Vergleich polls.php - 1.8.5 - 1.8.37

  Keine Änderungen   Hinzugefügt   Modifiziert   Entfernt
Zeile 24Zeile 24

if($mybb->user['uid'] != 0)
{


if($mybb->user['uid'] != 0)
{

 
	$mybb->user['username'] = htmlspecialchars_uni($mybb->user['username']);

	eval("\$loginbox = \"".$templates->get("changeuserbox")."\";");
}
else
{

	eval("\$loginbox = \"".$templates->get("changeuserbox")."\";");
}
else
{

 
	$username = '';

	eval("\$loginbox = \"".$templates->get("loginbox")."\";");
}


	eval("\$loginbox = \"".$templates->get("loginbox")."\";");
}


Zeile 51Zeile 53
	$plugins->run_hooks("polls_newpoll_start");

$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));

	$plugins->run_hooks("polls_newpoll_start");

$thread = get_thread($mybb->get_input('tid', MyBB::INPUT_INT));

	if(!$thread)
{

	if(!$thread || $thread['visible'] == -1)
{

		error($lang->error_invalidthread);

		error($lang->error_invalidthread);

	}

	}


// Is the currently logged in user a moderator of this forum?


// Is the currently logged in user a moderator of this forum?

	if(is_moderator($thread['fid']))
{
$ismod = true;
}
else
{
$ismod = false;
}

	$ismod = is_moderator($thread['fid']);









// Make sure we are looking at a real thread here.
if(($thread['visible'] != 1 && $ismod == false) || ($thread['visible'] > 1 && $ismod == true))


// Make sure we are looking at a real thread here.
if(($thread['visible'] != 1 && $ismod == false) || ($thread['visible'] > 1 && $ismod == true))

Zeile 104Zeile 99
	if($thread['poll'])
{
error($lang->error_pollalready);

	if($thread['poll'])
{
error($lang->error_pollalready);

	}


	}


	$time = TIME_NOW;
if($thread['dateline'] < ($time-($mybb->settings['polltimelimit']*60*60)) && $mybb->settings['polltimelimit'] != 0 && $ismod == false)
{

	$time = TIME_NOW;
if($thread['dateline'] < ($time-($mybb->settings['polltimelimit']*60*60)) && $mybb->settings['polltimelimit'] != 0 && $ismod == false)
{

Zeile 136Zeile 131
	$postoptionschecked = array('public' => '', 'multiple' => '');
$postoptions = $mybb->get_input('postoptions', MyBB::INPUT_INT);
if(isset($postoptions['multiple']) && $postoptions['multiple'] == 1)

	$postoptionschecked = array('public' => '', 'multiple' => '');
$postoptions = $mybb->get_input('postoptions', MyBB::INPUT_INT);
if(isset($postoptions['multiple']) && $postoptions['multiple'] == 1)

	{

	{

		$postoptionschecked['multiple'] = 'checked="checked"';
}
if(isset($postoptions['public']) && $postoptions['public'] == 1)

		$postoptionschecked['multiple'] = 'checked="checked"';
}
if(isset($postoptions['public']) && $postoptions['public'] == 1)

Zeile 165Zeile 160
	else
{
$timeout = 0;

	else
{
$timeout = 0;

	}


	}


	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)

	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)

	{

	{

		$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);

		$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);

	}

	}

	else
{
$maxoptions = 0;

	else
{
$maxoptions = 0;

Zeile 182Zeile 177
	output_page($newpoll);
}
if($mybb->input['action'] == "do_newpoll" && $mybb->request_method == "post")

	output_page($newpoll);
}
if($mybb->input['action'] == "do_newpoll" && $mybb->request_method == "post")

{

{

	// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));


	// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));


Zeile 215Zeile 210

// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls
if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid, "canmanagepolls")) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))


// No permission if: Not thread author; not moderator; no forum perms to view, post threads, post polls
if(($thread['uid'] != $mybb->user['uid'] && !is_moderator($fid, "canmanagepolls")) || ($forumpermissions['canview'] == 0 || $forumpermissions['canpostthreads'] == 0 || $forumpermissions['canpostpolls'] == 0))

