} else { $_SESS = array(); } } else { $_SESS = array(); } // create cache $_CACHE = array(); // save cfg file $cfg = hook('init_modify_cfg', $cfg); $fx = fopen(SERVDIR . '/cdata/conf.php', 'w'); fwrite($fx, "<?php die(); ?>\n" . serialize($cfg)); fclose($fx); // More default options if (!getoption('ckeditor_customize')) { $config_ckeditor_customize = read_tpl('default/ckeditor.options'); } //---------------------------------- // Html Special Chars (HEX -> UTF-8) L-Endian //---------------------------------- $HTML_SPECIAL_CHARS_UTF8 = array('c2a1' => '¡', 'c2a2' => '¢', 'c2a3' => '£', 'c2a4' => '¤', 'c2a5' => '¥', 'c2a6' => '¦', 'c2a7' => '§', 'c2a8' => '¨', 'c2a9' => '©', 'c2aa' => 'ª', 'c2ab' => '«', 'c2bb' => '»', 'c2ac' => '¬', 'c2ae' => '®', 'c2af' => '¯', 'c2b0' => '°', 'c2ba' => 'º', 'c2b1' => '±', 'c2b9' => '¹', 'c2b2' => '²', 'c2b3' => '³', 'c2b4' => '´', 'c2b7' => '·', 'c2b8' => '¸', 'c2bc' => '¼', 'c2bd' => '½', 'c2be' => '¾', 'c2bf' => '¿', 'c380' => 'À', 'c381' => 'Á', 'c382' => 'Â', 'c383' => 'Ã', 'c384' => 'Ä', 'c385' => 'Å', 'c386' => 'Æ', 'c387' => 'Ç', 'c388' => 'È', 'c389' => 'É', 'c38a' => 'Ê', 'c38b' => 'Ë', 'c38c' => 'Ì', 'c38d' => 'Í', 'c38e' => 'Î', 'c38f' => 'Ï', 'c390' => 'Ð', 'c391' => 'Ñ', 'c392' => 'Ò', 'c393' => 'Ó', 'c394' => 'Ô', 'c395' => 'Õ', 'c396' => 'Ö', 'c397' => '×', 'c398' => 'Ø', 'c399' => 'Ù', 'c39a' => 'Ú', 'c39b' => 'Û', 'c39c' => 'Ü', 'c39d' => 'Ý', 'c39e' => 'Þ', 'c39f' => 'ß', 'c3a0' => 'à', 'c3a1' => 'á', 'c3a2' => 'â', 'c3a3' => 'ã', 'c3a4' => 'ä', 'c3a5' => 'å', 'c3a6' => 'æ', 'c3a7' => 'ç', 'c3a8' => 'è', 'c3a9' => 'é', 'c3aa' => 'ê', 'c3ab' => 'ë', 'c3ac' => 'ì', 'c3ad' => 'í', 'c3ae' => 'î', 'c3af' => 'ï', 'c3b0' => 'ð', 'c3b1' => 'ñ', 'c3b2' => 'ò', 'c3b3' => 'ó', 'c3b4' => 'ô', 'c3b5' => 'õ', 'c3b6' => 'ö', 'c3b7' => '÷', 'c3b8' => 'ø', 'c3b9' => 'ù', 'c3ba' => 'ú', 'c3bb' => 'û', 'c3bc' => 'ü', 'c3bd' => 'ý', 'c3be' => 'þ', 'c3bf' => 'ÿ', 'c592' => 'Œ', 'c593' => 'œ', 'c5a0' => 'Š', 'c5a1' => 'š', 'c5b8' => 'Ÿ', 'cb86' => 'ˆ', 'cb9c' => '˜', 'c692' => 'ƒ', 'ce91' => 'Α', 'ce92' => 'Β', 'ce93' => 'Γ', 'ce94' => 'Δ', 'ce95' => 'Ε', 'ce96' => 'Ζ', 'ce97' => 'Η', 'ce98' => 'Θ', 'ce99' => 'Ι', 'ce9a' => 'Κ', 'ce9b' => 'Λ', 'ce9c' => 'Μ', 'ce9d' => 'Ν', 'ce9e' => 'Ξ', 'ce9f' => 'Ο', 'cea0' => 'Π', 'cea1' => 'Ρ', 'cea3' => 'Σ', 'cea4' => 'Τ', 'cea5' => 'Υ', 'cea6' => 'Φ', 'cea7' => 'Χ', 'cea8' => 'Ψ', 'cea9' => 'Ω', 'ceb1' => 'α', 'ceb2' => 'β', 'ceb3' => 'γ', 'ceb4' => 'δ', 'ceb5' => 'ε', 'ceb6' => 'ζ', 'ceb7' => 'η', 'ceb8' => 'θ', 'ceb9' => 'ι', 'ceba' => 'κ', 'cebb' => 'λ', 'cebc' => 'μ', 'cebd' => 'ν', 'cebe' => 'ξ', 'cebf' => 'ο', 'cf80' => 'π', 'cf81' => 'ρ', 'cf82' => 'ς', 'cf83' => 'σ', 'cf84' => 'τ', 'cf85' => 'υ', 'cf86' => 'φ', 'cf87' => 'χ', 'cf88' => 'ψ', 'cf89' => 'ω', 'cf91' => 'ϑ', 'cf92' => 'ϒ', 'cf96' => 'ϖ', 'e2809d' => '”', 'e2809c' => '“', 'e284a2' => '™', 