bburl'].'/') !== 0)
{	{
$server_http_referer = my_substr($server_http_referer, 1);	if(my_strpos($server_http_referer, '/') === 0) { $server_http_referer = my_substr($server_http_referer, 1); } $url_segments = explode('/', $server_http_referer); $server_http_referer = $mybb->settings['bburl'].'/'.end($url_segments);
}	}
$url_segments = explode('/', $server_http_referer); $server_http_referer = $mybb->settings['bburl'].'/'.end($url_segments);
} $plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")	} $plugins->run_hooks("usercp_start"); if($mybb->input['action'] == "do_editsig" && $mybb->request_method == "post")
{	{
require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler();	require_once MYBB_ROOT."inc/datahandlers/user.php"; $userhandler = new UserDataHandler();
Zeile 116	Zeile 121
break; case "forumsubscriptions": add_breadcrumb($lang->ucp_nav_forum_subscriptions);	break; case "forumsubscriptions": add_breadcrumb($lang->ucp_nav_forum_subscriptions);
break;	break;
case "editsig": case "do_editsig": add_breadcrumb($lang->nav_editsig);	case "editsig": case "do_editsig": add_breadcrumb($lang->nav_editsig);
Zeile 124	Zeile 129
case "avatar": case "do_avatar": add_breadcrumb($lang->nav_avatar);	case "avatar": case "do_avatar": add_breadcrumb($lang->nav_avatar);
break;	break;
case "notepad": case "do_notepad": add_breadcrumb($lang->ucp_nav_notepad);	case "notepad": case "do_notepad": add_breadcrumb($lang->ucp_nav_notepad);
break;	break;
case "editlists": case "do_editlists": add_breadcrumb($lang->ucp_nav_editlists);	case "editlists": case "do_editlists": add_breadcrumb($lang->ucp_nav_editlists);
break;	break;
case "drafts": add_breadcrumb($lang->ucp_nav_drafts); break;	case "drafts": add_breadcrumb($lang->ucp_nav_drafts); break;
Zeile 157	Zeile 162
{ $awaydate = TIME_NOW; if(!empty($mybb->input['awayday']))	{ $awaydate = TIME_NOW; if(!empty($mybb->input['awayday']))
{	{
// If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT)) {	// If the user has indicated that they will return on a specific day, but not month or year, assume it is current month and year if(!$mybb->get_input('awaymonth', MyBB::INPUT_INT)) {
Zeile 191	Zeile 196
"date" => $awaydate, "returndate" => $returndate, "awayreason" => $mybb->get_input('awayreason')	"date" => $awaydate, "returndate" => $returndate, "awayreason" => $mybb->get_input('awayreason')
); }	); }
else { $away = array(	else { $away = array(
Zeile 280	Zeile 285
$raw_errors = $userhandler->get_errors(); // Set to stored value if invalid	$raw_errors = $userhandler->get_errors(); // Set to stored value if invalid
if(array_key_exists("invalid_birthday_privacy", $raw_errors))	if(array_key_exists("invalid_birthday_privacy", $raw_errors) \|\| array_key_exists("conflicted_birthday_privacy", $raw_errors))
{ $mybb->input['birthdayprivacy'] = $mybb->user['birthdayprivacy'];	{ $mybb->input['birthdayprivacy'] = $mybb->user['birthdayprivacy'];
	$bday = explode("-", $mybb->user['birthday']); if(isset($bday[2])) { $mybb->input['bday3'] = $bday[2]; }
} $errors = inline_error($errors); $mybb->input['action'] = "profile";	} $errors = inline_error($errors); $mybb->input['action'] = "profile";
}	}
else { $userhandler->update_user();	else { $userhandler->update_user();

