function fun_images_create($image)
{
$query = 'INSERT INTO fun_images (timestamp, handle, title, description, category)';
$query .= ' VALUES("' . time() . '", "' . $image['handle'] . '", "' . $image['title'] . '", "' . $image['description'] . '", "' . $image['category'] . '")';
mysql_query($query) or report_sql_error($query);
echo 'Running query: ' . $query;
}
function rss_create_items($param)
{
$query = 'SELECT l.username AS sender_name, gb.message, gb.timestamp AS sent, gb.id
FROM traffa_guestbooks AS gb, login AS l
WHERE gb.recipient = ' . $param['uid'] . ' AND gb.is_private = 0 AND gb.deleted = 0 AND l.id = gb.sender AND gb.sender != 2348
ORDER BY gb.timestamp DESC
LIMIT ' . $param['limit'];
$res = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
if (mysql_num_rows($res) > 0) {
while ($data = mysql_fetch_assoc($res)) {
$data['sent'] = date('r', $data['sent']);
$out .= "\t" . '<item>' . "\n";
$out .= "\t\t" . '<title><![CDATA[' . (strlen($data['message']) > 37 ? substr($data['message'], 0, 40) . '...' : $data['message']) . ']]></title>' . "\n";
//title
$out .= "\t\t" . '<link>http://www.hamsterpaj.net/traffa/guestbook.php?view=' . $param['uid'] . '#guestbook_entry_' . $data['id'] . '</link>' . "\n";
//link
$out .= "\t\t" . '<description><![CDATA[' . (strlen($data['message']) > 150 ? substr($data['message'], 0, 147) . '...' : $data['message']) . ']]></description>' . "\n";
//description
$out .= "\t\t" . '<author>' . $data['sender_name'] . '</author>' . "\n";
//author
$out .= "\t\t" . '<pubDate>' . $data['sent'] . '</pubDate>' . "\n";
//date when sent
$out .= '<guid>http://www.hamsterpaj.net/traffa/guestbook.php?view=' . $param['uid'] . '#guestbook_entry_' . $data['id'] . '</guid>';
$out .= "\t" . '</item>' . "\n\n";
}
}
return $out;
}
function query_cache($options)
{
global $QUERY_CACHE_CACHE;
if (strpos('u.birthday < 1970', $options['query']) === true) {
die('ERROR!!!');
}
$options['category'] = isset($options['category']) ? $options['category'] : 'other';
$options['max_delay'] = isset($options['max_delay']) ? $options['max_delay'] : 300;
$path = PATHS_INCLUDE . 'cache/query_cache/' . $options['category'] . '/';
$filename = md5($options['query']) . '.phpserialized';
if (isset($QUERY_CACHE_CACHE[$filename])) {
return $QUERY_CACHE_CACHE[$filename];
}
if (!is_dir($path)) {
mkdir($path);
}
if (!file_exists($path . $filename)) {
trace('new_query_cache_' . $options['category'], $options['query']);
}
if (filemtime($path . $filename) < time() - $options['max_delay']) {
$result = mysql_query($options['query']) or report_sql_error($query, __FILE__, __LINE__);
while ($row = mysql_fetch_assoc($result)) {
$data[] = $row;
}
$serialized = serialize($data);
//trace('query_cache', 'Creating file for query: ' . $options['query']);
file_put_contents($path . $filename, $serialized);
} else {
$data = unserialize(file_get_contents($path . $filename));
}
$QUERY_CACHE_CACHE[$filename] = $data;
return $data;
}
function digga_like($artist)
{
$query = 'INSERT INTO user_artists (user, artist) VALUES("' . $_SESSION['login']['id'] . '", "' . $artist . '")';
if (mysql_query($query)) {
$query = 'UPDATE artists SET popularity = popularity + 1 WHERE id = "' . $artist . '"';
mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
}
digga_view_info($artist);
}
function register_username_exists($username)
{
