/* Secondary groups management */
if ($FH->isUpdated("secondary")) {
$old = getUserSecondaryGroups($uid);
$new = $FH->getValue('secondary');
foreach (array_diff($old, $new) as $group) {
del_member($group, $uid);
callPluginFunction("delUserFromGroup", array($uid, $group));
}
foreach (array_diff($new, $old) as $group) {
add_member($group, $uid);
callPluginFunction("addUserToGroup", array($uid, $group));
}
}
/* Password change management */
if ($mode == 'edit' && $FH->getValue('pass')) {
$ret = callPluginFunction("changeUserPasswd", array(array($uid, prepare_string($FH->getValue('pass')))));
if (isXMLRPCError()) {
$error .= _("Password not updated") . "<br />";
} else {
$result .= _("Password updated") . "<br />";
}
}
/* Global disable account */
if ($mode == 'edit') {
if ($FH->getPostValue('disableAccount')) {
$ret = callPluginFunction("disableUser", array($uid));
foreach ($ret as $plugin => $err) {
if ($err != 0 && $err != NULL) {
$result .= sprintf(_("Failed to disable user in %s plugin"), $plugin) . "<br />";
}
}
$width = $filter->get('width-i', 'INTEGER');
$height = $filter->get('height-i', 'INTEGER');
}
if ($name == '') {
$errors[] = $lang['album.name_empty'];
$err['name'] = 1;
}
if ($category == '0') {
$errors[] = $lang['album.category_empty'];
$err['category'] = 1;
}
if ($tags == '') {
$errors[] = $lang['album.tags_empty'];
$err['tags'] = 1;
} else {
$tags = prepare_string($tags, false);
}
if ($type == '') {
$errors[] = $lang['album.type_empty'];
$err['type'] = 1;
}
if (!$errors) {
$src = $config['BASE_DIR'] . '/tmp/albums/' . $pid . '_' . $random . '.jpg';
$dst = $config['BASE_DIR'] . '/media/albums/' . $aid . '.jpg';
if (file_exists($src) && is_file($src)) {
$image = new VImageConv();
$image->process($src, $dst, 'EXACT', $width, $height);
$image->crop($x, $y, $width, $height, true);
unlink($src);
}
$type = ($type == 'public' or $type == 'private') ? $type : 'public';
$data['status'] = 1;
$data['code'] = $code;
$data['cid'] = $cid;
$data['gid'] = $gid;
$data['msg'] = show_msg($lang['global.comment_success']);
$_SESSION['g_comment_added'] = time();
$sql = "SELECT g.title, s.username, s.email, u.game_comment\n FROM game AS g, signup AS s, users_prefs AS u \n WHERE g.GID = " . $gid . "\n AND g.UID = s.UID\n AND s.UID = u.UID \n LIMIT 1";
$data['debug'] = $sql;
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() === 1) {
$prefs_g_comment = $rs->fields['game_comment'];
if ($prefs_g_comment == '1') {
$email = $rs->fields['email'];
$username = $rs->fields['username'];
$title = $rs->fields['title'];
require $config['BASE_DIR'] . '/classes/file.class.php';
require $config['BASE_DIR'] . '/classes/email.class.php';
$game_link = $config['BASE_URL'] . '/game/' . $gid . '/' . prepare_string($title);
$search = array('{$username}', '{$site_title}', '{$site_name}', '{$baseurl}', '{$game_link}');
$replace = array($_SESSION['username'], $config['site_title'], $config['site_name'], $config['BASE_URL'], $game_link);
$mail = new VMail();
$mail->sendPredefined($email, 'game_comment', $search, $replace);
}
}
}
} else {
$data['msg'] = show_err($lang['ajax.game_comment_login']);
}
}
echo json_encode($data);
die;
$image->process($src, $dst, 'MAX_WIDTH', 960, 0);
$image->resize(true, true);
}
}
}
$src = $config['BASE_DIR'] . '/media/photos/tmb/' . $album_cover_id . '.jpg';
$dst = $config['BASE_DIR'] . '/media/albums/' . $album_id . '.jpg';
$image->process($src, $dst, 'MAX_WIDTH', 400, 0);
$image->resize(true, true);