'e28099' => '’', 'e28098' => '‘', 'e280b0' => '‰', 'e280a6' => '…', 'e282ac' => '€', 'e28093' => '–', 'e28094' => '—', 'e280a0' => '†', 'e280a1' => '‡', 'e280b9' => '‹', 'e280ba' => '›', 'e280b2' => '′', 'e280b3' => '″', 'e280be' => '‾', 'e28498' => '℘', 'e28491' => 'ℑ', 'e2849c' => 'ℜ', 'e284b5' => 'ℵ', 'e28690' => '←', 'e28691' => '↑', 'e28692' => '→', 'e28693' => '↓', 'e28694' => '↔', 'e286b5' => '↵', 'e28790' => '⇐', 'e28791' => '⇑', 'e28792' => '⇒', 'e28793' => '⇓', 'e28794' => '⇔', 'e28880' => '∀', 'e28882' => '∂', 'e28883' => '∃', 'e28885' => '∅', 'e28887' => '∇', 'e28888' => '∈', 'e28889' => '∉', 'e2888b' => '∋', 'e2888f' => '∏', 'e28891' => '∑', 'e28892' => '−', 'e28897' => '∗', 'e2889a' => '√', 'e2889d' => '∝', 'e2889e' => '∞', 'e288a0' => '∠', 'e288a7' => '∧', 'e288a8' => '∨', 'e288a9' => '∩', 'e288aa' => '∪', 'e288ab' => '∫', 'e288b4' => '∴', 'e288bc' => '∼', 'e28985' => '≅', 'e28988' => '≈', 'e289a0' => '≠', 'e289a1' => '≡', 'e289a4' => '≤', 'e289a5' => '≥', 'e28a82' => '⊂', 'e28a83' => '⊃', 'e28a84' => '⊄', 'e28a86' => '⊆', 'e28a87' => '⊇', 'e28a95' => '⊕', 'e28a97' => '⊗', 'e28aa5' => '⊥', 'e28b85' => '⋅', 'e28c88' => '⌈', 'e28c89' => '⌉', 'e28c8a' => '⌊', 'e28c8b' => '⌋', 'e29fa8' => '⟨', 'e29fa9' => '⟩', 'e2978a' => '◊', 'e299a0' => '♠', 'e299a3' => '♣', 'e299a5' => '♥', 'e299a6' => '♦'); // Decode UTF-8 code-table $HTML_SPECIAL_CHARS = array(); foreach ($HTML_SPECIAL_CHARS_UTF8 as $hex => $html) { $key = ''; if (strlen($hex) == 4) { $key = pack("CC", hexdec(substr($hex, 0, 2)), hexdec(substr($hex, 2, 2))); } elseif (strlen($hex) == 6) { $key = pack("CCC", hexdec(substr($hex, 0, 2)), hexdec(substr($hex, 2, 2)), hexdec(substr($hex, 4, 2))); } if ($key) {
} // Check including $Uri = '//' . dirname($_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI']); if (strpos($config_http_script_dir, $Uri) !== false && strpos($PHP_SELF, 'show_news.php') !== false) { die_stat(403, 'Wrong including show_news.php! Check manual to get more information about this issue.'); } // If we are showing RSS, include some need variables. if ($template == 'rss') { include SERVDIR . '/cdata/rss_config.php'; } // definition FB comments if uses if ($config_use_fbcomments == 'yes' and !isset($_CACHE['__first_time__'])) { if (empty($config_fb_i18n)) { $config_fb_i18n = 'en_US'; } echo str_replace(array('{appID}', '{fbi18n}'), array($config_fb_appid, $config_fb_i18n), read_tpl('fb_comments')); $_CACHE['__first_time__'] = true; } // use static path to all links if (empty($static_path) == false) { $PHP_SELF = $static_path; } // Linked cats if (isset($_GET['cid']) && $_GET['cid']) { $category = $_GET['cid']; } hook('show_news_init'); // Prepare requested categories if (preg_match('/[a-z]/i', $category)) { die_stat(false, "<b>Error</b>!<br>CuteNews has detected that you use \$category = \"" . htmlspecialchars($category) . "\";\n but you can call the categories only with their <b>ID</b> numbers and not with names<br>example:<br>\n <blockquote><?PHP<br>\$category = \"1\";<br>include(\"path/to/show_news.php\");<br>?></blockquote>"); }
