<?php require "../../inv.header.php"; $user = new user(); if ($user->gotpermission('is_admin')) { $upgrades = "ALTER TABLE {$group_table} ADD COLUMN alter_notes TINYINT(1) DEFAULT 0"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$group_table} ADD COLUMN can_upload TINYINT(1) DEFAULT 1"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$tag_history_table} ADD COLUMN ip VARCHAR(255) DEFAULT NULL"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$user_table} ADD COLUMN my_tags TEXT DEFAULT NULL"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$tag_history_table} ADD COLUMN total_amount BIGINT(99) UNSIGNED NOT NULL AUTO_INCREMENT AFTER `ip`, ADD PRIMARY KEY (`total_amount`)"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$forum_topic_table} ENGINE=InnoDB"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$group_table} ENGINE=InnoDB"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$note_table} ENGINE=InnoDB"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$note_history_table} ENGINE=InnoDB"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$parent_child_table} ENGINE=InnoDB"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$user_table} ADD COLUMN post_count INTEGER(11) UNSIGNED NOT NULL DEFAULT 0"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$user_table} ADD COLUMN record_score INTEGER(11) UNSIGNED NOT NULL DEFAULT 0"; $db->query($upgrades) or print $db->error; $upgrades = "ALTER TABLE {$user_table} ADD COLUMN comment_count INTEGER(11) UNSIGNED NOT NULL DEFAULT 0"; $db->query($upgrades) or print $db->error;
<?php require "../inv.header.php"; $user = new user(); $ip = $db->real_escape_string($_SERVER['REMOTE_ADDR']); if ($user->banned_ip($ip)) { exit; } if (!$user->check_log()) { exit; } $user_id = $checked_user_id; if (!$user->gotpermission('alter_notes')) { exit; } if (is_numeric($_GET['id']) && is_numeric($_GET['note']['post_id']) && is_numeric($_GET['note']['x']) && is_numeric($_GET['note']['y']) && is_numeric($_GET['note']['width']) && is_numeric($_GET['note']['height'])) { $id = $db->real_escape_string($_GET['id']); $x = $db->real_escape_string($_GET['note']['x']); $y = $db->real_escape_string($_GET['note']['y']); $width = $db->real_escape_string($_GET['note']['width']); $height = $db->real_escape_string($_GET['note']['height']); $body = $db->real_escape_string(htmlentities($_GET['note']['body'], ENT_QUOTES, 'UTF-8')); $body = str_replace("<tn>", "<tn>", $body); $body = str_replace("</tn>", "</tn>", $body); $body = str_replace("<br />", "<br />", $body); $body = str_replace("<br>", "<br />", $body); $body = str_replace("<b>", "<b>", $body); $body = str_replace("</b>", "</b>", $body); $body = str_replace("<i>", "<i>", $body); $body = str_replace("</i>", "</i>", $body); $post_id = $db->real_escape_string($_GET['note']['post_id']);
</script> <br /><br /> <script type="text/javascript"> //<![CDATA[ var posts = {}; posts[' . $id . '] = {}; posts[' . $id . '].comments = {}; posts[' . $id . '].ignored = {}; var cthreshold = parseInt(readCookie(\'comment_threshold\')) || 0; var users = readCookie(\'user_blacklist\').split(/[, ]|%20+/g); //]]> </script>'; $data = ''; $data = ob_get_contents(); ob_end_clean(); $cache->save("cache/" . $id . "/post.cache", $data); echo str_replace("f6ca1c7d5d00a2a3fb4ea2f7edfa0f96a6d09c11717f39facabad2d724f16fbb", $domain, $data); flush(); } $user = new user(); $got_permission = $user->gotpermission('delete_comments'); if (isset($_GET['pid']) && is_numeric($_GET['pid']) && $_GET['pid'] > "0") { $pid = ceil($_GET['pid']); $page = $pid; } else { $page = 0; $pid = 0; } $data = ''; if (file_exists("cache/{$id}/comments.{$pid}.cache")) { $data = $cache->load("cache/{$id}/comments.{$pid}.cache"); } if ($data !== false && $data != "" && $got_permission === false) { echo $data; flush(); } else {