$sql = "UPDATE albums SET total_photos = " . intval($photos) . " WHERE AID = " . $album_id . " LIMIT 1";
$conn->execute($sql);
$sql = "UPDATE channel SET total_albums = total_albums+1 WHERE CHID = " . $category . " LIMIT 1";
$conn->execute($sql);
$sql = "UPDATE signup SET total_albums = total_albums+1, points = points+5 WHERE UID = " . $uid . " LIMIT 1";
$conn->execute($sql);
$album_url = $config['BASE_URL'] . '/album/' . $album_id . '/' . prepare_string($name);
$album_link = '<a href="' . $album_url . '">' . $album_url . '</a>';
$search = array('{$site_title}', '{$site_name}', '{$username}', '{$album_link}', '{$baseurl}');
$replace = array($config['site_title'], $config['site_name'], $_SESSION['username'], $album_link, $config['BASE_URL']);
$mail = new VMail();
if ($config['approve'] == '0') {
$mail->sendPredefined($_SESSION['email'], 'photo_approve', $search, $replace);
} else {
$mail->sendPredefined($_SESSION['email'], 'photo_upload', $search, $replace);
}
$album['name'] = '';
$album['category'] = 0;
$album['tags'] = '';
$album['anonymous'] = 'no';
$album['type'] = 'public';
if ($config['approve_photos'] == '1') {
/**
* add a user
* @param $login user's login
* @param $pass user's pass
* @param $firstname user's firstname
* @param $name user's name
* @param $homedir user home directory
*/
function add_user($login, $pass, $firstname, $name, $homedir, $createhomedir, $ownHomeDir, $primaryGroup = "")
{
$param = array($login, prepare_string($pass), $firstname, $name, $homedir, $createhomedir, $ownHomeDir, $primaryGroup);
$ret = xmlCall("base.createUser", $param);
if ($ret == 5) {
$msg = sprintf(_("User %s created but password is not valid regarding your password policies.<br/><strong>You must change the user password.</strong>"), $login) . "<br />";
return array("code" => $ret, "info" => $msg);
} else {
if ($ret == 10) {
$msg = _("You cannot add more users.") . "<br />";
new NotifyWidgetFailure($msg);
header('Location: ' . urlStrRedirect("base/users/index"));
exit;
} else {
$msg = sprintf(_("User %s successfully created"), $login) . "<br />";
return array("code" => $ret, "info" => $msg);
}
}
}
$code .= '</div>';
$code .= '<div class="clear"></div>';
$code .= '</div>';
$code .= '</div>';
$data['code'] = $code;
$data['cid'] = $cid;
$data['bid'] = $bid;
$_SESSION['b_comment_added'] = time();
$sql = "SELECT b.UID, b.title, s.email, u.blog_comment \n FROM blog AS b, users_prefs AS u, signup AS s \n WHERE b.BID = " . $bid . " \n AND b.UID = u.UID \n AND b.UID = s.UID \n LIMIT 1";
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() === 1) {
$prefs_b_comment = $rs->fields['blog_comment'];
if ($prefs_b_comment == '1') {
$email = $rs->fields['email'];
$title = $rs->fields['title'];
require $config['BASE_DIR'] . '/classes/file.class.php';
require $config['BASE_DIR'] . '/classes/email.class.php';
$blog_link = '<a href="' . $config['BASE_URL'] . '/blog/' . $bid . '/' . prepare_string($title) . '">' . $config['BASE_URL'] . '/blog/' . $bid . '/' . prepare_string($title) . '</a>';
$search = array('{$username}', '{$site_title}', '{$site_name}', '{$baseurl}', '{$blog_link}');
$replace = array($_SESSION['username'], $config['site_title'], $config['site_name'], $config['BASE_URL'], $blog_link);
$mail = new VMail();
$mail->sendPredefined($email, 'blog_comment', $search, $replace);
}
}
}
} else {
$data['msg'] = $lang['ajax.comment_login'];
}
}
echo json_encode($data);
die;
/**
* extract_sentences