$plugins->run_hooks("usercp_do_profile_end"); redirect("usercp.php?action=profile", $lang->redirect_profileupdated); }	$plugins->run_hooks("usercp_do_profile_end"); redirect("usercp.php?action=profile", $lang->redirect_profileupdated); }
Zeile 308	Zeile 319
$bday[2] = $mybb->get_input('bday3', MyBB::INPUT_INT); } else	$bday[2] = $mybb->get_input('bday3', MyBB::INPUT_INT); } else
{	{
$user = $mybb->user; $bday = explode("-", $user['birthday']); if(!isset($bday[1])) { $bday[1] = 0; }	$user = $mybb->user; $bday = explode("-", $user['birthday']); if(!isset($bday[1])) { $bday[1] = 0; }
if(!isset($bday[2])) { $bday[2] = ''; }	} if(!isset($bday[2]) \|\| $bday[2] == 0) { $bday[2] = '';
} $plugins->run_hooks("usercp_profile_start");	} $plugins->run_hooks("usercp_profile_start");
Zeile 400	Zeile 411
if(!is_member($mybb->settings[$csetting])) { continue;	if(!is_member($mybb->settings[$csetting])) { continue;
}	}
$cfieldsshow = true; $lang_string = 'contact_field_'.$cfield;	$cfieldsshow = true; $lang_string = 'contact_field_'.$cfield;
Zeile 501	Zeile 512
continue; }	continue; }
	$userfield = $code = $select = $val = $options = $expoptions = $useropts = ''; $seloptions = array();
$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);	$profilefield['type'] = htmlspecialchars_uni($profilefield['type']); $profilefield['name'] = htmlspecialchars_uni($profilefield['name']); $profilefield['description'] = htmlspecialchars_uni($profilefield['description']);
Zeile 509	Zeile 522
if(isset($thing[1])) { $options = $thing[1];	if(isset($thing[1])) { $options = $thing[1];
} else	} else
{ $options = array(); } $field = "fid{$profilefield['fid']}";	{ $options = array(); } $field = "fid{$profilefield['fid']}";
$select = '';
if($errors) { if(!isset($mybb->input['profile_fields'][$field]))	if($errors) { if(!isset($mybb->input['profile_fields'][$field]))
Zeile 525	Zeile 537
$userfield = $mybb->input['profile_fields'][$field]; } else	$userfield = $mybb->input['profile_fields'][$field]; } else
{	{
$userfield = $user[$field]; } if($type == "multiselect")	$userfield = $user[$field]; } if($type == "multiselect")
Zeile 539	Zeile 551
$useropts = explode("\n", $userfield); } if(is_array($useropts))	$useropts = explode("\n", $userfield); } if(is_array($useropts))
{	{
foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val); $seloptions[$val] = $val;	foreach($useropts as $key => $val) { $val = htmlspecialchars_uni($val); $seloptions[$val] = $val;
} } $expoptions = explode("\n", $options); if(is_array($expoptions))	} } $expoptions = explode("\n", $options); if(is_array($expoptions))
{ foreach($expoptions as $key => $val) {	{ foreach($expoptions as $key => $val) {
Zeile 556	Zeile 568
$sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val])	$sel = ""; if(isset($seloptions[$val]) && $val == $seloptions[$val])
{ $sel = " selected=\"selected\""; } eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length']) {	{ $sel = " selected=\"selected\""; } eval("\$select .= \"".$templates->get("usercp_profile_profilefields_select_option")."\";"); } if(!$profilefield['length']) {
$profilefield['length'] = 3; }	$profilefield['length'] = 3; }
Zeile 571	Zeile 583
} } elseif($type == "select")	} } elseif($type == "select")
{	{
$expoptions = explode("\n", $options); if(is_array($expoptions)) {	$expoptions = explode("\n", $options); if(is_array($expoptions)) {
Zeile 605	Zeile 617
{ $checked = ""; if($val == $userfield)	{ $checked = ""; if($val == $userfield)
{ $checked = " checked=\"checked\""; }	{ $checked = " checked=\"checked\""; }
eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";"); }	eval("\$code .= \"".$templates->get("usercp_profile_profilefields_radio")."\";"); }
Zeile 672	Zeile 684
eval("\$customfields .= \"".$templates->get("usercp_profile_customfield")."\";"); } $altbg = alt_trow();	eval("\$customfields .= \"".$templates->get("usercp_profile_customfield")."\";"); } $altbg = alt_trow();
$code = ""; $select = ""; $val = ""; $options = ""; $expoptions = ""; $useropts = ""; $seloptions = array(); }	}
} if($customfields)	} if($customfields)
{	{
eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }	eval("\$customfields = \"".$templates->get("usercp_profile_profilefields")."\";"); }
Zeile 701	Zeile 706
break; } }	break; } }
} else	} else
{ $defaulttitle = htmlspecialchars_uni($mybb->usergroup['usertitle']); }	{ $defaulttitle = htmlspecialchars_uni($mybb->usergroup['usertitle']); }
Zeile 711	Zeile 716
if(trim($user['usertitle']) == '') { $lang->current_custom_usertitle = '';	if(trim($user['usertitle']) == '') { $lang->current_custom_usertitle = '';
} else	} else
{ if($errors) { $newtitle = htmlspecialchars_uni($user['usertitle']); $user['usertitle'] = $mybb->user['usertitle'];	{ if($errors) { $newtitle = htmlspecialchars_uni($user['usertitle']); $user['usertitle'] = $mybb->user['usertitle'];
} }	} }
$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); $currentcustom = $reverttitle = '';	$user['usertitle'] = htmlspecialchars_uni($user['usertitle']); $currentcustom = $reverttitle = '';
Zeile 744	Zeile 749
if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";");	if($mybb->usergroup['canchangewebsite'] == 1) { eval("\$website = \"".$templates->get("usercp_profile_website")."\";");
}	}
$plugins->run_hooks("usercp_profile_end");	$plugins->run_hooks("usercp_profile_end");
Zeile 809	Zeile 814
if($mybb->settings['userpppoptions']) { $user['options']['ppp'] = $mybb->get_input('ppp', MyBB::INPUT_INT);	if($mybb->settings['userpppoptions']) { $user['options']['ppp'] = $mybb->get_input('ppp', MyBB::INPUT_INT);
}	}
$userhandler->set_data($user); if(!$userhandler->validate_user())	$userhandler->set_data($user); if(!$userhandler->validate_user())
Zeile 872	Zeile 877
$allownoticescheck = ""; }	$allownoticescheck = ""; }
if(isset($user['invisible']) && $user['invisible'] == 1)	$canbeinvisible = ''; // Check usergroup permission before showing invisible check box if($mybb->usergroup['canbeinvisible'] == 1)
{	{
$invisiblecheck = "checked=\"checked\""; } else { $invisiblecheck = "";	if(isset($user['invisible']) && $user['invisible'] == 1) { $invisiblecheck = "checked=\"checked\""; } else { $invisiblecheck = ""; } eval('$canbeinvisible = "'.$templates->get("usercp_options_invisible")."\";");
} if(isset($user['hideemail']) && $user['hideemail'] == 1)	} if(isset($user['hideemail']) && $user['hideemail'] == 1)
Zeile 1507	Zeile 1519
$plugins->run_hooks("usercp_subscriptions_start"); // Thread visiblity	$plugins->run_hooks("usercp_subscriptions_start"); // Thread visiblity
$visible = "AND t.visible != 0"; if(is_moderator() == true)	$where = array( "s.uid={$mybb->user['uid']}", get_visible_where('t') ); if($unviewable_forums = get_unviewable_forums(true)) { $where[] = "t.fid NOT IN ({$unviewable_forums})"; } if($inactive_forums = get_inactive_forums())
{	{
$visible = '';	$where[] = "t.fid NOT IN ({$inactive_forums})";
}	}
	$where = implode(' AND ', $where);
// Do Multi Pages $query = $db->query("	// Do Multi Pages $query = $db->query("
SELECT COUNT(ts.tid) as threads FROM ".TABLE_PREFIX."threadsubscriptions ts LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = ts.tid) WHERE ts.uid = '".$mybb->user['uid']."' AND t.visible >= 0 {$visible}	SELECT COUNT(s.tid) as threads FROM ".TABLE_PREFIX."threadsubscriptions s LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid = s.tid) WHERE {$where}
"); $threadcount = $db->fetch_field($query, "threads"); if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)	"); $threadcount = $db->fetch_field($query, "threads"); if(!$mybb->settings['threadsperpage'] \|\| (int)$mybb->settings['threadsperpage'] < 1)
{	{
$mybb->settings['threadsperpage'] = 20; }	$mybb->settings['threadsperpage'] = 20; }
Zeile 1538	Zeile 1561
{ $start = 0; $page = 1;	{ $start = 0; $page = 1;
} }	} }
else { $start = 0;	else { $start = 0;
Zeile 1562	Zeile 1585
FROM ".TABLE_PREFIX."threadsubscriptions s LEFT JOIN ".TABLE_PREFIX."threads t ON (s.tid=t.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)	FROM ".TABLE_PREFIX."threadsubscriptions s LEFT JOIN ".TABLE_PREFIX."threads t ON (s.tid=t.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)
WHERE s.uid='".$mybb->user['uid']."' and t.visible >= 0 {$visible}	WHERE {$where}
ORDER BY t.lastpost DESC LIMIT $start, $perpage ");	ORDER BY t.lastpost DESC LIMIT $start, $perpage ");
Zeile 1570	Zeile 1593
{ $forumpermissions = $fpermissions[$subscription['fid']];	{ $forumpermissions = $fpermissions[$subscription['fid']];
if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $subscription['uid'] != $mybb->user['uid']))	if(isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $subscription['uid'] != $mybb->user['uid'])
{ // Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid'];	{ // Hmm, you don't have permission to view this thread - unsubscribe! $del_subscriptions[] = $subscription['sid'];
Zeile 1593	Zeile 1616
$threadcount = $threadcount - count($del_subscriptions); if($threadcount < 0)	$threadcount = $threadcount - count($del_subscriptions); if($threadcount < 0)
{	{
$threadcount = 0; } }	$threadcount = 0; } }
Zeile 1695	Zeile 1718
$lastread = 0; if($mybb->settings['threadreadcut'] > 0)	$lastread = 0; if($mybb->settings['threadreadcut'] > 0)
{ $forum_read = $readforums[$thread['fid']];	{
$read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24;	$read_cutoff = TIME_NOW-$mybb->settings['threadreadcut']6060*24;
if($forum_read == 0 \|\| $forum_read < $read_cutoff)	if(empty($readforums[$thread['fid']]) \|\| $readforums[$thread['fid']] < $read_cutoff)
{ $forum_read = $read_cutoff;	{ $forum_read = $read_cutoff;
}	} else { $forum_read = $readforums[$thread['fid']]; }
} $cutoff = 0;	} $cutoff = 0;
Zeile 1713	Zeile 1738
if($thread['lastpost'] > $cutoff) {	if($thread['lastpost'] > $cutoff) {
if($thread['lastread'])	if(!empty($thread['lastread']))
{ $lastread = $thread['lastread']; }	{ $lastread = $thread['lastread']; }
Zeile 1724	Zeile 1749
} if(!$lastread)	} if(!$lastread)
{	{
$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) {	$readcookie = $threadread = my_get_array_cookie("threadread", $thread['tid']); if($readcookie > $forum_read) {
Zeile 1744	Zeile 1769
$thread['newpostlink'] = get_thread_link($thread['tid'], 0, "newpost"); eval("\$gotounread = \"".$templates->get("forumdisplay_thread_gotounread")."\";"); $unreadpost = 1;	$thread['newpostlink'] = get_thread_link($thread['tid'], 0, "newpost"); eval("\$gotounread = \"".$templates->get("forumdisplay_thread_gotounread")."\";"); $unreadpost = 1;
} else	} else
{ $folder_label .= $lang->icon_no_new; $new_class = "subject_old"; } if($thread['replies'] >= $mybb->settings['hottopic'] \|\| $thread['views'] >= $mybb->settings['hottopicviews'])	{ $folder_label .= $lang->icon_no_new; $new_class = "subject_old"; } if($thread['replies'] >= $mybb->settings['hottopic'] \|\| $thread['views'] >= $mybb->settings['hottopicviews'])
{	{
$folder .= "hot"; $folder_label .= $lang->icon_hot; }	$folder .= "hot"; $folder_label .= $lang->icon_hot; }
Zeile 1766	Zeile 1791
$folder .= "folder"; if($thread['visible'] == 0)	$folder .= "folder"; if($thread['visible'] == 0)
{	{
$bgcolor = "trow_shaded"; } // Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);	$bgcolor = "trow_shaded"; } // Build last post info $lastpostdate = my_date('relative', $thread['lastpost']);
	$lastposteruid = $thread['lastposteruid'];
if(!$lastposteruid && !$thread['lastposter'])	if(!$lastposteruid && !$thread['lastposter'])
{	{
$lastposter = htmlspecialchars_uni($lang->guest);	$lastposter = htmlspecialchars_uni($lang->guest);
}	}
else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }	else { $lastposter = htmlspecialchars_uni($thread['lastposter']); }
$lastposteruid = $thread['lastposteruid'];
// Don't link to guest's profiles (they have no profile). if($lastposteruid == 0)	// Don't link to guest's profiles (they have no profile). if($lastposteruid == 0)
Zeile 1927	Zeile 1952
} eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");	} eval("\$forums .= \"".$templates->get("usercp_forumsubscriptions_forum")."\";");
}	}
if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");	if(!$forums) { eval("\$forums = \"".$templates->get("usercp_forumsubscriptions_none")."\";");
} $plugins->run_hooks("usercp_forumsubscriptions_end");	} $plugins->run_hooks("usercp_forumsubscriptions_end");
eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions); }	eval("\$forumsubscriptions = \"".$templates->get("usercp_forumsubscriptions")."\";"); output_page($forumsubscriptions); }
Zeile 1952	Zeile 1977
} // Is the currently logged in user a moderator of this forum?	} // Is the currently logged in user a moderator of this forum?
$ismod = is_moderator($thread['fid']);	$ismod = is_moderator($thread['fid']);
// Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true))	// Make sure we are looking at a real thread here. if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true))
Zeile 1977	Zeile 2002
if($mybb->get_input('referrer')) { $mybb->input['referrer'] = $mybb->get_input('referrer');	if($mybb->get_input('referrer')) { $mybb->input['referrer'] = $mybb->get_input('referrer');