	{

	{

		error_no_permission();
}


		error_no_permission();
}


Zeile 247Zeile 242
	}
$optioncount = "0";
$options = $mybb->get_input('options', MyBB::INPUT_ARRAY);

	}
$optioncount = "0";
$options = $mybb->get_input('options', MyBB::INPUT_ARRAY);





	for($i = 1; $i <= $polloptions; ++$i)
{
if(!isset($options[$i]))

	for($i = 1; $i <= $polloptions; ++$i)
{
if(!isset($options[$i]))

Zeile 255Zeile 250
			$options[$i] = '';
}


			$options[$i] = '';
}


		if(trim($options[$i]) != "")
{
$optioncount++;
}

if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)

		if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit'])






		{
$lengtherror = 1;
break;
}

		{
$lengtherror = 1;
break;
}

 

if(strpos($options[$i], '||~|~||') !== false)
{
$sequenceerror = 1;
break;
}

if(trim($options[$i]) != "")
{
$optioncount++;
}
}

if(isset($lengtherror))
{
error($lang->error_polloptiontoolong);

	}


	}


	if(isset($lengtherror))

	if(isset($sequenceerror))

	{

	{

		error($lang->error_polloptiontoolong);

		error($lang->error_polloptionsequence);

	}

$mybb->input['question'] = $mybb->get_input('question');

	}

$mybb->input['question'] = $mybb->get_input('question');

Zeile 296Zeile 302
	}

if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)

	}

if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)

	{

	{

		$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);

		$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);

	}
else
{

	}
else
{

		$timeout = 0;

		$timeout = 0;

	}

	}


if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)


if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $polloptions)

	{
$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);
}
else
{
$maxoptions = 0;
}


	{
$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);
}
else
{
$maxoptions = 0;
}


	$newpoll = array(
"tid" => $thread['tid'],
"question" => $db->escape_string($mybb->input['question']),

	$newpoll = array(
"tid" => $thread['tid'],
"question" => $db->escape_string($mybb->input['question']),

Zeile 376Zeile 382
	add_breadcrumb($lang->nav_editpoll);

$forumpermissions = forum_permissions($fid);

	add_breadcrumb($lang->nav_editpoll);

$forumpermissions = forum_permissions($fid);





	// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);

	// Get forum info
$forum = get_forum($fid);
if(!$forum)
{
error($lang->error_invalidforum);

	}

	}

	else
{
// Is our forum closed?

	else
{
// Is our forum closed?

Zeile 390Zeile 396
		{
// Doesn't look like it is
error($lang->error_closedinvalidforum);

		{
// Doesn't look like it is
error($lang->error_closedinvalidforum);

		}
}


		}
}


	if(!is_moderator($fid, "canmanagepolls"))
{
error_no_permission();

	if(!is_moderator($fid, "canmanagepolls"))
{
error_no_permission();

Zeile 435Zeile 441
			$counter = $i + 1;
$option = $optionsarray[$i];
$option = htmlspecialchars_uni($option);

			$counter = $i + 1;
$option = $optionsarray[$i];
$option = htmlspecialchars_uni($option);

			$optionvotes = (int)$votesarray[$i];

if(!$optionvotes)
{
$optionvotes = 0;
}

			$optionvotes = (int)$votesarray[$i];

if(!$optionvotes)
{
$optionvotes = 0;
}


eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
$optionvotes = "";


eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";
$optionvotes = "";

		}

		}


if(!$poll['timeout'])
{


if(!$poll['timeout'])
{

Zeile 454Zeile 460
		else
{
$timeout = $poll['timeout'];

		else
{
$timeout = $poll['timeout'];

		}

if(!$poll['maxoptions'])
{

		}

if(!$poll['maxoptions'])
{

			$maxoptions = 0;
}
else

			$maxoptions = 0;
}
else

Zeile 521Zeile 527

eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";


eval("\$optionbits .= \"".$templates->get("polls_editpoll_option")."\";");
$option = "";

		}

		}


if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)


if($mybb->get_input('timeout', MyBB::INPUT_INT) > 0)

		{

		{

			$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);

			$timeout = $mybb->get_input('timeout', MyBB::INPUT_INT);