*
* takes a string, cleans it, then returns a substring,
* ensuring that only complete sentences are returned and
* the string is at least $min_words long
*
* @param string $string the original string
* @param int $min_words the minimum words to be included in the returned string
* @return string $extract the resulting extract
*/
function extract_sentences($string, $min_words = 50)
{
$string = prepare_string($string);
// prepare string
$words = explode(' ', $string);
// split string into words
// recompile into a string with min number of words
$init_string = implode(" ", array_slice($words, 0, $min_words - 1));
$init_size = strlen($init_string);
// count initial string length (in characters)
$stop = strcspn($string, ".!?", $init_size);
// get the next chunk of text, stopping at sentence terminator
$stop = $init_size + $stop + 1;
// this calculates the final length of the string
$extract = substr($string, 0, $stop);
// finally we get the substring
return $extract;
}
if (!empty($details['summary'])) {
echo '
<itunes:subtitle text="' . $details['summary'] . '"/>';
}
// itunes summary
if (!empty($details['description'])) {
echo '
<itunes:summary text="' . $details['description'] . '"/>';
}
echo '
<itunes:explicit>no</itunes:explicit>';
}
// loop through content
foreach ($feed_content as $item) {
$item_title = $item['title'];
$item_description = empty($item['summary']) ? create_summary($item['body']) : prepare_string($item['summary']);
$item_body = '';
// show complete article?
if (!empty($config['admin']['complete_feed'])) {
$body_text = "<p><strong>" . $item_description . "</strong></p>";
$body_text .= strip_inline_styles($item['body']);
$item_body = "<content:encoded><![CDATA[" . $body_text . "]]></content:encoded>";
}
$item_date = date('r', strtotime($item['date_uploaded']));
// start output to browser
echo '
<item>
<title>' . $item_title . '</title>
<description>' . $item_description . '</description>
' . $item_body . '
<link>' . $item['link'] . '</link>';
$sql_add[] = "'" . mysql_real_escape_string($user) . "'";
}
$sql = "SELECT email FROM signup WHERE username in (" . implode(',', $sql_add) . ")";
$rs = $conn->execute($sql);
$users_emails = $rs->getrows();
foreach ($users_emails as $user) {
$emails[] = $user['email'];
}
}
if (!$emails) {
$data['msg'] = show_err_mb($lang['ajax.share_recipient_valid']);
} else {
$sql = "SELECT title FROM game WHERE GID = " . $game_id . " LIMIT 1";
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() == 1) {
$title = $rs->fields['title'];
$url = '<a href="' . $config['BASE_URL'] . '/game/' . $game_id . '/' . prepare_string($title) . '">' . $config['BASE_URL'] . '/game/' . $game_id . '/' . prepare_string($title) . '</a>';
$search = array('{$site_name}', '{$site_title}', '{$sender_name}', '{$message}', '{$baseurl}', '{$game_link}');
$replace = array($config['site_name'], $config['site_title'], $from, $message, $config['BASE_URL'], $url);
$mail = new VMail();
$mail->sendPredefined($emails, 'share_game', $search, $replace);
$data['status'] = 1;
$data['msg'] = show_msg_mb($lang['ajax.share_success']);
} else {
$data['msg'] = show_err_mb($lang['ajax.share_game_failed']);
}
}
}
}
echo json_encode($data);
die;
function wikipedia_track_search($track, $trackartist)
{
debuglog("Searching Wikipedia for " . $track . " (song) by " . $trackartist, "WIKIPEDIA TRACK");
$xml = wikipedia_request('http://en.wikipedia.org/w/api.php?action=query&list=search&srsearch=' . rawurlencode($track . " (song)") . '&srprop=score&format=xml');
