val($forumid); if (!$usecache OR !isset($vbulletin->forumcache["$forumid"])) { if (isset($vbulletin->forumcache["$forumid"]['permissions'])) { $perms = $vbulletin->forumcache["$forumid"]['permissions']; } $vbulletin->forumcache["$forumid"] = $vbulletin->db->query_first_slave(" SELECT forum.*, NOT ISNULL(podcast.forumid) AS podcast FROM " . TABLE_PREFIX . "forum AS forum LEFT JOIN " . TABLE_PREFIX . "podcast AS podcast ON (forum.forumid = podcast.forumid AND podcast.enabled = 1) WHERE forum.forumid = $forumid "); } if (!$vbulletin->forumcache["$forumid"]) { return false; } if (isset($perms)) { $vbulletin->forumcache["$forumid"]['permissions'] = $perms; } // decipher 'options' bitfield $vbulletin->forumcache["$forumid"]['options'] = intval($vbulletin->forumcache["$forumid"]['options']); foreach($vbulletin->bf_misc_forumoptions AS $optionname => $optionval) { $vbulletin->forumcache["$forumid"]["$optionname"] = (($vbulletin->forumcache["$forumid"]['options'] & $optionval) ? 1 : 0); } ($hook = vBulletinHook::fetch_hook('fetch_foruminfo')) ? eval($hook) : false; return $vbulletin->forumcache["$forumid"]; } // ############################################################################# /** * Returns an array containing info for the speficied thread, or false if thread is not found * * @param integer (ref) Thread ID * * @return mixed */ function fetch_threadinfo(&$threadid, $usecache = true) { global $vbulletin, $threadcache, $vbphrase; if ($vbulletin->userinfo['userid'] AND in_coventry($vbulletin->userinfo['userid'], true)) { $tachyjoin = " LEFT JOIN " . TABLE_PREFIX . "tachythreadcounter AS tachythreadcounter ON (tachythreadcounter.threadid = thread.threadid AND tachythreadcounter.userid = " . $vbulletin->userinfo['userid'] . ") LEFT JOIN " . TABLE_PREFIX . "tachythreadpost AS tachythreadpost ON (tachythreadpost.threadid = thread.threadid AND tachythreadpost.userid = " . $vbulletin->userinfo['userid'] . ') '; $tachyselect = " ,IF(tachythreadpost.userid IS NULL, thread.lastpost, tachythreadpost.lastpost) AS lastpost, IF(tachythreadpost.userid IS NULL, thread.lastposter, tachythreadpost.lastposter) AS lastposter, IF(tachythreadpost.userid IS NULL, thread.lastpostid, tachythreadpost.lastpostid) AS lastpostid, IF(tachythreadcounter.userid IS NULL, thread.replycount, thread.replycount + tachythreadcounter.replycount) AS replycount "; } else { $tachyjoin = ''; $tachyselect = ''; } $threadid = intval($threadid); if (!isset($threadcache["$threadid"]) OR !$usecache) { $marking = ($vbulletin->options['threadmarking'] AND $vbulletin->userinfo['userid']); $threadcache["$threadid"] = $vbulletin->db->query_first(" SELECT IF(visible = 2, 1, 0) AS isdeleted, " . (THIS_SCRIPT == 'postings' ? " deletionlog.userid AS del_userid, deletionlog.username AS del_username, deletionlog.reason AS del_reason, deletionlog.dateline AS del_dateline," : "") . " " . iif($vbulletin->userinfo['userid'] AND ($vbulletin->options['threadsubscribed'] AND THIS_SCRIPT == 'showthread') OR THIS_SCRIPT == 'editpost' OR THIS_SCRIPT == 'newreply' OR THIS_SCRIPT == 'postings', 'NOT ISNULL(subscribethread.subscribethreadid) AS issubscribed, emailupdate, folderid,') . iif($vbulletin->options['threadvoted'] AND $vbulletin->userinfo['userid'], 'threadrate.vote,') . iif($marking, 'threadread.readtime AS threadread, forumread.readtime AS forumread,') . " thread.* $tachyselect FROM " . TABLE_PREFIX . "thread AS thread " . (THIS_SCRIPT == 'postings' ? "LEFT JOIN " . TABLE_PREFIX . "deletionlog AS deletionlog ON (deletionlog.primaryid = thread.threadid AND deletionlog.type = 'thread')" : "") . " " . iif($vbulletin->userinfo['userid'] AND ($vbulletin->options['threadsubscribed'] AND THIS_SCRIPT == 'showthread') OR THIS_SCRIPT == 'editpost' OR THIS_SCRIPT == 'newreply' OR THIS_SCRIPT == 'postings', "LEFT JOIN " . TABLE_PREFIX . "subscribethread AS subscribethread ON (subscribethread.threadid = thread.threadid AND subscribethread.userid = " . $vbulletin->userinfo['userid'] . " AND subscribethread.canview = 1)") . " " . iif($vbulletin->options['threadvoted'] AND $vbulletin->userinfo['userid'], "LEFT JOIN " . TABLE_PREFIX . "threadrate AS threadrate ON (threadrate.threadid = thread.threadid AND threadrate.userid = " . $vbulletin->userinfo['userid'] . ")") . " " . iif($marking, " LEFT JOIN " . TABLE_PREFIX . "threadread AS threadread ON (threadread.threadid = thread.threadid AND threadread.userid = " . $vbulletin->userinfo['userid'] . ") LEFT JOIN " . TABLE_PREFIX . "forumread AS forumread ON (forumread.forumid = thread.forumid AND forumread.userid = " . $vbulletin->userinfo['userid'] . ") ") . " $tachyjoin WHERE thread.threadid = $threadid "); $thread =& $threadcache["$threadid"]; if ($thread['prefixid']) { $thread['prefix_plain_html'] = htmlspecialchars_uni($vbphrase["prefix_$thread[prefixid]_title_plain"]); $thread['prefix_rich'] = $vbphrase["prefix_$thread[prefixid]_title_rich"]; } } ($hook = vBulletinHook::fetch_hook('fetch_threadinfo')) ? eval($hook) : false; return $threadcache["$threadid"]; } // ############################################################################# /** * Returns an array contining info for the specified post, or false if post is not found * * @param integer (ref) Post ID * * @return mixed */ function fetch_postinfo(&$postid) { global $vbulletin; global $postcache; $postid = intval($postid); if (!isset($postcache["$postid"])) { $postcache["$postid"] = $vbulletin->db->query_first(" SELECT post.*, IF(visible = 2, 1, 0) AS isdeleted, " . (THIS_SCRIPT == 'postings' ? " deletionlog.userid AS del_userid, deletionlog.username AS del_username, deletionlog.reason AS del_reason, deletionlog.dateline AS del_dateline," : "") . " editlog.userid AS edit_userid, editlog.dateline AS edit_dateline, editlog.reason AS edit_reason, editlog.hashistory FROM " . TABLE_PREFIX . "post AS post " . (THIS_SCRIPT == 'postings' ? "LEFT JOIN " . TABLE_PREFIX . "deletionlog AS deletionlog ON (deletionlog.primaryid = post.postid AND deletionlog.type = 'post')" : "") . " LEFT JOIN " . TABLE_PREFIX . "editlog AS editlog ON (editlog.postid = post.postid) WHERE post.postid = $postid "); } ($hook = vBulletinHook::fetch_hook('fetch_postinfo')) ? eval($hook) : false; return $postcache["$postid"]; } // ############################################################################# define('FETCH_USERINFO_AVATAR', 0x02); define('FETCH_USERINFO_LOCATION', 0x04); define('FETCH_USERINFO_PROFILEPIC', 0x08); define('FETCH_USERINFO_ADMIN', 0x10); define('FETCH_USERINFO_SIGPIC', 0x20); define('FETCH_USERINFO_USERCSS', 0x40); define('FETCH_USERINFO_ISFRIEND', 0x80); /** * Fetches an array containing info for the specified user, or false if user is not found * * Values for Option parameter: * 1 - Nothing ... * 2 - Get avatar * 4 - Process user's online location * 8 - Join the customprofilpic table to get the userid just to check if we have a picture * 16 - Join the administrator table to get various admin options * 32 - Join the sigpic table to get the userid just to check if we have a picture * 64 - Get user's custom CSS * 128 - Is the logged in User a friend of this person? * Therefore: Option = 6 means 'Get avatar' and 'Process online location' * See fetch_userinfo() in the do=getinfo section of member.php if you are still confused * * @param integer (ref) User ID * @param integer Bitfield Option (see description) * * @return array The information for the requested user */ function fetch_userinfo(&$userid, $option = 0, $languageid = 0) { global $vbulletin, $usercache, $vbphrase, $permissions, $phrasegroups; if ($userid == $vbulletin->userinfo['userid'] AND $option != 0 AND isset($usercache["$userid"])) { // clear the cache if we are looking at ourself and need to add one of the JOINS to our information. unset($usercache["$userid"]); } $userid = intval($userid); // return the cached result if it exists if (isset($usercache["$userid"])) { return $usercache["$userid"]; } $hook_query_fields = $hook_query_joins = ''; ($hook = vBulletinHook::fetch_hook('fetch_userinfo_query')) ? eval($hook) : false; // no cache available - query the user $user = $vbulletin->db->query_first_slave(" SELECT " . iif(($option & FETCH_USERINFO_ADMIN), ' administrator.*, ') . " userfield.*, usertextfield.*, user.*, UNIX_TIMESTAMP(passworddate) AS passworddate, IF(displaygroupid=0, user.usergroupid, displaygroupid) AS displaygroupid" . iif(($option & FETCH_USERINFO_AVATAR) AND $vbulletin->options['avatarenabled'], ', avatar.avatarpath, NOT ISNULL(customavatar.userid) AS hascustomavatar, customavatar.dateline AS avatardateline, customavatar.width AS avwidth, customavatar.height AS avheight, customavatar.height_thumb AS avheight_thumb, customavatar.width_thumb AS avwidth_thumb, customavatar.filedata_thumb'). iif(($option & FETCH_USERINFO_PROFILEPIC), ', customprofilepic.userid AS profilepic, customprofilepic.dateline AS profilepicdateline, customprofilepic.width AS ppwidth, customprofilepic.height AS ppheight') . iif(($option & FETCH_USERINFO_SIGPIC), ', sigpic.userid AS sigpic, sigpic.dateline AS sigpicdateline, sigpic.width AS sigpicwidth, sigpic.height AS sigpicheight') . (($option & FETCH_USERINFO_USERCSS) ? ', usercsscache.cachedcss, IF(usercsscache.cachedcss IS NULL, 0, 1) AS hascachedcss, usercsscache.buildpermissions AS cssbuildpermissions' : '') . iif(!isset($vbphrase), fetch_language_fields_sql(), '') . (($vbulletin->userinfo['userid'] AND ($option & FETCH_USERINFO_ISFRIEND)) ? ", IF(userlist1.friend = 'yes', 1, 0) AS isfriend, IF (userlist1.friend = 'pending' OR userlist1.friend = 'denied', 1, 0) AS ispendingfriend" . ", IF(userlist1.userid IS NOT NULL, 1, 0) AS u_iscontact_of_bbuser, IF (userlist2.friend = 'pending', 1, 0) AS requestedfriend" . ", IF(userlist2.userid IS NOT NULL, 1, 0) AS bbuser_iscontact_of_user" : "") . " $hook_query_fields FROM " . TABLE_PREFIX . "user AS user LEFT JOIN " . TABLE_PREFIX . "userfield AS userfield ON (user.userid = userfield.userid) LEFT JOIN " . TABLE_PREFIX . "usertextfield AS usertextfield ON (usertextfield.userid = user.userid) " . iif(($option & FETCH_USERINFO_AVATAR) AND $vbulletin->options['avatarenabled'], "LEFT JOIN " . TABLE_PREFIX . "avatar AS avatar ON (avatar.avatarid = user.avatarid) LEFT JOIN " . TABLE_PREFIX . "customavatar AS customavatar ON (customavatar.userid = user.userid) ") . iif(($option & FETCH_USERINFO_PROFILEPIC), "LEFT JOIN " . TABLE_PREFIX . "customprofilepic AS customprofilepic ON (user.userid = customprofilepic.userid) ") . iif(($option & FETCH_USERINFO_ADMIN), "LEFT JOIN " . TABLE_PREFIX . "administrator AS administrator ON (administrator.userid = user.userid) ") . iif(($option & FETCH_USERINFO_SIGPIC), "LEFT JOIN " . TABLE_PREFIX . "sigpic AS sigpic ON (user.userid = sigpic.userid) ") . (($option & FETCH_USERINFO_USERCSS) ? 'LEFT JOIN ' . TABLE_PREFIX . 'usercsscache AS usercsscache ON (user.userid = usercsscache.userid)' : '') . iif(!isset($vbphrase), "LEFT JOIN " . TABLE_PREFIX . "language AS language ON (language.languageid = " . (!empty($languageid) ? $languageid : "IF(user.languageid = 0, " . intval($vbulletin->options['languageid']) . ", user.languageid)") . ") ") . (($vbulletin->userinfo['userid'] AND ($option & FETCH_USERINFO_ISFRIEND)) ? "LEFT JOIN " . TABLE_PREFIX . "userlist AS userlist1 ON (userlist1.relationid = user.userid AND userlist1.type = 'buddy' AND userlist1.userid = " . $vbulletin->userinfo['userid'] . ")" . "LEFT JOIN " . TABLE_PREFIX . "userlist AS userlist2 ON (userlist2.userid = user.userid AND userlist2.type = 'buddy' AND userlist2.relationid = " . $vbulletin->userinfo['userid'] . ")" : "") . " $hook_query_joins WHERE user.userid = $userid "); if (!$user) { return false; } if (!isset($vbphrase) AND $user['lang_options'] === null) { trigger_error('The requested language does not exist, reset via tools.php.', E_USER_ERROR); } $user['languageid'] = (!empty($languageid) ? $languageid : $user['languageid']); // decipher 'options' bitfield $user['options'] = intval($user['options']); foreach ($vbulletin->bf_misc_useroptions AS $optionname => $optionval) { $user["$optionname"] = ($user['options'] & $optionval ? 1 : 0); //DEVDEBUG("$optionname = $user[$optionname]"); } foreach($vbulletin->bf_misc_adminoptions AS $optionname => $optionval) { $user["$optionname"] = ($user['adminoptions'] & $optionval ? 1 : 0); } // make a username variable that is safe to pass through URL links $user['urlusername'] = urlencode(unhtmlspecialchars($user['username'])); fetch_musername($user); // get the user's real styleid (not the cookie value) $user['realstyleid'] = $user['styleid']; // set the logout hash $user['logouthash'] = md5($user['userid'] . $user['salt'] . COOKIE_SALT); if ($option & FETCH_USERINFO_LOCATION) { // Process Location info for this user require_once(DIR . '/includes/functions_online.php'); $user = fetch_user_location_array($user); } ($hook = vBulletinHook::fetch_hook('fetch_userinfo')) ? eval($hook) : false; $usercache["$userid"] = $user; return $usercache["$userid"]; } // ############################################################################# /** * Converts the database value of a profilefield and prepares the displayable value as $profilefield['value'] * * @param array Profilefield data (SELECT * FROM profilefield WHERE profilefieldid = $profilefieldid) * @param string Database value of profilefield * * @return array Profilefield data including 'value' key */ function fetch_profilefield_display(&$profilefield, $profilefield_value) { global $vbphrase; $profilefield['title'] = $vbphrase["field$profilefield[profilefieldid]_title"]; if ($profilefield['type'] == 'checkbox' OR $profilefield['type'] == 'select_multiple') { $data = unserialize($profilefield['data']); foreach ($data AS $key => $val) { if ($profilefield_value & pow(2, $key)) { $profilefield['value'] .= iif($profilefield['value'], ', ') . $val; } } } else if ($profilefield['type'] == 'textarea') { // Convert newlines to
and replace 3+
with two
$profilefield['value'] = preg_replace('#(
){3,}#', '

