if (C_PRIV_POPUP) {
if ($allowpopupu || stristr(mb_convert_case(trim($Cmd[2]), MB_CASE_LOWER, $Charset), mb_convert_case(C_BOT_NAME, MB_CASE_LOWER, $Charset))) {
$Read = "Neww";
} else {
$Read = "Oldw";
}
} else {
$Read = "Oldw";
}
$DbLink->query("SELECT room FROM " . C_USR_TBL . " WHERE username='******'2']}'");
list($UR) = $DbLink->next_record();
if ($UR != "") {
// Check for swear words in the message if necessary
if (C_NO_SWEAR && $UR != C_NO_SWEAR_ROOM1 && $UR != C_NO_SWEAR_ROOM2 && $UR != C_NO_SWEAR_ROOM3 && $UR != C_NO_SWEAR_ROOM4) {
include "./lib/swearing.lib.php";
$Cmd[3] = checkwords($Cmd[3], false, $Charset);
if (C_EN_STATS && isset($Found) && $b > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET swears_posted=swears_posted+{$b} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($Found, $b);
}
// add this for /away command modification by R Dickow:
$DbLink->query("SELECT awaystat FROM " . C_USR_TBL . " WHERE username='******'2']}'");
if ($DbLink->num_rows() != 0) {
list($awaystat) = $DbLink->next_record();
}
$DbLink->clean_results();
if ($awaystat == 1) {
$Read = "Neww";
AddMessage(stripslashes($Cmd[3]), $T, $UR, $U, $C, $Cmd[2], $Read, $R, $Charset);
$IsCommand = true;
function oneditanswer()
{
$navtitle = '修改回答';
$aid = $this->get[2] ? $this->get[2] : $this->post['aid'];
$answer = $_ENV['answer']->get($aid);
!$answer && $this->message("回答不存在或已被删除!", "STOP");
$question = $_ENV['question']->get($answer['qid']);
$navlist = $_ENV['category']->get_navigation($question['cid'], true);
if (isset($this->post['submit'])) {
$content = $this->post['content'];
$viewurl = urlmap('question/view/' . $question['id'], 2);
//检查审核和内容外部URL过滤
$status = intval(2 != (2 & $this->setting['verify_question']));
$allow = $this->setting['allow_outer'];
if (3 != $allow && has_outer($content)) {
0 == $allow && $this->message("内容包含外部链接,发布失败!", $viewurl);
1 == $allow && ($status = 0);
2 == $allow && ($content = filter_outer($content));
}
//检查违禁词
$contentarray = checkwords($content);
1 == $contentarray[0] && ($status = 0);
2 == $contentarray[0] && $this->message("内容包含非法关键词,发布失败!", $viewurl);
$content = $contentarray[1];
$_ENV['answer']->update_content($aid, $content, $status);
if (0 == $status) {
$this->message('修改回答成功!为了确保问答的质量,我们会对您的回答内容进行审核。请耐心等待......', $viewurl);
} else {
$this->message('修改回答成功!', $viewurl);
}
}
include template("editanswer");
}
// Ensure the user to be kicked is not a more powerfull user (admin>moderator)
if ($status == "a" || $status == "t" || $status == "m" && $perms != "admin" && $perms != "topmod") {
global $toppath;
global $topgpath;
$toppath = "botfb/" . $R;
// file is in DIR "botfb" and called "roomname"
$topgpath = "botfb/Global topic";
// file is in DIR "botfb" and called "Global topic"
// Check for invalid characters in the addressee name
if (trim($Cmd[3]) != "") {
global $Top;
$Top = trim(str_replace("\"", """, str_replace("'", "'", $Cmd[3])));
// Check for swear words in the message if necessary
if (C_NO_SWEAR && $R != C_NO_SWEAR_ROOM1 && $R != C_NO_SWEAR_ROOM2 && $R != C_NO_SWEAR_ROOM3 && $R != C_NO_SWEAR_ROOM4) {
include "./lib/swearing.lib.php";
$Top = checkwords($Top, false, $Charset);
if (C_EN_STATS && isset($Found) && $b > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET swears_posted=swears_posted+{$b} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($Found, $b);
}
if (strcasecmp(mb_convert_case($Top, MB_CASE_LOWER, $Charset), "reset") == 0 || strcasecmp(mb_convert_case($Top, MB_CASE_LOWER, $Charset), "top reset") == 0) {
if (trim($Cmd[2]) != "*") {
if (file_exists($toppath)) {
unlink($toppath);
// if it does delete it.