if(my_strpos($mybb->input['referrer'], $mybb->settings['bburl'].'/') !== 0) { if(my_strpos($mybb->input['referrer'], '/') === 0)	if(my_strpos($mybb->input['referrer'], $mybb->settings['bburl'].'/') !== 0) { if(my_strpos($mybb->input['referrer'], '/') === 0)
Zeile 1995	Zeile 2020
$url = get_thread_link($thread['tid']); } redirect($url, $lang->redirect_subscriptionadded);	$url = get_thread_link($thread['tid']); } redirect($url, $lang->redirect_subscriptionadded);
}	}
if($mybb->input['action'] == "addsubscription") { // Verify incoming POST request	if($mybb->input['action'] == "addsubscription") { // Verify incoming POST request
Zeile 2129	Zeile 2154
else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));	else { $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));
if(!$thread) { error($lang->error_invalidthread); }	if(!$thread) { error($lang->error_invalidthread); }
// Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']);	// Is the currently logged in user a moderator of this forum? $ismod = is_moderator($thread['fid']);
Zeile 2141	Zeile 2166
if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread);	if(($thread['visible'] != 1 && $ismod == false) \|\| ($thread['visible'] > 1 && $ismod == true)) { error($lang->error_invalidthread);
}	}
// check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']);	// check if the forum requires a password to view. If so, we need to show a form to the user check_forum_password($thread['fid']);
Zeile 2199	Zeile 2224
{ $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread \|\| $thread['visible'] == -1)	{ $thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT)); if(!$thread \|\| $thread['visible'] == -1)
{ error($lang->error_invalidthread);	{ error($lang->error_invalidthread);
} // Is the currently logged in user a moderator of this forum?	} // Is the currently logged in user a moderator of this forum?
Zeile 2217	Zeile 2242
$forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))	$forumpermissions = forum_permissions($thread['fid']); if($forumpermissions['canview'] == 0 \|\| $forumpermissions['canviewthreads'] == 0 \|\| (isset($forumpermissions['canonlyviewownthreads']) && $forumpermissions['canonlyviewownthreads'] != 0 && $thread['uid'] != $mybb->user['uid']))
{	{
error_no_permission(); }	error_no_permission(); }
Zeile 2243	Zeile 2268
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));

if($mybb->get_input('type') == "forum") { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_forum"); $db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'");	if($mybb->get_input('type') == "forum") { // Naming of the hook retained for backward compatibility while dropping usercp2.php $plugins->run_hooks("usercp2_removesubscriptions_forum"); $db->delete_query("forumsubscriptions", "uid='".$mybb->user['uid']."'");
if($server_http_referer) {	if($server_http_referer) {
$url = $server_http_referer; } else	$url = $server_http_referer; } else
Zeile 2269	Zeile 2294
if($server_http_referer) { $url = $server_http_referer;	if($server_http_referer) { $url = $server_http_referer;
} else {	} else {
$url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionsremoved);	$url = "usercp.php?action=subscriptions"; } redirect($url, $lang->redirect_subscriptionsremoved);
Zeile 2407	Zeile 2432
if($mybb->settings['sightml'] == 1) { $sightml = $lang->on;	if($mybb->settings['sightml'] == 1) { $sightml = $lang->on;
} else {	} else {
$sightml = $lang->off;	$sightml = $lang->off;
} if($mybb->settings['sigimgcode'] == 1)	} if($mybb->settings['sigimgcode'] == 1)
{ $sigimgcode = $lang->on;	{ $sigimgcode = $lang->on;
} else {	} else {
$sigimgcode = $lang->off; }	$sigimgcode = $lang->off; }
	if($mybb->settings['siglength'] == 0) { $siglength = $lang->unlimited; } else { $siglength = $mybb->settings['siglength']; }
$sig = htmlspecialchars_uni($sig);	$sig = htmlspecialchars_uni($sig);
$lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $mybb->settings['siglength']);	$lang->edit_sig_note2 = $lang->sprintf($lang->edit_sig_note2, $sigsmilies, $sigmycode, $sigimgcode, $sightml, $siglength);
if($mybb->settings['sigmycode'] != 0 && $mybb->settings['bbcodeinserter'] != 0 && $mybb->user['showcodebuttons'] != 0) { $codebuttons = build_mycode_inserter("signature");	if($mybb->settings['sigmycode'] != 0 && $mybb->settings['bbcodeinserter'] != 0 && $mybb->user['showcodebuttons'] != 0) { $codebuttons = build_mycode_inserter("signature");
}	}
$plugins->run_hooks("usercp_editsig_end");	$plugins->run_hooks("usercp_editsig_end");