', nl2br(trim($profilefield_value))); } else { $profilefield['value'] = $profilefield_value; } ($hook = vBulletinHook::fetch_hook('member_customfields')) ? eval($hook) : false; return $profilefield; } // ############################################################################# /** * Returns the parentlist of the specified forum * * @param integer Forum ID * * @return string Comma separated list of parent forum IDs */ function fetch_forum_parent_list($forumid) { global $vbulletin; static $forumarraycache; $forumid = intval($forumid); if (isset($vbulletin->forumcache["$forumid"]['parentlist'])) { DEVDEBUG("CACHE parentlist from forum $forumid"); return $vbulletin->forumcache["$forumid"]['parentlist']; } else { if (isset($forumarraycache["$forumid"])) { return $forumarraycache["$forumid"]; } else if (isset($vbulletin->forumcache["$forumid"]['parentlist'])) { return $vbulletin->forumcache["$forumid"]['parentlist']; } else { DEVDEBUG("QUERY parentlist from forum $forumid"); $foruminfo = $vbulletin->db->query_first_slave(" SELECT parentlist FROM " . TABLE_PREFIX . "forum WHERE forumid = $forumid "); $forumarraycache["$forumid"] = $foruminfo['parentlist']; return $foruminfo['parentlist']; } } } // ############################################################################# /** * Returns an SQL condition like (forumid = 1 OR forumid = 2 OR forumid = 3) for each of a forum's parents * * @param integer Forum ID * @param string The name of the field to be used in the clause * @param string The 'joiner' word - could be 'OR' or 'AND' etc. * @param string The parentlist of the specified forum (comma separated string) * * @return string */ function fetch_forum_clause_sql($forumid, $field = 'forumid', $joiner = 'OR', $parentlist = '') { global $vbulletin; if (empty($parentlist)) { $parentlist = fetch_forum_parent_list($forumid); } if (empty($parentlist)) { // prevents an error, and is at least somewhat correct $parentlist = '-1,' . intval($forumid); } if (strtoupper($joiner) == 'OR') { return "$field IN ($parentlist)"; } else { return "($field = '" . implode(explode(',', $parentlist), "' $joiner $field = '") . '\')'; } } // ############################################################################# /** * Multi-purpose function to verify that an item exists and fetch data at the same time * * This function works with threads, forums, posts, users and other tables that obey the {item}id, title convention. * If the data is not found and execution is not halted, a false value will be returned * * @param string Name of the ID field to be fetched (forumid, threadid etc.) * @param integer (ref) ID of the item to be fetched * @param boolean If true, halt and show error when data is not found * @param boolean If true, 'SELECT *' instead of selecting just the ID field * @param integer Bitfield options to be passed to fetch_userinfo() * * @return mixed */ function verify_id($idname, &$id, $alert = true, $selall = false, $options = 0) { // verifies an id number and returns a correct one if it can be found // returns 0 if none found global $vbulletin, $vbphrase; if (empty($vbphrase["$idname"])) { $vbphrase["$idname"] = $idname; } $id = intval($id); if (empty($id)) { if ($alert) { eval(standard_error(fetch_error('noid', $vbphrase["$idname"], $vbulletin->options['contactuslink']))); } else { return 0; } } $selid = ($selall ? '*' : $idname . 'id'); switch ($idname) { case 'thread': case 'forum': case 'post': $function = 'fetch_' . $idname . 'info'; $tempcache = $function($id); if (!$tempcache AND $alert) { eval(standard_error(fetch_error('invalidid', $vbphrase["$idname"], $vbulletin->options['contactuslink']))); } return ($selall ? $tempcache : $tempcache[$idname . 'id']); case 'user': $tempcache = fetch_userinfo($id, $options); if (!$tempcache AND $alert) { eval(standard_error(fetch_error('invalidid', $vbphrase["$idname"], $vbulletin->options['contactuslink']))); } return ($selall ? $tempcache : $tempcache[$idname . 'id']); default: if (!$check = $vbulletin->db->query_first("SELECT $selid FROM " . TABLE_PREFIX . "$idname WHERE $idname" . "id = $id")) { if ($alert) { eval(standard_error(fetch_error('invalidid', $vbphrase["$idname"], $vbulletin->options['contactuslink']))); } return ($selall ? array() : 0); } else { return ($selall ? $check : $check["$selid"]); } } } // ############################################################################# /** * Strips away [quote] tags and their contents from the specified string * * @param string Text to be stripped of quote tags * * @return string */ function strip_quotes($text) { $lowertext = strtolower($text); // find all [quote tags $start_pos = array(); $curpos = 0; do { $pos = strpos($lowertext, '[quote', $curpos); if ($pos !== false AND ($lowertext[$pos + 6] == '=' OR $lowertext[$pos + 6] == ']')) { $start_pos["$pos"] = 'start'; } $curpos = $pos + 6; } while ($pos !== false); if (sizeof($start_pos) == 0) { return $text; } // find all [/quote] tags $end_pos = array(); $curpos = 0; do { $pos = strpos($lowertext, '[/quote]', $curpos); if ($pos !== false) { $end_pos["$pos"] = 'end'; $curpos = $pos + 8; } } while ($pos !== false); if (sizeof($end_pos) == 0) { return $text; } // merge them together and sort based on position in string $pos_list = $start_pos + $end_pos; ksort($pos_list); do { // build a stack that represents when a quote tag is opened // and add non-quote text to the new string $stack = array(); $newtext = ''; $substr_pos = 0; foreach ($pos_list AS $pos => $type) { $stacksize = sizeof($stack); if ($type == 'start') { // empty stack, so add from the last close tag or the beginning of the string if ($stacksize == 0) { $newtext .= substr($text, $substr_pos, $pos - $substr_pos); } array_push($stack, $pos); } else { // pop off the latest opened tag if ($stacksize) { array_pop($stack); $substr_pos = $pos + 8; } } } // add any trailing text $newtext .= substr($text, $substr_pos); // check to see if there's a stack remaining, remove those points // as key points, and repeat. Allows emulation of a non-greedy-type // recursion. if ($stack) { foreach ($stack AS $pos) { unset($pos_list["$pos"]); } } } while ($stack); return $newtext; } // ############################################################################# /** * Strips away bbcode from a given string, leaving plain text * * @param string Text to be stripped of bbcode tags * @param boolean If true, strip away quote tags AND their contents * @param boolean If true, use the fast-and-dirty method rather than the shiny and nice method * * @return string */ function strip_bbcode($message, $stripquotes = false, $fast_and_dirty = false, $showlinks = true) { $find = array(); $replace = array(); if ($stripquotes) { // [quote=username] and [quote] $message = strip_quotes($message); } // a really quick and rather nasty way of removing vbcode if ($fast_and_dirty) { // any old thing in square brackets $find[] = '#\[.*/?\]#siU'; $replace[] = ''; $message = preg_replace($find, $replace, $message); } // the preferable way to remove vbcode else { // simple links $find[] = '#\[(email|url)=("??)(.+)\\2\]\\3\[/\\1\]#siU'; $replace[] = '\3'; // named links $find[] = '#\[(email|url)=("??)(.+)\\2\](.+)\[/\\1\]#siU'; $replace[] = ($showlinks ? '\4 (\3)' : '\4'); // replace links (and quotes if specified) from message $message = preg_replace($find, $replace, $message); // strip out all other instances of [x]...[/x] while(preg_match_all('#\[(\w+?)(?>[^\]]*?)\](.*)(\[/\1\])#siU', $message, $regs)) { foreach($regs[0] AS $key => $val) { $message = str_replace($val, $regs[2]["$key"], $message); } } $message = str_replace('[*]', ' ', $message); } return trim($message); } // ############################################################################# /** * Returns a gzip-compressed version of the specified string * * @param string Text to be gzipped * @param integer Level of Gzip compression (1-10) * * @return string */ function fetch_gzipped_text($text, $level = 1) { global $vbulletin; $returntext = $text; if (function_exists('crc32') AND function_exists('gzcompress') AND !$vbulletin->nozip) { if (strpos(' ' . $_SERVER['HTTP_ACCEPT_ENCODING'], 'x-gzip') !== false) { $encoding = 'x-gzip'; } if (strpos(' ' . $_SERVER['HTTP_ACCEPT_ENCODING'], 'gzip') !== false) { $encoding = 'gzip'; } if ($encoding) { $vbulletin->donegzip = true; header('Content-Encoding: ' . $encoding); if (false AND function_exists('gzencode')) { $returntext = gzencode($text, $level); } else { $size = strlen($text); $crc = crc32($text); $returntext = "\x1f\x8b\x08\x00\x00\x00\x00\x00\x00\xff"; $returntext .= substr(gzcompress($text, $level), 2, -4); $returntext .= pack('V', $crc); $returntext .= pack('V', $size); } } } return $returntext; } // ############################################################################# /** * Checks whether or not any headers have been sent to the browser yet * * @param string (ref) File name (> PHP 4.3.x) * @param integer (ref) Line number (> PHP 4.3.x) * * @return boolean True if headers have been sent */ function vbheaders_sent(&$filename, &$linenum) { if (PHP_VERSION > '4.3.0') { return headers_sent($filename, $linenum); } else { return headers_sent(); } } // ############################################################################# /** * Sets a cookie based on vBulletin environmental settings * * @param string Cookie name * @param mixed Value to store in the cookie * @param boolean If true, do not set an expiry date for the cookie * @param boolean Allow secure cookies (SSL) * @param boolean Set 'httponly' for cookies in supported browsers */ function vbsetcookie($name, $value = '', $permanent = true, $allowsecure = true, $httponly = false) { if (defined('NOCOOKIES')) { return; } global $vbulletin; if ($permanent) { $expire = TIMENOW + 60 * 60 * 24 * 365; } else { $expire = 0; } // IE for Mac doesn't support httponly $httponly = (($httponly AND (is_browser('ie') AND is_browser('mac'))) ? false : $httponly); // check for SSL $secure = ((REQ_PROTOCOL === 'https' AND $allowsecure) ? true : false); $name = COOKIE_PREFIX . $name; $filename = 'N/A'; $linenum = 0; if (!headers_sent($filename, $linenum)) { // consider showing an error message if they're not sent using above variables? if ($value === '' OR $value === false) { // this will attempt to unset the cookie at each directory up the path. // ie, path to file = /test/vb3/. These will be unset: /, /test, /test/, /test/vb3, /test/vb3/ // This should hopefully prevent cookie conflicts when the cookie path is changed. if ($_SERVER['PATH_INFO'] OR $_ENV['PATH_INFO']) { $scriptpath = $_SERVER['PATH_INFO'] ? $_SERVER['PATH_INFO'] : $_ENV['PATH_INFO']; } else if ($_SERVER['REDIRECT_URL'] OR $_ENV['REDIRECT_URL']) { $scriptpath = $_SERVER['REDIRECT_URL'] ? $_SERVER['REDIRECT_URL'] : $_ENV['REDIRECT_URL']; } else { $scriptpath = $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_ENV['PHP_SELF']; } $scriptpath = preg_replace( array( '#/[^/]+\.php$#i', '#/(' . preg_quote($vbulletin->config['Misc']['admincpdir'], '#') . '|' . preg_quote($vbulletin->config['Misc']['modcpdir'], '#') . ')(/|$)#i' ), '', $scriptpath ); $dirarray = explode('/', preg_replace('#/+$#', '', $scriptpath)); $alldirs = ''; $havepath = false; if (!defined('SKIP_AGGRESSIVE_LOGOUT')) { // sending this many headers has caused problems with a few // servers, especially with IIS. Defining SKIP_AGGRESSIVE_LOGOUT // reduces the number of cookie headers returned. foreach ($dirarray AS $thisdir) { $alldirs .= "$thisdir"; if ($alldirs == $vbulletin->options['cookiepath'] OR "$alldirs/" == $vbulletin->options['cookiepath']) { $havepath = true; } if (!empty($thisdir)) { // try unsetting without the / at the end exec_vbsetcookie($name, $value, $expire, $alldirs, $vbulletin->options['cookiedomain'], $secure, $httponly); } $alldirs .= "/"; exec_vbsetcookie($name, $value, $expire, $alldirs, $vbulletin->options['cookiedomain'], $secure, $httponly); } } if ($havepath == false) { exec_vbsetcookie($name, $value, $expire, $vbulletin->options['cookiepath'], $vbulletin->options['cookiedomain'], $secure, $httponly); } } else { exec_vbsetcookie($name, $value, $expire, $vbulletin->options['cookiepath'], $vbulletin->options['cookiedomain'], $secure, $httponly); } } else if (empty($vbulletin->db->explain)) { //show some sort of error message global $templateassoc, $vbulletin; if (empty($templateassoc)) { // this is being called before templates have been cached, so just get the default one $template = $vbulletin->db->query_first_slave(" SELECT templateid FROM " . TABLE_PREFIX . "template WHERE title = 'STANDARD_ERROR' AND styleid = -1 "); $templateassoc = array('STANDARD_ERROR' => $template['templateid']); } eval(standard_error(fetch_error('cant_set_cookies', $filename, $linenum))); } } // ############################################################################# /** * Calls PHP's setcookie() or sends raw headers if 'httponly' is required. * Should really only be called through vbsetcookie() * * @param string Name * @param string Value * @param int Expire * @param string Path * @param string Domain * @param boolean Secure * @param boolean HTTP only - see http://msdn.microsoft.com/workshop/author/dhtml/httponly_cookies.asp * * @return boolean True on success */ function exec_vbsetcookie($name, $value, $expires, $path = '', $domain = '', $secure = false, $httponly = false) { if ($httponly AND $value) { // cookie names and values may not contain any of the characters listed foreach (array(",", ";", " ", "\t", "\r", "\n", "\013", "\014") AS $bad_char) { if (strpos($name, $bad_char) !== false OR strpos($value, $bad_char) !== false) { return false; } } // name and value $cookie = "Set-Cookie: $name=" . urlencode($value); // expiry $cookie .= ($expires > 0 ? '; expires=' . gmdate('D, d-M-Y H:i:s', $expires) . ' GMT' : ''); // path $cookie .= ($path ? "; path=$path" : ''); // domain $cookie .= ($domain ? "; domain=$domain" : ''); // secure $cookie .= ($secure ? '; secure' : ''); // httponly $cookie .= ($httponly ? '; HttpOnly' : ''); header($cookie, false); return true; } else { return setcookie($name, $value, $expires, $path, $domain, $secure); } } // ############################################################################# /** * Returns the value for an array stored in a cookie * * @param string Name of the cookie * @param mixed ID of the data within the cookie * * @return mixed */ function fetch_bbarray_cookie($cookiename, $id) { global $vbulletin; $cookie_name = COOKIE_PREFIX . $cookiename; // name of cookie variable $cache_name = 'bb_cache_' . $cookiename; // name of cache variable global $$cache_name; // internal array for cacheing purposes $cookie =& $vbulletin->input->clean_gpc('c', $cookie_name, TYPE_STR); $cache = &$$cache_name; if ($cookie != '' AND !isset($cache)) { $cache = @unserialize(convert_bbarray_cookie($cookie)); } if (isset($cache)) { return $cache["$id"]; } } // ############################################################################# /** * Sets the value for data stored in an array-cookie * * @param string Name of the cookie * @param mixed ID of the data within the cookie * @param mixed Value for the data * @param boolean If true, make this a permanent cookie */ function set_bbarray_cookie($cookiename, $id, $value, $permanent = false) { // sets the value for a array and sets the cookie global $vbulletin; $cookie_name = COOKIE_PREFIX . $cookiename; // name of cookie variable $cache_name = 'bb_cache_' . $cookiename; // name of cache variable global $$cache_name; // internal array for cacheing purposes $cookie =& $vbulletin->input->clean_gpc('c', $cookie_name, TYPE_STR); $cache =& $$cache_name; if ($cookie != '' AND !isset($cache)) { $cache = @unserialize(convert_bbarray_cookie($cookie)); } $cache["$id"] = $value; vbsetcookie($cookiename, convert_bbarray_cookie(serialize($cache), 'set'), $permanent); } // ############################################################################# /** * Replaces all those none safe characters so we dont waste space in array cookie values with URL entities * * @param string Cookie array * @param string Direction ('get' or 'set') * * @return array */ function convert_bbarray_cookie($cookie, $dir = 'get') { if ($dir == 'set') { $cookie = str_replace(array('"', ':', ';'), array('.', '-', '_'), $cookie); // prefix cookie with 32 character hash $cookie = sign_client_string($cookie); } else { if (($cookie = verify_client_string($cookie)) !