$query = 'SELECT id FROM login WHERE username LIKE "' . $username . '" LIMIT 1';
$result = mysql_query($query) or die(report_sql_error($query));
if (mysql_num_rows($result) == 1) {
return true;
}
return false;
}
function friends_actions_insert($options)
{
$friends_options['friend_id'] = $_SESSION['login']['id'];
$friends = friends_fetch($friends_options);
foreach ($friends as $friend) {
$query = 'INSERT INTO friends_notices (user_id, timestamp, friend_id, action, url, label)';
$query .= ' VALUES("' . $friend['user_id'] . '", "' . time() . '", "' . $_SESSION['login']['id'] . '", "' . $options['action'] . '", "' . $options['url'] . '", "' . $options['label'] . '")';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
}
}
function post_get_timestamp($post_id)
{
$query = 'SELECT timestamp FROM posts WHERE id = "' . $matches[2] . '"';
$result = mysql_query($query) or die(report_sql_error($query));
if ($data = mysql_fetch_assoc($result)) {
$timestamp = $data['timestamp'];
} else {
$timestamp = null;
}
return $timestamp;
}
function parlino_sms_credits($user)
{
$credits = 3;
$query = 'SELECT sms_sent FROM parlino_sms_credits WHERE user = "******" AND date = "' . date('Y-m-d') . '"';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
if (mysql_num_rows($result) == 1) {
$data = mysql_fetch_assoc($result);
$credits -= $data['sms_sent'];
}
return $credits;
}
function digga_fetch_diggers($artist_id)
{
$query = 'SELECT ua.user AS id, l.username, l.lastaction, u.gender, u.birthday, z.spot ';
$query .= 'FROM user_artists AS ua, login AS l, userinfo AS u, zip_codes AS z ';
$query .= 'WHERE ua.artist = "' . $artist_id . '" AND l.id = ua.user AND u.userid = ua.user AND ';
$query .= 'z.zip_code = u.zip_code ';
$query .= 'ORDER BY l.lastaction DESC LIMIT 50';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
while ($data = mysql_fetch_assoc($result)) {
$return[] = $data;
}
return $return;
}
function groups_create($options)
{
$options['founder'] = !isset($options['founder']) ? $_SESSION['login']['id'] : $options['founder'];
$options['handle'] = !isset($options['handle']) ? url_secure_string($options['name']) : $options['handle'];
$query = 'INSERT INTO groups(handle, name, description, member_count, created_timestamp, founder, forum_id, auto_join, visible)' . "\n";
$query .= 'VALUES("' . $options['handle'] . '", "' . $options['name'] . '", "' . $options['description'] . '", 0, ' . time() . ', "' . $options['founder'] . '", 0, "' . $options['auto_join'] . '", "' . $options['visible'] . '")';
mysql_query($query) or report_sql_error($query);
$options['id'] = mysql_insert_id();
if ($options['disable_founder_join'] != true) {
groups_add_user_to_group(array('group_id' => $options['id'], 'user_id' => $options['founder']));
}
return $options;
}
function friends_actions_insert($options)
{
$query = 'SELECT user_id';
$query .= ' FROM friendslist';
$query .= ' WHERE';
$query .= ' friend_id = "' . $_SESSION['login']['id'] . '"';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
while ($data = mysql_fetch_assoc($result)) {
$query_insert = 'INSERT INTO friends_notices (user_id, timestamp, friend_id, action, url, label)';
$query_insert .= ' VALUES("' . $data['user_id'] . '", "' . time() . '", "' . $_SESSION['login']['id'] . '", "' . $options['action'] . '", "' . $options['url'] . '", "' . $options['label'] . '")';