$albuminfo = simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA);
// Comments assume the following:
// track is 'A Track'
// artist is 'An Artist'
$page = null;
// Look for 'A Track (An Artist song)'
foreach ($albuminfo->query->search->p as $id) {
$searchstring = prepare_string($track) . '\\s+\\(' . prepare_string($trackartist) . ' song\\)';
// debuglog("1. Checking page ".$id['title']." against ".$searchstring, "WIKIDEBUG");
if (preg_match('/^\\s*' . $searchstring . '/i', $id['title'])) {
debuglog("Found Page : " . $id['title'], "WIKIPEDIA");
$page = $id['title'];
break;
}
}
// Look for 'A Track (song)'
if ($page == null) {
foreach ($albuminfo->query->search->p as $id) {
$searchstring = prepare_string($track) . '\\s+\\(song\\)';
// debuglog("2. Checking page ".$id['title']." against ".$searchstring, "WIKIDEBUG");
if (preg_match('/^\\s*' . $searchstring . '/i', $id['title'])) {
debuglog("Found Page : " . $id['title'], "WIKIPEDIA");
$page = $id['title'];
break;
}
}
}
// Look for 'A Track'
if ($page == null) {
foreach ($albuminfo->query->search->p as $id) {
$searchstring = prepare_string($track);
// debuglog("3. Checking page ".$id['title']." against ".$searchstring, "WIKIDEBUG");
if (preg_match('/^\\s*' . $searchstring . '\\s*$/i', $id['title'])) {
debuglog("Found Page : " . $id['title'], "WIKIPEDIA");
$page = $id['title'];
break;
}
}
}
if ($page == null) {
debuglog("Searching Wikipedia for " . $track, "WIKIPEDIA TRACK");
$xml = wikipedia_request('http://en.wikipedia.org/w/api.php?action=query&list=search&srsearch=' . rawurlencode($track) . '&srprop=score&format=xml');
$album2info = simplexml_load_string($xml, 'SimpleXMLElement', LIBXML_NOCDATA);
foreach ($album2info->query->search->p as $id) {
$searchstring = prepare_string($track);
// debuglog("3. Checking page ".$id['title']." against ".$searchstring, "WIKIDEBUG");
if (preg_match('/^\\s*' . $searchstring . '\\s*$/i', $id['title'])) {
debuglog("Found Page : " . $id['title'], "WIKIPEDIA");
$page = $id['title'];
break;
}
}
}
if ($page == null) {
return null;
}
debuglog("Track search found page " . $page, "WIKIPEDIA TRACK");
return get_wikipedia_page(preg_replace('/ /', '_', $page), "en.wikipedia.org", true);
}
<xml>
<videos>
<?php
foreach ($videos as $video) {
?>
<video>
<title><?php
echo $video['title'];
?>
</title>
<duration><?php
echo duration($video['duration']);
?>
</duration>
<url><?php
echo $config['BASE_URL'] . '/video/' . $video['VID'] . '/' . prepare_string($video['title']);
?>
</url>
<image><?php
echo get_thumb_url($video['VID']) . '/1.jpg';
?>
</image>
<desc><?php
echo htmlspecialchars($video['description'], ENT_QUOTES, 'UTF-8');
?>
</desc>
<stars><?php
echo $video['rate'];
?>
</stars>
</video>
$game_tmb_path = $config['BASE_DIR'] . '/media/games/tmb/orig/' . $game_tmb_file;
if (!move_uploaded_file($_FILES['game_thumb_file']['tmp_name'], $game_tmb_path)) {
$errors[] = $lang['upload.game_thumb_failed'];
}
if (!$errors) {
require $config['BASE_DIR'] . '/classes/image.class.php';
$src = $game_tmb_path;
$dst = $config['BASE_DIR'] . '/media/games/tmb/' . $game_tmb_file;
$image = new VImageConv();
$image->process($src, $dst, 'MAX_WIDTH', 256, 144);
$image->canvas(256, 144, '000000', true);
$sql = "UPDATE game_categories SET total_games = total_games+1 WHERE category_id = " . $category . " LIMIT 1";
$conn->execute($sql);