eval("\$editsig = \"".$templates->get("usercp_editsig")."\";"); } output_page($editsig); }	eval("\$editsig = \"".$templates->get("usercp_editsig")."\";"); } output_page($editsig); }

if($mybb->input['action'] == "do_avatar" && $mybb->request_method == "post") { // Verify incoming POST request	if($mybb->input['action'] == "do_avatar" && $mybb->request_method == "post") { // Verify incoming POST request
Zeile 2461	Zeile 2496
if($mybb->usergroup['canuploadavatars'] == 0) { error_no_permission();	if($mybb->usergroup['canuploadavatars'] == 0) { error_no_permission();
}	}
$avatar = upload_avatar();	$avatar = upload_avatar();
if($avatar['error'])	if(!empty($avatar['error']))
{ $avatar_error = $avatar['error']; }	{ $avatar_error = $avatar['error']; }
Zeile 2479	Zeile 2514
"avatartype" => "upload" ); $db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'");	"avatartype" => "upload" ); $db->update_query("users", $updated_avatar, "uid='".$mybb->user['uid']."'");
}	} } elseif(!$mybb->settings['allowremoteavatars'] && !$_FILES['avatarupload']['name']) // missing avatar image { $avatar_error = $lang->error_avatarimagemissing;
} elseif($mybb->settings['allowremoteavatars']) // remote avatar {	} elseif($mybb->settings['allowremoteavatars']) // remote avatar {
Zeile 2488	Zeile 2527
{ // Gravatar $mybb->input['avatarurl'] = my_strtolower($mybb->input['avatarurl']);	{ // Gravatar $mybb->input['avatarurl'] = my_strtolower($mybb->input['avatarurl']);

// If user image does not exist, or is a higher rating, use the mystery man $email = md5($mybb->input['avatarurl']);	// If user image does not exist, or is a higher rating, use the mystery man $email = md5($mybb->input['avatarurl']);
Zeile 2496	Zeile 2535
if(!$mybb->settings['maxavatardims']) { $mybb->settings['maxavatardims'] = '100x100'; // Hard limit of 100 if there are no limits	if(!$mybb->settings['maxavatardims']) { $mybb->settings['maxavatardims'] = '100x100'; // Hard limit of 100 if there are no limits
}	}
// Because Gravatars are square, hijack the width list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));	// Because Gravatars are square, hijack the width list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims']));
Zeile 2505	Zeile 2544
// Rating? $types = array('g', 'pg', 'r', 'x'); $rating = $mybb->settings['useravatarrating'];	// Rating? $types = array('g', 'pg', 'r', 'x'); $rating = $mybb->settings['useravatarrating'];

if(!in_array($rating, $types)) { $rating = 'g';	if(!in_array($rating, $types)) { $rating = 'g';
Zeile 2547	Zeile 2586
list($width, $height, $type) = @getimagesize($tmp_name); @unlink($tmp_name); if(!$type)	list($width, $height, $type) = @getimagesize($tmp_name); @unlink($tmp_name); if(!$type)
{	{
$avatar_error = $lang->error_invalidavatarurl; } }	$avatar_error = $lang->error_invalidavatarurl; } }
Zeile 2556	Zeile 2595
if(empty($avatar_error)) { if($width && $height && $mybb->settings['maxavatardims'] != "")	if(empty($avatar_error)) { if($width && $height && $mybb->settings['maxavatardims'] != "")
{	{
list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims'])); if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight); $avatar_error = $lang->error_avatartoobig; }	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims'])); if(($maxwidth && $width > $maxwidth) \|\| ($maxheight && $height > $maxheight)) { $lang->error_avatartoobig = $lang->sprintf($lang->error_avatartoobig, $maxwidth, $maxheight); $avatar_error = $lang->error_avatartoobig; }
} }	} }
// Limiting URL string to stay within database limit if(strlen($mybb->input['avatarurl']) > 200) {	// Limiting URL string to stay within database limit if(strlen($mybb->input['avatarurl']) > 200) {
Zeile 2591	Zeile 2630
else // remote avatar, but remote avatars are not allowed { $avatar_error = $lang->error_remote_avatar_not_allowed;	else // remote avatar, but remote avatars are not allowed { $avatar_error = $lang->error_remote_avatar_not_allowed;
}	}
if(empty($avatar_error)) {	if(empty($avatar_error)) {
Zeile 2599	Zeile 2638
redirect("usercp.php?action=avatar", $lang->redirect_avatarupdated); } else	redirect("usercp.php?action=avatar", $lang->redirect_avatarupdated); } else
{	{
$mybb->input['action'] = "avatar"; $avatar_error = inline_error($avatar_error); }	$mybb->input['action'] = "avatar"; $avatar_error = inline_error($avatar_error); }
Zeile 2608	Zeile 2647
if($mybb->input['action'] == "avatar") { $plugins->run_hooks("usercp_avatar_start");	if($mybb->input['action'] == "avatar") { $plugins->run_hooks("usercp_avatar_start");

$avatarmsg = $avatarurl = ''; if($mybb->user['avatartype'] == "upload" \|\| stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath']))	$avatarmsg = $avatarurl = ''; if($mybb->user['avatartype'] == "upload" \|\| stristr($mybb->user['avatar'], $mybb->settings['avataruploadpath']))
Zeile 2616	Zeile 2655
$avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; } elseif($mybb->user['avatartype'] == "remote" \|\| my_validate_url($mybb->user['avatar']))	$avatarmsg = "<br /><strong>".$lang->already_uploaded_avatar."</strong>"; } elseif($mybb->user['avatartype'] == "remote" \|\| my_validate_url($mybb->user['avatar']))
{	{
$avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']); }	$avatarmsg = "<br /><strong>".$lang->using_remote_avatar."</strong>"; $avatarurl = htmlspecialchars_uni($mybb->user['avatar']); }

$useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100'); eval("\$currentavatar = \"".$templates->get("usercp_avatar_current")."\";");	$useravatar = format_avatar($mybb->user['avatar'], $mybb->user['avatardimensions'], '100x100'); eval("\$currentavatar = \"".$templates->get("usercp_avatar_current")."\";");

if($mybb->settings['maxavatardims'] != "")	if($mybb->settings['maxavatardims'] != "")
{	{
list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims'])); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); } if($mybb->settings['avatarsize'])	list($maxwidth, $maxheight) = preg_split('/[\|x]/', my_strtolower($mybb->settings['maxavatardims'])); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_dimensions, $maxwidth, $maxheight); } if($mybb->settings['avatarsize'])
{	{
$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }	$maxsize = get_friendly_size($mybb->settings['avatarsize']*1024); $lang->avatar_note .= "<br />".$lang->sprintf($lang->avatar_note_size, $maxsize); }
Zeile 2646	Zeile 2685
elseif($mybb->settings['avatarresizing'] == "user") { eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");	elseif($mybb->settings['avatarresizing'] == "user") { eval("\$auto_resize = \"".$templates->get("usercp_avatar_auto_resize_user")."\";");
}	}
$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1)	$avatarupload = ''; if($mybb->usergroup['canuploadavatars'] == 1)
Zeile 2662	Zeile 2701
$removeavatar = ''; if(!empty($mybb->user['avatar']))	$removeavatar = ''; if(!empty($mybb->user['avatar']))
{	{
eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";"); }	eval("\$removeavatar = \"".$templates->get("usercp_avatar_remove")."\";"); }
Zeile 2678	Zeile 2717
} if($mybb->input['action'] == "acceptrequest")	} if($mybb->input['action'] == "acceptrequest")
{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); // Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);	{ // Verify incoming POST request verify_post_check($mybb->get_input('my_post_key')); // Validate request $query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND touid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query);
if(empty($request)) { error($lang->invalid_request);	if(empty($request)) { error($lang->invalid_request);
Zeile 2821	Zeile 2860
$query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND uid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query); if(empty($request))	$query = $db->simple_select('buddyrequests', '*', 'id='.$mybb->get_input('id', MyBB::INPUT_INT).' AND uid='.(int)$mybb->user['uid']); $request = $db->fetch_array($query); if(empty($request))
{	{
error($lang->invalid_request); }	error($lang->invalid_request); }
Zeile 2955	Zeile 2994
} $error_message = $lang->$string;	} $error_message = $lang->$string;
array_pop($users); // To maintain a proper count when we call count($users) continue; }	array_pop($users); // To maintain a proper count when we call count($users) continue; }
if(isset($requests[$user['uid']])) { if($mybb->get_input('manage') != "ignored")	if(isset($requests[$user['uid']])) { if($mybb->get_input('manage') != "ignored")
Zeile 2984	Zeile 3023
{ $error_message = $lang->users_already_rec_request_alt; }	{ $error_message = $lang->users_already_rec_request_alt; }

array_pop($users); // To maintain a proper count when we call count($users) continue; }	array_pop($users); // To maintain a proper count when we call count($users) continue; }

// Do we have auto approval set to On? if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored")	// Do we have auto approval set to On? if($user['buddyrequestsauto'] == 1 && $mybb->get_input('manage') != "ignored")
{ $existing_users[] = $user['uid'];	{ $existing_users[] = $user['uid'];
$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',	$pm = array( 'subject' => 'buddyrequest_new_buddy', 'message' => 'buddyrequest_new_buddy_message',
'touid' => $user['uid'], 'receivepms' => (int)$user['buddyrequestspm'], 'language' => $user['language'], 'language_file' => 'usercp' );	'touid' => $user['uid'], 'receivepms' => (int)$user['buddyrequestspm'], 'language' => $user['language'], 'language_file' => 'usercp' );
send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored")	send_pm($pm); } elseif($user['buddyrequestsauto'] != 1 && $mybb->get_input('manage') != "ignored")
Zeile 3026	Zeile 3065
elseif($mybb->get_input('manage') == "ignored") { $existing_users[] = $user['uid'];	elseif($mybb->get_input('manage') == "ignored") { $existing_users[] = $user['uid'];
} }	} }
} if($found_users < count($users))	} if($found_users < count($users))
Zeile 3035	Zeile 3074
if($error_message) { $error_message .= "<br />";	if($error_message) { $error_message .= "<br />";
}	}
$error_message .= $lang->invalid_user_selected; }	$error_message .= $lang->invalid_user_selected; }
Zeile 3053	Zeile 3092
} if($adding_self == true)	} if($adding_self == true)
{	{
if($mybb->get_input('manage') == "ignored")	if($mybb->get_input('manage') == "ignored")
{	{
$error_message = $lang->cant_add_self_to_ignore_list; } else { $error_message = $lang->cant_add_self_to_buddy_list;	$error_message = $lang->cant_add_self_to_ignore_list; } else { $error_message = $lang->cant_add_self_to_buddy_list;
}	}
} if(count($existing_users) == 0)	} if(count($existing_users) == 0)
Zeile 3094	Zeile 3133
else { $user['buddylist'] = array();	else { $user['buddylist'] = array();
}	}
$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $user['buddylist']); unset($user['buddylist'][$key]);	$key = array_search($mybb->get_input('delete', MyBB::INPUT_INT), $user['buddylist']); unset($user['buddylist'][$key]);
Zeile 3197	Zeile 3236
{ echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n"; echo "\$(\"#buddylink\").remove();\n";	{ echo "\$(\"#".$mybb->get_input('manage')."_count\").html(\"0\");\n"; echo "\$(\"#buddylink\").remove();\n";

