PC World 2005 April

home *** CD-ROM | disk | FTP | other *** search

/ PC World 2005 April / PCWorld_2005-04_cd.bin / akce / web / unitednuke / unitednuke.exe / html / mainfile.php < prev next >

Wrap

PHP Script | 2004-10-13 | 45.8 KB | 1,225 lines

<?php /************************************************************************/ /* PHP-NUKE: Advanced Content Management System */ /* ============================================ */ /* */ /* Copyright (c) 2002 by Francisco Burzi */ /* http://phpnuke.org */ /* */ /* This program is free software. You can redistribute it and/or modify */ /* it under the terms of the GNU General Public License as published by */ /* the Free Software Foundation; either version 2 of the License. */ /************************************************************************/ //Union Tap Code (UTC) //Copyright Zhen-Xjell 2004 http://nukecops.com //Beta 4 Code to prevent UNION SQL Injections unset($matches); unset($loc); $loc=rawurldecode($_SERVER["QUERY_STRING"]); //This if block catches C-like comment code within all SQL Injections, not just Union. //White paper available here: http://www.securiteam.com/securityreviews/5FP0O0KCKM.html if (strstr($loc,"*")) { die("YOU ARE SLAPPED BY <a href=\"http://nukecops.com\">NUKECOPS</a> BY USING '".htmlentities($loc)."'."); } //This catches plaintext and base64 version of the Union SQL Injection code. if (preg_match("/([OdWo5NIbpuU4V2iJT0n]{5}) /", $loc, $matches)) { die("YOU ARE SLAPPED BY <a href=\"http://nukecops.com\">NUKECOPS</a> BY USING '$matches[1]' INSIDE '".htmlentities($loc)."'."); } //Union Tap //Copyright Zhen-Xjell 2004 http://nukecops.com //Beta 3 Code to prevent UNION SQL Injections unset($matches); unset($loc); if (preg_match("/([OdWo5NIbpuU4V2iJT0n]{5}) /", rawurldecode($loc=$_SERVER["QUERY_STRING"]), $matches)) { exit(); } $queryString = strtolower($_SERVER['QUERY_STRING']); if (stripos_clone($queryString,'%20union%20') OR stripos_clone($queryString,'/*') OR stripos_clone($queryString,'*/union/*') OR stripos_clone($queryString,'c2nyaxb0')) { header("Location: index.php"); exit(); } $phpver = phpversion(); if ($phpver >= '4.0.4pl1' && strstr($HTTP_SERVER_VARS['HTTP_USER_AGENT'],'compatible')) { if (extension_loaded('zlib')) { ob_end_clean(); ob_start('ob_gzhandler'); } } else if ($phpver > '4.0') { if (strstr($HTTP_SERVER_VARS['HTTP_ACCEPT_ENCODING'], 'gzip')) { if (extension_loaded('zlib')) { $do_gzip_compress = TRUE; ob_start(); ob_implicit_flush(0); //header('Content-Encoding: gzip'); } } } $phpver = explode(".", $phpver); $phpver = "$phpver[0]$phpver[1]"; if ($phpver >= 41) { $PHP_SELF = $_SERVER['PHP_SELF']; } if (!ini_get("register_globals")) { import_request_variables('GPC'); } ############################################################# #--------------- Base64 sanitize by Waraxe ----------------- if(isset($admin)) { $admin = base64_decode($admin); $admin = addslashes($admin); $admin = base64_encode($admin); } if(isset($user)) { $user = base64_decode($user); $user = addslashes($user); $user = base64_encode($user); } ############################################################# if (phpversion() < "4.1.0") { $_GET = $HTTP_GET_VARS; $_POST = $HTTP_POST_VARS; $_SERVER = $HTTP_SERVER_VARS; } if($PHP_SELF != "admin.php") { foreach ($_GET as $sec_key => $secvalue) { if ((eregi("<[^>]*script*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*object*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*iframe*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*applet*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*meta*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*style*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*form*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*img*\"?[^>]*>", $secvalue)) || (eregi("$[^>]*\"?[^)]*$", $secvalue)) || (eregi("\"", $secvalue)) || (eregi("forum_admin", $sec_key)) || (eregi("inside_mod", $sec_key))) { include("language/lang-".