== false) { $cookie = str_replace(array('.', '-', '_'), array('"', ':', ';'), $cookie); } else { $cookie = ''; } } return $cookie; } // ############################################################################# /** * Signs a string we intend to pass to the client but don't want them to alter * * @param string String to be signed * * @return string MD5 hash followed immediately by the string */ function sign_client_string($string, $extra_entropy = '') { if (preg_match('#[\x00-\x1F\x80-\xFF]#s', $string)) { $string = base64_encode($string); $prefix = 'B64:'; } else { $prefix = ''; } return $prefix . md5($string . COOKIE_SALT . $extra_entropy) . $string; } // ############################################################################# /** * Verifies a string return from a client that it has been unaltered * * @param string String from the client to be verified * * @return string|boolean String without the verification hash or false on failure */ function verify_client_string($string, $extra_entropy = '') { if (substr($string, 0, 4) == 'B64:') { $firstpart = substr($string, 4, 32); $return = substr($string, 36); $decode = true; } else { $firstpart = substr($string, 0, 32); $return = substr($string, 32); $decode = false; } if (md5($return . COOKIE_SALT . $extra_entropy) === $firstpart) { return ($decode ? base64_decode($return) : $return); } return false; } // ############################################################################# /** * Reads $bgclass and returns the alternate table class * * @param integer If > 0, allows us to have multiple classes on one page without them overwriting each other * * @return string CSS class name */ function exec_switch_bg($alternate = 0) { global $bgclass, $altbgclass; static $tempclass; if ($tempclass != '') { $bgclass = $tempclass; $tempclass = ''; } if ($alternate > 0) { $varname = 'bgclass' . $alternate; global $$varname; if ($$varname == 'alt1') { $$varname = 'alt2'; $altbgclass = 'alt1'; } else { $$varname = 'alt1'; $altbgclass = 'alt2'; } $tempclass = $bgclass; $bgclass = $$varname; } else { if ($bgclass == 'alt1') { $bgclass = 'alt2'; $altbgclass = 'alt1'; } else { $bgclass = 'alt1'; $altbgclass = 'alt2'; } } return $bgclass; } // ############################################################################# /** * Ensures that the variables for a multi-page display are sane * * @return integer Maximum posts perpage that a user can see */ function sanitize_maxposts($perpage = 0) { global $vbulletin; $max = intval(max(explode(',', $vbulletin->options['usermaxposts']))); if ($max AND $vbulletin->userinfo['maxposts']) { if (!$perpage) { return $vbulletin->userinfo['maxposts'] == -1 ? $vbulletin->options['maxposts'] : $vbulletin->userinfo['maxposts']; } else if ($perpage == -1) { return $max; } else { return ($perpage > $max ? $max : $perpage); } } else if (!empty($vbulletin->options['maxposts'])) { return $vbulletin->options['maxposts']; } else { return 10; } } // ############################################################################# /** * Ensures that the variables for a multi-page display are sane * * @param integer Total number of items to be displayed * @param integer (ref) Current page number * @param integer (ref) Desired number of results to show per-page * @param integer Maximum allowable results to show per-page * @param integer Default number of results to show per-page */ function sanitize_pageresults($numresults, &$page, &$perpage, $maxperpage = 20, $defaultperpage = 20) { $perpage = intval($perpage); if ($perpage < 1) { $perpage = $defaultperpage; } else if ($perpage > $maxperpage) { $perpage = $maxperpage; } $numpages = ceil($numresults / $perpage); if ($numpages == 0) { $numpages = 1; } if ($page < 1) { $page = 1; } else if ($page > $numpages) { $page = $numpages; } } // ############################################################################# /** * Returns the HTML for multi-page navigation * * @param integer Page number being displayed * @param integer Number of items to be displayed per page * @param integer Total number of items found * @param string Base address for links eg: showthread.php?t=99{&page=4} * @param string Ending portion of address for links * * @return string Page navigation HTML */ function construct_page_nav($pagenumber, $perpage, $results, $address, $address2 = '', $anchor = '') { global $vbulletin, $vbphrase, $stylevar, $show; $curpage = 0; $pagenav = ''; $firstlink = ''; $prevlink = ''; $lastlink = ''; $nextlink = ''; if ($results <= $perpage) { $show['pagenav'] = false; return ''; } $show['pagenav'] = true; $total = vb_number_format($results); $totalpages = ceil($results / $perpage); $show['prev'] = false; $show['next'] = false; $show['first'] = false; $show['last'] = false; if ($pagenumber > 1) { $prevpage = $pagenumber - 1; $prevnumbers = fetch_start_end_total_array($prevpage, $perpage, $results); $show['prev'] = true; } if ($pagenumber < $totalpages) { $nextpage = $pagenumber + 1; $nextnumbers = fetch_start_end_total_array($nextpage, $perpage, $results); $show['next'] = true; } // create array of possible relative links that we might have (eg. +10, +20, +50, etc.) if (!is_array($vbulletin->options['pagenavsarr'])) { $vbulletin->options['pagenavsarr'] = preg_split('#\s+#s', $vbulletin->options['pagenavs'], -1, PREG_SPLIT_NO_EMPTY); } while ($curpage++ < $totalpages) { ($hook = vBulletinHook::fetch_hook('pagenav_page')) ? eval($hook) : false; if (abs($curpage - $pagenumber) >= $vbulletin->options['pagenavpages'] AND $vbulletin->options['pagenavpages'] != 0) { if ($curpage == 1) { $firstnumbers = fetch_start_end_total_array(1, $perpage, $results); $show['first'] = true; } if ($curpage == $totalpages) { $lastnumbers = fetch_start_end_total_array($totalpages, $perpage, $results); $show['last'] = true; } // generate relative links (eg. +10,etc). if (in_array(abs($curpage - $pagenumber), $vbulletin->options['pagenavsarr']) AND $curpage != 1 AND $curpage != $totalpages) { $pagenumbers = fetch_start_end_total_array($curpage, $perpage, $results); $relpage = $curpage - $pagenumber; if ($relpage > 0) { $relpage = '+' . $relpage; } eval('$pagenav .= "' . fetch_template('pagenav_pagelinkrel') . '";'); } } else { if ($curpage == $pagenumber) { $numbers = fetch_start_end_total_array($curpage, $perpage, $results); eval('$pagenav .= "' . fetch_template('pagenav_curpage') . '";'); } else { $pagenumbers = fetch_start_end_total_array($curpage, $perpage, $results); eval('$pagenav .= "' . fetch_template('pagenav_pagelink') . '";'); } } } ($hook = vBulletinHook::fetch_hook('pagenav_complete')) ? eval($hook) : false; eval('$pagenav = "' . fetch_template('pagenav') . '";'); return $pagenav; } // ############################################################################# /** * Returns an array so you can print 'Showing results $arr[first] to $arr[last] of $totalresults' * * @param integer Current page number * @param integer Results to show per-page * @param integer Total results found * * @return array In the format of - array('first' => x, 'last' => y) */ function fetch_start_end_total_array($pagenumber, $perpage, $total) { $first = $perpage * ($pagenumber - 1); $last = $first + $perpage; if ($last > $total) { $last = $total; } $first++; return array('first' => vb_number_format($first), 'last' => vb_number_format($last)); } // ############################################################################# /** * Returns the HTML for the navigation breadcrumb in the navbar * * This function will also set the GLOBAL $pagetitle to equal whatever is the last item in the navbits * * @param array Array of link => title pairs from which to build the link chain * * @return string */ function construct_navbits($nav_array) { global $pagetitle, $stylevar, $vbulletin, $vbphrase, $show; $code = array( 'breadcrumb' => '', 'lastelement' => '' ); $lastelement = sizeof($nav_array); $counter = 0; if (is_array($nav_array)) { foreach($nav_array AS $nav_url => $nav_title) { $pagetitle = $nav_title; $elementtype = (++$counter == $lastelement) ? 'lastelement' : 'breadcrumb'; $show['breadcrumb'] = ($elementtype == 'breadcrumb'); if (empty($nav_title)) { continue; } $skip_nav_entry = false; ($hook = vBulletinHook::fetch_hook('navbits')) ? eval($hook) : false; if ($skip_nav_entry) { continue; } eval('$code["$elementtype"] .= "' . fetch_template('navbar_link') . '";'); } } ($hook = vBulletinHook::fetch_hook('navbits_complete')) ? eval($hook) : false; return $code; } // ############################################################################# /** * Construct Phrase * * this function is actually just a wrapper for sprintf but makes identification of phrase code easier * and will not error if there are no additional arguments. The first parameter is the phrase text, and * the (unlimited number of) following parameters are the variables to be parsed into that phrase. * * @param string Text of the phrase * @param mixed First variable to be inserted * @param mixed Nth variable to be inserted * * @return string The parsed phrase */ function construct_phrase() { static $argpad; $args = func_get_args(); $numargs = sizeof($args); // if we have only one argument, just return the argument if ($numargs < 2) { return $args[0]; } else { // call sprintf() on the first argument of this function $phrase = @call_user_func_array('sprintf', $args); if ($phrase !== false) { return $phrase; } else { // if that failed, add some extra arguments for debugging for ($i = $numargs; $i < 10; $i++) { $args["$i"] = "[ARG:$i UNDEFINED]"; } if ($phrase = @call_user_func_array('sprintf', $args)) { return $phrase; } // if it still doesn't work, just return the un-parsed text else { return $args[0]; } } } } // ############################################################################# /** * Returns 2 lines of eval()-able code -- one sets $message, the other $subject. * * @param string Name of email phrase to fetch * @param integer Language ID from which to pull the phrase (see fetch_phrase $languageid) * @param string If not empty, select the subject phrase with the given name * @param string Optional prefix for $message/$subject variable names (eg: $varprefix = 'test' -> $testmessage, $testsubject) * * @return string */ function fetch_email_phrases($email_phrase, $languageid = -1, $emailsub_phrase = '', $varprefix = '') { if (empty($emailsub_phrase)) { $emailsub_phrase = $email_phrase; } if (!function_exists('fetch_phrase')) { require_once(DIR . '/includes/functions_misc.php'); } return '$' . $varprefix . 'message = "' . fetch_phrase($email_phrase, 'emailbody', 'email_', true, iif($languageid >= 0, true, ''), $languageid, false) . '";' . '$' . $varprefix . 'subject = "' . fetch_phrase($emailsub_phrase, 'emailsubject', 'emailsubject_', true, iif($languageid >= 0, true, ''), $languageid, false) . '";'; } // ############################################################################# /** * Fetches an error phrase from the database and inserts values for its embedded variables * * @param string Varname of error phrase * @param mixed Value of 1st variable * @param mixed Value of 2nd variable * @param mixed Value of Nth variable * * @return string The parsed phrase text */ function fetch_error() { global $vbulletin; $args = func_get_args(); // Allow an array of phrase and variables to be passed in as arg0 (for some internal functions) if (is_array($args[0])) { $args = $args[0]; } if (class_exists('vBulletinHook')) { ($hook = vBulletinHook::fetch_hook('error_fetch')) ? eval($hook) : false; } if (!function_exists('fetch_phrase')) { require_once(DIR . '/includes/functions_misc.php'); } if ($vbulletin->GPC['ajax']) { switch ($args[0]) { case 'invalidid': case 'nopermission_loggedin': case 'forumpasswordmissing': $args[0] = $args[0] . '_ajax'; } } $args[0] = fetch_phrase($args[0], 'error', '', false); if (sizeof($args) > 1) { return call_user_func_array('construct_phrase', $args); } else { return $args[0]; } } // ############################################################################# /** * Halts execution and shows an error message stating that the visitor does not have permission to view the page */ function print_no_permission() { global $vbulletin, $stylevar, $vbphrase; require_once(DIR . '/includes/functions_misc.php'); $vbulletin->userinfo['badlocation'] = 1; // Used by exec_shut_down(); ($hook = vBulletinHook::fetch_hook('error_nopermission')) ? eval($hook) : false; $usergroupid = $vbulletin->userinfo['usergroupid']; if (!($vbulletin->usergroupcache["$usergroupid"]['genericoptions'] & $vbulletin->bf_ugp_genericoptions['isnotbannedgroup'])) { $reason = $vbulletin->db->query_first_slave(" SELECT reason, liftdate FROM " . TABLE_PREFIX . "userban WHERE userid = " . $vbulletin->userinfo['userid'] ); // Check for a date or a perm ban if ($reason['liftdate']) { $date = vbdate($vbulletin->options['dateformat'] . ', ' . $vbulletin->options['timeformat'], $reason['liftdate']); } else { $date = $vbphrase['never']; } if (!$reason['reason']) { $reason['reason'] = fetch_phrase('no_reason_specified', 'error'); } eval(standard_error(fetch_error('nopermission_banned', $reason['reason'], $date))); } else if ($vbulletin->userinfo['userid'] AND !empty($vbulletin->userinfo['infractiongroupids'])) { $date = $vbphrase['never']; $infractiongroupids = explode(',', str_replace(' ', '', $vbulletin->userinfo['infractiongroupids'])); $bannedgroups = array(); foreach ($infractiongroupids AS $usergroupid) { if (!($vbulletin->usergroupcache["$usergroupid"]['genericoptions'] & $vbulletin->bf_ugp_genericoptions['isnotbannedgroup'])) { $bannedgroups["$usergroupid"] = $usergroupid; } } if (!empty($bannedgroups)) { $points = $vbulletin->userinfo['ipoints']; $infractions = $vbulletin->db->query_read(" SELECT points, expires FROM " . TABLE_PREFIX . "infraction WHERE userid = " . $vbulletin->userinfo['userid'] . " AND action = 0 AND expires <> 0 AND points <> 0 ORDER BY expires ASC "); if ($vbulletin->db->num_rows($infractions)) { $infractiongroups = array(); $groups = $vbulletin->db->query_read(" SELECT orusergroupid, pointlevel FROM " . TABLE_PREFIX . "infractiongroup WHERE usergroupid IN (-1, " . $vbulletin->userinfo['usergroupid'] . ") AND pointlevel <= " . $vbulletin->userinfo['ipoints'] . " ORDER BY pointlevel "); while ($group = $vbulletin->db->fetch_array($groups)) { $infractiongroups[] = $group; } $foundbanned = true; while ($foundbanned AND $infraction = $vbulletin->db->fetch_array($infractions)) { // Decremement user points as they would be when this infraction expires $foundbanned = false; $points -= $infraction['points']; foreach($infractiongroups AS $key => $group) { if ($points < $group['pointlevel']) { continue; } else if (!($vbulletin->usergroupcache["$group[orusergroupid]"]['genericoptions'] & $vbulletin->bf_ugp_genericoptions['isnotbannedgroup'])) { $foundbanned = true; } } } if (!$foundbanned) { // This is when we will be "unbanned" $date = vbdate($vbulletin->options['dateformat'] . ', ' . $vbulletin->options['timeformat'], $infraction['expires']); } eval(standard_error(fetch_error('nopermission_banned_infractions', $date))); } } } if ($vbulletin->userinfo['userid']) { eval(standard_error(fetch_error('nopermission_loggedin', $vbulletin->userinfo['username'], $stylevar['right'], $vbulletin->session->vars['sessionurl'], $vbulletin->userinfo['logouthash'], $vbulletin->options['forumhome'] ))); } else { define('VB_ERROR_PERMISSION', true); eval(standard_error(fetch_error('nopermission_loggedout'))); } } // ############################################################################# /** * Returns eval()-able code to initiate a standard error * * @deprecated Deprecated since 3.5. Use standard_error(fetch_error(...)) instead. * * @param string Name of error phrase * @param boolean If false, use the name of error phrase as the phrase text itself * @param boolean If true, set the visitor's status on WOL to error page * * @return string */ function print_standard_error($err_phrase, $doquery = true, $savebadlocation = true) { die("

print_standard_error(...)
is now redundant. Instead, use
standard_error(fetch_error(...))

