Vergleich xmlhttp.php - 1.8.18 - 1.8.38

Keine Änderungen Hinzugefügt Modifiziert Entfernt
Zeile 89	Zeile 89
$query = $db->simple_select('themes', 'name, tid, properties, allowedgroups', $loadstyle, array('limit' => 1)); $theme = $db->fetch_array($query);	$query = $db->simple_select('themes', 'name, tid, properties, allowedgroups', $loadstyle, array('limit' => 1)); $theme = $db->fetch_array($query);
if(isset($theme['tid']) && !is_member($theme['allowedgroups']) && $theme['allowedgroups'] != 'all')	if($theme && !is_member($theme['allowedgroups']) && $theme['allowedgroups'] != 'all')
{ if(isset($mybb->cookies['mybbtheme'])) {	{ if(isset($mybb->cookies['mybbtheme'])) {
Zeile 222	Zeile 222
if($mybb->input['action'] == "get_users") { $mybb->input['query'] = ltrim($mybb->get_input('query'));	if($mybb->input['action'] == "get_users") { $mybb->input['query'] = ltrim($mybb->get_input('query'));
$search_type = $mybb->get_input('search_type', MyBB::INPUT_INT); // 0: contains, 1: starts with, 2: ends with	$search_type = $mybb->get_input('search_type', MyBB::INPUT_INT); // 0: starts with, 1: ends with, 2: contains
// If the string is less than 2 characters, quit. if(my_strlen($mybb->input['query']) < 2)	// If the string is less than 2 characters, quit. if(my_strlen($mybb->input['query']) < 2)
Zeile 254	Zeile 254
$likestring = $db->escape_string_like($mybb->input['query']); if($search_type == 1)	$likestring = $db->escape_string_like($mybb->input['query']); if($search_type == 1)
{ $likestring .= '%'; } elseif($search_type == 2)
{ $likestring = '%'.$likestring;	{ $likestring = '%'.$likestring;
	} elseif($search_type == 2) { $likestring = '%'.$likestring.'%';
} else {	} else {
$likestring = '%'.$likestring.'%';	$likestring .= '%';
} $query = $db->simple_select("users", "uid, username", "username LIKE '{$likestring}'", $query_options);	} $query = $db->simple_select("users", "uid, username", "username LIKE '{$likestring}'", $query_options);
Zeile 307	Zeile 307
// Fetch some of the information from the first post of this thread. $query_options = array(	// Fetch some of the information from the first post of this thread. $query_options = array(
"order_by" => "dateline", "order_dir" => "asc",	"order_by" => "dateline, pid",
); $query = $db->simple_select("posts", "pid,uid,dateline", "tid='".$thread['tid']."'", $query_options); $post = $db->fetch_array($query);	); $query = $db->simple_select("posts", "pid,uid,dateline", "tid='".$thread['tid']."'", $query_options); $post = $db->fetch_array($query);
Zeile 386	Zeile 385
$updatepost = array( "pid" => $post['pid'], "tid" => $thread['tid'],	$updatepost = array( "pid" => $post['pid'], "tid" => $thread['tid'],
	"fid" => $forum['fid'],
"prefix" => $thread['prefix'], "subject" => $subject, "edit_uid" => $mybb->user['uid']	"prefix" => $thread['prefix'], "subject" => $subject, "edit_uid" => $mybb->user['uid']
Zeile 457	Zeile 457
if(check_forum_password($forum['fid'], 0, true)) { xmlhttp_error($lang->wrong_forum_password);	if(check_forum_password($forum['fid'], 0, true)) { xmlhttp_error($lang->wrong_forum_password);
}	}
// Fetch forum permissions. $forumpermissions = forum_permissions($forum['fid']);	// Fetch forum permissions. $forumpermissions = forum_permissions($forum['fid']);
Zeile 483	Zeile 483