$name = replace_comment("add", preg_replace("/\n/", "", $name)); $mail = replace_comment("add", preg_replace("/\n/", "", $mail)); $remcheck = $CNremember == '1' ? ' checked="checked" ' : ''; echo proc_tpl('enter_passcode'); return FALSE; } else { $gen = hash_generate($password); // password ok? if (in_array($user_member[UDB_PASS], $gen) || $CNpass && $user_member[UDB_PASS] == $CNpass) { // if check remember password -> echo this script if (empty($CNrememberPass) == false) { $name = htmlspecialchars($name); if (empty($mail)) { $mail = htmlspecialchars($user_member[UDB_EMAIL]); } echo read_tpl('remember') . '<script type="text/javascript">CNRememberPass("' . $user_member[UDB_PASS] . '", "' . $name . '", "' . $mail . '")</script>'; } // hide email $mail = $user_member[UDB_CBYEMAIL] ? false : $user_member[UDB_EMAIL]; $captcha_enabled = false; } else { echo '<div class="blocking_posting_comment">' . lang('Wrong password!') . ' <a href="javascript:document.location = \'' . $_SERVER['HTTP_REFERER'] . '\'">' . lang('Refresh') . '</a></div>'; add_to_log($name, lang('Wrong password (posting comment with exist username)')); return FALSE; } } } else { $is_member = false; } // --------------------------------- // Converting to UTF8 [Try]
echo $prev_next_msg; } $username = $usermail = false; $template_form = str_replace("{config_http_script_dir}", $config_http_script_dir, $template_form); //---------------------------------- // Check if the remember script exists //---------------------------------- if (!empty($_SESS['user'])) { $captcha_enabled = false; $member_db = user_search($_SESS['user']); } $template_form = str_replace('{username}', isset($member_db[UDB_NAME]) ? $member_db[UDB_NAME] : false, $template_form); $template_form = str_replace('{usermail}', isset($member_db[UDB_EMAIL]) ? $member_db[UDB_EMAIL] : false, $template_form); // Remember and Forget for unregistered only $remember_user = ''; $remember_form = getpart('remember_me'); if ($member_db) { $remember_form = getpart('logged_as_member'); $remember_user = getpart('logger_as_membersp', htmlspecialchars($member_db[UDB_NAME]), htmlspecialchars($member_db[UDB_EMAIL])); } elseif ($_COOKIE['CNname']) { $remember_form = getpart('forget_me'); } $gduse = function_exists('imagecreatetruecolor') ? 0 : 1; $captcha_form = $config_use_captcha && $captcha_enabled ? proc_tpl('captcha_comments') : false; $smilies_form = proc_tpl('remember_js') . insertSmilies('short', false); $template_form = str_replace("{smilies}", $smilies_form, $template_form); $template_form = str_replace('{remember_me}', $remember_form, $template_form); $template_form = hook('comment_template_form', $template_form); $remember_js = read_tpl('remember') . $remember_user; echo proc_tpl('comment_form'); return TRUE;