}
# $DbLink = new DB;
$DbLink->query("INSERT INTO " . C_MSG_TBL . " VALUES ({$T}, '{$R}', 'SYS topic reset', '{$Latin1}', " . time() . ", '{$U}', '', '', '')");
} else {
if (file_exists($topgpath)) {
function AddMessage($M, $T, $R, $U, $C, $Private, $Read, $RF, $Charset)
{
global $DbLink, $Latin1, $status, $Read, $M1, $COLOR_TB;
# if (C_BOT_CONTROL && C_BOT_PUBLIC && $Private == "")
if (C_BOT_CONTROL && C_BOT_PUBLIC && $Private == "" && !(preg_match("#^\\/#", $M) || preg_match("#^:#", $M))) {
//--Bot Control Popeye
# include("./bot/respond.php";
$botpath = "botfb/" . $U . ".txt";
$botcontrol = "botfb/" . $R . ".txt";
if (file_exists($botcontrol)) {
# if (file_exists ($botpath) || eregi(mb_convert_case(C_BOT_NAME,MB_CASE_LOWER,$Charset), mb_convert_case($M,MB_CASE_LOWER,$Charset)))
if (file_exists($botpath) || stripos(mb_convert_case($M, MB_CASE_LOWER, $Charset), mb_convert_case(C_BOT_NAME, MB_CASE_LOWER, $Charset)) !== false) {
include "./lib/bot.lib.php";
}
}
}
//---End Bot Control
if (!isset($M1)) {
$M1 = $M;
}
$M = str_replace("\"", """, $M);
$M = str_replace("'", "'", $M);
$M = str_ireplace("<applet", "", $M);
$M = str_ireplace("<javascript", "", $M);
// Text formating tags
if (C_HTML_TAGS_KEEP == "none") {
if (!C_HTML_TAGS_SHOW) {
// eliminates every HTML like tags
$M = str_replace("<[^>]+>", "", $M);
$M = str_replace("x3c", "", $M);
$M = str_replace("x3e", "", $M);
} else {
// or keep it without effect
$M = str_replace("<", "<", $M);
$M = str_replace(">", ">", $M);
$M = str_replace("x3c", "<", $M);
$M = str_replace("x3e", ">", $M);
}
} else {
// then C_HTML_TAGS_KEEP == "simple", we keep U, B and I tags
$M = str_replace("<", "<", $M);
$M = str_replace(">", ">", $M);
$M = str_replace("x3c", "<", $M);
$M = str_replace("x3e", ">", $M);
if (function_exists("preg_match")) {
while (preg_match("/<([ubi]?)>(.*?)<(\\/\\1)>/i", $M)) {
$M = preg_replace("/<([ubi]?)>(.*?)<(\\/\\1)>/i", "<\\1>\\2<\\3>", $M);
}
if (!C_HTML_TAGS_SHOW) {
$M = preg_replace("/<\\/?[ubi]?>/i", "", $M);
}
}
}
// Text Direction for dir commands by Ciprian
/*
if(ereg('^bdo_rtl',$M)) $M = str_replace('bdo_rtl', '<BDO dir="rtl">', $M)."</BDO>";
elseif(ereg('^bdo_ltr',$M)) $M = str_replace('bdo_ltr', '<BDO dir="ltr">', $M)."</BDO>";
*/
if (preg_match('/^bdo_rtl/', $M)) {
$M = str_replace('bdo_rtl', '<BDO dir="rtl">', $M) . "</BDO>";
} elseif (preg_match('/^bdo_ltr/', $M)) {
$M = str_replace('bdo_ltr', '<BDO dir="ltr">', $M) . "</BDO>";
}
// URL
/*
$M = eregi_replace('([[:space:]]|^)(www[.])', '\\1http://\\2', $M); // no prefix (www.myurl.ext)
$M = eregi_replace('([[:space:]]|^)(ftp[.])', '\\1ftp://\\2', $M); // no prefix (ftp.myurl.ext)
*/
$M = preg_replace('/([[:space:]]|^)(www[.])/i', '\\1http://\\2', $M);
// no prefix (www.myurl.ext)
$M = preg_replace('/([[:space:]]|^)(ftp[.])/i', '\\1ftp://\\2', $M);
// no prefix (ftp.myurl.ext)
