if ($titleopt) {
// this went after this block, which makes it COMPLETELY USELESS
squot(0, $loguser[title]);
$titleoption = "\r\n\t {$tccell1}><b>Custom title:{$descbr} This title will be shown below your rank.</td>\r\n\t {$tccell2l}>{$inpt}=title VALUE=\"{$loguser['title']}\" SIZE=60 MAXLENGTH=255><tr>\r\n\t\t";
}
$loguser['minipic'] = htmlspecialchars($loguser['minipic'], ENT_QUOTES);
$loguser['picture'] = htmlspecialchars($loguser['picture'], ENT_QUOTES);
$loguser['moodurl'] = htmlspecialchars($loguser['moodurl'], ENT_QUOTES);
squot(0, $loguser['realname']);
// squot(0,$loguser['aka']);
squot(0, $loguser['location']);
// squot(1,$loguser['aim']);
// squot(1,$loguser['imood']);
squot(0, $loguser['email']);
// squot(1,$loguser['homepageurl']);
squot(0, $loguser['homepagename']);
sbr(1, $loguser['postheader']);
sbr(1, $loguser['signature']);
sbr(1, $loguser['bio']);
$schemes = $sql->query('SELECT s.id as id, s.name, COUNT(u.scheme) as used FROM schemes s LEFT JOIN users u ON (u.scheme = s.id) WHERE ord > 0 GROUP BY u.scheme ORDER BY s.ord');
while ($sch = $sql->fetch($schemes)) {
$sel = $sch['id'] == $loguser['scheme'] ? ' selected' : '';
$schlist .= "<option value={$sch['id']}{$sel}>{$sch['name']} ({$sch['used']})";
}
$schlist = "<select name=sscheme>{$schlist}</select>";
$tlayouts = $sql->query('SELECT tl.id as id, tl.name, COUNT(u.layout) as used FROM tlayouts tl LEFT JOIN users u ON (u.layout = tl.id) GROUP BY u.layout ORDER BY tl.ord');
while ($lay = $sql->fetch($tlayouts)) {
$sel = $lay['id'] == $loguser['layout'] ? ' selected' : '';
$laylist .= "<option value={$lay['id']}{$sel}>{$lay['name']} ({$lay['used']})";
}
$laylist = "<select name=tlayout>{$laylist}</select>";
$rgt = ":</td>{$tccell2l}>";
$hlft = "<tr>{$tccellh}>";
$hrgt = "</td>{$tccellh}> </td>";
squot(0, $user['name']);
squot(0, $user['title']);
$user['minipic'] = htmlspecialchars($user['minipic'], ENT_QUOTES);
$user['picture'] = htmlspecialchars($user['picture'], ENT_QUOTES);
$user['moodurl'] = htmlspecialchars($user['moodurl'], ENT_QUOTES);
squot(0, $user['realname']);
squot(0, $user['aka']);
squot(0, $user['location']);
// squot(1,$user['aim']);
// squot(1,$user['imood']);
// squot(1,$user['email']);
// squot(1,$user['homepageurl']);
squot(0, $user['homepagename']);
sbr(1, $user['bio']);
sbr(1, $user['signature']);
sbr(1, $user['postheader']);
print "\r\n\t\t<br>\r\n\t\t\t{$tblstart}\r\n\t\t\t<FORM ACTION=edituser.php NAME=REPLIER METHOD=POST autocomplete=\"off\">\r\n\r\n\t\t\t\t{$hlft} Login information {$hrgt}\r\n\t\t\t\t{$lft} User name\t\t{$rgt}{$inpt}=username VALUE=\"{$user['name']}\" SIZE=25 MAXLENGTH=25 autocomplete=\"off\">\r\n\t\t\t\t{$lft} Also known as\t\t{$rgt}{$inpt}=aka VALUE=\"{$user['aka']}\" SIZE=25 MAXLENGTH=25 autocomplete=\"off\">\r\n\r\n\t\t\t\t<!