		}

		}

		else
{
$timeout = 0;
}

		else
{
$timeout = 0;
}

		



		if(!$poll['maxoptions'])
{
$maxoptions = 0;

		if(!$poll['maxoptions'])
{
$maxoptions = 0;

Zeile 566Zeile 572
	$query = $db->simple_select("threads", "*", "poll='".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
$thread = $db->fetch_array($query);
if(!$thread)

	$query = $db->simple_select("threads", "*", "poll='".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
$thread = $db->fetch_array($query);
if(!$thread)

	{
error($lang->error_invalidthread);
}


	{
error($lang->error_invalidthread);
}


	$forumpermissions = forum_permissions($thread['fid']);

// Get forum info

	$forumpermissions = forum_permissions($thread['fid']);

// Get forum info

Zeile 611Zeile 617
	if(!isset($postoptions['multiple']) || $postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;

	if(!isset($postoptions['multiple']) || $postoptions['multiple'] != '1')
{
$postoptions['multiple'] = 0;

	}


	}


	if(!isset($postoptions['public']) || $postoptions['public'] != '1')

	if(!isset($postoptions['public']) || $postoptions['public'] != '1')

	{

	{

		$postoptions['public'] = 0;

		$postoptions['public'] = 0;

	}


	}


	if(!isset($postoptions['closed']) || $postoptions['closed'] != '1')

	if(!isset($postoptions['closed']) || $postoptions['closed'] != '1')

	{

	{

		$postoptions['closed'] = 0;
}
$optioncount = "0";
$options = $mybb->input['options'];

		$postoptions['closed'] = 0;
}
$optioncount = "0";
$options = $mybb->input['options'];


for($i = 1; $i <= $numoptions; ++$i)
{


for($i = 1; $i <= $numoptions; ++$i)
{

		if(!isset($options[$i]))

		if(!isset($options[$i]))

		{

		{

			$options[$i] = '';

			$options[$i] = '';

		}
if(trim($options[$i]) != '')














		}

if($mybb->settings['polloptionlimit'] != 0 && my_strlen($options[$i]) > $mybb->settings['polloptionlimit'])
{
$lengtherror = 1;
break;
}

if(strpos($options[$i], '||~|~||') !== false)
{
$sequenceerror = 1;
break;
}

if(trim($options[$i]) != "")

		{
$optioncount++;
}

		{
$optioncount++;
}


if(my_strlen($options[$i]) > $mybb->settings['polloptionlimit'] && $mybb->settings['polloptionlimit'] != 0)
{
$lengtherror = 1;
break;
}
}


	}








	if(isset($lengtherror))

	if(isset($lengtherror))

	{

	{

		error($lang->error_polloptiontoolong);

		error($lang->error_polloptiontoolong);

 
	}

if(isset($sequenceerror))
{
error($lang->error_polloptionsequence);

	}

$mybb->input['question'] = $mybb->get_input('question');

	}

$mybb->input['question'] = $mybb->get_input('question');

Zeile 673Zeile 691
			{
$votes[$i] = "0";
}

			{
$votes[$i] = "0";
}

			$voteslist .= $votes[$i];
$numvotes = $numvotes + $votes[$i];

			$voteslist .= (int)$votes[$i];
$numvotes = (int)$numvotes + (int)$votes[$i];

		}
}


		}
}


Zeile 686Zeile 704
	{
$timeout = 0;
}

	{
$timeout = 0;
}

	



	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $numoptions)
{
$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);

	if($mybb->get_input('maxoptions', MyBB::INPUT_INT) > 0 && $mybb->get_input('maxoptions', MyBB::INPUT_INT) < $numoptions)
{
$maxoptions = $mybb->get_input('maxoptions', MyBB::INPUT_INT);

Zeile 734Zeile 752

$tid = $poll['tid'];
$thread = get_thread($tid);


$tid = $poll['tid'];
$thread = get_thread($tid);

	if(!$thread)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);
}

	{
error($lang->error_invalidthread);
}

Zeile 762Zeile 780
	add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_pollresults);


	add_breadcrumb(htmlspecialchars_uni($thread['subject']), get_thread_link($thread['tid']));
add_breadcrumb($lang->nav_pollresults);