$lang.".php"); die(""._HTMLTAGSNOTALLOWEDPROTECT.""); } } } //nasledujici uprava (if s $op) je pro umozneni vkladani javascriptu apod. //pri posilani clanku //pri nahledu clanku //pri editaci clanku //pri editaci naplanovaneho clanku //pri zmenene hlavniho nastaveni v administraci //pri vytvareni bloku //pri uprave bloku if($PHP_SELF != "admin.php") { if($op != "PostAdminStory" AND $op != "PreviewAdminStory" AND $op != "ChangeStory" AND $op != "autoSaveEdit" AND $op != "ConfigSave" AND $op != "BlocksAdd" AND $op != "BlocksEditSave" AND $op != "PreviewAgain" AND $op != "PostStory" AND $op != "EditStory") { foreach ($_POST as $secvalue) { if ((eregi("<[^>]*onmouseover*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*script*\"?[^>]*>", $secvalue)) || (eregi("<[^>]*style*\"?[^>]*>", $secvalue))) { include("language/lang-".$lang.".php"); die(""._HTMLTAGSNOTALLOWEDPROTECT.""); } } } } if (eregi("mainfile.php", $_SERVER['SCRIPT_NAME'])) { Header("Location: index.php"); die(); } if ($forum_admin == 1) { require_once("../../../config.php"); require_once("../../../db/db.php"); } elseif ($inside_mod == 1) { require_once("../../config.php"); require_once("../../db/db.php"); } else { require_once("config.php"); require_once("db/db.php"); /* FOLLOWING TWO LINES ARE DEPRECATED BUT ARE HERE FOR OLD MODULES COMPATIBILITY */ /* PLEASE START USING THE NEW SQL ABSTRACTION LAYER. SEE MODULES DOC FOR DETAILS */ require_once("includes/sql_layer.php"); $dbi = sql_connect($dbhost, $dbuname, $dbpass, $dbname); } $mainfile = 1; $sql = "SELECT sitename, nukeurl, site_logo, slogan, startdate, adminmail, anonpost, Default_Theme, foot1, foot2, foot3, commentlimit, anonymous, minpass, pollcomm, articlecomm, broadcast_msg, my_headlines, top, storyhome, user_news, oldnum, ultramode, banners, backend_title, backend_language, language, locale, multilingual, useflags, notify, notify_email, notify_subject, notify_message, notify_from, footermsgtxt, email_send, attachmentdir, attachments, attachments_view, download_dir, defaultpopserver, singleaccount, singleaccountname, numaccounts, imgpath, filter_forward, moderate, admingraphic, httpref, httprefmax, CensorMode, CensorReplace, copyright, Version_Num FROM ".$prefix."_config"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $sitename = $row['sitename']; $nukeurl = $row['nukeurl']; $site_logo = $row['site_logo']; $slogan = $row['slogan']; $startdate = $row['startdate']; $adminmail = stripslashes($row['adminmail']); $anonpost = $row['anonpost']; $Default_Theme = $row['Default_Theme']; $foot1 = $row['foot1']; $foot2 = $row['foot2']; $foot3 = $row['foot3']; $commentlimit = intval($row['commentlimit']); $anonymous = $row['anonymous']; $minpass = intval($row['minpass']); $pollcomm = intval($row['pollcomm']); $articlecomm = intval($row['articlecomm']); $broadcast_msg = intval($row['broadcast_msg']); $my_headlines = intval($row['my_headlines']); $top = intval($row['top']); $storyhome = intval($row['storyhome']); $user_news = intval($row['user_news']); $oldnum = intval($row['oldnum']); $ultramode = intval($row['ultramode']); $banners = intval($row['banners']); $backend_title = $row['backend_title']; $backend_language = $row['backend_language']; $language = $row['language']; $locale = $row['locale']; $multilingual = intval($row['multilingual']); $useflags = intval($row['useflags']); $notify = intval($row['notify']); $notify_email = $row['notify_email']; $notify_subject = $row['notify_subject']; $notify_message = $row['notify_message']; $notify_from = $row['notify_from']; $footermsgtxt = $row['footermsgtxt']; $email_send = intval($row['email_send']); $attachmentdir = $row['attachmentdir']; $attachments = intval($row['attachments']); $attachments_view = intval($row['attachments_view']); $download_dir = $row['download_dir']; $defaultpopserver = $row['defaultpopserver']; $singleaccount = intval($row['singleaccount']); $singleaccountname = $row['singleaccountname']; $numaccounts = $row['numaccounts']; $imgpath = $row['imgpath']; $filter_forward = intval($row['filter_forward']); $moderate = intval($row['moderate']); $admingraphic = intval($row['admingraphic']); $httpref = intval($row['httpref']); $httprefmax = intval($row['httprefmax']); $CensorMode = intval($row['CensorMode']); $CensorReplace = $row['CensorReplace']; $copyright = $row['copyright']; $Version_Num = $row['Version_Num']; $domain = eregi_replace("http://", "", $nukeurl); $tipath = "images/topics/"; $mtime = microtime(); $mtime = explode(" ",$mtime); $mtime = $mtime[1] + $mtime[0]; $start_time = $mtime; if ($forum_admin != 1) { if (isset($newlang) AND !eregi("\.","$newlang")) { if (file_exists("language/lang-".$newlang.".php")) { setcookie("lang",$newlang,time()+31536000); include("language/lang-".$newlang.".php"); $currentlang = $newlang; } else { setcookie("lang",$language,time()+31536000); include("language/lang-".$language.".php"); $currentlang = $language; } } elseif (isset($lang)) { include("language/lang-".$lang.".php"); $currentlang = $lang; } else { setcookie("lang",$language,time()+31536000); include("language/lang-".$language.".php"); $currentlang = $language; } } function get_lang($module) { global $currentlang, $language; if (file_exists("modules/$module/language/lang-".$currentlang.".php")) { if ($module == admin) { include_once("admin/language/lang-".$currentlang.".php"); } else { include_once("modules/$module/language/lang-".$currentlang.".php"); } } else { if ($module == admin) { include_once("admin/language/lang-".$currentlang.".php"); } else { include_once("modules/$module/language/lang-".$language.".php"); } } } function is_admin($admin) { global $prefix, $db; if(!is_array($admin)) { $admin = addslashes($admin); $admin = base64_decode($admin); $admin = addslashes($admin); $admin = explode(":", $admin); $aid = addslashes("$admin[0]"); $pwd = "$admin[1]"; } else { $aid = addslashes("$admin[0]"); $pwd = "$admin[1]"; } if ($aid != "" AND $pwd != "") { $sql = "SELECT pwd FROM ".$prefix."_authors WHERE aid='$aid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $pass = $row['pwd']; if($pass == $pwd && $pass != "") { return 1; } } return 0; } function is_user($user) { global $prefix, $db, $user_prefix; if(!is_array($user)) { $user = addslashes($user); $user = base64_decode($user); $user = addslashes($user); $user = explode(":", $user); $uid = "$user[0]"; $pwd = "$user[2]"; } else { $uid = "$user[0]"; $pwd = "$user[2]"; } $uid = addslashes(intval($uid)); if ($uid != "" AND $pwd != "") { $uid = intval($uid); $sql = "SELECT user_password FROM ".$user_prefix."_users WHERE user_id='$uid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $pass = $row['user_password']; if($pass == $pwd && $pass != "") { return 1; } } return 0; } function title($text) { OpenTable(); echo "<center>$text</center>"; CloseTable(); echo " "; } function is_active($module) { global $prefix, $db; $module = trim($module); $sql = "SELECT active FROM ".$prefix."_modules WHERE title='$module'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $act = $row[active]; $act = intval($row['active']); if (!$result OR $act == 0) { return 0; } else { return 1; } } function render_blocks($side, $blockfile, $title, $content, $bid, $url) { if ($url == "") { if ($blockfile == "") { if ($side == "c") { themecenterbox($title, $content); } elseif ($side == "d") { themecenterbox($title, $content); } else { themesidebox($title, $content); } } else { if ($side == "c") { blockfileinc($title, $blockfile, 1); } elseif ($side == "d") { blockfileinc($title, $blockfile, 1); } else { blockfileinc($title, $blockfile); } } } else { if ($side == "c" OR $side == "d") { headlines($bid,1); } else { headlines($bid); } } } function blocks($side) { global $storynum, $prefix, $multilingual, $currentlang, $db, $admin, $user; if ($multilingual == 1) { $querylang = "AND (blanguage='$currentlang' OR blanguage='')"; } else { $querylang = ""; } if (strtolower($side[0]) == "l") { $pos = "l"; } elseif (strtolower($side[0]) == "r") { $pos = "r"; } elseif (strtolower($side[0]) == "c") { $pos = "c"; } elseif (strtolower($side[0]) == "d") { $pos = "d"; } $side = $pos; $sql = "SELECT bid, bkey, title, content, url, blockfile, view FROM ".