"); if ($doquery) { if (!function_exists('fetch_phrase')) { require_once(DIR . '/includes/functions_misc.php'); } return 'standard_error("' . fetch_phrase($err_phrase, 'error', 'error_') . "\", '', " . intval($savebadlocation) . ");"; } else { return 'standard_error("' . $err_phrase . "\", '', " . intval($savebadlocation) . ");"; } } // ############################################################################# /** * Halts execution and shows the specified error message * * @param string Error message * @param string Optional HTML code to insert in the of the error page * @param boolean If true, set the visitor's status on WOL to error page * @param string Optional template to force the display to use. Ignored if showing a lite error */ function standard_error($error = '', $headinsert = '', $savebadlocation = true, $override_template = '') { global $header, $footer, $headinclude, $forumjump, $timezone, $gobutton; global $vbulletin, $vbphrase, $stylevar, $template_hook; global $pmbox, $show, $ad_location, $notifications_menubits, $notifications_total; $show['notices'] = false; construct_forum_jump(); $title = $vbulletin->options['bbtitle']; $pagetitle =& $title; $errormessage = $error; if (!$vbulletin->userinfo['badlocation'] AND $savebadlocation) { $vbulletin->userinfo['badlocation'] = 3; } require_once(DIR . '/includes/functions_misc.php'); $postvars = construct_post_vars_html(); if (defined('VB_ERROR_PERMISSION') AND VB_ERROR_PERMISSION == true) { $show['permission_error'] = true; } else { $show['permission_error'] = false; } $show['search_noindex'] = (bool)($vbulletin->userinfo['permissions']['forumpermissions'] & $vbulletin->bf_ugp_forumpermissions['canview']); $navbits = $navbar = ''; if (defined('VB_ERROR_LITE') AND VB_ERROR_LITE == true) { $templatename = 'STANDARD_ERROR_LITE'; define('NOPMPOPUP', 1); // No Footer here } else { if ($vbulletin->userinfo['permissions']['forumpermissions'] & $vbulletin->bf_ugp_forumpermissions['canview']) { $show['forumdesc'] = false; $navbits = construct_navbits(array('' => $vbphrase['vbulletin_message'])); eval('$navbar = "' . fetch_template('navbar') . '";'); } $templatename = ($override_template ? preg_replace('#[^a-z0-9_]#i', '', $override_template) : 'STANDARD_ERROR'); } ($hook = vBulletinHook::fetch_hook('error_generic')) ? eval($hook) : false; if ($vbulletin->GPC['ajax']) { require_once(DIR . '/includes/class_xml.php'); $xml = new vB_AJAX_XML_Builder($vbulletin, 'text/xml'); $xml->add_tag('error', $errormessage); $xml->print_xml(); exit; } else { eval('print_output("' . fetch_template($templatename) . '");'); exit; } } // ############################################################################# /** * Returns eval()-able code to initiate a standard redirect * * The global variable $url should contain the URL target for the redirect * * @param string Name of redirect phrase * @param boolean If false, use the name of redirect phrase as the phrase text itself * @param boolean Whether or not to force a redirect message to be shown * @param integer Language ID to fetch the phrase from (-1 uses the page-wide default) * * @return string */ function print_standard_redirect($redir_phrase, $doquery = true, $forceredirect = false, $languageid = -1) { if ($doquery) { if (!function_exists('fetch_phrase')) { require_once(DIR . '/includes/functions_misc.php'); } $phrase = fetch_phrase($redir_phrase, 'frontredirect', 'redirect_', true, false, $languageid, false); // addslashes run in fetch_phrase } else { $phrase = addslashes($redir_phrase); } return 'standard_redirect("' . $phrase . '", ' . intval($forceredirect) . ');'; } // ############################################################################# /** * Halts execution and redirects to the address specified * * If the 'useheaderredirect' option is on, the system will attempt to redirect invisibly using header('Location... * However, 'useheaderredirect' is overridden by setting $forceredirect to a true value. * * @param string Redirect message * @param string URL to which to redirect the browser */ function standard_redirect($message = '', $forceredirect = false) { global $header, $footer, $headinclude, $forumjump; global $timezone, $vbulletin, $vbphrase, $stylevar, $pagestarttime; static $str_find = array('"', '<', '>'), $str_replace = array('"', '<', '>'); if ($vbulletin->db->explain) { $pageendtime = microtime(); $starttime = explode(' ', $pagestarttime); $endtime = explode(' ', $pageendtime); $totaltime = $endtime[0] - $starttime[0] + $endtime[1] - $starttime[1]; $vartext .= ""; $querytime = $vbulletin->db->time_total; echo "\nPage generated in $totaltime seconds with " . $vbulletin->db->querycount . " queries,\nspending $querytime doing MySQL queries and " . ($totaltime - $querytime) . " doing PHP things.\n\n
Shutdown Queries:" . (defined('NOSHUTDOWNFUNC') ? " DISABLED" : '') . "
\n\n"; exit; } if ($vbulletin->options['useheaderredirect'] AND !$forceredirect AND !headers_sent() AND !$vbulletin->GPC['postvars']) { exec_header_redirect($vbulletin->url); } $title = $vbulletin->options['bbtitle']; $pagetitle = $title; $errormessage = $message; $url = unhtmlspecialchars($vbulletin->url); $url = str_replace(chr(0), '', $url); $url = create_full_url($url); $url = str_replace($str_find, $str_replace, $url); $js_url = addslashes_js($url, '"'); // " has been replaced by " $url = preg_replace( array('/�*59;?/', '/�*3B;?/i', '#;#'), '%3B', $url ); $url = preg_replace('#&%3B#i', '&', $url); define('NOPMPOPUP', 1); // No footer here require_once(DIR . '/includes/functions_misc.php'); $postvars = construct_hidden_var_fields(verify_client_string($vbulletin->GPC['postvars'])); $formfile =& $url; ($hook = vBulletinHook::fetch_hook('redirect_generic')) ? eval($hook) : false; eval('print_output("' . fetch_template('STANDARD_REDIRECT') . '");'); exit; } // ############################################################################# /** * Halts execution and redirects to the specified URL invisibly * * @param string Destination URL */ function exec_header_redirect($url) { global $vbulletin; $url = create_full_url($url); if (class_exists('vBulletinHook')) { // this can be called when we don't have the hook class ($hook = vBulletinHook::fetch_hook('header_redirect')) ? eval($hook) : false; } $url = str_replace('&', '&', $url); // prevent possible oddity if (strpos($url, "\r\n") !== false) { trigger_error("Header may not contain more than a single header, new line detected.", E_USER_ERROR); } header("Location: $url", 0, 302); define('NOPMPOPUP', 1); if (defined('NOSHUTDOWNFUNC')) { exec_shut_down(); } exit; } // ############################################################################# /** * Translates a relative URL to a fully-qualified URL. URLs not beginning with * a / are assumed to be within the main vB-directory * * @param string Relative URL * * @param string Fully-qualified URL */ function create_full_url($url) { // enforces HTTP 1.1 compliance if (!preg_match('#^[a-z]+://#i', $url)) { // make sure we get the correct value from a multitude of server setups if ($_SERVER['HTTP_HOST'] OR $_ENV['HTTP_HOST']) { $http_host = ($_SERVER['HTTP_HOST'] ? $_SERVER['HTTP_HOST'] : $_ENV['HTTP_HOST']); } else if ($_SERVER['SERVER_NAME'] OR $_ENV['SERVER_NAME']) { $http_host = ($_SERVER['SERVER_NAME'] ? $_SERVER['SERVER_NAME'] : $_ENV['SERVER_NAME']); } // if we don't have this, then this isn't going to work correctly, // so let's assume that we're going to be OK with just a relative URL if ($http_host = trim($http_host)) { $method = REQ_PROTOCOL . '://'; if ($url{0} != '/') { if (($dirpath = dirname(SCRIPT . 'i')) != '/') { if ($dirpath == '\\') { $dirpath = '/'; } else { $dirpath .= '/'; } } } else { $dirpath = ''; } $dirpath .= $url; $url = $method . $http_host . $dirpath; } } return $url; } // ############################################################################# /** * Fetches a number of templates from the database and puts them into the templatecache * * @param array List of template names to be fetched * @param string Serialized array of template name => template id pairs */ function cache_templates($templates, $templateidlist) { global $vbulletin, $templateassoc; if (empty($templateassoc)) { $templateassoc = unserialize($templateidlist); } if ($vbulletin->options['legacypostbit'] AND in_array('postbit', $templates)) { $templateassoc['postbit'] = $templateassoc['postbit_legacy']; } foreach ($templates AS $template) { $templateids[] = intval($templateassoc["$template"]); } if (!empty($templateids)) { // run query $temps = $vbulletin->db->query_read_slave(" SELECT title, template FROM " . TABLE_PREFIX . "template WHERE templateid IN (" . implode(',', $templateids) . ") "); // cache templates while ($temp = $vbulletin->db->fetch_array($temps)) { if (empty($vbulletin->templatecache["$temp[title]"])) { $vbulletin->templatecache["$temp[title]"] = $temp['template']; } } $vbulletin->db->free_result($temps); } $vbulletin->bbcode_style = array( 'code' => &$templateassoc['bbcode_code_styleid'], 'html' => &$templateassoc['bbcode_html_styleid'], 'php' => &$templateassoc['bbcode_php_styleid'], 'quote' => &$templateassoc['bbcode_quote_styleid'] ); } // ############################################################################# /** * Returns a single template from the templatecache or the database * * @param string Name of template to be fetched * @param integer Escape quotes in template? 1: escape template; -1: unescape template; 0: do nothing * @param boolean Wrap template in HTML comments showing the template name? * * @return string */ function fetch_template($templatename, $escape = 0, $gethtmlcomments = true) { // gets a template from the db or from the local cache global $style, $vbulletin, $tempusagecache, $templateassoc; // use legacy postbit if necessary if ($vbulletin->options['legacypostbit'] AND $templatename == 'postbit') { $templatename = 'postbit_legacy'; } if (isset($vbulletin->templatecache["$templatename"])) { $template = $vbulletin->templatecache["$templatename"]; } else { DEVDEBUG("Uncached template: $templatename"); $GLOBALS['_TEMPLATEQUERIES']["$templatename"] = true; $fetch_tid = intval($templateassoc["$templatename"]); if (!$fetch_tid) { $gettemp = array('template' => ''); } else { $gettemp = $vbulletin->db->query_first_slave(" SELECT template FROM " . TABLE_PREFIX . "template WHERE templateid = $fetch_tid "); } $template = $gettemp['template']; $vbulletin->templatecache["$templatename"] = $template; } // ************************** /* if ($template == '<<< FILE >>>') { $template = addslashes(implode('', file("./templates/$templatename.html"))); $vbulletin->templatecache["$templatename"] = $template; } */ // ************************** switch($escape) { case 1: // escape template $template = addslashes($template); $template = str_replace("\\'", "'", $template); break; case -1: // unescape template $template = stripslashes($template); break; } if (isset($tempusagecache["$templatename"])) { ++$tempusagecache["$templatename"]; } else { $tempusagecache["$templatename"] = 1; } if ($vbulletin->options['addtemplatename'] AND $gethtmlcomments) { $templatename = preg_replace('#[^a-z0-9_]#i', '', $templatename); return "\n$template\n"; } return $template; } // ############################################################################# /** * Gets counter information and makes sure the forums are in the proper order * for tree iteration. Changes will be made to the forum cache directly. * * @param boolean Whether or not to get the forum counter info * @param boolean Whether to include invisible forums in the liast * @param integer ID of the user that subscribed forums should be fetched for */ function cache_ordered_forums($getcounters = 0, $getinvisibles = 0, $userid = 0) { global $vbulletin; // query forum table to get latest lastpost/lastthread info and counters if ($getcounters) { if ($vbulletin->userinfo['userid'] AND in_coventry($vbulletin->userinfo['userid'], true)) { $tachyjoin = " LEFT JOIN " . TABLE_PREFIX . "tachyforumpost AS tachyforumpost ON (tachyforumpost.forumid = forum.forumid AND tachyforumpost.userid = " . $vbulletin->userinfo['userid'] . ") LEFT JOIN " . TABLE_PREFIX . "tachyforumcounter AS tachyforumcounter ON (tachyforumpost.forumid = forum.forumid AND tachyforumpost.userid = " . $vbulletin->userinfo['userid'] . ") "; $counter_select = ' forum.forumid, IF(tachyforumpost.userid IS NULL, forum.lastpost, tachyforumpost.lastpost) AS lastpost, IF(tachyforumpost.userid IS NULL, forum.lastposter, tachyforumpost.lastposter) AS lastposter, IF(tachyforumpost.userid IS NULL, forum.lastthread, tachyforumpost.lastthread) AS lastthread, IF(tachyforumpost.userid IS NULL, forum.lastthreadid, tachyforumpost.lastthreadid) AS lastthreadid, IF(tachyforumpost.userid IS NULL, forum.lasticonid, tachyforumpost.lasticonid) AS lasticonid, IF(tachyforumpost.userid IS NULL, forum.lastpostid, tachyforumpost.lastpostid) AS lastpostid, IF(tachyforumpost.userid IS NULL, forum.lastprefixid, tachyforumpost.lastprefixid) AS lastprefixid, IF(tachyforumcounter.userid IS NULL, forum.threadcount, forum.threadcount + tachyforumcounter.threadcount) AS threadcount, IF(tachyforumcounter.userid IS NULL, forum.replycount, forum.replycount + tachyforumcounter.replycount) AS replycount '; } else { $tachyjoin = ''; $counter_select = 'forum.forumid, lastpost, lastposter, lastthread, lastthreadid, lasticonid, threadcount, replycount, lastpostid, lastprefixid'; } ($hook = vBulletinHook::fetch_hook('cache_ordered_forums')) ? eval($hook) : false; // get subscribed forums too if ($userid) { $query = " SELECT subscribeforumid, $counter_select ". iif($vbulletin->options['threadmarking'], ', forumread.readtime AS forumread') . " FROM " . TABLE_PREFIX . "forum AS forum LEFT JOIN " . TABLE_PREFIX . "subscribeforum AS subscribeforum ON (subscribeforum.forumid = forum.forumid AND subscribeforum.userid = $userid) " . iif($vbulletin->options['threadmarking'], " LEFT JOIN " . TABLE_PREFIX . "forumread AS forumread ON (forumread.forumid = forum.forumid AND forumread.userid = $userid)") . " $tachyjoin "; } // just get counters else { $query = " SELECT $counter_select ". iif($vbulletin->options['threadmarking'] AND $vbulletin->userinfo['userid'], ', forumread.readtime AS forumread') . " FROM " . TABLE_PREFIX . "forum AS forum " . iif($vbulletin->options['threadmarking'] AND $vbulletin->userinfo['userid'], " LEFT JOIN " . TABLE_PREFIX . "forumread AS forumread ON (forumread.forumid = forum.forumid AND forumread.userid = " . $vbulletin->userinfo['userid'] . ")") . " $tachyjoin "; } } // get subscribed forums else if ($userid) { $query = " SELECT subscribeforumid, forumid FROM " . TABLE_PREFIX . "subscribeforum WHERE userid = $userid "; } // don't bother to query forum table, just use the cache else { $query = null; } if ($query !== null) { $db =& $vbulletin->db; $getthings = $db->query_read_slave($query); if ($db->num_rows($getthings)) { while ($getthing = $db->fetch_array($getthings)) { if (empty($vbulletin->forumcache["$getthing[forumid]"])) { $vbulletin->forumcache["$getthing[forumid]"] = $getthing; } else { // this adds the existing cache to $getthing without overwriting // any of $getthing's keys $vbulletin->forumcache["$getthing[forumid]"] = $getthing + $vbulletin->forumcache["$getthing[forumid]"]; } } } } $vbulletin->iforumcache = array(); foreach ($vbulletin->forumcache AS $forumid => $forum) { if ((!$forum['displayorder'] OR !($forum['options'] & $vbulletin->bf_misc_forumoptions['active'])) AND !$getinvisibles) { continue; } $forum['parentid'] = intval($forum['parentid']); $vbulletin->iforumcache["$forum[parentid]"]["$forumid"] = $forumid; } } // ############################################################################# /** * Returns the HTML for the forum jump menu * * @param integer ID of the parent forum for the group to be shown (-1 for all) * @param boolean If true, evaluate the forumjump template too * @param string Characters to prepend to forum titles to indicate depth * @param string Not sure actually... */ function construct_forum_jump($parentid = -1, $addbox = true, $prependchars = '', $permission = '') { global $vbulletin, $optionselected, $usecategories, $jumpforumid, $jumpforumtitle, $jumpforumbits, $curforumid, $daysprune; global $stylevar, $vbphrase, $defaultselected, $forumjump, $selectedone; global $frmjmpsel; // allows context sensitivity for non-forum areas global $gobutton; static $complete = false; if ($complete OR !