	$voters = $votedfor = array();

	$voters = $votedfor = $guest_voters = array();


// Calculate votes
$query = $db->query("


// Calculate votes
$query = $db->query("

Zeile 782Zeile 800

// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')


// Count number of guests and users without a username (assumes they've been deleted)
if($voter['uid'] == 0 || $voter['username'] == '')

		{

		{

			// Add one to the number of voters for guests

			// Add one to the number of voters for guests

			++$guest_voters[$voter['voteoption']];
}








			if(isset($guest_voters[$voter['voteoption']]))
{
++$guest_voters[$voter['voteoption']];
}
else
{
$guest_voters[$voter['voteoption']] = 1;
}
}

		else
{

		else
{

			$voters[$voter['voteoption']][$voter['uid']] = $voter['username'];

			$voters[$voter['voteoption']][$voter['uid']] = htmlspecialchars_uni($voter['username']);

		}
}

$optionsarray = explode("||~|~||", $poll['options']);
$votesarray = explode("||~|~||", $poll['votes']);
$poll['totvotes'] = 0;

		}
}

$optionsarray = explode("||~|~||", $poll['options']);
$votesarray = explode("||~|~||", $poll['votes']);
$poll['totvotes'] = 0;

	for($i = 1; $i <= $poll['numoptions']; ++$i)
{

	for($i = 1; $i <= $poll['numoptions']; ++$i)
{

		$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}


		$poll['totvotes'] = $poll['totvotes'] + $votesarray[$i-1];
}


Zeile 820Zeile 845
		{
$optionbg = 'trow2';
$votestar = '*';

		{
$optionbg = 'trow2';
$votestar = '*';

		}
else
{

		}
else
{

			$optionbg = 'trow1';
$votestar = '';

			$optionbg = 'trow1';
$votestar = '';

		}

		}


if($votes == 0)
{
$percent = 0;
}
else


if($votes == 0)
{
$percent = 0;
}
else

		{

		{

			$percent = number_format($votes / $poll['totvotes'] * 100, 2);
}


			$percent = number_format($votes / $poll['totvotes'] * 100, 2);
}


Zeile 863Zeile 888
					$userlist .= $guest_comma.$lang->sprintf($lang->guest_count_multiple, $guest_voters[$number]);
}
}

					$userlist .= $guest_comma.$lang->sprintf($lang->guest_count_multiple, $guest_voters[$number]);
}
}

		}

		}

		eval("\$polloptions .= \"".$templates->get("polls_showresults_resultbit")."\";");
}


		eval("\$polloptions .= \"".$templates->get("polls_showresults_resultbit")."\";");
}


Zeile 882Zeile 907
	eval("\$showresults = \"".$templates->get("polls_showresults")."\";");
output_page($showresults);
}

	eval("\$showresults = \"".$templates->get("polls_showresults")."\";");
output_page($showresults);
}

 


if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));

if($mybb->input['action'] == "vote" && $mybb->request_method == "post")
{
// Verify incoming POST request
verify_post_check($mybb->get_input('my_post_key'));





	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid')."'");
$poll = $db->fetch_array($query);

if(!$poll)
{
error($lang->error_invalidpoll);

	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid')."'");
$poll = $db->fetch_array($query);

if(!$poll)
{
error($lang->error_invalidpoll);

	}


	}


	$plugins->run_hooks("polls_vote_start");

	$plugins->run_hooks("polls_vote_start");





	$poll['timeout'] = $poll['timeout']*60*60*24;


	$poll['timeout'] = $poll['timeout']*60*60*24;


	$query = $db->simple_select("threads", "*", "poll='".(int)$poll['pid']."'");
$thread = $db->fetch_array($query);

	$thread = get_thread($poll['tid']);






	if(!$thread || $thread['visible'] == 0)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);
}

	{
error($lang->error_invalidthread);
}

Zeile 945Zeile 970
	// Check if the user has voted before...
if($mybb->user['uid'])
{

	// Check if the user has voted before...
if($mybb->user['uid'])
{

		$query = $db->simple_select("pollvotes", "*", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);

		$user_check = "uid='{$mybb->user['uid']}'";