// Word wrap fix by Alexander Eisele <*****@*****.**> - deprecated by Ciprian due to japanese (2-bytes undesired trimming)
if (!preg_match_all("((http://|https://|ftp://|mailto:)[^ ]+)", $M, $pmatch)) {
$M = wordwrap($M, 40, " ", 1);
}
/*
$prefix = '(http|https|ftp|telnet|news|gopher|file|wais)://';
$pureUrl = '([[:alnum:]/\n+-=%&:_.~?]+[#[:alnum:]+-_~]*)';
*/
$prefix = '(http|https|ftp|telnet|news|gopher|file|wais):\\/\\/';
$pureUrl = '([[:alnum:]\\/\\n+-=%&:_.~?]+[#[:alnum:]+-_~]*)';
if (C_POPUP_LINKS) {
$purl = "";
for ($x = 0; $x < count($pmatch[0]); $x++) {
$purl .= "||" . $pmatch[0][$x];
}
# $M = eregi_replace($prefix.$pureUrl, '<a href="links.php?link='.urlencode($purl).'" target="_blank"></a>', $M);
$M = preg_replace("/" . $prefix . $pureUrl . "/i", '<a href="links.php?link=' . urlencode($purl) . '" target="_blank"></a>', $M);
} else {
$M = preg_replace("/" . $prefix . $pureUrl . "/i", '<a href="\\1://\\2" target="_blank">\\1://\\2</a>', $M);
}
// e-mail addresses
// $M = eregi_replace('([0-9a-z]([-_.]?[0-9a-z])*@[0-9a-z]([-.]?[0-9a-z])*\\.[a-wyz][a-z](fo|g|l|m|mes|o|op|pa|ro|seum|t|u|v|z)?)', '<a href="mailto:\\1" alt="Send email">\\1</a>', $M);
// Added the new top-level domains (mail, asia, travel, aso)
# $M = eregi_replace('([0-9a-z]([-_.]?[0-9a-z])*@[0-9a-z]([-.]?[0-9a-z])*\\.[a-wyz][a-z](avel|bi|bs|fo|g|ia|l|m|me|mes|o|op|pa|ro|seum|t|to|u|v|z)?)', '<a href="mailto:\\1" alt="Send email">\\1</a>', $M);
$M = preg_replace('/([0-9a-z]([-_.]?[0-9a-z])*@[0-9a-z]([-.]?[0-9a-z])*\\.[a-wyz][a-z](avel|bi|bs|fo|g|ia|l|m|me|mes|o|op|pa|ro|seum|t|to|u|v|z)?)/i', '<a href="mailto:\\1" alt="Send email">\\1</a>', $M);
if (C_EN_STATS) {
# if(eregi('<a href="mailto',$M)) $DbLink->query("UPDATE ".C_STS_TBL." SET emails_posted=emails_posted+1 WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='$R' AND username='******'");
if (stripos($M, '<a href="mailto') !== false) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET emails_posted=emails_posted+1 WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
# if(eregi('<a href="http',$M)) $DbLink->query("UPDATE ".C_STS_TBL." SET urls_posted=urls_posted+1 WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='$R' AND username='******'");
if (stripos($M, '<a href="http') !== false) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET urls_posted=urls_posted+1 WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
}
// Smilies
if (C_USE_SMILIES) {
include "./lib/smilies.lib.php";
$ss = Check4Smilies($M, $SmiliesTbl);
if (C_EN_STATS && $ss > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET smilies_posted=smilies_posted+{$ss} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($SmiliesTbl, $ss);
}
// transform ISO-8859-1 special characters
if ($Latin1) {
global $MsgTo;
# ereg("(.*)(".$MsgTo."(>)?)(.*)",$M,$Regs);
preg_match("/(.*)(" . $MsgTo . "(>)?)(.*)/", $M, $Regs);