-- Hack around autocomplete, fake inputs (don't use these in the file) \r\n\t\t\t\tWeb browsers think they're smarter than the web designer, so they ignore demands to not use autocomplete.\r\n\t\t\t\tThis is STUPID AS F**K when you're working on another user, and not YOURSELF. -->\r\n\t\t\t\t<input style=\"display:none;\" type=\"text\" name=\"__f__usernm__\">\r\n\t\t\t\t<input style=\"display:none;\" type=\"password\" name=\"__f__passwd__\">\r\n\r\n\t\t\t\t{$lft} Password\t\t{$rgt}{$inpp}=password VALUE=\"\" SIZE=13 MAXLENGTH=64 autocomplete=\"new-password\">\r\n\r\n\t\t\t\t{$hlft} Administrative bells and whistles {$hrgt}\r\n\t\t\t\t{$lft} Power level\t\t{$rgt}{$levellist}\r\n\t\t\t\t{$lft} Custom title\t\t{$rgt}{$inpt}=usertitle VALUE=\"{$user['title']}\" SIZE=60 MAXLENGTH=255>\r\n\t\t\t\t{$lft} Rank set\t\t{$rgt}{$rsetlist}\r\n\t\t\t\t{$lft} Number of posts\t{$rgt}{$inpt}=numposts SIZE=5 MAXLENGTH=10 VALUE={$user['posts']}>\r\n\t\t\t\t{$lft} Registration time:</b>{$smallfont}<br>(seconds since " . date($dateformat, $tzoff) . ")</td>{$tccell2l}>{$inpt}=regtime SIZE=10 MAXLENGTH=15 VALUE={$user['regdate']}><tr>\r\n\t\t\t\t{$lft} Lock Profile {$rgt}{$plocking}\r\n\t\t\t\t{$lft} Restrict Editing {$rgt}{$elocking}\r\n\t\t\t\t{$lft} Custom Title Privileges {$rgt}{$ctpriv}\r\n\r\n\t\t\t\t{$hlft} Appearance\t\t{$hrgt}\r\n\t\t\t\t{$lft} Mini picture\t\t{$rgt}{$inpt}=minipic VALUE=\"{$user['minipic']}\" SIZE=60 MAXLENGTH=100>\r\n\t\t\t\t{$lft} User picture\t\t{$rgt}{$inpt}=picture VALUE=\"{$user['picture']}\" SIZE=60 MAXLENGTH=100>\r\n\t\t\t\t{$lft} Mood avatar\t\t{$rgt}{$inpt}=moodurl VALUE=\"{$user['moodurl']}\" SIZE=60 MAXLENGTH=100>\r\n\t\t\t\t{$lft} Post background\t{$rgt}{$inpt}=postbg VALUE=\"{$user['postbg']}\" SIZE=60 MAXLENGTH=100>\r\n\t\t\t\t{$lft} Post header\t\t{$rgt}{$txta}=postheader ROWS=5 COLS=60>" . htmlspecialchars($user[postheader]) . "</TEXTAREA>\r\n\t\t\t\t{$lft} Signature\t\t{$rgt}{$txta}=signature ROWS=5 COLS=60>" . htmlspecialchars($user[signature]) . "</TEXTAREA>\r\n\r\n\t\t\t\t{$hlft} Personal information {$hrgt}\r\n\t\t\t\t{$lft} Sex\t\t\t{$rgt}{$sexlist}\r\n\t\t\t\t{$lft} Real name\t\t{$rgt}{$inpt}=realname VALUE=\"{$user['realname']}\" SIZE=40 MAXLENGTH=60>\r\n\t\t\t\t{$lft} Location\t\t{$rgt}{$inpt}=location VALUE=\"{$user['location']}\" SIZE=40 MAXLENGTH=60>\r\n\t\t\t\t{$lft} Birthday\t\t{$rgt} Month: {$inpt}=bmonth SIZE=2 MAXLENGTH=2 VALUE={$month}> Day: {$inpt}=bday SIZE=2 MAXLENGTH=2 VALUE={$day}> Year: {$inpt}=byear SIZE=4 MAXLENGTH=4 VALUE={$year}>\r\n\t\t\t\t{$lft} Bio\t\t\t{$rgt}{$txta}=bio ROWS=5 COLS=60>" . htmlspecialchars($user[bio]) . "</TEXTAREA>\r\n\r\n\t\t\t\t{$hlft} Online services\t{$hrgt}\r\n\t\t\t\t{$lft} Email address {$rgt} {$inpt}=email VALUE=\"{$user['email']}\" SIZE=60 MAXLENGTH=60>\r\n\t\t\t\t{$lft} AIM screen name {$rgt} {$inpt}=aim