	}

	}


if($votecheck['vid'] || (isset($mybb->cookies['pollvotes'][$poll['pid']]) && $mybb->cookies['pollvotes'][$poll['pid']] !== ""))








	else
{
$user_check = "ipaddress=".$db->escape_binary($session->packedip);
}

$query = $db->simple_select("pollvotes", "*", "{$user_check} AND pid='".$poll['pid']."'");
$votecheck = $db->fetch_array($query);

if($votecheck)

	{
error($lang->error_alreadyvoted);

	{
error($lang->error_alreadyvoted);

	}
elseif(!$mybb->user['uid'])
{
// Give a cookie to guests to inhibit revotes
if(is_array($mybb->input['option']))
{
// We have multiple options here...
$votes_cookie = implode(',', array_keys($mybb->input['option']));
}
else
{
$votes_cookie = $mybb->input['option'];
}

my_setcookie("pollvotes[{$poll['pid']}]", $votes_cookie);

 
	}


	}


	$votesql = '';
$now = TIME_NOW;

	$votesql = array();


	$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];
$numvotes = (int)$poll['numvotes'];

	$votesarray = explode("||~|~||", $poll['votes']);
$option = $mybb->input['option'];
$numvotes = (int)$poll['numvotes'];

	if($poll['multiple'] == 1)

	if($poll['multiple'] == 1)

	{
if(is_array($option))
{
$total_options = 0;

	{
if(is_array($option))
{
$total_options = 0;

		



			foreach($option as $voteoption => $vote)
{
if($vote == 1 && isset($votesarray[$voteoption-1]))
{

			foreach($option as $voteoption => $vote)
{
if($vote == 1 && isset($votesarray[$voteoption-1]))
{

					if($votesql)
{
$votesql .= ",";
}
$votesql .= "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($voteoption)."','$now')";




					$votesql[] = array(
"pid" => $poll['pid'],
"uid" => (int)$mybb->user['uid'],
"voteoption" => $db->escape_string($voteoption),
"dateline" => TIME_NOW,
"ipaddress" => $db->escape_binary($session->packedip)
);


					$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;
$total_options++;
}
}

					$votesarray[$voteoption-1]++;
$numvotes = $numvotes+1;
$total_options++;
}
}

			



			if($total_options > $poll['maxoptions'] && $poll['maxoptions'] != 0)
{
error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions']));

			if($total_options > $poll['maxoptions'] && $poll['maxoptions'] != 0)
{
error($lang->sprintf($lang->error_maxpolloptions, $poll['maxoptions']));

Zeile 1007Zeile 1025
		{
error($lang->error_nopolloptions);
}

		{
error($lang->error_nopolloptions);
}

		$votesql = "('".$poll['pid']."','".$mybb->user['uid']."','".$db->escape_string($option)."','$now')";










$votesql = array(
"pid" => $poll['pid'],
"uid" => (int)$mybb->user['uid'],
"voteoption" => $db->escape_string($option),
"dateline" => TIME_NOW,
"ipaddress" => $db->escape_binary($session->packedip)
);


		$votesarray[$option-1]++;
$numvotes = $numvotes+1;
}

if(!$votesql)

		$votesarray[$option-1]++;
$numvotes = $numvotes+1;
}

if(!$votesql)

	{

	{

		error($lang->error_nopolloptions);
}


		error($lang->error_nopolloptions);
}


	$db->write_query("
INSERT INTO
".TABLE_PREFIX."pollvotes (pid,uid,voteoption,dateline)
VALUES $votesql
");





	if($poll['multiple'] == 1)
{
$db->insert_query_multiple("pollvotes", $votesql);
}
else
{
$db->insert_query("pollvotes", $votesql);
}


	$voteslist = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

	$voteslist = '';
for($i = 1; $i <= $poll['numoptions']; ++$i)
{

Zeile 1057Zeile 1087
	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
$poll = $db->fetch_array($query);


	$query = $db->simple_select("polls", "*", "pid='".$mybb->get_input('pid', MyBB::INPUT_INT)."'");
$poll = $db->fetch_array($query);


	if(!$poll['pid'])

	if(!$poll)