$result_insert = mysql_query($query_insert) or report_sql_error($query_insert, __FILE__, __LINE__);
}
}
function guestbook_insert($entry)
{
if ($entry['is_mass_gb'] !== true) {
if ($_SESSION['login']['id'] == $entry['sender']) {
if ($_SESSION['last_gb_entry'] > time() - 5) {
return false;
}
}
if (strlen($entry['message']) == 0) {
return false;
}
if ($entry['recipient'] == 2348 && $entry['sender'] != 2348) {
$_SESSION['posted_gb_to_webmaster'] = true;
}
}
$entry['is_private'] = $entry['is_private'] == 1 ? 1 : 0;
$query = 'INSERT INTO traffa_guestbooks(timestamp, recipient, sender, message, is_private)';
$query .= ' VALUES("' . time() . '", "' . $entry['recipient'] . '", "' . $entry['sender'] . '", "' . $entry['message'] . '", "' . $entry['is_private'] . '")';
mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
$entry['id'] = mysql_insert_id();
$query = 'UPDATE userinfo SET gb_entries = gb_entries + 1 WHERE userid = "' . $entry['recipient'] . '" LIMIT 1';
if (!mysql_query($query)) {
report_sql_error($query, __FILE__, __LINE__);
return false;
}
if (isset($entry['reply-to'])) {
$query = 'UPDATE traffa_guestbooks SET answered = "Y", `read` = 1 WHERE id = "' . $entry['reply-to'] . '" AND recipient = "' . $entry['sender'] . '" LIMIT 1';
if (!mysql_query($query)) {
report_sql_error($query, __FILE__, __LINE__);
return false;
}
}
if ($entry['is_mass_gb'] !== true) {
$query = 'SELECT session_id FROM login WHERE id = "' . $entry['recipient'] . '" LIMIT 1';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
$data = mysql_fetch_assoc($result);
if (strlen($data['session_id']) > 5) {
$remote_session = session_load($data['session_id']);
$remote_session['notices']['unread_gb_entries'] += 1;
$entry['image'] = $_SESSION['userinfo']['image'];
$entry['timestamp'] = time();
$entry['message'] = stripslashes($entry['message']);
$entry['username'] = $_SESSION['login']['username'];
$remote_session['unread_gb_entries'][] = $entry;
session_save($data['session_id'], $remote_session);
}
}
$_SESSION['last_gb_entry'] = time();
return true;
}
function fp_modules_fetch($options)
{
$query = 'SELECT * FROM fp_modules WHERE 1';
$query .= isset($options['removal_min']) ? ' AND removal >= "' . $options['removal_min'] . '"' : '';
$query .= isset($options['removal_max']) ? ' AND removal <= "' . $options['removal_max'] . '"' : '';
$query .= isset($options['launch_min']) ? ' AND launch >= "' . $options['launch_min'] . '"' : '';
$query .= isset($options['launch_max']) ? ' AND launch <= "' . $options['launch_max'] . '"' : '';
$query .= isset($options['id']) ? ' AND id = "' . $options['id'] . '"' : '';
$query .= isset($options['order-by']) ? ' ORDER BY ' . $options['order-by'] : ' ORDER BY priority';
$query .= isset($options['order-direction']) ? ' ' . $options['order-direction'] : ' DESC';
$result = mysql_query($query) or report_sql_error($query);
while ($data = mysql_fetch_assoc($result)) {
$modules[] = $data;
}
return $modules;
}
function tips_reciever_status_set($options)
{
/*
options kommentar
reciever e-mail
hash hash password
status 'accepts', 'denies'
*/
$query = 'UPDATE tips_recievers SET status="' . $options['status'] . '" WHERE';
if (isset($options['hash'])) {
$query .= ' hash="' . $options['hash'] . '"';
} else {
$query .= ' reciever="' . $options['reciever'] . '"';
}
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
return $result > 0;
}
function suggestion_fetch($fetch)
