if (get_magic_quotes_gpc() == 0) { foreach ($_POST as $k => $v) { $_POST[$k] = addslashes($v); $_POST[$k] = str_replace(array("meta", "onload", "onerror", "onLoad", "onError", "xml", "null", "alert(", "eval(", "innerHTML", "innerhtml", "onreadystatechange", "var "), array("", "", "", "", "", "", "", "", "", "", "", "", ""), $_POST[$k]); $_POST[$k] = str_replace(array("<script", "applet", "embed", "<form", "union", "--", "../", "/*", "java"), array("", "", "", "", "", "", "", "", "", ""), $_POST[$k]); } foreach ($_GET as $k => $v) { $_GET[$k] = addslashes($v); $_GET[$k] = str_replace(array("meta", "onload", "onerror", "onLoad", "onError", "xml", "null", "alert(", "eval(", "innerHTML", "innerhtml", "onreadystatechange", "var "), array("", "", "", "", "", "", "", "", "", "", "", "", ""), $_GET[$k]); $_GET[$k] = str_replace(array("<script", "applet", "embed", "<form", "union", "--", "../", "/*", "java"), array("", "", "", "", "", "", "", "", "", ""), $_GET[$k]); } } global $user; require "global_func.php"; include_once 'lib/config.php'; $user = User::fbc_getLoggedIn(); $user ? $fb_active_session = $user->fbc_is_session_active() : ($fb_active_session = FALSE); if ($user) { //facebook $userid = $user->fbc_uid; $_SESSION['userid'] = $user->fbc_uid; if (!$_SESSION['userid']) { $_SESSION['redirectURL'] = $_SERVER["REQUEST_URI"]; header("Location: login.php"); exit; } } else { //guest if (!$_SESSION['userid']) { $_SESSION['redirectURL'] = $_SERVER["REQUEST_URI"]; header("Location: login.php");