} if (empty($no_prev) or empty($no_next)) { echo $prev_next_msg; } $username = $usermail = false; $template_form = str_replace("{config_http_script_dir}", $config_http_script_dir, $template_form); //---------------------------------- // Check if the remember script exists //---------------------------------- if (!empty($_SESS['user'])) { $captcha_enabled = false; $member_db = user_search($_SESS['user']); } $template_form = str_replace('{username}', isset($member_db[UDB_NAME]) ? $member_db[UDB_NAME] : false, $template_form); $template_form = str_replace('{usermail}', isset($member_db[UDB_EMAIL]) ? $member_db[UDB_EMAIL] : false, $template_form); // Remember and Forget for unregistered only $remember_form = getpart('remember_me'); if ($member_db) { $remember_form = getpart('logged_as_member'); } elseif ($_COOKIE['CNname']) { $remember_form = getpart('forget_me'); } $gduse = function_exists('imagecreatetruecolor') ? 0 : 1; $captcha_form = $config_use_captcha && $captcha_enabled ? proc_tpl('captcha_comments', array('cutepath' => $config_http_script_dir), array('TEXTCAPTCHA' => $gduse)) : false; $smilies_form = proc_tpl('remember_js') . insertSmilies('short', FALSE) . $captcha_form; $template_form = str_replace("{smilies}", $smilies_form, $template_form); $template_form = str_replace('{remember_me}', $remember_form, $template_form); $template_form = hook('comment_template_form', $template_form); $remember_js = read_tpl('remember'); echo proc_tpl('comment_form'); return TRUE;
function cn_extrn_init() { global $template; if ($template == 'rss') { return; } $i18n = getoption('i18n'); if (!$i18n) { $i18n = 'en_US'; } // Facebook initialzie if ((getoption('use_fbcomments') || getoption('use_fblike')) && !mcache_get('fb_js_on') && $template != 'rss') { echo str_replace(array('{appID}', '{fbi18n}'), array(getoption('fb_appid'), str_replace('-', '_', $i18n)), read_tpl('fb_comments')); mcache_set('fb_js_on', true); } // Definition G+ code uses if (getoption('use_gplus') && !mcache_get('gplus_js_on') && $template != 'rss') { echo str_replace('{lang}', $i18n, read_tpl('google_plus')); mcache_set('gplus_js_on', true); } // First init CN script if (!mcache_get('cn:extr_init')) { echo preg_replace('/\\s{2,}/s', ' ', read_tpl('cnscript')); mcache_set('cn:extr_init', true); } }
function getpart($name, $data = array()) { global $PHP_SELF; if (func_num_args() == 2) { if (!is_array($data)) { $data = array($data); } } elseif (func_num_args() > 2) { $data = array(); for ($i = 1; $i < func_num_args() + 1; $i++) { $data[$i - 1] = func_get_arg($i); } } $parts = str_replace('{$PHP_SELF}', $PHP_SELF, read_tpl('micro')); if (preg_match('~^' . $name . '\\|(.*)$~m', $parts, $match)) { foreach ($data as $i => $v) { $match[1] = str_replace('%' . ($i + 1), $v, $match[1]); } return $match[1]; } return false; }