{
$fetch['display_level'] = isset($fetch['display_level']) ? $fetch['display_level'] : array('normal');
$query = 'SELECT s.*, al.username AS author_username, login.username AS responsible_username FROM login AS al, suggestions AS s';
$query .= ' LEFT JOIN login ON s.responsible = login.id';
$query .= ' WHERE al.id = s.author';
$query .= isset($fetch['display_level']) ? ' AND s.display_level IN("' . implode('", "', $fetch['display_level']) . '")' : '';
$query .= isset($fetch['id']) ? ' AND s.id IN("' . implode('", "', $fetch['id']) . '")' : '';
$query .= isset($fetch['category']) ? ' AND s.category IN("' . implode('", "', $fetch['category']) . '")' : '';
$query .= isset($fetch['classification']) ? ' AND s.classification IN("' . implode('", "', $fetch['classification']) . '")' : '';
$query .= ' ORDER BY s.last_update DESC, s.id DESC';
$query .= isset($fetch['limit']) ? ' LIMIT ' . $fetch['limit'] : '';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
while ($data = mysql_fetch_assoc($result)) {
$return[$data['id']] = $data;
}
return $return;
}
function block_user($userid)
{
mysql_query('UPDATE userinfo SET image = 0, image_ban_expire = "' . (time() + 86400 * 7) . '" WHERE userid = "' . $userid . '" LIMIT 1') or die('<script language="javascript">alert("FATALT FEL! IGNORERA FÖLJANDE MEDDELANDE OM ATT UPPDATERINGEN LYCKADES. MYSQL FELINFORMATION: (vidarebefodra till Tritone)\\n\\n' . mysql_error() . '")</script>');
/* We need to load and modify the remote users session */
$sessid_sql = 'SELECT session_id FROM login WHERE id = "' . $userid . '" LIMIT 1';
$sessid_result = mysql_query($sessid_sql) or die(report_sql_error($sessid_sql));
$sessid_data = mysql_fetch_assoc($sessid_result);
if (strlen($sessid_data['session_id']) > 5) {
$remote_session = session_load($sessid_data['session_id']);
$remote_session['userinfo']['image_ban_expire'] = time() + 86400 * 7;
session_save($sessid_data['session_id'], $remote_session);
}
if (unlink(PATHS_IMAGES . 'users/full/' . $userid . '.jpg') && unlink(PATHS_IMAGES . 'users/thumb/' . $userid . '.jpg')) {
echo '<script language="javascript">alert("Användar-ID ' . $userid . ' har blockerats från framtida uppladdning av bilder.");</script>';
log_admin_event('user blocked image upload', '', $_SESSION['login']['id'], $userid, $userid);
} else {
echo '<script language="javascript">alert("Ett fel uppstod när ' . $userid . '.jpg skulle tas bort!");</script>';
}
}
function admin_action_count($admin_id, $event)
{
switch ($event) {
case 'post_removed':
$query_insert = 'INSERT INTO admin_counts (user_id, posts_removed) VALUES ("' . $admin_id . '", 1)';
$query_update = 'UPDATE admin_counts SET posts_removed = posts_removed + 1 WHERE user_id="' . $admin_id . '"';
break;
case 'avatar_denied':
$query_insert = 'INSERT INTO admin_counts (user_id, avatars_denied) VALUES ("' . $admin_id . '", 1)';
$query_update = 'UPDATE admin_counts SET avatars_denied = avatars_denied + 1 WHERE user_id="' . $admin_id . '"';
break;
case 'avatar_approved':
$query_insert = 'INSERT INTO admin_counts (user_id, avatars_approved) VALUES ("' . $admin_id . '", 1)';
$query_update = 'UPDATE admin_counts SET avatars_approved = avatars_approved + 1 WHERE user_id="' . $admin_id . '"';
break;
}
log_to_file('admin', LOGLEVEL_DEBUG, __FILE__, __LINE__, 'admin_action_count ' . $event, $query_insert);