$sql = "UPDATE signup SET total_games = total_games+1, points = points+5 WHERE UID = " . $uid . " LIMIT 1";
$conn->execute($sql);
$game_url = $config['BASE_URL'] . '/game/' . $game_id . '/' . prepare_string($title);
$game_link = '<a href="' . $game_url . '">' . $game_url . '</a>';
$search = array('{$site_title}', '{$site_name}', '{$username}', '{$game_link}', '{$baseurl}');
$replace = array($config['site_title'], $config['site_name'], $_SESSION['username'], $game_link, $config['BASE_URL']);
$mail = new VMail();
if ($config['approve_games'] == '0') {
$mail->sendPredefined($_SESSION['email'], 'game_approve', $search, $replace);
} else {
$mail->sendPredefined($_SESSION['email'], 'game_upload', $search, $replace);
}
$game['title'] = '';
$game['category'] = '';
$game['keywords'] = '';
$game['privacy'] = 'public';
$game['anonymous'] = 'no';
if ($config['approve_games'] == '1') {
$duration = $vidinfo['ID_LENGTH'];
$height = $vidinfo['ID_VIDEO_HEIGHT'];
$width = $vidinfo['ID_VIDEO_WIDTH'];
$fps = $vidinfo['ID_VIDEO_FPS'];
$id_video_format = $vidinfo['ID_VIDEO_FORMAT'];
$cgi = strpos(php_sapi_name(), 'cgi') ? 'env -i ' : NULL;
// Proc
$cmd = $cgi . $config['phppath'] . " " . $config['BASE_DIR'] . "/scripts/convert_videos.php" . " " . $vdoname . " " . $video_id . " " . $vdo_path . "";
log_conversion($config['LOG_DIR'] . '/' . $video_id . '.log', $cmd);
$lg = $config['LOG_DIR'] . '/' . $video_id . '.log2';
run_in_background($cmd . ' > ' . $lg);
$duration = get_video_duration($vdo_path, $video_id);
$vkey = substr(md5($video_id), 11, 20);
$sql = "UPDATE video SET duration = '" . mysql_real_escape_string($duration) . "', vkey = '" . $vkey . "',\n vdoname = '" . mysql_real_escape_string($vdoname) . "', flvdoname = '" . mysql_real_escape_string($flvdoname) . "'\n WHERE VID = " . intval($video_id) . " LIMIT 1";
$conn->execute($sql);
$video_url = $config['BASE_URL'] . '/video/' . $video_id . '/' . prepare_string($title);
$video_link = '<a href="' . $video_url . '">' . $video_url . '</a>';
$sql = "SELECT sv.SUID, s.username, s.email FROM video_subscribe AS sv, signup AS s\n WHERE sv.UID = " . $uid . " AND sv.UID = s.UID";
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() > 0) {
$subscribers = $rs->getrows();
$mail = new VMail();
$mail->setNoReply();
$sql = "SELECT * FROM emailinfo WHERE email_id = 'subscribe_email' LIMIT 1";
$rs = $conn->execute($sql);
$email_path = $config['BASE_DIR'] . '/templates/' . $rs->fields['email_path'];
$sender = $anonymous == 'yes' ? 'anonymous' : $_SESSION['username'];
$mail->Subject = str_replace('$sender_name', $sender, $rs->fields['email_subject']);
foreach ($subscribers as $subscriber) {
$smarty->assign('video_link', $video_link);
$smarty->assign('username', $subscriber['username']);
* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
*/
if ($_SESSION["AUTH_METHOD"] == "login" || isset($_POST["bback"])) {
header("Location: " . urlStrRedirect("base/users/index"));
exit;
}
require "modules/base/includes/users.inc.php";
require "graph/header.inc.php";
require "localSidebar.php";
require "graph/navbar.inc.php";
$user = $_SESSION["login"];
$p = new PageGenerator(_("Reset your password"));
$p->setSideMenu($sidemenu);
$p->display();
if (isset($_POST["bchpasswd"]) && $_POST["newpass"] != "" && $_POST["newpass"] == $_POST["confpass"]) {
callPluginFunction("changeUserPasswd", array(array($user, prepare_string($_POST["newpass"]), "", False)));
if (!isXMLRPCError()) {
$n = new NotifyWidgetSuccess(_("Your password has been changed."));