if ($MsgTo != "" && ($Regs[1] == "" && $Regs[4] == "")) {
$Regs[4] = $M;
}
# if (!ereg("&[[:alnum:]]{1,10};",$Regs[1]) && !ereg("&[[:alnum:]]{1,10};",$Regs[4]))
if (!preg_match("/&[[:alnum:]]{1,10};/", $Regs[1]) && !preg_match("/&[[:alnum:]]{1,10};/", $Regs[4])) {
for ($i = 1; $i <= 4; $i++) {
if ($i != 1 && $i != 4 || $Regs[$i] == "") {
continue;
}
$part = $Regs[$i];
$part = htmlentities($part);
$part = str_replace("&lt;", "<", $part);
$part = str_replace("&gt;", ">", $part);
$part = str_replace("<", "<", $part);
$part = str_replace(">", ">", $part);
$part = str_replace(""", "\"", $part);
# $part = ereg_replace("&(#[[:digit:]]{2,5};)", "&\\1", $part);
$part = preg_replace("/&(#[[:digit:]]{2,5};)/", "&\\1", $part);
$Regs[$i] = $part;
}
$M = $Regs[1] . $Regs[2] . $Regs[4];
}
}
// Color Sniffer scripting safe mode filter by Alexander Eisele <*****@*****.**> & Ciprian
$C = str_replace("<", "<", $C);
$C = str_replace(">", ">", $C);
$C = str_replace("\"", """, $C);
$C = str_replace("x3c", "<", $C);
$C = str_replace("x3e", ">", $C);
$CC = array("", "black", "dimgray", "gray", "darkgray", "silver", "lightgrey", "gainsboro", "whitesmoke", "ghostwhite", "white", "slategray", "lightslategray", "midnightblue", "navy", "darkblue", "darkslateblue", "mediumblue", "blue", "steelblue", "royalblue", "cornflowerblue", "dodgerblue", "deepskyblue", "lightskyblue", "skyblue", "lightsteelblue", "lightblue", "powderblue", "paleturquoise", "lightcyan", "aliceblue", "azure", "mintcream", "darkslategray", "cadetblue", "teal", "darkcyan", "lightseagreen", "darkturquoise", "mediumturquoise", "turquoise", "aqua", "cyan", "mediumaquamarine", "aquamarine", "darkolivegreen", "olive", "olivedrab", "darkkhaki", "darkgreen", "green", "forestgreen", "seagreen", "mediumseagreen", "darkseagreen", "mediumspringgreen", "springgreen", "palegreen", "honeydew", "limegreen", "lime", "lightgreen", "lawngreen", "chartreuse", "greenyellow", "yellowgreen", "indigo", "purple", "darkmagenta", "darkviolet", "darkorchid", "mediumorchid", "orchid", "violet", "plum", "thistle", "blueviolet", "mediumpurple", "slateblue", "mediumslateblue", "lavender", "mediumvioletred", "magenta", "fuchsia", "deeppink", "palevioletred", "hotpink", "lightpink", "pink", "mistyrose", "lavenderblush", "maroon", "darkred", "firebrick", "crimson", "red", "orangered", "tomato", "indianred", "lightcoral", "salmon", "darksalmon", "lightsalmon", "coral", "darkorange", "orange", "sandybrown", "darkgoldenrod", "goldenrod", "gold", "yellow", "khaki", "palegoldenrod", "lemonchiffon", "cornsilk", "lightgoldenrodyellow", "beige", "lightyellow", "ivory", "rosybrown", "saddlebrown", "brown", "sienna", "chocolate", "peru", "tan", "burlywood", "wheat", "navajowhite", "peachpuff", "moccasin", "bisque", "blanchedalmond", "papayawhip", "antiquewhite", "linen", "oldlace", "seashell", "floralwhite", "snow");