mysql_query($query_insert) or mysql_query($query_update) or die(report_sql_error($query_update, __FILE__, __LINE__));
}
function save($values)
{
$sql = 'UPDATE photoblog_preferences SET';
$values_count = count($values);
//UPDATE photoblog_preferences SET color_main = "FFFFFF", color_detail = "FFFFFF", hamster_guard_on = 1 WHERE user_id = 879696 LIMIT 1
$count = 0;
foreach ($values as $values_key => $values_val) {
$sql .= ' ' . $values_key . ' = "' . $values_val . '"';
$count++;
if ($count != $values_count) {
$sql .= ',';
}
}
$sql .= ' WHERE userid = ' . $_SESSION['login']['id'] . '';
if (mysql_query($sql)) {
return true;
} else {
report_sql_error($sql, __FILE__, __LINE__);
return false;
}
}
function userblock_checkblock($object_id)
{
// PREVENT SQL QUERY ERROR DUE TO MISSING OBJECT ID
if (strlen($object_id) == 0) {
return false;
} elseif (!is_numeric($object_id)) {
return false;
} elseif (!login_checklogin()) {
return false;
}
$sql = 'SELECT * FROM userblocks WHERE ownerid = ' . $object_id . ' AND blockedid = ' . $_SESSION['login']['id'] . ' LIMIT 1';
$result = mysql_query($sql) or report_sql_error($sql, __FILE__, __LINE__);
$data = mysql_fetch_assoc($result);
if ($data['blockedid'] === $_SESSION['login']['id'] && !is_privilegied('igotgodmode') && !is_privilegied('ip_ban_admin')) {
return true;
} elseif ($data['blockedid'] === $_SESSION['login']['id'] && is_privilegied('igotgodmode') && !is_privilegied('ip_ban_admin')) {
echo '<p class="error"><strong>Den här användaren har blockerat dig!</strong><br />' . "\n";
echo 'Men eftersom du är 1337 h4xx0r så kan du se personens presentation i alla fall :)</p>' . "\n";
} else {
return false;
}
}
function schedule_minute_job()
{
$last_monday = strtotime(date('D') == 'Mon' ? 'Today' : 'last Monday');
$minutes_passed_this_week = floor((time() - $last_monday) / 60);
$query = 'SELECT sp.id, sp.type, sp.data, sp.released' . ' FROM schedule_schema AS ss, schedule_pool AS sp' . ' WHERE ss.type = sp.type' . ' AND ss.start <= ' . $minutes_passed_this_week . ' AND ss.end >= ' . $minutes_passed_this_week . ' AND sp.released = 0' . ' ORDER BY rand()';
$result = mysql_query($query) or report_sql_error($query);
echo $minutes_passed_this_week;
while ($data = mysql_fetch_assoc($result)) {
preint_r($data);
}
}
$out .= '</textarea><br />' . "\n";
$out .= '<input type="submit" value="Skriv" class="button_60" />' . "\n";
$out .= '' . "\n";
$out .= '</form>' . "\n";
$out .= rounded_corners_bottom($void, true);
}
break;
case 'insert':
$query = 'INSERT INTO developer_blog (timestamp, author, header, content) VALUES (' . time() . ', ' . $_SESSION['login']['id'] . ', "' . $_POST['header'] . '", "' . $_POST['content'] . '")';
mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
$query = 'SELECT id FROM developer_blog ORDER BY timestamp DESC LIMIT 1';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
$data = mysql_fetch_assoc($result);
$blogpost_url = '/hamsterpaj/utvecklarblogg.php?action=show&id=' . $data['id'];
$query = 'INSERT INTO recent_updates (type, timestamp, url, label) VALUES ("blog_post", "' . time() . '", "' . $blogpost_url . '", "' . $_POST['header'] . '")';
mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
header('Location: ' . $blogpost_url);
break;
case 'update':
break;
case 'show':
if (!is_numeric($_GET['id'])) {
$out .= '<h1>Sluta hacka, joel kan ju pissa på sig av upphetsning</h1>' . "\n";