}
header("Location: " . urlStrRedirect("base/users/index"));
exit;
} else {
?>
<form action="<?php
echo "main.php?module=base&submod=users&action=resetpasswd";
?>
" method="post">
<p><?php
echo _("You are going to change your password");
?>
</p>
function addSmbAttr($uid, $passwd)
{
return xmlCall("samba.addSmbAttr", array($uid, prepare_string($passwd)));
}
function send_album_approve_email($album_id)
{
global $config, $conn;
$sql = "SELECT a.AID, a.name, s.username, s.email FROM albums AS a, signup AS s\n\t WHERE a.AID = " . intval($album_id) . " AND a.UID = s.UID\n\t\t\t\t LIMIT 1";
$rs = $conn->execute($sql);
$aid = intval($rs->fields['AID']);
$name = $rs->fields['name'];
$username = $rs->fields['username'];
$email = $rs->fields['email'];
$album_url = $config['BASE_URL'] . '/album/' . $aid . '/' . prepare_string($name);
$album_link = '<a href="' . $album_url . '">' . $album_url . '</a>';
$search = array('{$site_title}', '{$site_name}', '{$username}', '{$album_link}', '{$baseurl}');
$replace = array($config['site_title'], $config['site_name'], $username, $album_link, $config['BASE_URL']);
if (!class_exists('VMail')) {
require $config['BASE_DIR'] . '/classes/email.class.php';
}
$mail = new VMail();
$mail->sendPredefined($email, 'video_approve', $search, $replace);
}
$sql = "SELECT GID, title, addtime, rate, total_plays FROM game \n WHERE status = '1' AND category = '" . intval($game['category']) . "'" . $type . " AND GID != " . $gid . "\n AND ( title LIKE '%" . mysql_real_escape_string($game['title']) . "%' " . $sql_add . ") \n ORDER BY addtime DESC LIMIT " . $limit;
$rs = $conn->execute($sql);
$games = $rs->getrows();
$code = array();
$total_pages = $pagination->getTotalPages();
$page = $page >= $total_pages ? $total_pages : $page;
$code[] = '<div class="row">';
foreach ($games as $game) {
if ($game['type'] == 'private') {
$img_class = 'class="img-responsive img-private"';
} else {
$img_class = 'class="img-responsive"';
}
$code[] = '<div class="col-sm-6 col-md-3 col-lg-3">';
$code[] = '<div class="well well-sm m-b-0 m-t-20">';
$code[] = '<a href="' . $config['BASE_URL'] . '/game/' . $game['GID'] . '/' . prepare_string($game['title']) . '">';
$code[] = '<div class="thumb-overlay">';
$code[] = '<img src="' . $config['BASE_URL'] . '/media/games/tmb/' . $game['GID'] . '.jpg" title="' . htmlspecialchars($game['title'], ENT_QUOTES, 'UTF-8') . '" alt="' . htmlspecialchars($game['title'], ENT_QUOTES, 'UTF-8') . '" ' . $img_class . ' />';
if ($game['type'] == 'private') {
$code[] = '<div class="label-private">' . $lang['global.PRIVATE'] . '</div>';
}
$code[] = '</div>';
$code[] = '<span class="game-title title-truncate m-t-5">' . htmlspecialchars($game['title'], ENT_QUOTES, 'UTF-8') . '</span>';
$code[] = '</a>';
$code[] = '<div class="game-added">';
$code[] = time_range($game['addtime']);
$code[] = '</div>';
$code[] = '<div class="game-views pull-left">';
$views = $game['total_plays'] == '1' ? $lang['global.play'] : $lang['global.plays'];
$code[] = $game['viewnumber'] . ' ' . $views;
$code[] = '</div>';
if (isset($_POST['edit_submit'])) {
$filter = new VFilter();
$title = $filter->get('title');
$keyword = $filter->get('keyword');
$channel = $filter->get('channel', 'INTEGER');
$type = $filter->get('type');
$thumb = $filter->get('thumb', 'INTEGER');
if ($title == '') {
$errors[] = $lang['upload.video_title_empty'];
$err['title'] = 1;
}
if ($keyword == '') {
$errors[] = $lang['upload.video_tags_empty'];