	{
error($lang->error_invalidpoll);
}

	{
error($lang->error_invalidpoll);
}

Zeile 1069Zeile 1099
	// We do not have $forum_cache available here since no forums permissions are checked in undo vote
// Get thread ID and then get forum info
$thread = get_thread($poll['tid']);

	// We do not have $forum_cache available here since no forums permissions are checked in undo vote
// Get thread ID and then get forum info
$thread = get_thread($poll['tid']);

	if(!$thread || $thread['visible'] == 0)

	if(!$thread || ($thread['visible'] != 1 && ($thread['visible'] == 0 && !is_moderator($thread['fid'], "canviewunapprove")) || ($thread['visible'] == -1 && !is_moderator($thread['fid'], "canviewdeleted"))))

	{
error($lang->error_invalidthread);
}

	{
error($lang->error_invalidthread);
}

Zeile 1081Zeile 1111
	if(!$forum)
{
error($lang->error_invalidforum);

	if(!$forum)
{
error($lang->error_invalidforum);

	}
else
{

	}
else
{

		// Is our forum closed?
if($forum['open'] == 0)
{

		// Is our forum closed?
if($forum['open'] == 0)
{

Zeile 1092Zeile 1122
		}
}


		}
}


	$poll['timeout'] = $poll['timeout']*60*60*24;


	$poll['timeout'] = $poll['timeout']*60*60*24;



$expiretime = $poll['dateline'] + $poll['timeout'];
if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < TIME_NOW && $poll['timeout']))
{
error($lang->error_pollclosed);


$expiretime = $poll['dateline'] + $poll['timeout'];
if($poll['closed'] == 1 || $thread['closed'] == 1 || ($expiretime < TIME_NOW && $poll['timeout']))
{
error($lang->error_pollclosed);

	}

	}


// Check if the user has voted before...
$vote_options = array();


// Check if the user has voted before...
$vote_options = array();

 


	if($mybb->user['uid'])
{

	if($mybb->user['uid'])
{

		$query = $db->simple_select("pollvotes", "vid,voteoption", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");
while($voteoption = $db->fetch_array($query))
{
$vote_options[$voteoption['vid']] = $voteoption['voteoption'];
}
}
elseif(isset($mybb->cookies['pollvotes'][$poll['pid']]))
{
// for Guests, we simply see if they've got the cookie
$vote_options = explode(',', $mybb->cookies['pollvotes'][$poll['pid']]);


		$user_check = "uid='{$mybb->user['uid']}'";
}
else
{
$user_check = "uid='0' AND ipaddress=".$db->escape_binary($session->packedip);
}

$query = $db->simple_select("pollvotes", "vid,voteoption", "{$user_check} AND pid='".$poll['pid']."'");
while($voteoption = $db->fetch_array($query))
{
$vote_options[$voteoption['vid']] = $voteoption['voteoption'];

	}

if(empty($vote_options))
{
error($lang->error_notvoted);

	}

if(empty($vote_options))
{
error($lang->error_notvoted);

	}
else if(!$mybb->user['uid'])
{
// clear cookie for Guests
my_setcookie("pollvotes[{$poll['pid']}]", "");

 
	}

// Note, this is not thread safe!
$votesarray = explode("||~|~||", $poll['votes']);
if(count($votesarray) > $poll['numoptions'])
{

	}

// Note, this is not thread safe!
$votesarray = explode("||~|~||", $poll['votes']);
if(count($votesarray) > $poll['numoptions'])
{

		$votesarray = array_slice(0, $poll['numoptions']);

		$votesarray = array_slice($votesarray, 0, $poll['numoptions']);

	}

if($poll['multiple'] == 1)

	}

if($poll['multiple'] == 1)

Zeile 1177Zeile 1204

$plugins->run_hooks("polls_do_undovote_process");



$plugins->run_hooks("polls_do_undovote_process");


	$db->delete_query("pollvotes", "uid='".$mybb->user['uid']."' AND pid='".$poll['pid']."'");

	$db->delete_query("pollvotes", "{$user_check} AND pid='".$poll['pid']."'");

	$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_do_undovote_end");

	$db->update_query("polls", $updatedpoll, "pid='".$poll['pid']."'");

$plugins->run_hooks("polls_do_undovote_end");