if($mybb->get_input('manage') == "ignored") { echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n";	if($mybb->get_input('manage') == "ignored") { echo "\$(\"#ignore_list\").html(\"<li>{$lang->ignore_list_empty}</li>\");\n";
Zeile 3326	Zeile 3365
eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");	eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests", 1, 0)."\";");
echo $sentrequests;
echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; } else	echo $sent_requests."<script type=\"text/javascript\">{$message_js}</script>"; } else
Zeile 3338	Zeile 3376
exit; }	exit; }
$received_rows = '';	$received_rows = $bgcolor = '';
$query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r	$query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r
Zeile 3360	Zeile 3398
eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");	eval("\$received_requests = \"".$templates->get("usercp_editlists_received_requests")."\";");
$sent_rows = '';	$sent_rows = $bgcolor = '';
$query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r	$query = $db->query(" SELECT r.*, u.username FROM ".TABLE_PREFIX."buddyrequests r
Zeile 3373	Zeile 3411
$request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']); $request['date'] = my_date('relative', $request['date']); eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";");	$request['username'] = build_profile_link(htmlspecialchars_uni($request['username']), (int)$request['touid']); $request['date'] = my_date('relative', $request['date']); eval("\$sent_rows .= \"".$templates->get("usercp_editlists_sent_request")."\";");
}	}
if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";");	if($sent_rows == '') { eval("\$sent_rows = \"".$templates->get("usercp_editlists_no_requests")."\";");
} eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");	} eval("\$sent_requests = \"".$templates->get("usercp_editlists_sent_requests")."\";");
$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");	$plugins->run_hooks("usercp_editlists_end"); eval("\$listpage = \"".$templates->get("usercp_editlists")."\";");
Zeile 3407	Zeile 3445
LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) LEFT JOIN ".TABLE_PREFIX."forums f ON (f.fid=t.fid) WHERE p.uid = '{$mybb->user['uid']}' AND p.visible = '-2'	LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) LEFT JOIN ".TABLE_PREFIX."forums f ON (f.fid=t.fid) WHERE p.uid = '{$mybb->user['uid']}' AND p.visible = '-2'
ORDER BY p.dateline DESC	ORDER BY p.dateline DESC, p.pid DESC
"); while($draft = $db->fetch_array($query))	"); while($draft = $db->fetch_array($query))
Zeile 3442	Zeile 3480
{ $disable_delete_drafts = 'disabled="disabled"'; eval("\$drafts = \"".$templates->get("usercp_drafts_none")."\";");	{ $disable_delete_drafts = 'disabled="disabled"'; eval("\$drafts = \"".$templates->get("usercp_drafts_none")."\";");
}	}
$plugins->run_hooks("usercp_drafts_end"); eval("\$draftlist = \"".$templates->get("usercp_drafts")."\";");	$plugins->run_hooks("usercp_drafts_end"); eval("\$draftlist = \"".$templates->get("usercp_drafts")."\";");
Zeile 3459	Zeile 3497
if(empty($mybb->input['deletedraft'])) { error($lang->no_drafts_selected);	if(empty($mybb->input['deletedraft'])) { error($lang->no_drafts_selected);
} $plugins->run_hooks("usercp_do_drafts_start");	} $plugins->run_hooks("usercp_do_drafts_start");
$pidin = array(); $tidin = array();	$pidin = array(); $tidin = array();
Zeile 3469	Zeile 3507
foreach($mybb->input['deletedraft'] as $id => $val) { if($val == "post")	foreach($mybb->input['deletedraft'] as $id => $val) { if($val == "post")
{	{
$pidin[] = "'".(int)$id."'"; } elseif($val == "thread")	$pidin[] = "'".(int)$id."'"; } elseif($val == "thread")
Zeile 3482	Zeile 3520
$tidin = implode(",", $tidin); $db->delete_query("threads", "tid IN ($tidin) AND visible='-2' AND uid='".$mybb->user['uid']."'"); $tidinp = "OR tid IN ($tidin)";	$tidin = implode(",", $tidin); $db->delete_query("threads", "tid IN ($tidin) AND visible='-2' AND uid='".$mybb->user['uid']."'"); $tidinp = "OR tid IN ($tidin)";
	} else { $tidinp = '';
} if($pidin \|\| $tidinp) {	} if($pidin \|\| $tidinp) {
Zeile 3511	Zeile 3553
// Changing our display group if($mybb->get_input('displaygroup', MyBB::INPUT_INT))	// Changing our display group if($mybb->get_input('displaygroup', MyBB::INPUT_INT))
{	{
// Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));	// Verify incoming POST request verify_post_check($mybb->get_input('my_post_key'));
Zeile 3529	Zeile 3571
$cache->update_moderators(); $plugins->run_hooks("usercp_usergroups_change_displaygroup"); redirect("usercp.php?action=usergroups", $lang->display_group_changed);	$cache->update_moderators(); $plugins->run_hooks("usercp_usergroups_change_displaygroup"); redirect("usercp.php?action=usergroups", $lang->display_group_changed);
exit;	exit;
} // Leaving a group if($mybb->get_input('leavegroup', MyBB::INPUT_INT)) { // Verify incoming POST request	} // Leaving a group if($mybb->get_input('leavegroup', MyBB::INPUT_INT)) { // Verify incoming POST request
verify_post_check($mybb->input['my_post_key']);	verify_post_check($mybb->get_input('my_post_key'));
if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', MyBB::INPUT_INT).",") === false) {	if(my_strpos($ingroups, ",".$mybb->get_input('leavegroup', MyBB::INPUT_INT).",") === false) {
Zeile 3556	Zeile 3598
$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;	$plugins->run_hooks("usercp_usergroups_leave_group"); redirect("usercp.php?action=usergroups", $lang->left_group); exit;
}	}
$groupleaders = array();	$groupleaders = array();
Zeile 3581	Zeile 3623
$usergroup = $usergroups[$mybb->get_input('joingroup', MyBB::INPUT_INT)]; if($usergroup['type'] == 5)	$usergroup = $usergroups[$mybb->get_input('joingroup', MyBB::INPUT_INT)]; if($usergroup['type'] == 5)
{	{
error($lang->cannot_join_invite_group); }	error($lang->cannot_join_invite_group); }
Zeile 3606	Zeile 3648
if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) { $reasonlength = my_strlen($mybb->get_input('reason'));	if($mybb->get_input('do') == "joingroup" && $usergroup['type'] == 4) { $reasonlength = my_strlen($mybb->get_input('reason'));