break;
}
$out .= '<h1>Utvecklarblogg</h1>' . "\n";
$sql = 'SELECT d.*, d.author AS user_id, l.username';
$sql .= ' FROM developer_blog AS d, login AS l';
$sql .= ' WHERE l.id = d.author AND d.id = ' . $_GET['id'] . '';
$sql .= ' ORDER BY d.id DESC';
$result = mysql_query($sql) or die(mysql_error());
function discussion_page_unread_get($discussion)
{
$query = 'SELECT posts FROM posts_read WHERE user_id = "' . $_SESSION['login']['id'] . '" AND discussion_id = "' . $discussion['id'] . '"';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
if ($data = mysql_fetch_assoc($result)) {
$posts_read = $data['posts'];
} else {
$posts_read = 1;
}
return ceil(min($posts_read + 1, $discussion['post']) / POSTS_PER_PAGE);
}
event_log_log('msnbot_add');
echo 'Du är nu registrerad!';
/*
$_SESSION['msnbot']['register_msn'] = $_GET['msn'];
echo 'Välj vad du vill få ett meddelande på MSN om via msnboten:<br />' . "\n";
echo '<form action="post">' . "\n";
echo '<ul>' . "\n";
echo '<li>Bla bla</li>' . "\n";
echo '</ul>' . "\n";
echo '<input type="button" value="Spara" class="button_60" />' . "\n";
echo '</form>' . "\n";
*/
} else {
if (isset($_GET['unregister']) && $_GET['unregister'] == $_SESSION['login']['id']) {
$query = 'UPDATE userinfo SET msnbot_msn = "" WHERE userid = ' . $_SESSION['login']['id'];
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
$_SESSION['userinfo']['msnbot_msn'] = '';
echo 'Du är nu avregistrerad.';
event_log_log('msnbot_remove');
} else {
if ($_SESSION['userinfo']['msnbot_msn'] == '') {
echo 'Adda hamsterpaj.net@live.se på MSN och skriv något till honom så svarar han med en länk. Klicka på den (eller kopiera den och öppna i webbläsaren om det inte funkar).';
} else {
echo '<a href="/installningar/msnbot_register.php?unregister=' . $_SESSION['login']['id'] . '">Avregistrera mig ifrån vännernotiser på MSN.</a>';
}
}
}
} else {
echo 'Du måste vara medlem och inloggad på Hamsterpaj för att kunna använda msnboten. Att bli medlem är gratis och tar bara någon minut. Klicka på bli medlem här ovanför eller logga in om du redan har ett konto för att gå vidare. :)';
}
ui_bottom();
function comment_answer($id, $reply)
{
$query = 'SELECT up.user, up.description, up.id, uc.user_id, uc.comment, l.username FROM user_photos AS up, user_comments AS uc, login AS l WHERE l.id = ' . $_SESSION['login']['id'] . ' AND uc.item_id = up.id AND up.user = '******'login']['id'] . ' AND uc.id = ' . $id . '';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
$data = mysql_fetch_assoc($result);
if ($data['user'] == $_SESSION['login']['id']) {
$query = 'UPDATE user_comments SET answer = "' . $reply . '", answerer_id = ' . $_SESSION['login']['id'] . ' WHERE id = ' . $id . ' LIMIT 1';
mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
$entry['sender'] = $_SESSION['login']['id'];
$message = $data['username'] . ' svarade precis på din kommentar till fotot: <br /><a href="/traffa/photos.php?id=' . $data['id'] . '#photo">' . (strlen($data['description']) > 1 ? $data['description'] : 'namnlös') . '</a>' . "\n\n";
$message .= '<strong>Din kommentar:</strong>' . "\n";
$message .= $data['comment'] . "\n\n";
$message .= '<strong>' . $data['username'] . '\'s svar:</strong>' . "\n";
$message .= $reply . "\n";
$entry['message'] = mysql_real_escape_string($message);
$entry['recipient'] = $data['user_id'];
guestbook_insert($entry);