if (trim($C) != "") {
if (!in_array($C, $CC)) {
$C = "lime";
}
}
//Color's Power Filter Mod by Ciprian
if (isset($_COOKIE["CookieColor"]) && !isset($C)) {
$C = strcasecmp($_COOKIE["CookieColor"], $COLOR_TB) != 0 ? $_COOKIE["CookieColor"] : '';
} else {
$DbLink->query("SELECT colorname FROM " . C_REG_TBL . " WHERE username = '******' LIMIT 1");
if ($DbLink->num_rows() != 0 && !isset($C)) {
list($C) = $DbLink->next_record();
}
}
if (COLOR_FILTERS) {
if (!isset($C)) {
if ($status == "a" || $status == "t") {
$C = COLOR_CA;
} elseif ($status == "m") {
$C = COLOR_CM;
}
} elseif ($C != '') {
// Red colors are reserved to the admin
if ((strcasecmp($C, COLOR_CA) == 0 || strcasecmp($C, COLOR_CA1) == 0 || strcasecmp($C, COLOR_CA2) == 0) && $C != "" && $status != "a" && $status != "t") {
if ($status == "m") {
$C = COLOR_CM;
//default moderator's color
} else {
$C = '';
//default color
}
} elseif ((strcasecmp($C, COLOR_CM) == 0 || strcasecmp($C, COLOR_CM1) == 0 || strcasecmp($C, COLOR_CM2) == 0) && $C != "" && $status != "a" && $status != "t" && $status != "m") {
$C = '';
//default color
} elseif (strcasecmp($C, $COLOR_TB) == 0) {
$C = '';
}
}
}
if (!COLOR_ALLOW_GUESTS && $status == "u") {
$C = '';
}
include_once "./lib/swearing.lib.php";
if (checkwords($C, true, $Charset)) {
$C = '';
}
//if user is using a swear word (defined in swearing.lib.php), the font color will resets to default. this is to keep your database as well as our computer clean of swearing (no swear into your cookies on your local computer).
if (isset($C) && $C != '' && strcasecmp($C, COLOR_CD) != 0) {
$M = "<FONT COLOR=\"" . $C . "\">" . $M . "</FONT>";
setcookie("CookieColor", $C, time() + 60 * 60 * 24 * 365);
// cookie expires in one year
} elseif (isset($_COOKIE["CookieColor"])) {
setcookie("CookieColor", '', time());
// cookie expires in one year
}
// Text tags for power users
if (C_ITALICIZE_POWERS) {
$text_tag = "";
$text_endtag = "";
if ($status == "a" || $status == "t" || $status == "m") {
if (stristr(C_TAGS_POWERS, "B")) {
$text_tag .= "<B>";
$text_endtag .= "</B>";
}
if (stristr(C_TAGS_POWERS, "I")) {
$text_tag .= "<I>";
$text_endtag .= "</I>";
}
if (stristr(C_TAGS_POWERS, "U")) {
$text_tag .= "<U>";
$text_endtag .= "</U>";
}
}
if ($text_tag != "") {
$M = $text_tag . $M . $text_endtag;
}
}
$DbLink->query("INSERT INTO " . C_MSG_TBL . " VALUES ({$T}, '{$R}', '" . addslashes($U) . "', '{$Latin1}', " . time() . ", '{$Private}', '" . addslashes($M) . "', '{$Read}', '{$RF}')");
}
}
}
}
}
// ** Ensures the user can create a room and the room name is a valid one (bypassed test
// when the frameset is reloaded because of the NN4+ resize bug). **
if (!isset($Error) && (isset($R3) && $R3 != "")) {
// Skipped when the script is called by a join command.