if($reasonlength > 250) // Reason field is varchar(250) in database	if($reasonlength > 250) // Reason field is varchar(250) in database
{	{
error($lang->sprintf($lang->joinreason_too_long, ($reasonlength - 250))); }	error($lang->sprintf($lang->joinreason_too_long, ($reasonlength - 250))); }
Zeile 3642	Zeile 3684
$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent);	$plugins->run_hooks("usercp_usergroups_join_group_request"); redirect("usercp.php?action=usergroups", $lang->group_join_requestsent);
exit;	exit;
} elseif($usergroup['type'] == 4) {	} elseif($usergroup['type'] == 4) {
Zeile 3650	Zeile 3692
eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;	eval("\$joinpage = \"".$templates->get("usercp_usergroups_joingroup")."\";"); output_page($joinpage); exit;
}	}
else { join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', MyBB::INPUT_INT));	else { join_usergroup($mybb->user['uid'], $mybb->get_input('joingroup', MyBB::INPUT_INT));
Zeile 3745	Zeile 3787
$usergroup = $usergroups[$mybb->user['usergroup']]; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']); $usergroup['usertitle'] = htmlspecialchars_uni($usergroup['usertitle']);	$usergroup = $usergroups[$mybb->user['usergroup']]; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']); $usergroup['usertitle'] = htmlspecialchars_uni($usergroup['usertitle']);
$usergroup['description'] = htmlspecialchars_uni($usergroup['description']);	if($usergroup['description']) { $usergroup['description'] = htmlspecialchars_uni($usergroup['description']); eval("\$description = \"".$templates->get("usercp_usergroups_memberof_usergroup_description")."\";"); }
eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveprimary")."\";"); $trow = alt_trow(); if($usergroup['candisplaygroup'] == 1 && $usergroup['gid'] == $mybb->user['displaygroup']) { eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_display")."\";");	eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveprimary")."\";"); $trow = alt_trow(); if($usergroup['candisplaygroup'] == 1 && $usergroup['gid'] == $mybb->user['displaygroup']) { eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_display")."\";");
}	}
elseif($usergroup['candisplaygroup'] == 1) { eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_setdisplay")."\";");	elseif($usergroup['candisplaygroup'] == 1) { eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_setdisplay")."\";");
Zeile 3778	Zeile 3824
$showmemberof = true; if(isset($groupleader[$usergroup['gid']]))	$showmemberof = true; if(isset($groupleader[$usergroup['gid']]))
{	{
eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveleader")."\";"); } elseif($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5)	eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leaveleader")."\";"); } elseif($usergroup['type'] != 4 && $usergroup['type'] != 3 && $usergroup['type'] != 5)
Zeile 3788	Zeile 3834
else { eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leave")."\";");	else { eval("\$leavelink = \"".$templates->get("usercp_usergroups_memberof_usergroup_leave")."\";");
}	}
$description = ''; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']);	$description = ''; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']);
Zeile 3804	Zeile 3850
eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_display")."\";"); } elseif($usergroup['candisplaygroup'] == 1)	eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_display")."\";"); } elseif($usergroup['candisplaygroup'] == 1)
{	{
eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_setdisplay")."\";");	eval("\$displaycode = \"".$templates->get("usercp_usergroups_memberof_usergroup_setdisplay")."\";");
}	}
else { $displaycode = ''; } eval("\$memberoflist .= \"".$templates->get("usercp_usergroups_memberof_usergroup")."\";");	else { $displaycode = ''; } eval("\$memberoflist .= \"".$templates->get("usercp_usergroups_memberof_usergroup")."\";");
} }	} }
eval("\$membergroups = \"".$templates->get("usercp_usergroups_memberof")."\";"); // List of groups this user has applied for but has not been accepted in to	eval("\$membergroups = \"".$templates->get("usercp_usergroups_memberof")."\";"); // List of groups this user has applied for but has not been accepted in to
Zeile 3821	Zeile 3867
while($request = $db->fetch_array($query)) { $appliedjoin[$request['gid']] = $request['dateline'];	while($request = $db->fetch_array($query)) { $appliedjoin[$request['gid']] = $request['dateline'];
}	}
// Fetch list of groups the member can join $existinggroups = $mybb->user['usergroup'];	// Fetch list of groups the member can join $existinggroups = $mybb->user['usergroup'];
Zeile 3846	Zeile 3892
$description = ''; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']); if($usergroup['description'])	$description = ''; $usergroup['title'] = htmlspecialchars_uni($usergroup['title']); if($usergroup['description'])
{	{
$usergroup['description'] = htmlspecialchars_uni($usergroup['description']); eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";");	$usergroup['description'] = htmlspecialchars_uni($usergroup['description']); eval("\$description = \"".$templates->get("usercp_usergroups_joinable_usergroup_description")."\";");
}	}
// Moderating join requests? if($usergroup['type'] == 4)	// Moderating join requests? if($usergroup['type'] == 4)
{	{
$conditions = $lang->usergroup_joins_moderated;	$conditions = $lang->usergroup_joins_moderated;
} elseif($usergroup['type'] == 5) {	} elseif($usergroup['type'] == 5) {
$conditions = $lang->usergroup_joins_invite;	$conditions = $lang->usergroup_joins_invite;
}	}
else { $conditions = $lang->usergroup_joins_anyone;	else { $conditions = $lang->usergroup_joins_anyone;
}	}
if(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] != 5)	if(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] != 5)
{	{
$applydate = my_date('relative', $appliedjoin[$usergroup['gid']]); $joinlink = $lang->sprintf($lang->join_group_applied, $applydate); } elseif(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] == 5)	$applydate = my_date('relative', $appliedjoin[$usergroup['gid']]); $joinlink = $lang->sprintf($lang->join_group_applied, $applydate); } elseif(isset($appliedjoin[$usergroup['gid']]) && $usergroup['type'] == 5)
{	{
$joinlink = $lang->sprintf($lang->pending_invitation, $usergroup['gid'], $mybb->post_code);	$joinlink = $lang->sprintf($lang->pending_invitation, $usergroup['gid'], $mybb->post_code);
}	}
elseif($usergroup['type'] == 5)	elseif($usergroup['type'] == 5)
{	{
$joinlink = "--"; } else	$joinlink = "--"; } else
{	{
eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";"); }	eval("\$joinlink = \"".$templates->get("usercp_usergroups_joinable_usergroup_join")."\";"); }
Zeile 3895	Zeile 3941
$comma = $lang->comma; } $usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;	$comma = $lang->comma; } $usergroupleaders = $lang->usergroup_leaders." ".$usergroupleaders;
}	}
if(my_strpos($usergroupleaders, $mybb->user['username']) === false) { // User is already a leader of the group, so don't show as a "Join Group"	if(my_strpos($usergroupleaders, $mybb->user['username']) === false) { // User is already a leader of the group, so don't show as a "Join Group"
Zeile 3904	Zeile 3950
} } if($joinablegrouplist)	} } if($joinablegrouplist)
{	{
eval("\$joinablegroups = \"".$templates->get("usercp_usergroups_joinable")."\";"); }	eval("\$joinablegroups = \"".$templates->get("usercp_usergroups_joinable")."\";"); }
Zeile 3921	Zeile 3967
if($mybb->settings['enableattachments'] == 0) { error($lang->attachments_disabled);	if($mybb->settings['enableattachments'] == 0) { error($lang->attachments_disabled);
} $plugins->run_hooks("usercp_attachments_start"); // Get unviewable forums	} $plugins->run_hooks("usercp_attachments_start"); // Get unviewable forums
$f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums();	$f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(true); $inactiveforums = get_inactive_forums();
Zeile 3968	Zeile 4014
LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) WHERE a.uid='".$mybb->user['uid']."' {$f_perm_sql}	LEFT JOIN ".TABLE_PREFIX."posts p ON (a.pid=p.pid) LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) WHERE a.uid='".$mybb->user['uid']."' {$f_perm_sql}
ORDER BY p.dateline DESC LIMIT {$start}, {$perpage}	ORDER BY p.dateline DESC, p.pid DESC LIMIT {$start}, {$perpage}
"); $bandwidth = $totaldownloads = $totalusage = $totalattachments = $processedattachments = 0;	"); $bandwidth = $totaldownloads = $totalusage = $totalattachments = $processedattachments = 0;
Zeile 4005	Zeile 4051
++$processedattachments; }	++$processedattachments; }
	$multipage = '';
if($processedattachments >= $perpage \|\| $page > 1) { $query = $db->query("	if($processedattachments >= $perpage \|\| $page > 1) { $query = $db->query("
Zeile 4036	Zeile 4083
} $bandwidth = get_friendly_size($bandwidth);	} $bandwidth = get_friendly_size($bandwidth);
	eval("\$delete_button = \"".$templates->get("delete_attachments_button")."\";");
if(!$attachments) { eval("\$attachments = \"".$templates->get("usercp_attachments_none")."\";"); $usagenote = '';	if(!$attachments) { eval("\$attachments = \"".$templates->get("usercp_attachments_none")."\";"); $usagenote = '';
	$delete_button = '';
} $plugins->run_hooks("usercp_attachments_end");	} $plugins->run_hooks("usercp_attachments_end");
Zeile 4261	Zeile 4311
$mybb->user['posts'] = my_number_format($mybb->user['postnum']); // Build referral link	$mybb->user['posts'] = my_number_format($mybb->user['postnum']); // Build referral link
	$referral_info = '';
if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);	if($mybb->settings['usereferrals'] == 1) { $referral_link = $lang->sprintf($lang->referral_link, $settings['bburl'], $mybb->user['uid']);
Zeile 4286	Zeile 4337
$query = $db->simple_select("threadsubscriptions", "sid", "uid = '".$mybb->user['uid']."'", array("limit" => 1)); if($db->num_rows($query)) {	$query = $db->simple_select("threadsubscriptions", "sid", "uid = '".$mybb->user['uid']."'", array("limit" => 1)); if($db->num_rows($query)) {
$visible = "AND t.visible != 0"; if(is_moderator() == true)	$where = array( "s.uid={$mybb->user['uid']}", "t.lastposteruid!={$mybb->user['uid']}", get_visible_where('t') ); if($unviewable_forums = get_unviewable_forums(true)) { $where[] = "t.fid NOT IN ({$unviewable_forums})"; } if($inactive_forums = get_inactive_forums())
{	{
$visible = '';	$where[] = "t.fid NOT IN ({$inactive_forums})";
}	}
	$where = implode(' AND ', $where);
$query = $db->query(" SELECT s., t., t.username AS threadusername, u.username FROM ".TABLE_PREFIX."threadsubscriptions s LEFT JOIN ".TABLE_PREFIX."threads t ON (s.tid=t.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)	$query = $db->query(" SELECT s., t., t.username AS threadusername, u.username FROM ".TABLE_PREFIX."threadsubscriptions s LEFT JOIN ".TABLE_PREFIX."threads t ON (s.tid=t.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)
WHERE s.uid='".$mybb->user['uid']."' {$visible}	WHERE {$where}
ORDER BY t.lastpost DESC LIMIT 0, 10 ");	ORDER BY t.lastpost DESC LIMIT 0, 10 ");
	$subscriptions = array();
$fpermissions = forum_permissions();	$fpermissions = forum_permissions();