} else {
jscript_alert('Nehejdu, den gick inte!');
}
}
function dl_question_answer($question, $answer)
{
$query = 'SELECT q.correct_answer, q.category, a.text FROM dl_questions AS q, dl_alternatives AS a WHERE q.id = "' . $question . '" AND a.id = q.correct_answer LIMIT 1';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
$data = mysql_fetch_assoc($result);
$category = $data['category'];
$correct_answer_text = $data['text'];
if ($answer == $data['correct_answer']) {
$message = 'correct';
/* Create a row in the user answers table */
$insertquery = 'INSERT INTO dl_answers (user, question, score) VALUES("' . $_SESSION['login']['id'] . '", "' . $question . '", 1)';
if (!mysql_query($insertquery)) {
/* A row already existed, increase the score instead of creating a new row */
$updatequery = 'UPDATE dl_answers SET score = score + 1 WHERE user = "******" AND question = "' . $question . '" LIMIT 1';
mysql_query($updatequery);
/* If the user has two points, create/update the row holding the users score for this category */
$query = 'SELECT score FROM dl_answers WHERE user = "******" AND question = "' . $question . '"';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
$data = mysql_fetch_assoc($result);
if ($data['score'] == 2 && strlen($category) > 0) {
$updatequery = 'UPDATE dl_scores SET ' . $category . ' = ' . $category . ' + 1 WHERE user = "******" LIMIT 1';
$insertquery = 'INSERT INTO dl_scores (user, ' . $category . ') VALUES("' . $_SESSION['login']['id'] . '", 1)';
mysql_query($insertquery) or mysql_query($updatequery);
}
}
} else {
$message = 'incorrect';
$query = 'UPDATE dl_answers SET score = 0 WHERE user = "******" AND question = "' . $question . '" LIMIT 1';
mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
}
$messages['correct'] = '<div class="correct"><h2>Rätt svar</h2></div>';
$messages['incorrect'] = '<div class="incorrect"><h2>Fel svar</h2><h4>Rätt svar var</h4><p class="correction">' . $correct_answer_text . '<br />Frågans ID-nummer: ' . $question . '</p></div>';
echo $messages[$message];
return $message;
}
function regform_check($info)
{
/* Check birthday */
if (!checkdate($info['birth_month'], $info['birth_day'], $info['birth_year'])) {
$return['birth_date'] = 'error';
} elseif ($info['birth_year'] < 1940) {
$return['birth_date'] = 'error';
} elseif ($info['birth_year'] > date('Y')) {
$return['birth_date'] = 'error';
}
/* Check zip_code */
if (!is_numeric($info['zip_code'])) {
$return['zip_code'] = 'error';
}
$query = 'SELECT spot FROM zip_codes WHERE zip_code = "' . $info['zip_code'] . '" LIMIT 1';
$result = mysql_query($query) or die(report_sql_error($query, __FILE__, __LINE__));
if (mysql_num_rows($result) != 1) {
$return['zip_code'] = 'error';
}
if (count($return) > 0) {
return $return;
}
return true;
}
echo '<a href="?page=' . ($page - 1) . '" class="ascii_art_previous">« Föregående sida</a>';
}
echo '<a href="?page=' . ($page + 1) . '" class="ascii_art_next">Nästa sida »</a>' . "\n";
echo '<br style="clear: both;" />' . "\n";
if (is_privilegied('ascii_art_admin')) {
if (isset($_GET['delete']) && is_numeric($_GET['delete']) && (int) $_GET['delete'] > 0) {
$query = 'DELETE FROM ascii_art WHERE id = ' . $_GET['delete'] . ' LIMIT 1';
mysql_query($query) or report_sql_error($query);
jscript_alert('Go, went och... GONE!');
jscript_location('ascii_art.php');
}
}