} $pg = "forum2"; require "includes/header.php"; $query = "SELECT t1.id, t1.title, t1.post, t1.author, t1.creation_date, t2.creation_post FROM {$forum_post_table} AS t1 JOIN {$forum_topic_table} AS t2 ON t2.id=t1.topic_id WHERE t1.topic_id='{$id}' ORDER BY id LIMIT {$page}, {$limit}"; $result = $db->query($query) or die(mysql_error()); print '<div style="margin-left: 15px; margin-right: 15px;"><div id="forum" class="response-list">'; while ($row = $result->fetch_assoc()) { $date_made = $misc->date_words($row['creation_date']); print '<div class="post"><div class="author"> <h6 class="author"><a name="' . $row['id'] . '"></a><a href="index.php?page=account_profile&uname=' . $row['author'] . '" style="font-size: 14px;">' . $row['author'] . '</a></h6> <span class="date">' . $date_made . ' </span> </div><div class="content"> <h6 class="response-title">' . $row['title'] . '</h6> <div class="body">' . $misc->short_url($misc->swap_bbs_tags($misc->linebreaks($row['post']))) . '</div> <div class="footer">'; if ($uname == $row['author'] || $user->gotpermission('edit_forum_posts')) { echo '<a href="#" onclick="showHide(\'c' . $row['id'] . '\'); return false;">edit</a> |'; } else { echo '<a href="">edit</a> |'; } echo ' <a href="#" onclick="javascript:document.getElementById(\'reply_box\').value=document.getElementById(\'reply_box\').value+\'[quote]' . $row['author'] . ' said:\\r\\n' . str_replace("'", "\\'", str_replace("\r\n", '\\r\\n', str_replace(''', "'", $row['post']))) . '[/quote]\'; return false;">quote</a> '; if ($user->gotpermission('delete_forum_posts') && $row['id'] != $row['creation_post']) { print ' | <a href="index.php?page=forum&s=remove&pid=' . $id . '&cid=' . $row['id'] . '">remove</a><br />'; } if ($uname == $row['author'] || $user->gotpermission('edit_forum_posts')) { print '<form method="post" action="index.php?page=forum&s=edit&pid=' . $id . '&cid=' . $row['id'] . '&ppid=' . $page . '" style="display:none" id="c' . $row['id'] . '"><table><tr><td><input type="text" name="title" value="' . $row['title'] . '"/></td></tr><tr><td><textarea name="post" rows="4" cols="6" style="width: 450px; height: 150px;">' . $row['post'] . '</textarea></td></tr><tr><td><input type="submit" name="submit" value="Edit"/></td></tr></table></form>'; } echo '</div></div></div>'; } echo '<div class="paginator"><div id="paginator">'; $misc = new misc();
<?php require "../inv.header.php"; $user = new user(); $cache = new cache(); if (!$user->check_log()) { header('Location: ../index.php?page=account&s=home'); exit; } if (isset($_GET['id']) && is_numeric($_GET['id']) && $_GET['id'] != "") { $id = $db->real_escape_string($_GET['id']); if (isset($_GET['note_id']) && is_numeric($_GET['note_id']) && $_GET['note_id'] != "") { if (!$user->gotpermission('alter_notes')) { exit; } $note_id = $db->real_escape_string($_GET['note_id']); $query = "SELECT COUNT(*) FROM {$note_table} WHERE post_id='{$id}' AND id='{$note_id}'"; $result = $db->query($query); $row = $result->fetch_assoc(); if ($row['COUNT(*)'] == 1) { $result->free_result(); $query = "DELETE FROM {$note_table} WHERE post_id='{$id}' AND id='{$note_id}'"; $db->query($query); $query = "DELETE FROM {$note_history_table} WHERE post_id='{$id}' AND id='{$note_id}'"; $db->query($query); $cache->destroy("cache/" . $id . "/post.cache"); print $note_id; } } else { if (isset($_GET['removepost']) && $_GET['removepost'] == 1) { $image = new image();
print "Action failed: " . $row['reason']; exit; } if (!$user->check_log()) { exit; } if (isset($_POST['title']) && isset($_POST['post']) && isset($_GET['pid']) && $_GET['pid'] != "" && isset($_GET['cid']) && $_GET['cid'] != "" && isset($_GET['ppid']) && $_GET['ppid'] != "") { $pid = $db->real_escape_string($_GET['pid']); $cid = $db->real_escape_string($_GET['cid']); $ppid = $db->real_escape_string($_GET['ppid']); $uid = $checked_user_id; $uname = $checked_username; $query = "SELECT author FROM {$forum_post_table} WHERE topic_id='{$pid}' AND id='{$cid}' LIMIT 1"; $result = $db->query($query) or die($db->error); $row = $result->fetch_assoc(); if ($row['author'] == $uname || $user->gotpermission('edit_forum_posts')) { $title = $db->real_escape_string(htmlentities($_POST['title'], ENT_QUOTES, 'UTF-8')); $post = $db->real_escape_string(htmlentities($_POST['post'], ENT_QUOTES, 'UTF-8')); $query = "UPDATE {$forum_post_table} SET title='{$title}', post='{$post}' WHERE topic_id='{$pid}' AND id='{$cid}'"; $db->query($query) or die($db->error); } header("Location:index.php?page=forum&s=view&id={$pid}&pid={$ppid}#{$cid}"); exit; } else { if (isset($_GET['pin']) && $_GET['pin'] != "" && is_numeric($_GET['pin']) && isset($_GET['id']) && is_numeric($_GET['id']) && isset($_GET['pid']) && is_numeric($_GET['pid'])) { if ($user->gotpermission('pin_forum_topics')) { $pin = $db->real_escape_string($_GET['pin']); $id = $db->real_escape_string($_GET['id']); $pid = $db->real_escape_string($_GET['pid']); if ($pin > 0) { $query = "UPDATE {$forum_topic_table} SET priority='1' WHERE id='{$id}'";