$vbulletin->options['useforumjump'] OR !($vbulletin->userinfo['permissions']['forumpermissions'] & $vbulletin->bf_ugp_forumpermissions['canview'])) { return; } if (empty($vbulletin->iforumcache)) { // get the vbulletin->iforumcache, as we use it all over the place, not just for forumjump cache_ordered_forums(0, 1); } if (empty($vbulletin->iforumcache["$parentid"]) OR !is_array($vbulletin->iforumcache["$parentid"])) { return; } foreach($vbulletin->iforumcache["$parentid"] AS $forumid) { $forumperms = $vbulletin->userinfo['forumpermissions']["$forumid"]; #if ((!($forumperms & $vbulletin->bf_ugp_forumpermissions['canview']) AND !$vbulletin->options['showprivateforums']) OR !($vbulletin->forumcache["$forumid"]['options'] & $vbulletin->bf_misc_forumoptions['showonforumjump']) OR !$vbulletin->forumcache["$forumid"]['displayorder'] OR !($vbulletin->forumcache["$forumid"]['options'] & $vbulletin->bf_misc_forumoptions['active'])) if ((!($forumperms & $vbulletin->bf_ugp_forumpermissions['canview']) AND ($vbulletin->forumcache["$forumid"]['showprivate'] == 1 OR (!$vbulletin->forumcache["$forumid"]['showprivate'] AND !$vbulletin->options['showprivateforums']))) OR !($vbulletin->forumcache["$forumid"]['options'] & $vbulletin->bf_misc_forumoptions['showonforumjump']) OR !$vbulletin->forumcache["$forumid"]['displayorder'] OR !($vbulletin->forumcache["$forumid"]['options'] & $vbulletin->bf_misc_forumoptions['active'])) { continue; } else { // set $forum from the $vbulletin->forumcache $forum = $vbulletin->forumcache["$forumid"]; $optionvalue = $forumid; $optiontitle = $prependchars . " $forum[title_clean]"; $optionclass = 'fjdpth' . iif($forum['depth'] > 4, 4, $forum['depth']); if ($curforumid == $optionvalue) { $optionselected = 'selected="selected"'; $optionclass = 'fjsel'; $selectedone = 1; } else { $optionselected = ''; } eval('$jumpforumbits .= "' . fetch_template('option') . '";'); construct_forum_jump($optionvalue, 0, $prependchars . FORUM_PREPEND, $forumperms); } // if can view } // end foreach ($vbulletin->iforumcache[$parentid] AS $forumid) if ($addbox) { if ($selectedone != 1) { $defaultselected = 'selected="selected"'; } if (!is_array($frmjmpsel)) { $frmjmpsel = array(); } if (empty($daysprune)) { $daysprune = ''; } else { $daysprune = intval($daysprune); } ($hook = vBulletinHook::fetch_hook('forumjump')) ? eval($hook) : false; eval('$forumjump = "' . fetch_template('forumjump') . '";'); // prevent forumjump from being built more than once $complete = true; } } // ############################################################################# /** * Sets various time and date related variables according to visitor's preferences * * Sets $timediff, $datenow, $timenow, $copyrightyear */ function fetch_time_data() { global $vbulletin, $timediff, $datenow, $timenow, $copyrightyear; $vbulletin->userinfo['tzoffset'] = $vbulletin->userinfo['timezoneoffset']; // preserve timzoneoffset for profile editing and proper event display if ($vbulletin->userinfo['dstonoff']) { // DST is on, add an hour $vbulletin->userinfo['tzoffset']++; if (substr($vbulletin->userinfo['tzoffset'], 0, 1) != '-') { // recorrect so that it has + sign, if necessary $vbulletin->userinfo['tzoffset'] = '+' . $vbulletin->userinfo['tzoffset']; } } // some stuff for the gmdate bug $vbulletin->options['hourdiff'] = (date('Z', TIMENOW) / 3600 - $vbulletin->userinfo['tzoffset']) * 3600; if ($vbulletin->userinfo['tzoffset']) { if ($vbulletin->userinfo['tzoffset'] > 0 AND strpos($vbulletin->userinfo['tzoffset'], '+') === false) { $vbulletin->userinfo['tzoffset'] = '+' . $vbulletin->userinfo['tzoffset']; } if (abs($vbulletin->userinfo['tzoffset']) == 1) { $timediff = ' ' . $vbulletin->userinfo['tzoffset'] . ' hour'; } else { $timediff = ' ' . $vbulletin->userinfo['tzoffset'] . ' hours'; } } else { $timediff = ''; } $datenow = vbdate($vbulletin->options['dateformat'], TIMENOW); $timenow = vbdate($vbulletin->options['timeformat'], TIMENOW); $copyrightyear = vbdate('Y', TIMENOW, false, false); } // ############################################################################# /** * Formats a UNIX timestamp into a human-readable string according to vBulletin prefs * * Note: Ifvbdate() is called with a date format other than than one in $vbulletin->options[], * set $locale to false unless you dynamically set the date() and strftime() formats in the vbdate() call. * * @param string Date format string (same syntax as PHP's date() function) * @param integer Unix time stamp * @param boolean If true, attempt to show strings like "Yesterday, 12pm" instead of full date string * @param boolean If true, and user has a language locale, use strftime() to generate language specific dates * @param boolean If true, don't adjust time to user's adjusted time .. (think gmdate instead of date!) * @param boolean If true, uses gmstrftime() and gmdate() instead of strftime() and date() * @param array If set, use specified info instead of $vbulletin->userinfo * * @return string Formatted date string */ function vbdate($format, $timestamp = TIMENOW, $doyestoday = false, $locale = true, $adjust = true, $gmdate = false, $userinfo = '') { global $vbulletin, $vbphrase; $uselocale = false; if (is_array($userinfo) AND !empty($userinfo)) { if ($userinfo['lang_locale']) { $uselocale = true; $currentlocale = setlocale(LC_TIME, 0); setlocale(LC_TIME, $userinfo['lang_locale']); if (substr($userinfo['lang_locale'], 0, 5) != 'tr_TR') { setlocale(LC_CTYPE, $userinfo['lang_locale']); } } if ($userinfo['dstonoff']) { // DST is on, add an hour $userinfo['timezoneoffset']++; if (substr($userinfo['timezoneoffset'], 0, 1) != '-') { // recorrect so that it has a + sign, if necessary $userinfo['timezoneoffset'] = '+' . $userinfo['timezoneoffset']; } } $hourdiff = (date('Z', TIMENOW) / 3600 - $userinfo['timezoneoffset']) * 3600; } else { $hourdiff = $vbulletin->options['hourdiff']; if ($vbulletin->userinfo['lang_locale']) { $uselocale = true; } } if ($uselocale AND $locale) { if ($gmdate) { $datefunc = 'gmstrftime'; } else { $datefunc = 'strftime'; } } else { if ($gmdate) { $datefunc = 'gmdate'; } else { $datefunc = 'date'; } } if (!$adjust) { $hourdiff = 0; } $timestamp_adjusted = max(0, $timestamp - $hourdiff); if ($format == $vbulletin->options['dateformat'] AND $doyestoday AND $vbulletin->options['yestoday']) { if ($vbulletin->options['yestoday'] == 1) { if (!defined('TODAYDATE')) { define ('TODAYDATE', vbdate('n-j-Y', TIMENOW, false, false)); define ('YESTDATE', vbdate('n-j-Y', TIMENOW - 86400, false, false)); define ('TOMDATE', vbdate('n-j-Y', TIMENOW + 86400, false, false)); } $datetest = @date('n-j-Y', $timestamp - $hourdiff); if ($datetest == TODAYDATE) { $returndate = $vbphrase['today']; } else if ($datetest == YESTDATE) { $returndate = $vbphrase['yesterday']; } else { $returndate = $datefunc($format, $timestamp_adjusted); } } else { $timediff = TIMENOW - $timestamp; if ($timediff >= 0) { if ($timediff < 120) { $returndate = $vbphrase['1_minute_ago']; } else if ($timediff < 3600) { $returndate = construct_phrase($vbphrase['x_minutes_ago'], intval($timediff / 60)); } else if ($timediff < 7200) { $returndate = $vbphrase['1_hour_ago']; } else if ($timediff < 86400) { $returndate = construct_phrase($vbphrase['x_hours_ago'], intval($timediff / 3600)); } else if ($timediff < 172800) { $returndate = $vbphrase['1_day_ago']; } else if ($timediff < 604800) { $returndate = construct_phrase($vbphrase['x_days_ago'], intval($timediff / 86400)); } else if ($timediff < 1209600) { $returndate = $vbphrase['1_week_ago']; } else if ($timediff < 3024000) { $returndate = construct_phrase($vbphrase['x_weeks_ago'], intval($timediff / 604900)); } else { $returndate = $datefunc($format, $timestamp_adjusted); } } else { $returndate = $datefunc($format, $timestamp_adjusted); } } } else { $returndate = $datefunc($format, $timestamp_adjusted); } if (!empty($userinfo['lang_locale'])) { setlocale(LC_TIME, $currentlocale); if (substr($currentlocale, 0, 5) != 'tr_TR') { setlocale(LC_CTYPE, $currentlocale); } } return $returndate; } // ############################################################################# /** * Returns a string where HTML entities have been converted back to their original characters * * @param string String to be parsed * @param boolean Convert unicode characters back from HTML entities? * * @return string */ function unhtmlspecialchars($text, $doUniCode = false) { if ($doUniCode) { $text = preg_replace('/&#([0-9]+);/esiU', "convert_int_to_utf8('\\1')", $text); } return str_replace(array('<', '>', '"', '&'), array('<', '>', '"', '&'), $text); } // ############################################################################# /** * Converts an integer into a UTF-8 character string * * @param integer Integer to be converted * * @return string */ function convert_int_to_utf8($intval) { $intval = intval($intval); switch ($intval) { // 1 byte, 7 bits case 0: return chr(0); case ($intval & 0x7F): return chr($intval); // 2 bytes, 11 bits case ($intval & 0x7FF): return chr(0xC0 | (($intval >> 6) & 0x1F)) . chr(0x80 | ($intval & 0x3F)); // 3 bytes, 16 bits case ($intval & 0xFFFF): return chr(0xE0 | (($intval >> 12) & 0x0F)) . chr(0x80 | (($intval >> 6) & 0x3F)) . chr (0x80 | ($intval & 0x3F)); // 4 bytes, 21 bits case ($intval & 0x1FFFFF): return chr(0xF0 | ($intval >> 18)) . chr(0x80 | (($intval >> 12) & 0x3F)) . chr(0x80 | (($intval >> 6) & 0x3F)) . chr(0x80 | ($intval & 0x3F)); } } // ############################################################################# /** * Converts Unicode entities of the format %uHHHH where each H is a hexadecimal * character to &#DDDD; or the appropriate UTF-8 character based on current charset. * * @param string Encoded text * * @return string Decoded text */ function convert_urlencoded_unicode($text) { global $stylevar; $return = preg_replace( '#%u([0-9A-F]{1,4})#ie', "convert_unicode_char_to_charset(hexdec('\\1'), \$stylevar['charset'])", $text ); $lower_charset = strtolower($stylevar['charset']); if ($lower_charset != 'utf-8' AND function_exists('html_entity_decode')) { // this converts certain { entities to their actual character // set values; don't do this if using UTF-8 as it's already done above. // note: we don't want to convert >, etc as that undoes the effects of STR_NOHTML $return = preg_replace('#&([a-z]+);#i', '&$1;', $return); if ($lower_charset == 'windows-1251' AND phpversion() >= '5') { // there's a bug in PHP5 html_entity_decode that decodes some entities that // it shouldn't. So double encode them to ensure they don't get decoded. $return = preg_replace('/&#(128|129|1[3-9][0-9]|2[0-4][0-9]|25[0-5]);/', '&#$1;', $return); } $return = @html_entity_decode($return, ENT_NOQUOTES, $stylevar['charset']); } return $return; } /** * Converts a single unicode character to the desired character set if possible. * Attempts to use iconv if it's available. * Callback function for the regular expression in convert_urlencoded_unicode. * * @param integer Unicode code point value * @param string Character to convert to * * @return string Character in desired character set or as an HTML entity */ function convert_unicode_char_to_charset($unicode_int, $charset) { $is_utf8 = (strtolower($charset) == 'utf-8'); if ($is_utf8) { return convert_int_to_utf8($unicode_int); } if (function_exists('iconv')) { // convert this character -- if unrepresentable, it should fail $output = @iconv('UTF-8', $charset, convert_int_to_utf8($unicode_int)); if ($output !== false AND $output !== '') { return $output; } } return "&#$unicode_int;"; } // ############################################################################# /** * Stuffs a message into the $DEVDEBUG array * * @param string Message to store */ function devdebug($text = '') { global $vbulletin; if ($vbulletin->debug) { $GLOBALS['DEVDEBUG'][] = $text; } } // ############################################################################# /** * Sends the appropriate HTTP headers for the page that is being displayed * * @param boolean If true, send HTTP 200 * @param boolean If true, send no-cache headers */ function exec_headers($headers = true, $nocache = true) { global $vbulletin; $sendcontent = true; if ($vbulletin->options['addheaders'] AND !$vbulletin->noheader AND $headers) { // default headers if (SAPI_NAME == 'cgi' OR SAPI_NAME == 'cgi-fcgi') { header('Status: 200 OK'); } else { header('HTTP/1.1 200 OK'); } @header('Content-Type: text/html' . iif($vbulletin->userinfo['lang_charset'] != '', '; charset=' . $vbulletin->userinfo['lang_charset'])); $sendcontent = false; } if ($vbulletin->options['nocacheheaders'] AND !$vbulletin->noheader AND $nocache) { // no caching exec_nocache_headers($sendcontent); } else if (!$vbulletin->noheader) { @header("Cache-Control: private"); @header("Pragma: private"); if ($sendcontent) { @header('Content-Type: text/html' . iif($vbulletin->userinfo['lang_charset'] != '', '; charset=' . $vbulletin->userinfo['lang_charset'])); } } // IE8 emulate IE7 mode if ($vbulletin->options['ie8render7']) { @header('X-UA-Compatible: IE=7'); } } // ############################################################################# /** * Sends no-cache HTTP headers * * @param boolean If true, send content-type header */ function exec_nocache_headers($sendcontent = true) { global $vbulletin; static $sentheaders; if (!$sentheaders) { @header("Expires: 0"); // Date in the past #@header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT"); // always modified #@header("Cache-Control: no-store, no-cache, must-revalidate"); // HTTP/1.1 @header("Cache-Control: private, post-check=0, pre-check=0, max-age=0", false); @header("Pragma: no-cache"); // HTTP/1.0 if ($sendcontent) { @header('Content-Type: text/html' . iif($vbulletin->userinfo['lang_charset'] != '', '; charset=' . $vbulletin->userinfo['lang_charset'])); } } $sentheaders = true; } // ############################################################################# /** * Returns whether or not the visiting user can view the specified password-protected forum * * @param integer Forum ID * @param string Provided password * @param boolean If true, show error when access is denied * * @return boolean */ function verify_forum_password($forumid, $password, $showerror = true) { global $vbulletin, $stylevar; if (!$password OR ($vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['cancontrolpanel']) OR ($vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['ismoderator']) OR can_moderate($forumid)) { return true; } $foruminfo = fetch_foruminfo($forumid); $parents = explode(',', $foruminfo['parentlist']); foreach ($parents AS $fid) { // get the pwd from any parent forums -- allows pwd cookies to cascade down if ($temp = fetch_bbarray_cookie('forumpwd', $fid) AND $temp === md5($vbulletin->userinfo['userid'] . $password)) { return true; } } // didn't match the password in any cookie if ($showerror) { require_once(DIR . '/includes/functions_misc.php'); // forum password is bad - show error eval(standard_error(fetch_error('forumpasswordmissing', $vbulletin->session->vars['sessionhash'], $vbulletin->scriptpath, $forumid, construct_post_vars_html(), $stylevar['cellpadding'], $stylevar['cellspacing'] ))); } else { // forum password is bad - return false return false; } } // ############################################################################# /** * Converts a bitfield into an array of 1 / 0 values based on the array describing the resulting fields * * @param integer (ref) Bitfield * @param array Array containing field definitions - array('canx' => 1, 'cany' => 2, 'canz' => 4) etc * * @return array */ function convert_bits_to_array(&$bitfield, $_FIELDNAMES) { $bitfield = intval($bitfield); $arry = array(); foreach ($_FIELDNAMES AS $field => $bitvalue) { if ($bitfield & $bitvalue) { $arry["$field"] = 1; } else { $arry["$field"] = 0; } } return $arry; } // ############################################################################# /** * Returns the full set of permissions for the specified user (called by global or init) * * @param array (ref) User info array * @param boolean If true, returns combined usergroup permissions, individual forum permissions, individual calendar permissions and attachment permissions * @param boolean Reset the accesscache array for permissions following access mask update. Only allows one reset. * * @return array Permissions component of user info array */ function cache_permissions(&$user, $getforumpermissions = true, $resetaccess = false) { global $vbulletin, $forumpermissioncache; // these are the arrays created by this function global $calendarcache; static $accesscache = array(), $reset; if ($resetaccess AND !