$lang->edit_time_limit = $lang->sprintf($lang->edit_time_limit, $mybb->usergroup['edittimelimit']); xmlhttp_error($lang->edit_time_limit); }	$lang->edit_time_limit = $lang->sprintf($lang->edit_time_limit, $mybb->usergroup['edittimelimit']); xmlhttp_error($lang->edit_time_limit); }
// User can't edit unapproved post if($post['visible'] == 0)	// User can't edit unapproved post unless permitted for own if($post['visible'] == 0 && !($mybb->settings['showownunapproved'] && $post['uid'] == $mybb->user['uid']))
{ xmlhttp_error($lang->post_moderation); }	{ xmlhttp_error($lang->post_moderation); }
Zeile 598	Zeile 598
$parser_options['allow_smilies'] = 0; }	$parser_options['allow_smilies'] = 0; }
if($mybb->user['showimages'] != 1 && $mybb->user['uid'] != 0 \|\| $mybb->settings['guestimages'] != 1 && $mybb->user['uid'] == 0)	if($mybb->user['uid'] != 0 && $mybb->user['showimages'] != 1 \|\| $mybb->settings['guestimages'] != 1 && $mybb->user['uid'] == 0)
{ $parser_options['allow_imgcode'] = 0; }	{ $parser_options['allow_imgcode'] = 0; }
if($mybb->user['showvideos'] != 1 && $mybb->user['uid'] != 0 \|\| $mybb->settings['guestvideos'] != 1 && $mybb->user['uid'] == 0)	if($mybb->user['uid'] != 0 && $mybb->user['showvideos'] != 1 \|\| $mybb->settings['guestvideos'] != 1 && $mybb->user['uid'] == 0)
{ $parser_options['allow_videocode'] = 0; }	{ $parser_options['allow_videocode'] = 0; }
Zeile 647	Zeile 647
header("Content-type: application/json; charset={$charset}"); $editedmsg_response = null;	header("Content-type: application/json; charset={$charset}"); $editedmsg_response = null;
if($editedmsg)	if(!empty($editedmsg))
{ $editedmsg_response = str_replace(array("\r", "\n"), "", $editedmsg); }	{ $editedmsg_response = str_replace(array("\r", "\n"), "", $editedmsg); }
Zeile 663	Zeile 663
{ // If the cookie does not exist, exit if(!array_key_exists("multiquote", $mybb->cookies))	{ // If the cookie does not exist, exit if(!array_key_exists("multiquote", $mybb->cookies))
{	{
exit; } // Divide up the cookie using our delimeter $multiquoted = explode("\|", $mybb->cookies['multiquote']);	exit; } // Divide up the cookie using our delimeter $multiquoted = explode("\|", $mybb->cookies['multiquote']);

$plugins->run_hooks("xmlhttp_get_multiquoted_start"); // No values - exit if(!is_array($multiquoted))	$plugins->run_hooks("xmlhttp_get_multiquoted_start"); // No values - exit if(!is_array($multiquoted))
{	{
exit; }	exit; }
Zeile 713	Zeile 713
// Are we loading all quoted posts or only those not in the current thread? if(empty($mybb->input['load_all']))	// Are we loading all quoted posts or only those not in the current thread? if(empty($mybb->input['load_all']))
{	{
$from_tid = "p.tid != '".$mybb->get_input('tid', MyBB::INPUT_INT)."' AND ";	$from_tid = "p.tid != '".$mybb->get_input('tid', MyBB::INPUT_INT)."' AND ";
}	}
else { $from_tid = '';	else { $from_tid = '';
Zeile 723	Zeile 723
require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser;	require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser;

require_once MYBB_ROOT."inc/functions_posting.php"; $plugins->run_hooks("xmlhttp_get_multiquoted_intermediate");	require_once MYBB_ROOT."inc/functions_posting.php"; $plugins->run_hooks("xmlhttp_get_multiquoted_intermediate");
Zeile 735	Zeile 735
LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid) WHERE {$from_tid}p.pid IN ({$quoted_posts}) {$unviewable_forums} {$inactiveforums}	LEFT JOIN ".TABLE_PREFIX."threads t ON (t.tid=p.tid) LEFT JOIN ".TABLE_PREFIX."users u ON (u.uid=p.uid) WHERE {$from_tid}p.pid IN ({$quoted_posts}) {$unviewable_forums} {$inactiveforums}
ORDER BY p.dateline	ORDER BY p.dateline, p.pid
"); while($quoted_post = $db->fetch_array($query)) {	"); while($quoted_post = $db->fetch_array($query)) {
Zeile 745	Zeile 745
(in_array($quoted_post['fid'], $onlyusfids) && (!$mybb->user['uid'] \|\| $quoted_post['thread_uid'] != $mybb->user['uid'])) ) {	(in_array($quoted_post['fid'], $onlyusfids) && (!$mybb->user['uid'] \|\| $quoted_post['thread_uid'] != $mybb->user['uid'])) ) {
continue;	// Allow quoting from own unapproved post if($quoted_post['visible'] == 0 && !($mybb->settings['showownunapproved'] && $quoted_post['uid'] == $mybb->user['uid'])) { continue; }
} $message .= parse_quoted_message($quoted_post, false);	} $message .= parse_quoted_message($quoted_post, false);
Zeile 846	Zeile 850
"); $plugins->run_hooks("xmlhttp_refresh_question");	"); $plugins->run_hooks("xmlhttp_refresh_question");
	require_once MYBB_ROOT."inc/class_parser.php"; $parser = new postParser; $parser_options = array( "allow_html" => 0, "allow_mycode" => 1, "allow_smilies" => 1, "allow_imgcode" => 1, "allow_videocode" => 1, "filter_badwords" => 1, "me_username" => 0, "shorten_urls" => 0, "highlight" => 0, );
if($db->num_rows($query) > 0) { $question = $db->fetch_array($query);	if($db->num_rows($query) > 0) { $question = $db->fetch_array($query);
echo json_encode(array("question" => htmlspecialchars_uni($question['question']), 'sid' => htmlspecialchars_uni($question['sid'])));	echo json_encode(array("question" => $parser->parse_message($question['question'], $parser_options), 'sid' => htmlspecialchars_uni($question['sid'])));
exit; } else	exit; } else
Zeile 973	Zeile 992
$plugins->run_hooks("xmlhttp_username_availability");	$plugins->run_hooks("xmlhttp_username_availability");
if($user['uid'])	if($user)
{ $lang->username_taken = $lang->sprintf($lang->username_taken, htmlspecialchars_uni($username)); echo json_encode($lang->username_taken);	{ $lang->username_taken = $lang->sprintf($lang->username_taken, htmlspecialchars_uni($username)); echo json_encode($lang->username_taken);
Zeile 1070	Zeile 1089
{ xmlhttp_error($lang->buddylist_error); }	{ xmlhttp_error($lang->buddylist_error); }
	} else if($mybb->input['action'] == 'get_referrals') { $lang->load('member'); $uid = $mybb->get_input('uid', MYBB::INPUT_INT); if (!$uid) { xmlhttp_error($lang->referrals_no_user_specified); } $referrals = get_user_referrals($uid); if (empty($referrals)) { eval("\$referral_rows = \"".$templates->get('member_no_referrals')."\";"); } else { foreach($referrals as $referral) { $bg_color = alt_trow(); // Format user name link $username = htmlspecialchars_uni($referral['username']); $username = format_name($username, $referral['usergroup'], $referral['displaygroup']); $username = build_profile_link($username, $referral['uid']); $regdate = my_date('normal', $referral['regdate']); eval("\$referral_rows .= \"".$templates->get('member_referral_row')."\";"); } } $plugins->run_hooks('xmlhttp_referrals_end'); eval("\$referrals = \"".$templates->get('member_referrals_popup', 1, 0)."\";"); // Send our headers and output. header("Content-type: text/plain; charset={$charset}"); echo $referrals;
} /**	} /**