$err['tags'] = 1;
} else {
$keyword = prepare_string($keyword, false);
}
if ($channel == '0') {
$errors[] = $lang['global.category_empty'];
$err['category'] = 1;
}
if (!$errors) {
$type = $type == 'public' ? 'public' : 'private';
$thumb = $thumb === 0 ? 1 : $thumb;
$sql = "UPDATE video\n\t\t\t SET title = '" . mysql_real_escape_string($title) . "',\n\t\t\t\t\t keyword = '" . mysql_real_escape_string($keyword) . "',\n\t\t\t\t\t\t type = '" . $type . "',\n\t\t\t\t\t\t channel = '" . $channel . "',\n\t\t\t\t\t\t thumb = '" . $thumb . "'\n\t\t\t\t\t WHERE VID = " . $vid . "\n\t\t\t\t\t AND UID = " . $uid . "\n\t\t\t\t\t AND active = '1'\n\t\t\t\t\t LIMIT 1";
$conn->execute($sql);
$messages[] = $lang['edit.success'];
}
}
$sql = "SELECT * FROM video WHERE VID = " . $vid . " AND UID = " . $uid . " AND active = '1' LIMIT 1";
$rs = $conn->execute($sql);
function modify()
{
if ($this->modifiable) {
$user = $this->user;
$login = $user["login"];
// the following are not permitted to be changed yet
unset($user["login"], $user["firstname"], $user["surname"], $user["homedir"], $user["createhomedir"], $user["primaryGroup"]);
if (key_exists("password", $user)) {
$ret = callPluginFunction("changeUserPasswd", array(array($login, prepare_string($user["password"]))));
if (isXMLRPCError()) {
foreach ($ret as $info) {
$this->result .= _("Password not updated") . "<br/>";
}
# set errorStatus to 0 in order to make next xmlcalls
global $errorStatus;
$errorStatus = 0;
} else {
//update result display
$this->result .= _("Password updated.") . "<br />";
}
unset($user["password"]);
}
if (count($user) > 0) {
foreach ($user as $attribute => $value) {
if ($this->checkAttribute($attribute)) {
changeUserAttributes($login, $attribute, $value);
} else {
unset($user[$attribute]);
}
}
$this->result .= count($user) . _T("Attribute(s) modified", "bulkimport");
}
}
}
require '../../include/dbconn.php';
function valid_email($email)
{
return eregi("^([-!#\$%&'*+./0-9=?A-Z^_`a-z{|}~^?])+@([-!#\$%&'*+/0-9=?A-Z^_`a-z{|}~^?]+\\.)+[a-zA-Z]{2,4}\$", $email);
}
$video_id = isset($_GET['video_id']) && is_numeric($_GET['video_id']) ? intval($_GET['video_id']) : NULL;
if (isset($_POST['me']) && isset($_POST['to']) && isset($_POST['message'])) {
$from = trim($_POST['me']);
$to = trim($_POST['to']);
$message = htmlspecialchars(trim($_POST['message']), ENT_QUOTES, 'UTF-8');
if (valid_email($from) && valid_email($to)) {
if ($video_id) {
$sql = "SELECT VID, title FROM video WHERE VID = " . $video_id . " LIMIT 1";
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() === 1) {
$title = prepare_string($rs->fields['title']);
$video_url = $config['BASE_URL'] . '/video/' . $video_id . '/' . $title;
$sql = "SELECT * FROM emailinfo WHERE email_id='player_email' LIMIT 1";
$rs = $conn->execute($sql);
if ($conn->Affected_Rows() === 1) {
require $config['BASE_DIR'] . '/classes/email.class.php';
require $config['BASE_DIR'] . '/classes/file.class.php';
$subject = $rs->fields['email_subject'];
$path = $config['BASE_DIR'] . '/templates/' . $rs->fields['email_path'];
$body = VFile::read($path);
$search = array('{$site_name}', '{$video_url}', '{$message}');
$replace = array($config['site_name'], $video_url, $message);
$body = str_replace($search, $replace, $body);
$mail = new VMail();
$mail->From = $from;
$mail->FromName = $from;