$reset) { // Reset the accesscache array for permissions following access mask update. Only allows one reset. $accesscache = array(); $reset = true; } $intperms = array(); // set the usergroupid of the user's primary usergroup $USERGROUPID = $user['usergroupid']; if ($USERGROUPID == 0) { // set a default usergroupid if none is set $USERGROUPID = 1; } // initialise $membergroups - make an array of the usergroups to which this user belongs $membergroupids = fetch_membergroupids_array($user); // build usergroup permissions if (sizeof($membergroupids) == 1 OR !($vbulletin->usergroupcache["$USERGROUPID"]['genericoptions'] & $vbulletin->bf_ugp_genericoptions['allowmembergroups'])) { // if primary usergroup doesn't allow member groups then get rid of them! $membergroupids = array($USERGROUPID); // just return the permissions for the user's primary group (user is only a member of a single group) $user['permissions'] = $vbulletin->usergroupcache["$USERGROUPID"]; } else { // return the merged array of all user's membergroup permissions (user has additional member groups) foreach ($membergroupids AS $usergroupid) { foreach ($vbulletin->bf_ugp AS $dbfield => $permfields) { $user['permissions']["$dbfield"] |= $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } foreach ($vbulletin->bf_misc_intperms AS $dbfield => $precedence) { // put in some logic to handle $precedence if (!isset($intperms["$dbfield"])) { $intperms["$dbfield"] = $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } else if (!$precedence) { if ($vbulletin->usergroupcache["$usergroupid"]["$dbfield"] > $intperms["$dbfield"]) { $intperms["$dbfield"] = $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } } else if ($vbulletin->usergroupcache["$usergroupid"]["$dbfield"] == 0 OR (isset($intperms["$dbfield"]) AND $intperms["$dbfield"] == 0)) // Set value to 0 as it overrides all { $intperms["$dbfield"] = 0; } else if ($vbulletin->usergroupcache["$usergroupid"]["$dbfield"] > $intperms["$dbfield"]) { $intperms["$dbfield"] = $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } } } $user['permissions'] = array_merge($vbulletin->usergroupcache["$USERGROUPID"], $user['permissions'], $intperms); } if ($user['infractiongroupids']) { $infractiongroupids = explode(',', str_replace(' ', '', $user['infractiongroupids'])); } else { $infractiongroupids = array(); } foreach ($infractiongroupids AS $usergroupid) { foreach ($vbulletin->bf_ugp AS $dbfield => $permfields) { $user['permissions']["$dbfield"] &= $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } foreach ($vbulletin->bf_misc_intperms AS $dbfield => $precedence) { if (!$precedence) { if ($vbulletin->usergroupcache["$usergroupid"]["$dbfield"] < $user['permissions']["$dbfield"]) { $user['permissions']["$dbfield"] = $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } } else if ($vbulletin->usergroupcache["$usergroupid"]["$dbfield"] < $user['permissions']["$dbfield"] AND $vbulletin->usergroupcache["$usergroupid"]["$dbfield"] != 0) { $user['permissions']["$dbfield"] = $vbulletin->usergroupcache["$usergroupid"]["$dbfield"]; } } } if (defined('SKIP_SESSIONCREATE') AND $user['userid'] == $vbulletin->userinfo['userid'] AND !($user['permissions']['forumpermissions'] & $vbulletin->bf_ugp_forumpermissions['canview'])) { // grant canview for usergroup if session skipping is defined. $user['permissions']['forumpermissions'] += $vbulletin->bf_ugp_forumpermissions['canview']; } // if we do not need to grab the forum/calendar permissions // then just return what we have so far if ($getforumpermissions == false) { return $user['permissions']; } if (!is_array($user['forumpermissions'])) { $user['forumpermissions'] = array(); } foreach (array_keys($vbulletin->forumcache) AS $forumid) { if (!isset($user['forumpermissions']["$forumid"])) { $user['forumpermissions']["$forumid"] = 0; } foreach ($membergroupids AS $usergroupid) { $user['forumpermissions']["$forumid"] |= $vbulletin->forumcache["$forumid"]['permissions']["$usergroupid"]; } foreach ($infractiongroupids AS $usergroupid) { $user['forumpermissions']["$forumid"] &= $vbulletin->forumcache["$forumid"]['permissions']["$usergroupid"]; } } // do access mask stuff if required if ($vbulletin->options['enableaccess'] AND $user['hasaccessmask'] == 1) { if (empty($accesscache["$user[userid]"])) { // query access masks // the ordercontrol is required! (3.5 bug 1878) $accessmasks = $vbulletin->db->query_read_slave(" SELECT access.*, forum.forumid, FIND_IN_SET(access.forumid, forum.parentlist) AS ordercontrol FROM " . TABLE_PREFIX . "forum AS forum INNER JOIN " . TABLE_PREFIX . "access AS access ON (access.userid = $user[userid] AND FIND_IN_SET(access.forumid, forum.parentlist)) ORDER BY ordercontrol DESC "); $accesscache["$user[userid]"] = array(); while ($access = $vbulletin->db->fetch_array($accessmasks)) { $accesscache["$user[userid]"]["$access[forumid]"] = $access['accessmask']; } unset($access); $vbulletin->db->free_result($accessmasks); } // if an access mask is set for a forum, set the permissions accordingly // If this is empty then the user really has no access masks but the switch is turned on?!? if (!empty($accesscache["$user[userid]"])) { foreach ($accesscache["$user[userid]"] AS $forumid => $accessmask) { if ($accessmask == 0) // disable access { $user['forumpermissions']["$forumid"] = 0; } else // use combined permissions { $user['forumpermissions']["$forumid"] = $user['permissions']['forumpermissions']; } } } else { // says the user has access masks, but doesn't actually // so turn them off $userdm =& datamanager_init('User', $vbulletin, ERRTYPE_SILENT); $userdm->set_existing($user); $userdm->set_bitfield('options', 'hasaccessmask', false); $userdm->save(); unset($userdm); } } // end if access masks enabled and is logged in user $calfiles = array( 'online' => true, 'calendar' => true, 'index' => $vbulletin->options['showevents'] ? true : false, ); if (THIS_SCRIPT == 'index' AND $vbulletin->options['showevents']) { if (!is_array($vbulletin->eventcache) OR gmdate('n-j-Y' , TIMENOW + 86400 + 86400 * $vbulletin->options['showevents']) != $vbulletin->eventcache['date'] ) { // need perms with rebuild $calfiles['index'] = true; } else if (count($vbulletin->eventcache) == 1) { // no events, only the date - don't need to cache the perms $calfiles['index'] = false; } } // query calendar permissions if (!empty($calfiles[THIS_SCRIPT])) { // Only query calendar permissions when accessing the calendar or subscriptions or index.php $cpermscache = array(); $calendarcache = array(); $displayorder = array(); $calendarpermissions = $vbulletin->db->query_read_slave(" SELECT calendarpermission.usergroupid, calendarpermission.calendarpermissions,calendar.calendarid,calendar.title, displayorder FROM " . TABLE_PREFIX . "calendar AS calendar LEFT JOIN " . TABLE_PREFIX . "calendarpermission AS calendarpermission ON (calendarpermission.calendarid = calendar.calendarid AND usergroupid IN (" . implode(', ', $membergroupids) . ")) ORDER BY displayorder ASC "); while ($calendarpermission = $vbulletin->db->fetch_array($calendarpermissions)) { $cpermscache["$calendarpermission[calendarid]"]["$calendarpermission[usergroupid]"] = intval($calendarpermission['calendarpermissions']); $calendarcache["$calendarpermission[calendarid]"] = $calendarpermission['title']; $displayorder["$calendarpermission[calendarid]"] = $calendarpermission['displayorder']; } $vbulletin->db->free_result($calendarpermissions); // Combine the calendar permissions for all member groups foreach ($cpermscache AS $calendarid => $cpermissions) { $user['calendarpermissions']["$calendarid"] = 0; if (empty($displayorder["$calendarid"])) { // leave permissions at 0 for calendars that aren't being displayed continue; } foreach ($membergroupids AS $usergroupid) { if (isset($cpermissions["$usergroupid"])) { $user['calendarpermissions']["$calendarid"] |= $cpermissions["$usergroupid"]; } else { $user['calendarpermissions']["$calendarid"] |= $vbulletin->usergroupcache["$usergroupid"]['calendarpermissions']; } } foreach ($infractiongroupids AS $usergroupid) { if (isset($cpermissions["$usergroupid"])) { $user['calendarpermissions']["$calendarid"] &= $cpermissions["$usergroupid"]; } else { $user['calendarpermissions']["$calendarid"] &= $vbulletin->usergroupcache["$usergroupid"]['calendarpermissions']; } } } } if (!empty($vbulletin->attachmentcache) AND empty($vbulletin->attachmentcache['extensions'])) { $fields = array( 'size' => true, 'width' => true, 'height' => true, ); $user['attachmentextensions'] = ''; // Combine the attachment permissions for all member groups foreach($vbulletin->attachmentcache AS $extension => $attachment) { $need_default = false; foreach($membergroupids AS $usergroupid) { if (!empty($attachment['custom']["$usergroupid"])) { $perm = $attachment['custom']["$usergroupid"]; $user['attachmentpermissions']["$extension"]['permissions'] |= $perm['permissions']; foreach ($fields AS $dbfield => $precedence) { // put in some logic to handle $precedence if (!isset($user['attachmentpermissions']["$extension"]["$dbfield"])) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } else if (!$precedence) { if ($perm["$dbfield"] > $user['attachmentpermissions']["$extension"]["$dbfield"]) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } else if ($perm["$dbfield"] == 0 OR (isset($user['attachmentpermissions']["$extension"]["$dbfield"]) AND $user['attachmentpermissions']["$extension"]["$dbfield"] == 0)) { $user['attachmentpermissions']["$extension"]["$dbfield"] = 0; } else if ($perm["$dbfield"] > $user['attachmentpermissions']["$extension"]["$dbfield"]) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } } else { $need_default = true; } } if (empty($user['attachmentpermissions']["$extension"])) { $user['attachmentpermissions']["$extension"] = array( 'permissions' => 1, 'size' =>& $vbulletin->attachmentcache["$extension"]['size'], 'height' =>& $vbulletin->attachmentcache["$extension"]['height'], 'width' =>& $vbulletin->attachmentcache["$extension"]['width'], ); } else if ($need_default) { $user['attachmentpermissions']["$extension"]['permissions'] = 1; $perm = $vbulletin->attachmentcache["$extension"]; foreach ($fields AS $dbfield => $precedence) { // put in some logic to handle $precedence if (!isset($user['attachmentpermissions']["$extension"]["$dbfield"])) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } else if (!$precedence) { if ($perm["$dbfield"] > $user['attachmentpermissions']["$extension"]["$dbfield"]) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } else if ($perm["$dbfield"] == 0 OR (isset($user['attachmentpermissions']["$extension"]["$dbfield"]) AND $user['attachmentpermissions']["$extension"]["$dbfield"] == 0)) { $user['attachmentpermissions']["$extension"]["$dbfield"] = 0; } else if ($perm["$dbfield"] > $user['attachmentpermissions']["$extension"]["$dbfield"]) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } } foreach($infractiongroupids AS $usergroupid) { if (!empty($attachment['custom']["$usergroupid"])) { $perm = $attachment['custom']["$usergroupid"]; $user['attachmentpermissions']["$extension"]['permissions'] &= $perm['permissions']; foreach ($fields AS $dbfield => $precedence) { if (!$precedence) { if ($perm["$dbfield"] < $user['attachmentpermissions']["$extension"]["$dbfield"]) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } else if ($perm["$dbfield"] < $user['attachmentpermissions']["$extension"]["$dbfield"] AND $perm["$dbfield"] != 0) { $user['attachmentpermissions']["$extension"]["$dbfield"] = $perm["$dbfield"]; } } } } } foreach ($user['attachmentpermissions'] AS $extension => $foo) { if ($user['attachmentpermissions']["$extension"]['permissions']) { $user['attachmentextensions'] .= (!empty($user['attachmentextensions']) ? ' ' : '') . $extension; } } } return $user['permissions']; } // ############################################################################# /** * Returns permissions for given forum and user * * @param integer Forum ID * @param integer User ID * @param array User info array * * @return mixed */ function fetch_permissions($forumid = 0, $userid = -1, $userinfo = false) { // gets permissions, depending on given userid and forumid global $vbulletin, $usercache, $permscache; $userid = intval($userid); if ($userid == -1) { $userid = $vbulletin->userinfo['userid']; $usergroupid = $vbulletin->userinfo['usergroupid']; } // ########## #DEBUG# CODE ############## $DEBUG_MESSAGE = iif(isset($GLOBALS['_permsgetter_']), "($GLOBALS[_permsgetter_])", '(unspecified)'). " fetch_permissions($forumid, $userid, $usergroupid,'$parentlist'); "; unset($GLOBALS['_permsgetter_']); // ########## END #DEBUG# CODE ############## if ($userid == $vbulletin->userinfo['userid']) { // we are getting permissions for $vbulletin->userinfo // so return permissions built in querypermissions if ($forumid) { DEVDEBUG($DEBUG_MESSAGE."-> cached fperms for forum $forumid"); return $vbulletin->userinfo['forumpermissions']["$forumid"]; } else { DEVDEBUG($DEBUG_MESSAGE.'-> cached combined permissions'); return $vbulletin->userinfo['permissions']; } } else { // we are getting permissions for another user... if (!is_array($userinfo)) { return 0; } if ($forumid) { DEVDEBUG($DEBUG_MESSAGE."-> trying to get forumpermissions for non \$bbuserinfo"); cache_permissions($userinfo); return $userinfo['forumpermissions']["$forumid"]; } else { DEVDEBUG($DEBUG_MESSAGE."-> trying to get combined permissions for non \$bbuserinfo"); return cache_permissions($userinfo, false); } } } // ############################################################################# /** * Returns moderator permissions bitfield for the given forum and user * * @param integer Forum ID * @param integer User ID * @param boolean Include Global Permissions for Super Moderators * * @return integer */ function fetch_moderator_permissions($forumid, $userid = -1, $useglobalperms = false) { // gets permissions, depending on given userid and forumid global $vbulletin, $imodcache; static $modpermscache; $forumid = intval($forumid); if ($userid == -1) { $userid = $vbulletin->userinfo['userid']; } if (isset($modpermscache["$forumid"]["$userid"])) { DEVDEBUG(" CACHE \$modpermscache cache result"); return $modpermscache["$forumid"]["$userid"]; } $globalperms = array( 'permissions' => 0, 'permissions2' => 0, ); $hasglobalperms = false; if (isset($imodcache)) { if (isset($imodcache["$forumid"]["$userid"])) { DEVDEBUG(" CACHE first result from imodcache"); $getperms = $imodcache["$forumid"]["$userid"]; } else { $parentlist = explode(',', fetch_forum_parent_list($forumid)); foreach($parentlist AS $parentid) { // we dont want the super perms since we'll merge them when required further down if (isset($imodcache["$parentid"]["$userid"]) AND $parentid != -1) { DEVDEBUG(" CACHE looped result from imodcache"); $getperms = $imodcache["$parentid"]["$userid"]; } } } $globalperms['permissions'] = $imodcache['-1']["$userid"]['permissions']; $globalperms['permissions2'] = $imodcache['-1']["$userid"]['permissions2']; $hasglobalperms = isset($imodcache['-1']["$userid"]['permissions']); } else { $forumlist = fetch_forum_clause_sql($forumid, 'forumid'); if (!empty($forumlist)) { $forumlist = 'AND ' . $forumlist; } DEVDEBUG(" QUERY: get mod permissions for user $userid"); $perms = $vbulletin->db->query_read_slave(" (SELECT permissions, permissions2, FIND_IN_SET(forumid, '" . fetch_forum_parent_list($forumid) . "') AS pos, forumid FROM " . TABLE_PREFIX . "moderator WHERE userid = $userid $forumlist ORDER BY pos ASC LIMIT 1) UNION (SELECT permissions, permissions2, 0, forumid FROM " . TABLE_PREFIX . "moderator WHERE userid = $userid AND forumid = -1 ) "); while ($perm = $vbulletin->db->fetch_array($perms)) { if ($perm['forumid'] == -1) { $globalperms['permissions'] = $perm['permissions']; $globalperms['permission2'] = $perm['permissions2']; $hasglobalperms = true; } else { $getperms['permissions'] = $perm['permissions']; $getperms['permissions2'] = $perm['permissions2']; } } } if ($useglobalperms) { if (!