if (!isset($Reload)) {
// User is not registered -> Deny room creation
if (!$reguser) {
$Error = $T ? L_ERR_USR_13 : L_ERR_USR_24;
} elseif (trim($R3) == "" || preg_match("/[,|'|\\\\]/", $R3)) {
$Error = L_ERR_ROM_1;
} else {
if (C_NO_SWEAR && checkwords($R3, true, $Charset)) {
$Error = L_ERR_ROM_2;
} else {
// ...among reserved name for private/public (default) rooms
$ToCheck = $T ? $DefaultPrivateRooms : $DefaultChatRooms;
for ($i = 0; $i < count($ToCheck); $i++) {
if (strcasecmp(mb_convert_case($R3, MB_CASE_LOWER, $Charset), mb_convert_case($ToCheck[$i], MB_CASE_LOWER, $Charset)) == "0") {
$Error = !$T ? L_ERR_ROM_3 . " (" . $R3 . ")" : L_ERR_ROM_4 . " (" . $R3 . ")";
break;
}
}
unset($ToCheck);
// ...among other rooms created by users
if (!isset($Error)) {
$T1 = 1 - $T;
$DbLink->query("SELECT count(*) FROM " . C_MSG_TBL . " WHERE room = '{$R3}' AND type = '{$T1}' LIMIT 1");
}
//if ($status == "a" || $status == "t") // use this line if you only want administrators to be able to use this.
if ($status == "m" || $status == "t" || $status == "a") {
if (trim($Cmd[3]) != "") {
$Mess = SpecialSlash($Cmd[3]);
if (C_USE_SMILIES) {
include "./lib/smilies.lib.php";
$ss = Check4Smilies($Mess, $SmiliesTbl);
if (C_EN_STATS && $ss > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET smilies_posted=smilies_posted+{$ss} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($SmiliesTbl, $ss);
}
if (C_NO_SWEAR && $R != C_NO_SWEAR_ROOM1 && $R != C_NO_SWEAR_ROOM2 && $R != C_NO_SWEAR_ROOM3 && $R != C_NO_SWEAR_ROOM4) {
include "./lib/swearing.lib.php";
$Mess = " " . checkwords($Mess, false, $Charset);
if (C_EN_STATS && isset($Found) && $b > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET swears_posted=swears_posted+{$b} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($Found, $b);
}
$Mess .= " ...BUZZER...";
}
# if (eregi("~",$Cmd[2]))
if (strpos($Cmd[2], "~") !== false) {
$Buzz_opt = str_replace("~", "", $Cmd[2]);
$BUZZ_SOUND_OPT = "sounds/" . $Buzz_opt . ".wav";
$L_BUZZ_SND_OPT = "<EMBED SRC=\"" . $BUZZ_SOUND_OPT . "\" VOLUME=\"50\" HIDDEN=\"true\" AUTOSTART=\"true\" LOOP=\"false\" NAME=\"Buzz\" MASTERSOUND><NOEMBED><BGSOUND SRC=\"" . $BUZZ_SOUND_OPT . "\" LOOP=1></NOEMBED></EMBED>";
$post = "...BUZZER... " . $Mess . $L_BUZZ_SND_OPT;
} else {
$post = "...BUZZER... " . $Mess . L_BUZZ_SND;
$DbLink->query($query_botname4);
}
}
}
}
}
// Random Quote mod by Ciprian
if ((C_QUOTE_NAME != $vQUOTE_NAME || C_QUOTE_FONT_COLOR != $vQUOTE_FONT_COLOR || C_QUOTE_AVATAR != $vQUOTE_AVATAR) && $vQUOTE) {
$query_quote1 = "UPDATE " . C_REG_TBL . " SET " . "username = '******', " . "colorname = '{$vQUOTE_FONT_COLOR}', " . "avatar = '{$vQUOTE_AVATAR}'" . " WHERE email='*****@*****.**'";
if (trim($vQUOTE_NAME) == "" && C_QUOTE_NAME != $vQUOTE_NAME) {
$Error = sprintf(A_CONF_ERR_6, A_CONFRDQ);
} else {
if (preg_match("/[ |,|'|\\\\]/", $vQUOTE_NAME) && C_QUOTE_NAME != $vQUOTE_NAME) {
$Error = A_CONF_ERR_7 . "<br />" . $REG_CHARS_ALLOWED . "<br />" . sprintf(A_CONF_ERR_8, A_CONFRDQ, "(" . $vQUOTE_NAME . ")");