VALUE=\"{$user['aim']}\" SIZE=30 MAXLENGTH=30>\r\n\t\t\t\t{$lft} ICQ number {$rgt} {$inpt}=icq SIZE=10 MAXLENGTH=10 VALUE={$user['icq']}>\r\n\t\t\t\t{$lft} Homepage title {$rgt} {$inpt}=pagename VALUE=\"{$user['homepagename']}\" SIZE=60 MAXLENGTH=80>\r\n\t\t\t\t{$lft} Homepage URL {$rgt} {$inpt}=homepage VALUE=\"{$user['homepageurl']}\" SIZE=60 MAXLENGTH=80>\r\n\r\n\t\t\t\t{$hlft} Options\t\t{$hrgt}\r\n\t\t\t\t{$lft} Custom date format {$rgt} {$inpt}=eddateformat value=\"{$user['dateformat']}\" size=16 maxlength=32>\r\n\t\t\t\t{$lft} Custom short date format {$rgt} {$inpt}=eddateshort value=\"{$user['dateshort']}\" size=8 maxlength=32>\r\n\t\t\t\t{$lft} Timezone offset {$rgt} {$inpt}=timezone SIZE=5 MAXLENGTH=5 VALUE={$user['timezone']}>\r\n\t\t\t\t{$lft} Posts per page {$rgt} {$inpt}=postsperpage SIZE=5 MAXLENGTH=5 VALUE={$user['postsperpage']}>\r\n\t\t\t\t{$lft} Threads per page {$rgt} {$inpt}=threadsperpage SIZE=4 MAXLENGTH=4 VALUE={$user['threadsperpage']}>\r\n\t\t\t\t{$lft} View signatures and post headers {$rgt} {$vsig}\r\n\t\t\t\t{$lft} Thread layout {$rgt} {$laylist}\r\n\t\t\t\t{$lft} Color scheme / layout {$rgt} {$schlist}\r\n\r\n\t\t\t\t{$lft}  </td>{$tccell2l}>\r\n\t\t\t\t{$inph}=action VALUE=saveprofile>\r\n\t\t\t\t{$inph}=userid VALUE={$id}>\r\n\t\t\t\t{$inps}=submit VALUE=\"Edit profile\"></td></FORM>\r\n\t\t\t{$tblend}\r\n\t";
}
if ($_POST['action'] == 'saveprofile') {
if ($eddateformat == $defaultdateformat) {
$eddateformat = '';
}
if ($eddateshort == $defaultdateshort) {
$eddateshort = '';
}
sbr(0, $signature);
sbr(0, $bio);
sbr(0, $postheader);
}
if ($_POST[action] == 'postannc') {
$userid = $loguserid;
$user = $loguser;
if ($userid != -1) {
$sign = $user[signature];
$head = $user[postheader];
if ($user[postbg]) {
$head = "<div style=background:url({$user['postbg']});height=100%>{$head}";
}
$numposts = $user[posts];
$numdays = (ctime() - $user[regdate]) / 86400;
$message = doreplace($message, $numposts, $numdays, $user['name']);
$rsign = doreplace($sign, $numposts, $numdays, $user['name']);
$rhead = doreplace($head, $numposts, $numdays, $user['name']);
squot(0, $subject);
$currenttime = ctime();
if ($submit) {
if (!$f) {
$f = 0;
}
$headid = getpostlayoutid($head);
$signid = getpostlayoutid($sign);
mysql_query("INSERT INTO `announcements` (`user`, `date`, `ip`, `title`, `forum`, `text`, `headid`, `signid`, `tagval`) VALUES ('{$userid}', '{$currenttime}', '{$userip}', '{$subject}', '{$f}', '{$message}', '{$headid}', '{$signid}', '{$tagval}')");
$annclist = "\r\n\t\t{$tccell1}>Thank you, {$user['name']}, for posting your announcement.<br>\r\n\t " . redirect("announcement.php?f={$f}", "the announcements", 0) . "</table></table>";
} else {
loadtlayout();
$ppost = $user;
$ppost[uid] = $userid;
$ppost[date] = $currenttime;
$ppost[headtext] = $rhead;