$sql = "SELECT VID, title, duration, addtime, rate, likes, dislikes, viewnumber, type, thumb, thumbs, hd\n\t FROM video \n WHERE channel = '" . intval($video['channel']) . "' AND VID != " . $vid . "\n\t\t\t\t\t AND active = '1'" . $type . "\n AND ( title LIKE '%" . mysql_real_escape_string($video['title']) . "%' " . $sql_add . ")\n ORDER BY addtime DESC LIMIT " . $limit;
$rs = $conn->execute($sql);
$videos = $rs->getrows();
$code = array();
$total_pages = $pagination->getTotalPages();
$page = $page >= $total_pages ? $total_pages : $page;
$code[] = '<div class="row">';
foreach ($videos as $video) {
if ($video['type'] == 'private') {
$img_class = 'class="img-responsive img-private"';
} else {
$img_class = 'class="img-responsive"';
}
$code[] = '<div class="col-sm-6 col-md-3 col-lg-3">';
$code[] = '<div class="well well-sm m-b-0 m-t-20">';
$code[] = '<a href="' . $config['BASE_URL'] . '/video/' . $video['VID'] . '/' . prepare_string($video['title']) . '">';
$code[] = '<div class="thumb-overlay">';
$code[] = '<img src="' . get_thumb_url($video['VID']) . '/' . $video['thumb'] . '.jpg" title="' . htmlspecialchars($video['title'], ENT_QUOTES, 'UTF-8') . '" alt="' . htmlspecialchars($video['title'], ENT_QUOTES, 'UTF-8') . '" id="rotate_' . $video['VID'] . '_' . $video['thumbs'] . '_' . $video['thumb'] . '" ' . $img_class . ' />';
if ($video['type'] == 'private') {
$code[] = '<div class="label-private">' . $lang['global.PRIVATE'] . '</div>';
}
if ($video['hd'] == 1) {
$code[] = '<div class="hd-text-icon">HD</div>';
}
$code[] = '<div class="duration">';
$code[] = duration($video['duration']);
$code[] = '</div>';
$code[] = '</div>';
$code[] = '<span class="video-title title-truncate m-t-5">' . htmlspecialchars($video['title'], ENT_QUOTES, 'UTF-8') . '</span>';
$code[] = '</a>';
$code[] = '<div class="video-added">';
/**
* [OVERRIDE] Cell method in tcpdf library.
* Handle charset conversion and HTML entity decode.
* This method override the regular Cell() method to apply the prepare_string() function to
* the string to print in the PDF.
* The cell method is used by all the methods which print text (Write, MultiCell).
* @see include/tcpdf/TCPDF#Cell()
*/
public function Cell($w, $h = 0, $txt = '', $border = 0, $ln = 0, $align = '', $fill = 0, $link = '', $stretch = 0)
{
parent::Cell($w, $h, prepare_string($txt), $border, $ln, $align, $fill, $link, $stretch);
}
echo '
<itunes:summary text="' . $details['description'] . '"/>';
}
echo '
<itunes:explicit>no</itunes:explicit>';
}
// loop through content
foreach ($feed_content as $item) {
$item_title = $item['title'];
$item_description = empty($item['summary']) ? create_summary($item['body']) : prepare_string($item['summary']);
// show complete article?
if (!empty($config['admin']['complete_feed'])) {
if ($_GET['feed'] == 'comments') {
$summary = "<p>" . $item['summary'] . "</p>";
} else {
$summary = !empty($item['summary']) ? "<p><strong>" . prepare_string($item['summary']) . "</strong></p>" : '';
}
$body = strip_inline_styles($item['body']);
$item_description = "<![CDATA[" . $summary . $body . "]]>";
}
$item_date = date('r', strtotime($item['date_uploaded']));
// start output to browser
echo '
<item>
<title>' . $item_title . '</title>
<description>' . $item_description . '</description>
<link>' . $item['link'] . '</link>';
// some additional entries for podcasts
if ($_GET['feed'] == 'podcast') {
echo "\n\t\t\t<itunes:author>" . $item['author_name'] . "</itunes:author>\n\t\t\t<dc:creator>" . $item['author_name'] . "</dc:creator>";
if (!empty($item['seo_keywords'])) {