if ($tcount <= 40) { $ttags = explode(" ", $tags); foreach ($ttags as $current) { if ($current != "" && $current != " ") { $gtags[$current] = $current; ++$tcount; } } } $images .= '<span class="thumb"><a id="p' . $row['id'] . '" href="index.php?page=post&s=view&id=' . $row['id'] . '"><img src="' . $thumbnail_url . '/' . $row['directory'] . '/thumbnail_' . $row['image'] . '" alt="post" border="0" title="' . $row['tags'] . ' score:' . $row['score'] . ' rating:' . $row['rating'] . '"/></a> <script type="text/javascript"> //<![CDATA[ posts[' . $row['id'] . '] = {\'tags\':\'' . strtolower(str_replace('\\', "\", str_replace("'", "'", $tags))) . '\'.split(/ /g), \'rating\':\'' . $row['rating'] . '\', \'score\':' . $row['score'] . ', \'user\':\'' . str_replace('\\', "\", str_replace(' ', '%20', str_replace("'", "'", $row['owner']))) . '\'} //]]> </script>'; if ($user->gotpermission('admin_panel')) { $images .= '<br/><span class="postID" onClick="copyMe(this);">' . $row['id'] . '</span>'; } $images .= "</span>"; ++$tcount; } $result->free_result(); if (isset($_GET['tags']) && $_GET['tags'] != "" && $_GET['tags'] != "all") { $ttags = $db->real_escape_string(str_replace("'", "'", $_GET['tags'])); } else { $ttags = ""; } asort($gtags); /*Tags have been sorted in ascending order Let's now grab the index count from database Needs to be escaped before query is sent!
} if ($search != '') { $query = "SELECT COUNT(*) FROM {$forum_topic_table} as t1 JOIN {$forum_post_table} AS t2 ON (MATCH(t2.post) AGAINST({$search})>0.5)"; } else { $query = "SELECT COUNT(*) FROM {$forum_topic_table}"; } $result = $db->query($query); $row = $result->fetch_assoc(); $numrows = $row['COUNT(*)']; if ($search != "") { $query = "SELECT t1.id, t1.topic, t1.last_updated, t1.priority, t1.author FROM {$forum_topic_table} AS t1 JOIN {$forum_post_table} AS t2 ON (MATCH(t2.post) AGAINST({$search})>0.5) ORDER BY t1.priority DESC, t1.last_updated DESC LIMIT {$page}, {$limit}"; } else { $query = "SELECT id, topic, last_updated, author, locked, priority FROM {$forum_topic_table} ORDER BY priority DESC, last_updated DESC LIMIT {$page}, {$limit}"; } $result = $db->query($query) or die($db->error()); if ($user->gotpermission('delete_forum_topics') || $user->gotpermission('pin_forum_topics')) { print '<th width="10%">Tools</th>'; } echo '</tr>'; while ($row = $result->fetch_assoc()) { $que = "SELECT COUNT(*) FROM {$forum_post_table} WHERE topic_id='" . $row['id'] . "'"; $res = $db->query($que) or die($db->error()); $ret = $res->fetch_assoc(); $replies = $ret['COUNT(*)'] - 1; $date_now = $misc->date_words($row['last_updated']); $sticky = ""; $locked = ""; if ($row['priority'] == "1") { $sticky = "Sticky: "; } if ($row['locked'] == "1") {
//die("Maintenance mode. please try again in 1 hour."); error_reporting(0); ignore_user_abort(1); $misc = new misc(); $userc = new user(); $ip = $db->real_escape_string($_SERVER['REMOTE_ADDR']); if ($userc->banned_ip($ip)) { print "Action failed: " . $row['reason']; exit; } if (!$userc->check_log()) { if (!$anon_can_upload) { $no_upload = true; } } else { if (!$userc->gotpermission('can_upload')) { $no_upload = true; } } if ($no_upload) { print "You do not have permission to upload."; exit; } if (isset($_POST['submit'])) { $image = new image(); $uploaded_image = false; $parent = ''; $error = ''; if (empty($_FILES['upload']) && isset($_POST['source']) && $_POST['source'] != "" && substr($_POST['source'], 0, 4) == "http" || $_FILES['upload']['error'] != 0 && isset($_POST['source']) && $_POST['source'] != "" && substr($_POST['source'], 0, 4) == "http") { $iinfo = $image->getremoteimage($_POST['source']); if ($iinfo === false) {