while($subscription = $db->fetch_array($query)) { $forumpermissions = $fpermissions[$subscription['fid']];	while($subscription = $db->fetch_array($query)) { $forumpermissions = $fpermissions[$subscription['fid']];
if($forumpermissions['canview'] != 0 && $forumpermissions['canviewthreads'] != 0 && ($forumpermissions['canonlyviewownthreads'] == 0 \|\| $subscription['uid'] == $mybb->user['uid']))	if(!isset($forumpermissions['canonlyviewownthreads']) \|\| $forumpermissions['canonlyviewownthreads'] == 0 \|\| $subscription['uid'] == $mybb->user['uid'])
{ $subscriptions[$subscription['tid']] = $subscription; } }	{ $subscriptions[$subscription['tid']] = $subscription; } }
if(is_array($subscriptions))	if($subscriptions)
{ $tids = implode(",", array_keys($subscriptions));	{ $tids = implode(",", array_keys($subscriptions));
Zeile 4341	Zeile 4407
while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;	while($post = $db->fetch_array($query)) { $subscriptions[$post['tid']]['doticon'] = 1;
} }	} }
$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();	$icon_cache = $cache->read("posticons"); $threadprefixes = build_prefixes();
	$latest_subscribed_threads = '';
foreach($subscriptions as $thread) {	foreach($subscriptions as $thread) {
Zeile 4354	Zeile 4421
$folder_label = ''; $gotounread = '';	$folder_label = ''; $gotounread = '';
if($thread['tid'])	if(!empty($thread['tid']))
{ $bgcolor = alt_trow(); $thread['subject'] = $parser->parse_badwords($thread['subject']);	{ $bgcolor = alt_trow(); $thread['subject'] = $parser->parse_badwords($thread['subject']);
Zeile 4386	Zeile 4453
$icon = " "; }	$icon = " "; }
if($thread['doticon'])	if(!isset($thread['doticon']))
{ $folder = "dot_"; $folder_label .= $lang->icon_dot; } // Check to see which icon we display	{ $folder = "dot_"; $folder_label .= $lang->icon_dot; } // Check to see which icon we display
if($thread['lastread'] && $thread['lastread'] < $thread['lastpost'])	if(!empty($thread['lastread']) && $thread['lastread'] < $thread['lastpost'])
{ $folder .= "new"; $folder_label .= $lang->icon_new;	{ $folder .= "new"; $folder_label .= $lang->icon_new;
Zeile 4448	Zeile 4515
} // User's Latest Threads	} // User's Latest Threads
	$where = array( "t.uid={$mybb->user['uid']}", get_visible_where('t') ); if($unviewable_forums = get_unviewable_forums(true)) { $where[] = "t.fid NOT IN ({$unviewable_forums})"; } if($inactive_forums = get_inactive_forums()) { $where[] = "t.fid NOT IN ({$inactive_forums})"; } $where = implode(' AND ', $where);

// Get unviewable forums $f_perm_sql = ''; $unviewable_forums = get_unviewable_forums(); $inactiveforums = get_inactive_forums(); if($unviewable_forums) { $f_perm_sql = " AND t.fid NOT IN ($unviewable_forums)"; } if($inactiveforums) { $f_perm_sql .= " AND t.fid NOT IN ($inactiveforums)"; } $visible = " AND t.visible != 0"; if(is_moderator() == true) { $visible = ''; }
$query = $db->query(" SELECT t.*, t.username AS threadusername, u.username FROM ".TABLE_PREFIX."threads t LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)	$query = $db->query(" SELECT t.*, t.username AS threadusername, u.username FROM ".TABLE_PREFIX."threads t LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid = t.uid)
WHERE t.uid='".$mybb->user['uid']."' AND t.firstpost != 0 AND t.visible >= 0 {$visible}{$f_perm_sql}	WHERE {$where}
ORDER BY t.lastpost DESC LIMIT 0, 5 ");	ORDER BY t.lastpost DESC LIMIT 0, 5 ");

// Figure out whether we can view these threads... $threadcache = array(); $fpermissions = forum_permissions(); while($thread = $db->fetch_array($query)) {	// Figure out whether we can view these threads... $threadcache = array(); $fpermissions = forum_permissions(); while($thread = $db->fetch_array($query)) {
// Moderated, and not moderator? if($thread['visible'] == 0 && is_moderator($thread['fid'], "canviewunapprove") === false) { continue; } $forumpermissions = $fpermissions[$thread['fid']]; if($forumpermissions['canview'] != 0 \|\| $forumpermissions['canviewthreads'] != 0) { $threadcache[$thread['tid']] = $thread; }	$threadcache[$thread['tid']] = $thread;
} $latest_threads = '';	} $latest_threads = '';
Zeile 4542	Zeile 4596
$latest_threads_threads = ''; foreach($threadcache as $thread) {	$latest_threads_threads = ''; foreach($threadcache as $thread) {
$plugins->run_hooks("usercp_latest_threads_thread");	$plugins->run_hooks("usercp_latest_threads_thread");
if($thread['tid']) { $bgcolor = alt_trow();	if($thread['tid']) { $bgcolor = alt_trow();
Zeile 4604	Zeile 4658
$cutoff = 0; if($thread['lastpost'] > $cutoff) {	$cutoff = 0; if($thread['lastpost'] > $cutoff) {
if($thread['lastread'])	if(!empty($thread['lastread']))
{ $lastread = $thread['lastread']; }	{ $lastread = $thread['lastread']; }
Zeile 4624	Zeile 4678
} // Folder Icons	} // Folder Icons
if($thread['doticon'])	if(!empty($thread['doticon']))
{ $folder = "dot_"; $folder_label .= $lang->icon_dot;	{ $folder = "dot_"; $folder_label .= $lang->icon_dot;