$hasglobalperms) { // super mod without a record, give them all permissions $globalperms['permissions'] = array_sum($vbulletin->bf_misc_moderatorpermissions) - ($vbulletin->bf_misc_moderatorpermissions['newthreademail'] + $vbulletin->bf_misc_moderatorpermissions['newpostemail']); $globalperms['permissions2'] = array_sum($vbulletin->bf_misc_moderatorpermissions2); } $getperms['permissions'] = intval($getperms['permissions']); $getperms['permissions'] |= intval($globalperms['permissions']); $getperms['permissions2'] = intval($getperms['permissions2']); $getperms['permissions2'] |= intval($globalperms['permissions2']); } $modpermscache["$forumid"]["$userid"]['permissions'] = intval($getperms['permissions']); $modpermscache["$forumid"]["$userid"]['permissions2'] = intval($getperms['permissions2']); return $modpermscache["$forumid"]["$userid"]; } // ############################################################################# /** * Returns whether or not the given user can perform a specific moderation action in the specified forum * * @param integer Forum ID * @param string If you want to check a particular moderation permission, name it here * @param integer User ID * @param string Comma separated list of usergroups to which the user belongs * * @return boolean */ function can_moderate($forumid = 0, $do = '', $userid = -1, $usergroupids = '') { global $vbulletin, $imodcache; static $modcache; static $permissioncache; $userid = intval($userid); $forumid = intval($forumid); if ($do) { if (isset($vbulletin->bf_misc_moderatorpermissions["$do"])) { $permission =& $vbulletin->bf_misc_moderatorpermissions["$do"]; $set = 'permissions'; } else if (isset($vbulletin->bf_misc_moderatorpermissions2["$do"])) { $permission =& $vbulletin->bf_misc_moderatorpermissions2["$do"]; $set = 'permissions2'; } } if ($userid == -1) { $userid = $vbulletin->userinfo['userid']; } if ($userid == 0) { return false; } $issupermod = false; if ($userid == $vbulletin->userinfo['userid']) { if ($vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['ismoderator']) { DEVDEBUG(' USER IS A SUPER MODERATOR'); $issupermod = true; } } else { if (!$usergroupids) { $tempuser = $vbulletin->db->query_first_slave("SELECT usergroupid, membergroupids FROM " . TABLE_PREFIX . "user WHERE userid = $userid"); if (!$tempuser) { return false; } $usergroupids = $tempuser['usergroupid'] . iif(trim($tempuser['membergroupids']), ",$tempuser[membergroupids]"); } $supermodcheck = $vbulletin->db->query_first_slave(" SELECT usergroupid FROM " . TABLE_PREFIX . "usergroup WHERE usergroupid IN ($usergroupids) AND (adminpermissions & " . $vbulletin->bf_ugp_adminpermissions['ismoderator'] . ") != 0 LIMIT 1 "); if ($supermodcheck) { DEVDEBUG(' USER IS A SUPER MODERATOR'); $issupermod = true; } } if ($forumid == 0) { // just check to see if the user is a moderator of any forum if (isset($imodcache)) { // loop through imodcache to find user DEVDEBUG("looping through imodcache to find userid $userid"); foreach ($imodcache AS $forummodid => $forummods) { if (isset($forummods["$userid"]) AND ($forummodid != -1 OR $issupermod)) { if (!$do) { return true; } else if ($forummods["$userid"]["$set"] & $permission) { return true; } } } if ($issupermod AND !isset($imodcache['-1']["$userid"])) { // super mod without a record -- has all perms return true; } return false; } else { // imodcache is not set - do a query if (isset($modcache["$userid"]["$do"])) { return $modcache["$userid"]["$do"]; } if ($issupermod AND ($permissioncache["$userid"]['hassuperrecord'] === false)) { $modcache["$userid"]["$do"] = 1; return $modcache["$userid"]["$do"]; } if (isset($permissioncache["$userid"]["$set"])) { if ($set == 'permissions2') { $modcache["$userid"]["$do"] = $permissioncache["$userid"]["$set"] & $vbulletin->bf_misc_moderatorpermissions2["$do"]; return $modcache["$userid"]["$do"]; } else { $modcache["$userid"]["$do"] = $permissioncache["$userid"]["$set"] & $vbulletin->bf_misc_moderatorpermissions["$do"]; return $modcache["$userid"]["$do"]; } } $modcache["$userid"]["$do"] = 0; DEVDEBUG('QUERY: is the user a moderator (any forum)?'); $ismod_all = $vbulletin->db->query_read_slave(" SELECT forumid, moderatorid, permissions, permissions2 FROM " . TABLE_PREFIX . "moderator WHERE userid = $userid" . (!$issupermod ? ' AND forumid != -1' : '') ); if (!isset($permissioncache["$userid"])) { $permissioncache["$userid"]['permissions'] = 0; $permissioncache["$userid"]['permissions2'] = 0; } while ($ismod = $vbulletin->db->fetch_array($ismod_all)) { $permissioncache["$userid"]['permissions'] = $permissioncache["$userid"]['permissions'] | $ismod['permissions']; $permissioncache["$userid"]['permissions2'] = $permissioncache["$userid"]['permissions2'] | $ismod['permissions2']; if ($ismod['forumid'] == '-1') { $permissioncache["$userid"]['hassuperrecord'] = true; } if ($do) { if ($ismod["$set"] & $permission) { $modcache["$userid"]["$do"] = 1; break; } } else { $modcache["$userid"]["$do"] = 1; break; } } if ($issupermod AND !isset($permissioncache["$userid"]['hassuperrecord'])) { $permissioncache["$userid"]['hassuperrecord'] = false; $modcache["$userid"]["$do"] = 1; } return $modcache["$userid"]["$do"]; } } else { // check to see if user is a moderator of specific forum $getmodperms = fetch_moderator_permissions($forumid, $userid, $issupermod); if (($getmodperms['permissions'] OR $getmodperms['permissions2']) AND empty($do)) { // check if user is a mod - no specific permission required return true; } else { // check if user is a mod and has permissions to '$do' if ($getmodperms["$set"] & $permission) { return true; } else { $return = false; if (!isset($permission)) { ($hook = vBulletinHook::fetch_hook('can_moderate_forum')) ? eval($hook) : false; } return $return; } // if has perms for this action }// if is mod for forum and no action set } // if forumid=0 } // ############################################################################# /** * Returns whether or not vBulletin is running in demo mode * * if DEMO_MODE is defined and set to true in config.php this function will return false, * the main purpose of which is to disable parsing of stuff that is undesirable for a * board running with a publicly accessible admin control panel * * @return boolean */ function is_demo_mode() { return (defined('DEMO_MODE') AND DEMO_MODE == true) ? true : false; } // ############################################################################# /** * Browser detection system - returns whether or not the visiting browser is the one specified * * @param string Browser name (opera, ie, mozilla, firebord, firefox... etc. - see $is array) * @param float Minimum acceptable version for true result (optional) * * @return boolean */ function is_browser($browser, $version = 0) { static $is; if (!is_array($is)) { $useragent = strtolower($_SERVER['HTTP_USER_AGENT']); $is = array( 'opera' => 0, 'ie' => 0, 'mozilla' => 0, 'firebird' => 0, 'firefox' => 0, 'camino' => 0, 'konqueror' => 0, 'safari' => 0, 'webkit' => 0, 'webtv' => 0, 'netscape' => 0, 'mac' => 0 ); // detect opera # Opera/7.11 (Windows NT 5.1; U) [en] # Mozilla/4.0 (compatible; MSIE 6.0; MSIE 5.5; Windows NT 5.0) Opera 7.02 Bork-edition [en] # Mozilla/4.0 (compatible; MSIE 6.0; MSIE 5.5; Windows NT 4.0) Opera 7.0 [en] # Mozilla/4.0 (compatible; MSIE 5.0; Windows 2000) Opera 6.0 [en] # Mozilla/4.0 (compatible; MSIE 5.0; Mac_PowerPC) Opera 5.0 [en] if (strpos($useragent, 'opera') !== false) { preg_match('#opera(/| )([0-9\.]+)#', $useragent, $regs); $is['opera'] = $regs[2]; } // detect internet explorer # Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; Q312461) # Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.0.3705) # Mozilla/4.0 (compatible; MSIE 5.22; Mac_PowerPC) # Mozilla/4.0 (compatible; MSIE 5.0; Mac_PowerPC; e504460WanadooNL) if (strpos($useragent, 'msie ') !== false AND !$is['opera']) { preg_match('#msie ([0-9\.]+)#', $useragent, $regs); $is['ie'] = $regs[1]; } // detect macintosh if (strpos($useragent, 'mac') !== false) { $is['mac'] = 1; } // detect safari # Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/74 (KHTML, like Gecko) Safari/74 # Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/51 (like Gecko) Safari/51 # Mozilla/5.0 (Windows; U; Windows NT 6.0; en) AppleWebKit/522.11.3 (KHTML, like Gecko) Version/3.0 Safari/522.11.3 # Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420+ (KHTML, like Gecko) Version/3.0 Mobile/1C28 Safari/419.3 # Mozilla/5.0 (iPod; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/3A100a Safari/419.3 if (strpos($useragent, 'applewebkit') !== false) { preg_match('#applewebkit/(\d+)#', $useragent, $regs); $is['webkit'] = $regs[1]; if (strpos($useragent, 'safari') !== false) { preg_match('#safari/([0-9\.]+)#', $useragent, $regs); $is['safari'] = $regs[1]; } } // detect konqueror # Mozilla/5.0 (compatible; Konqueror/3.1; Linux; X11; i686) # Mozilla/5.0 (compatible; Konqueror/3.1; Linux 2.4.19-32mdkenterprise; X11; i686; ar, en_US) # Mozilla/5.0 (compatible; Konqueror/2.1.1; X11) if (strpos($useragent, 'konqueror') !== false) { preg_match('#konqueror/([0-9\.-]+)#', $useragent, $regs); $is['konqueror'] = $regs[1]; } // detect mozilla # Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4b) Gecko/20030504 Mozilla # Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.2a) Gecko/20020910 # Mozilla/5.0 (X11; U; Linux 2.4.3-20mdk i586; en-US; rv:0.9.1) Gecko/20010611 if (strpos($useragent, 'gecko') !== false AND !$is['safari'] AND !$is['konqueror']) { preg_match('#gecko/(\d+)#', $useragent, $regs); $is['mozilla'] = $regs[1]; // detect firebird / firefox # Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:1.3a) Gecko/20021207 Phoenix/0.5 # Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4b) Gecko/20030516 Mozilla Firebird/0.6 # Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4a) Gecko/20030423 Firebird Browser/0.6 # Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6) Gecko/20040206 Firefox/0.8 if (strpos($useragent, 'firefox') !== false OR strpos($useragent, 'firebird') !== false OR strpos($useragent, 'phoenix') !== false) { preg_match('#(phoenix|firebird|firefox)( browser)?/([0-9\.]+)#', $useragent, $regs); $is['firebird'] = $regs[3]; if ($regs[1] == 'firefox') { $is['firefox'] = $regs[3]; } } // detect camino # Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-US; rv:1.0.1) Gecko/20021104 Chimera/0.6 if (strpos($useragent, 'chimera') !== false OR strpos($useragent, 'camino') !== false) { preg_match('#(chimera|camino)/([0-9\.]+)#', $useragent, $regs); $is['camino'] = $regs[2]; } } // detect web tv if (strpos($useragent, 'webtv') !== false) { preg_match('#webtv/([0-9\.]+)#', $useragent, $regs); $is['webtv'] = $regs[1]; } // detect pre-gecko netscape if (preg_match('#mozilla/([1-4]{1})\.([0-9]{2}|[1-8]{1})#', $useragent, $regs)) { $is['netscape'] = "$regs[1].$regs[2]"; } } // sanitize the incoming browser name $browser = strtolower($browser); if (substr($browser, 0, 3) == 'is_') { $browser = substr($browser, 3); } // return the version number of the detected browser if it is the same as $browser if ($is["$browser"]) { // $version was specified - only return version number if detected version is >= to specified $version if ($version) { if ($is["$browser"] >= $version) { return $is["$browser"]; } } else { return $is["$browser"]; } } // if we got this far, we are not the specified browser, or the version number is too low return 0; } // ############################################################################# /** * Returns the complete array of StyleVars * * @param array (ref) Style info array * @param array User info array * * @return array */ function fetch_stylevars(&$style, $userinfo) { global $vbulletin; if (is_array($style)) { // first let's get the basic stylevar array $stylevar = unserialize($style['stylevars']); unset($style['stylevars']); // if we have a buttons directory override, use it if ($userinfo['lang_imagesoverride']) { $stylevar['imgdir_button'] = str_replace('<#>', $style['styleid'], $userinfo['lang_imagesoverride']); } } else { $stylevar = array(); } // get text direction and left/right values if ($userinfo['lang_options'] & $vbulletin->bf_misc_languageoptions['direction']) { // standard left-to-right layout $stylevar['textdirection'] = 'ltr'; $stylevar['left'] = 'left'; $stylevar['right'] = 'right'; } else { // reversed right-to-left layout $stylevar['textdirection'] = 'rtl'; $stylevar['left'] = 'right'; $stylevar['right'] = 'left'; } if ($userinfo['lang_options'] & $vbulletin->bf_misc_languageoptions['dirmark']) { $stylevar['dirmark'] = ($stylevar['textdirection'] == 'ltr') ? '‎' : '‏'; } // get the 'lang' attribute for tags $stylevar['languagecode'] = $userinfo['lang_code']; // get the 'charset' attribute $stylevar['charset'] = $userinfo['lang_charset']; // merge in css colors if available if (!empty($style['csscolors'])) { $stylevar = array_merge($stylevar, unserialize($style['csscolors'])); unset($style['csscolors']); } // get CSS width for outerdivwidth from outertablewidth if (strpos($stylevar['outertablewidth'], '%') === false) { $stylevar['outerdivwidth'] = $stylevar['outertablewidth'] . 'px'; } else { $stylevar['outerdivwidth'] = $stylevar['outertablewidth']; } // get CSS width for divwidth from tablewidth if (strpos($stylevar['tablewidth'], '%') === false) { $stylevar['divwidth'] = $stylevar['tablewidth'] . 'px'; } else if ($stylevar['tablewidth'] == '100%') { $stylevar['divwidth'] = 'auto'; } else { $stylevar['divwidth'] = $stylevar['tablewidth']; } // create the path to YUI depending on the version if ($vbulletin->options['remoteyui']) { $stylevar['yuipath'] = 'http://yui.yahooapis.com/' . YUI_VERSION . '/build'; } else { $stylevar['yuipath'] = 'clientscript/yui'; } return $stylevar; } // ############################################################################# /** * Function to override various settings in $vbulletin->options depending on user preferences * * @param array User info array */ function fetch_options_overrides($userinfo) { global $vbulletin; $vbulletin->options['default_dateformat'] = $vbulletin->options['dateformat']; $vbulletin->options['default_timeformat'] = $vbulletin->options['timeformat']; if ($userinfo['lang_dateoverride'] != '') { $vbulletin->options['dateformat'] = $userinfo['lang_dateoverride']; } if ($userinfo['lang_timeoverride'] != '') { $vbulletin->options['timeformat'] = $userinfo['lang_timeoverride']; } if ($userinfo['lang_registereddateoverride'] != '') { $vbulletin->options['registereddateformat'] = $userinfo['lang_registereddateoverride']; } if ($userinfo['lang_calformat1override'] != '') { $vbulletin->options['calformat1'] = $userinfo['lang_calformat1override']; } if ($userinfo['lang_calformat2override'] != '') { $vbulletin->options['calformat2'] = $userinfo['lang_calformat2override']; } if ($userinfo['lang_logdateoverride'] != '') { $vbulletin->options['logdateformat'] = $userinfo['lang_logdateoverride']; } if ($userinfo['lang_locale'] != '') { $locale1 = setlocale(LC_TIME, $userinfo['lang_locale']); if (substr($userinfo['lang_locale'], 0, 5) != 'tr_TR') { $locale2 = setlocale(LC_CTYPE, $userinfo['lang_locale']); } } } // ############################################################################# /** * Returns the initial $vbphrase array * * @return array */ function init_language() { global $vbulletin, $phrasegroups; global $copyrightyear, $timediff, $timenow, $datenow; // define languageid define('LANGUAGEID', iif(empty($vbulletin->userinfo['languageid']), $vbulletin->options['languageid'], $vbulletin->userinfo['languageid'])); // define language direction (preferable to use $stylevar[textdirection]) define('LANGUAGE_DIRECTION', iif(($vbulletin->userinfo['lang_options'] & $vbulletin->bf_misc_languageoptions['direction']), 'ltr', 'rtl')); // define html language code (lang="xyz") (preferable to use $stylevar[languagecode]) define('LANGUAGE_CODE', $vbulletin->userinfo['lang_code']); // initialize the $vbphrase array $vbphrase = array(); // populate the $vbphrase array with phrase groups foreach ($phrasegroups AS $phrasegroup) { $tmp = unserialize($vbulletin->userinfo["phrasegroup_$phrasegroup"]); if (is_array($tmp)) { $vbphrase = array_merge($vbphrase, $tmp); } unset($vbulletin->userinfo["phrasegroup_$phrasegroup"], $tmp); } // prepare phrases for construct_phrase / sprintf use //$vbphrase = preg_replace('/\{([0-9]+)\}/siU', '%\\1$s', $vbphrase); // pre-parse some global phrases $tzoffset = iif($vbulletin->userinfo['tzoffset'], ' ' . $vbulletin->userinfo['tzoffset']); $vbphrase['all_times_are_gmt_x_time_now_is_y'] = construct_phrase($vbphrase['all_times_are_gmt_x_time_now_is_y'], $tzoffset, $timenow, $datenow); $vbphrase['vbulletin_copyright_orig'] = $vbphrase['vbulletin_copyright']; $vbphrase['vbulletin_copyright'] = construct_phrase($vbphrase['vbulletin_copyright'], $vbulletin->options['templateversion'], $copyrightyear); $vbphrase['powered_by_vbulletin'] = construct_phrase($vbphrase['powered_by_vbulletin'], $vbulletin->options['templateversion'], $copyrightyear); $vbphrase['timezone'] = construct_phrase($vbphrase['timezone'], $timediff, $timenow, $datenow); // all done return $vbphrase; } // ############################################################################# /** * Constructs a language chooser HTML menu * * @param integer Style ID * @param boolean Whether or not this will build the quick chooser menu * * @return string */ function construct_language_options($depthmark = '', $quickchooser = false) { global $vbulletin, $vbphrase, $languagecount; $thislanguageid = iif($quickchooser, $vbulletin->userinfo['languageid'], $vbulletin->userinfo['reallanguageid']); if ($thislanguageid == 0 AND $quickchooser) { $thislanguageid = $vbulletin->options['languageid']; } $languagelist = ''; // set the user's 'real language id' if (!isset($vbulletin->userinfo['reallanguageid'])) { $vbulletin->userinfo['reallanguageid'] = $vbulletin->userinfo['languageid']; } if (!