$retme = $set->fetch_assoc(); if ($retme['user'] == "" || $retme['user'] == null) { $user = "******"; } else { $user = htmlentities($retme['user'], ENT_QUOTES, 'UTF-8'); } echo '<tr><td></td><td><a href="index.php?page=post&s=view&id=' . $id . '">' . $id . '</a></td><td>' . $row['updated_at'] . '</td><td>' . $user . '</td><td>' . $row['tags'] . '</td><td><a href="#" onclick="if(confirm(\'Do you really want to revert to this point?\')){document.location=\'index.php?page=history&type=revert_tags&id=' . $id . '&version=' . $row['version'] . '\'; return false;}">Revert</a></td></tr>'; } print "</table>"; $result->free_result(); if ($count <= 0) { echo '<h1>This post has no tag history!</h1>'; } } else { if ($type == "revert") { if ($userc->gotpermission('reverse_notes')) { $pid = $db->real_escape_string($_GET['pid']); $version = $db->real_escape_string($_GET['version']); $query = "SELECT updated_at, x, y, width, height, body, user_id, ip FROM {$note_history_table} WHERE id='{$id}' AND post_id='{$pid}' AND version='{$version}'"; $result = $db->query($query); $row = $result->fetch_assoc(); $query = "UPDATE {$note_table} SET updated_at='" . $row['updated_at'] . "', x='" . $row['x'] . "', y='" . $row['y'] . "', width='" . $row['width'] . "', height='" . $row['height'] . "', body='" . $row['body'] . "', user_id='" . $row['user_id'] . "', ip='" . $row['ip'] . "', version='{$version}' WHERE id='{$id}' AND post_id='{$pid}'"; $result->free_result(); $db->query($query); $query = "DELETE FROM {$note_history_table} WHERE id='{$id}' AND post_id='{$pid}' AND version >= '{$version}'"; $db->query($query); $cache->destroy("cache/" . $id . "/post.cache"); header("Location:index.php?page=post&s=view&id={$pid}"); } header("Location:index.php?page=post&s=view&id={$pid}"); } else {
<?php $user = new user(); if (!$user->check_log()) { exit; } if (isset($_GET['pid']) && isset($_GET['cid']) && $_GET['pid'] != "" && $_GET['cid'] != "") { $pid = $db->real_escape_string($_GET['pid']); $cid = $db->real_escape_string($_GET['cid']); $uid = $checked_user_id; $uname = $checked_username; $query = "SELECT t1.author, t2.creation_post FROM {$forum_post_table} AS t1 JOIN {$forum_topic_table} AS t2 ON t2.id=t1.topic_id WHERE t1.topic_id='{$pid}' AND t1.id='{$cid}' LIMIT 1"; $result = $db->query($query) or die($db->error); $row = $result->fetch_assoc(); if ($row['author'] == $uname || $user->gotpermission('delete_forum_posts')) { //make sure we don't erase the first post of a topic, would cause a huge mess... just edit it, or delete the topic. if ($row['creation_post'] != $cid) { $query = "DELETE FROM {$forum_post_table} WHERE id='{$cid}'"; $db->query($query); } } header("Location:index.php?page=forum&s=view&id={$pid}"); exit; } else { if (isset($_GET['fid']) && is_numeric($_GET['fid']) && isset($_GET['pid']) && is_numeric($_GET['pid'])) { if ($user->gotpermission('delete_forum_topics')) { $fid = $db->real_escape_string($_GET['fid']); $pid = $db->real_escape_string($_GET['pid']); $query = "DELETE FROM {$forum_post_table} WHERE topic_id='{$fid}'"; $db->query($query) or die($db->error); $query = "DELETE FROM {$forum_topic_table} WHERE id='{$fid}'";
<?php require "../inv.header.php"; $userc = new user(); if (!$userc->gotpermission('is_admin')) { header('Location:../'); exit; } if (isset($_POST['password']) && isset($_POST['group']) && is_numeric($_POST['group'])) { $user = $db->real_escape_string($_POST['uid']); $pass = $db->real_escape_string($_POST['password']); $group = $db->real_escape_string($_POST['group']); if ($pass != "") { $query = "UPDATE {$user_table} SET pass='******', ugroup='{$group}' WHERE user='******'"; } else { $query = "UPDATE {$user_table} SET ugroup='{$group}' WHERE user='******'"; } if ($db->query($query)) { print 'User edited.<meta http-equiv="refresh" content="2;url=edit_user.php">'; } else { print 'Could not edit user.<meta http-equiv="refresh" content="2;url=edit_user.php">'; } exit; } else { if (isset($_POST['user']) && $_POST['user'] != "") { $user = $db->real_escape_string($_POST['user']); echo '<form method="post" action=""> <table><tr><td> User: '******'</td></tr> <tr><td> New password?<br />