if (is_privilegied('ascii_art_admin')) {
if (isset($_POST['title'], $_POST['the_art'])) {
$query = 'INSERT INTO ascii_art (title, the_art) VALUES ("' . $_POST['title'] . '", "' . $_POST['the_art'] . '")';
mysql_query($query) or report_sql_error($query);
jscript_alert('Vi har nu lagt till ASCII-arten i databasen. Det kan dröja upp till 60 sekunder innan den dyker upp bland de andra ASCII-artsen!');
jscript_location('ascii_art.php');
}
echo rounded_corners_top(array('color' => 'white'));
?>
<form method="post" action="<?php
echo $_SERVER['PHP_SELF'];
?>
">
<input type="text" name="title" /> (titel)<br />
<textarea name="the_art" style="width: 100%; height: 300px"></textarea><br />
<input type="submit" value="Skapa" class="button_80" />
</form>
<?php
echo rounded_corners_bottom();
function log_admin_event($event, $data, $admin_id, $user_id, $item_id)
{
$query = 'INSERT INTO admin_event (event, value, timestamp, admin_id, user_id, item_id) ';
$query .= 'VALUES("' . $event . '", "' . $data . '", UNIX_TIMESTAMP(), "' . $admin_id . '", "' . $user_id . '", "' . $item_id . '")';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
}
$query .= 'VALUES("' . $user_id . '", "profile_visit", "' . $_SESSION['login']['id'] . '", "' . time() . '")';
mysql_query($query) or die(report_sql_error($query));
/* Log the visit to database - New system */
$increase_profile_visitors = true;
foreach ($_SESSION['profile_visits'] as &$current) {
if ($current['id'] == $user_id) {
if (isset($current['timestamp']) && $current['timestamp'] > time() - 120) {
$increase_profile_visitors = false;
}
// Note: $current is a pointer!
$current['timestamp'] = time();
}
}
if ($increase_profile_visitors == true) {
$query = 'UPDATE userinfo SET profile_visitors = profile_visitors + 1 WHERE userid = ' . $user_id;
mysql_query($query) or die(report_sql_error($query));
}
$querys = array();
$querys['insert'] = 'INSERT INTO user_visits(user_id, item_id, type, count, timestamp) VALUES(' . $user_id . ', ' . $_SESSION['login']['id'] . ', "profile_visit", 1, unix_timestamp())';
$querys['update'] = 'UPDATE user_visits SET count = count + 1, timestamp = unix_timestamp() WHERE user_id=' . $user_id . ' AND item_id=' . $_SESSION['login']['id'] . ' AND type="profile_visit"';
@mysql_query($querys['insert']) or @mysql_query($querys['update']);
unset($querys);
/* Read remote session and log this visit */
$remote_session = session_load($userinfo['login']['session_id']);
if ($_SESSION['userinfo']['image'] == 1 || $_SESSION['userinfo']['image'] == 2) {
$visited = false;
foreach ($remote_session['visitors_with_image'] as $visitor) {
$visited = $visitor['id'] == $_SESSION['login']['id'] ? true : $visited;
}
if ($visited == false) {
while (count($remote_session['visitors_with_image']) >= 8) {
function friends_notices_remove($options)
{
$query = 'UPDATE friends_notices SET `read` = 1 WHERE 1';
$query .= ' AND user_id = ' . $_SESSION['login']['id'];
$query .= isset($options['friend_id']) && is_numeric($options['friend_id']) ? ' AND friend_id = ' . $options['friend_id'] : '';
$query .= isset($options['item_id']) && is_numeric($options['item_id']) ? ' AND item_id = ' . $options['item_id'] : '';
$query .= isset($options['action']) ? ' AND action = "' . $options['action'] . '"' : '';
$result = mysql_query($query) or report_sql_error($query, __FILE__, __LINE__);
echo mysql_affected_rows();
}