$quickchooser) { if ($thislanguageid == 0) { $optionselected = 'selected="selected"'; } $optionvalue = 0; $optiontitle = $vbphrase['use_forum_default']; eval ('$languagelist .= "' . fetch_template('option') . '";'); } if ($vbulletin->languagecache === null) { $vbulletin->languagecache = array(); } foreach ($vbulletin->languagecache AS $language) { if ($language['userselect']) # OR $vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['cancontrolpanel']) { $languagecount++; if ($thislanguageid == $language['languageid']) { $optionselected = 'selected="selected"'; } else { $optionselected = ''; } $optionvalue = $language['languageid']; $optiontitle = $depthmark . ' ' . $language['title']; $optionclass = ''; eval ('$languagelist .= "' . fetch_template('option') . '";'); } } return $languagelist; } // ############################################################################# /** * Constructs a style chooser HTML menu * * @param integer Style ID * @param string String repeated before style name to indicate nesting * @param boolean Whether or not to initialize this function (this function is recursive) * @param boolean Whether or not this will build the quick chooser menu * * @return string */ function construct_style_options($styleid = -1, $depthmark = '', $init = true, $quickchooser = false) { global $vbulletin, $stylevar, $vbphrase, $stylecount; $thisstyleid = iif($quickchooser, $vbulletin->userinfo['styleid'], $vbulletin->userinfo['realstyleid']); if ($thisstyleid == 0 AND $quickchooser) { $thisstyleid = $vbulletin->options['styleid']; } // initialize various vars if ($init) { $stylesetlist = ''; // set the user's 'real style id' if (!isset($vbulletin->userinfo['realstyleid'])) { $vbulletin->userinfo['realstyleid'] = $vbulletin->userinfo['styleid']; } if (!$quickchooser) { if ($thisstyleid == 0) { $optionselected = 'selected="selected"'; } $optionvalue = 0; $optiontitle = $vbphrase['use_forum_default']; eval ('$stylesetlist .= "' . fetch_template('option') . '";'); } } // check to see that the current styleid exists // and workaround a very very odd bug (#2079) if (is_array($vbulletin->stylecache["$styleid"])) { $cache =& $vbulletin->stylecache["$styleid"]; } else if (is_array($vbulletin->stylecache[$styleid])) { $cache =& $vbulletin->stylecache[$styleid]; } else { return; } // loop through the stylecache to get results foreach ($cache AS $x) { foreach ($x AS $style) { if ($style['userselect'] OR $vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['cancontrolpanel']) { $stylecount++; if ($thisstyleid == $style['styleid']) { $optionselected = 'selected="selected"'; } else { $optionselected = ''; } $optionvalue = $style['styleid']; $optiontitle = $depthmark . ' ' . $style['title']; eval ('$stylesetlist .= "' . fetch_template('option') . '";'); $stylesetlist .= construct_style_options($style['styleid'], $depthmark . '--', false, $quickchooser); } else { $stylesetlist .= construct_style_options($style['styleid'], $depthmark, false, $quickchooser); } } } return $stylesetlist; } // ############################################################################# /** * Saves the specified data into the datastore * * @param string The name of the datastore item to save * @param mixed The data to be saved * @param integer 1 or 0 as to whether this value is to be automatically unserialised on retrieval */ function build_datastore($title = '', $data = '', $unserialize = 0) { global $vbulletin; if ($title != '') { /*insert query*/ $vbulletin->db->query_write(" REPLACE INTO " . TABLE_PREFIX . "datastore (title, data, unserialize) VALUES ('" . $vbulletin->db->escape_string(trim($title)) . "', '" . $vbulletin->db->escape_string(trim($data)) . "', " . intval($unserialize) . ") "); if (method_exists($vbulletin->datastore, 'build')) { $vbulletin->datastore->build($title, $data); } } } // ############################################################################# /** * Updates the LoadAverage DataStore */ function update_loadavg() { global $vbulletin; if (!isset($vbulletin->loadcache)) { $vbulletin->loadcache = array(); } if ($stats = @exec('uptime 2>&1') AND trim($stats) != '' AND preg_match('#: ([\d.,]+),?\s+([\d.,]+),?\s+([\d.,]+)$#', $stats, $regs)) { $vbulletin->loadcache['loadavg'] = $regs[2]; } else if (@file_exists('/proc/loadavg') AND $filestuff = @file_get_contents('/proc/loadavg')) { $loadavg = explode(' ', $filestuff); $vbulletin->loadcache['loadavg'] = $loadavg[1]; } else { $vbulletin->loadcache['loadavg'] = 0; } $vbulletin->loadcache['lastcheck'] = TIMENOW; build_datastore('loadcache', serialize($vbulletin->loadcache), 1); } // ############################################################################# /** * Escapes quotes in strings destined for Javascript * * @param string String to be prepared for Javascript * @param string Type of quote (single or double quote) * * @return string */ function addslashes_js($text, $quotetype = "'") { if ($quotetype == "'") { // single quotes return str_replace(array('\\', '\'', "\n", "\r"), array('\\\\', "\\'","\\n", "\\r"), $text); } else { // double quotes return str_replace(array('\\', '"', "\n", "\r"), array('\\\\', "\\\"","\\n", "\\r"), $text); } } // ############################################################################# /** * Returns the provided string with occurences of replacement variables replaced with their appropriate replacement values * * @param string Text containing replacement variables * @param array Override global $style if specified * * @return string */ function process_replacement_vars($newtext, $paramstyle = false) { global $vbulletin, $stylevar; static $replacementvars; if (connection_status()) { exit; } if (is_array($paramstyle)) { $style =& $paramstyle; } else { $style =& $GLOBALS['style']; } ($hook = vBulletinHook::fetch_hook('replacement_vars')) ? eval($hook) : false; // do vBulletin 3 replacement variables if (!empty($style['replacements'])) { if (!isset($replacementvars["$style[styleid]"])) { $replacementvars["$style[styleid]"] = unserialize($style['replacements']); } if (is_array($replacementvars["$style[styleid]"]) AND !empty($replacementvars["$style[styleid]"])) { $newtext = preg_replace(array_keys($replacementvars["$style[styleid]"]), $replacementvars["$style[styleid]"], $newtext); } } return $newtext; } // ############################################################################# /** * Finishes off the current page (using templates), prints it out to the browser and halts execution * * @param string The HTML of the page to be printed * @param boolean Send the content length header? */ function print_output($vartext, $sendheader = true) { global $pagestarttime, $querytime, $vbulletin, $show; global $vbphrase, $stylevar; if ($vbulletin->options['addtemplatename']) { if ($doctypepos = @strpos($vartext, $stylevar['htmldoctype'])) { $comment = substr($vartext, 0, $doctypepos); $vartext = substr($vartext, $doctypepos + strlen($stylevar['htmldoctype'])); $vartext = $stylevar['htmldoctype'] . "\n" . $comment . $vartext; } } if (!empty($vbulletin->db->explain) OR $vbulletin->debug) { $pageendtime = microtime(); $starttime = explode(' ', $pagestarttime); $endtime = explode(' ', $pageendtime); $totaltime = $endtime[0] - $starttime[0] + $endtime[1] - $starttime[1]; $vartext .= ""; } // set cookies for displayed notices if ($show['notices'] AND !defined('NOPMPOPUP') AND !empty($vbulletin->notices_displayed) AND is_array($vbulletin->notices_displayed)) { vbsetcookie('notices_displayed', implode(',', $vbulletin->notices_displayed), false); } // -------------------------------------------------------------------- // debug code global $_TEMPLATEQUERIES, $tempusagecache, $DEVDEBUG, $vbcollapse; if ($vbulletin->debug) { devdebug('php_sapi_name(): ' . SAPI_NAME); $messages = ''; if (is_array($DEVDEBUG)) { foreach($DEVDEBUG AS $debugmessage) { $messages .= "\t\n"; } } if (is_array($tempusagecache)) { unset($tempusagecache['board_inactive_warning'], $_TEMPLATEQUERIES['board_inactive_warning']); ksort($tempusagecache); foreach ($tempusagecache AS $template_name => $times) { $tempusagecache["$template_name"] = "($times)" . ($_TEMPLATEQUERIES["$template_name"] ? "$template_name" : $template_name); } } else { $tempusagecache = array(); } $hook_usage = ''; foreach (vBulletinHook::fetch_hookusage() AS $hook_name => $has_code) { $hook_usage .= '
  • ' . $hook_name . '
    • '; } if (!$hook_usage) { $hook_usage = '
  •  
    • '; } $phrase_groups = ''; sort($GLOBALS['phrasegroups']); foreach ($GLOBALS['phrasegroups'] AS $phrase_group) { $phrase_groups .= '
  • ' . $phrase_group . '
    • '; } if (!$phrase_groups) { $phrase_groups = '
  •  
    • '; } $debughtml = "
    X vBulletin {$vbulletin->options[templateversion]} Debug Information
    \"\" More Information
    Template Usage:
    • " . implode('
    • ', $tempusagecache) . " 
    Phrase Groups Available:
      $phrase_groups
    Included Files:
    • " . implode('
    • ', str_replace(str_replace('\\', '/', DIR) . '/', '', preg_replace('#^(.*/)#si', './\1', str_replace('\\', '/', get_included_files())))) . " 
    Hooks Called:
      $hook_usage
    "; $vartext = str_replace('', "$debughtml\n", $vartext); } // end debug code // -------------------------------------------------------------------- $output = process_replacement_vars($vartext); if ($vbulletin->debug AND function_exists('memory_get_usage')) { $output = preg_replace('#(Executed \d+ queries)#siU', 'Memory Usage: ' . number_format((memory_get_usage() / 1024)) . 'KB, \1', $output); } // parse PHP include ################## if (!is_demo_mode()) { ($hook = vBulletinHook::fetch_hook('global_complete')) ? eval($hook) : false; } if ($vbulletin->options['gzipoutput'] AND !headers_sent()) { $output = fetch_gzipped_text($output, $vbulletin->options['gziplevel']); if ($sendheader AND $vbulletin->donegzip) { @header('Content-Length: ' . strlen($output)); } } if (defined('NOSHUTDOWNFUNC')) { exec_shut_down(); } // show regular page if (empty($vbulletin->db->explain)) { echo $output; } // show explain else { $querytime = $vbulletin->db->time_total; echo "\nPage generated in $totaltime seconds with " . $vbulletin->db->querycount . " queries,\nspending $querytime doing MySQL queries and " . ($totaltime - $querytime) . " doing PHP things.\n\n
    Shutdown Queries:    " . (defined('NOSHUTDOWNFUNC') ? " DISABLED" : '') . "
    \n\n"; } // broken if zlib.output_compression is on with Apache 2 if (SAPI_NAME != 'apache2handler' AND SAPI_NAME != 'apache2filter') { flush(); } exit; } // ############################################################################# /** * Performs general clean-up after the system exits, such as running shutdown queries */ function exec_shut_down() { global $vbulletin; global $foruminfo, $threadinfo, $calendarinfo; if (VB_AREA == 'Install' OR VB_AREA == 'Upgrade') { return; } $vbulletin->db->unlock_tables(); if (!empty($vbulletin->userinfo['badlocation'])) { $threadinfo = array('threadid' => 0); $foruminfo = array('forumid' => 0); $calendarinfo = array('calendarid' => 0); } if (!$vbulletin->options['bbactive'] AND !($vbulletin->userinfo['permissions']['adminpermissions'] & $vbulletin->bf_ugp_adminpermissions['cancontrolpanel'])) { // Forum is disabled and this is not someone with admin access $vbulletin->userinfo['badlocation'] = 2; } if (class_exists('vBulletinHook')) { ($hook = vBulletinHook::fetch_hook('global_shutdown')) ? eval($hook) : false; } if (is_object($vbulletin->session)) { if (!defined('LOCATION_BYPASS')) { $vbulletin->session->set('inforum', $foruminfo['forumid']); $vbulletin->session->set('inthread', $threadinfo['threadid']); $vbulletin->session->set('incalendar', $calendarinfo['calendarid']); } $vbulletin->session->set('badlocation', $vbulletin->userinfo['badlocation']); if ($vbulletin->session->vars['loggedin'] == 1 AND !$vbulletin->session->created) { # If loggedin = 1, this is out first page view after a login so change value to 2 to signify we are past the first page view # We do a DST update check if loggedin = 1 $vbulletin->session->set('loggedin', 2); if (!empty($vbulletin->profilefield['required'])) { foreach ($vbulletin->profilefield['required'] AS $fieldname => $value) { if (!isset($vbulletin->userinfo["$fieldname"]) OR $vbulletin->userinfo["$fieldname"] === '') { $vbulletin->session->set('profileupdate', 1); break; } } } } $vbulletin->session->save(); } if (is_array($vbulletin->db->shutdownqueries)) { $vbulletin->db->hide_errors(); foreach($vbulletin->db->shutdownqueries AS $name => $query) { if (!empty($query) AND ($name !== 'pmpopup' OR !defined('NOPMPOPUP'))) { $vbulletin->db->query_write($query); } } $vbulletin->db->show_errors(); } exec_mail_queue(); // Make sure the database connection is closed since it can get hung up for a long time on php4 do to the mysterious echo() lagging issue // If NOSHUTDOWNFUNC is defined then this function should always be the last one called, before echoing of data if (defined('NOSHUTDOWNFUNC')) { $vbulletin->db->close(); } $vbulletin->db->shutdownqueries = array(); // bye bye! } /*======================================================================*\ || #################################################################### || # Downloaded: 20:15, Fri Mar 28th 2008 || # CVS: $RCSfile$ - $Revision: 26097 $ || #################################################################### \*======================================================================*/ ?>
    Warning: mysql_connect() [function.mysql-connect]: Access denied for user 'uggaforums2'@'208.109.78.137' (using password: YES) in /home/content/u/g/g/uggabugga/html/forums/db/mysql4.php on line 48

    Warning: mysql_error(): supplied argument is not a valid MySQL-Link resource in /home/content/u/g/g/uggabugga/html/forums/db/mysql4.php on line 330

    Warning: mysql_errno(): supplied argument is not a valid MySQL-Link resource in /home/content/u/g/g/uggabugga/html/forums/db/mysql4.php on line 331
    phpBB : Critical Error

    Could not connect to the database