} else {
if (C_NO_SWEAR && checkwords($vQUOTE_NAME, true, $Charset) && C_QUOTE_NAME != $vQUOTE_NAME) {
$Error = sprintf(A_CONF_ERR_9, A_CONFRDQ, "(" . $vQUOTE_NAME . ")");
} else {
$DbLink->query("SELECT count(*) FROM " . C_REG_TBL . " WHERE username='******'");
list($rows) = $DbLink->next_record();
$DbLink->clean_results();
if ($rows != 0 && C_QUOTE_NAME != $vQUOTE_NAME) {
$Error = sprintf(A_CONF_ERR_10, A_CONFRDQ, "(" . $vQUOTE_NAME . ")");
} else {
$DbLink->query($query_quote1);
}
}
}
}
}
if (isset($Error)) {
}
$new_room_type = $Cmd[3] != "" ? $Cmd[3] : 1;
$new_room = $Cmd[4];
if (C_VERSION == 1) {
// Ensure that the room to enter in is among default ones
for ($i = 0; $i < count($DefaultChatRooms); $i++) {
if (strcasecmp(mb_convert_case($new_room, MB_CASE_LOWER, $Charset), mb_convert_case($DefaultChatRooms[$i], MB_CASE_LOWER, $Charset)) == 0) {
$IsCommand = true;
}
}
if (!$IsCommand) {
$Error = L_ERR_USR_17;
}
} elseif (preg_match("/[,|'|\\\\]/", $new_room)) {
$Error = L_ERR_ROM_1;
} elseif (C_NO_SWEAR && checkwords($new_room, true, $Charset)) {
$Error = L_ERR_ROM_2;
} else {
// Ensure there is no existing room with the same name but a different type
// among reserved name for private/public (default) rooms
$ToCheck = $new_room_type == "1" ? $DefaultPrivateRooms : $DefaultChatRooms;
for ($i = 0; $i < count($ToCheck); $i++) {
if (strcasecmp(mb_convert_case($new_room, MB_CASE_LOWER, $Charset), mb_convert_case($ToCheck[$i], MB_CASE_LOWER, $Charset)) == 0) {
$Error = $new_room_type == 0 ? L_ERR_ROM_3 : L_ERR_ROM_4;
break;
}
}
unset($ToCheck);
if (!isset($Error) || $Error == "") {
$IsCommand = true;
}
$DbLink->query("SELECT password,perms,rooms FROM " . C_REG_TBL . " WHERE username='******' LIMIT 1");
if ($DbLink->num_rows() == 0) {
$Error = L_NO_MODERATOR;
$DbLink->clean_results();
} else {
list($password, $perms, $rooms) = $DbLink->next_record();
$DbLink->clean_results();
if ($password != $PWD_Hash || $perms != "moderator" && $perms != "admin" && $perms != "topmod" || $perms == "moderator" && (!room_in(stripslashes($R), $rooms, $Charset) && !room_in("*", $rooms, $Charset))) {
$Error = L_NO_MODERATOR;
} else {
// Check for swear words in the message to be sent if there is one
if (trim($Cmd[3]) != "") {
$room_mess = $Cmd[3];
if (C_NO_SWEAR && $R != C_NO_SWEAR_ROOM1 && $R != C_NO_SWEAR_ROOM2 && $R != C_NO_SWEAR_ROOM3 && $R != C_NO_SWEAR_ROOM4) {
include "./lib/swearing.lib.php";
$room_mess = checkwords($room_mess, false, $Charset);
if (C_EN_STATS && isset($Found) && $b > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET swears_posted=swears_posted+{$b} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($Found, $b);
}
if (C_USE_SMILIES) {
include "./lib/smilies.lib.php";
$ss = Check4Smilies($room_mess, $SmiliesTbl);
if (C_EN_STATS && $ss > 0) {
$DbLink->query("UPDATE " . C_STS_TBL . " SET smilies_posted=smilies_posted+{$ss} WHERE stat_date=FROM_UNIXTIME(last_in,'%Y-%m-%d') AND room='{$R}' AND username='******'");
}
unset($SmiliesTbl, $ss);
}
}
if (trim($Cmd[2]) == "*") {