$prefix."_blocks WHERE bposition='$pos' AND active='1' $querylang ORDER BY weight ASC"; $result = $db->sql_query($sql); while($row = $db->sql_fetchrow($result)) { $bid = intval($row['bid']); $bkey = $row['bkey']; $title = stripslashes(check_html($row['title'], "nohtml")); $content = stripslashes($row['content']); $url = stripslashes($row['url']); $blockfile = $row['blockfile']; $view = intval($row['view']); if ($bkey == admin) { adminblock(); } elseif ($bkey == userbox) { userblock(); } elseif ($bkey == "") { if ($view == 0) { render_blocks($side, $blockfile, $title, $content, $bid, $url); } elseif ($view == 1 AND is_user($user) || is_admin($admin)) { render_blocks($side, $blockfile, $title, $content, $bid, $url); } elseif ($view == 2 AND is_admin($admin)) { render_blocks($side, $blockfile, $title, $content, $bid, $url); } elseif ($view == 3 AND !is_user($user) || is_admin($admin)) { render_blocks($side, $blockfile, $title, $content, $bid, $url); } } } } function message_box() { global $bgcolor1, $bgcolor2, $user, $admin, $cookie, $textcolor2, $prefix, $multilingual, $currentlang, $db; if ($multilingual == 1) { $querylang = "AND (mlanguage='$currentlang' OR mlanguage='')"; } else { $querylang = ""; } $sql = "SELECT mid, title, content, date, expire, view FROM ".$prefix."_message WHERE active='1' $querylang"; $result = $db->sql_query($sql); if ($numrows = $db->sql_numrows($result) == 0) { return; } else { while ($row = $db->sql_fetchrow($result)) { $mid = intval($row['mid']); $title = stripslashes(check_html($row['title'], "nohtml")); $content = stripslashes($row['content']); $mdate = $row['date']; $expire = intval($row['expire']); $view = intval($row['view']); if ($title != "" && $content != "") { if ($expire == 0) { $remain = _UNLIMITED; } else { $etime = (($mdate+$expire)-time())/3600; $etime = (int)$etime; if ($etime < 1) { $remain = _EXPIRELESSHOUR; } else { $remain = ""._EXPIREIN." $etime "._HOURS.""; } } if ($view == 4 AND is_admin($admin)) { OpenTable(); echo "<center>$title</center> \n" ."$content" ." <center>[ "._MVIEWADMIN." - $remain - <a href=\"admin.php?op=editmsg&mid=$mid\">"._EDIT."</a> ]</center>"; CloseTable(); echo " "; } elseif ($view == 3 AND is_user($user) || is_admin($admin)) { OpenTable(); echo "<center>$title</center> \n" ."$content"; if (is_admin($admin)) { echo " <center>[ "._MVIEWUSERS." - $remain - <a href=\"admin.php?op=editmsg&mid=$mid\">"._EDIT."</a> ]</center>"; } CloseTable(); echo " "; } elseif ($view == 2 AND !is_user($user) || is_admin($admin)) { OpenTable(); echo "<center>$title</center> \n" ."$content"; if (is_admin($admin)) { echo " <center>[ "._MVIEWANON." - $remain - <a href=\"admin.php?op=editmsg&mid=$mid\">"._EDIT."</a> ]</center>"; } CloseTable(); echo " "; } elseif ($view == 1) { OpenTable(); echo "<center>$title</center> \n" ."$content"; if (is_admin($admin)) { echo " <center>[ "._MVIEWALL." - $remain - <a href=\"admin.php?op=editmsg&mid=$mid\">"._EDIT."</a> ]</center>"; } CloseTable(); echo " "; } if ($expire != 0) { $past = time()-$expire; if ($mdate < $past) { $db->sql_query("UPDATE ".$prefix."_message SET active='0' WHERE mid='$mid'"); } } } } } } function online() { global $user, $cookie, $prefix, $db; cookiedecode($user); $ip = $_SERVER["REMOTE_ADDR"]; $uname = $cookie[1]; if (!isset($uname)) { $uname = "$ip"; $guest = 1; } $past = time()-1800; $sql = "DELETE FROM ".$prefix."_session WHERE time < '$past'"; $db->sql_query($sql); $sql = "SELECT time FROM ".$prefix."_session WHERE uname='$uname'"; $result = $db->sql_query($sql); $ctime = time(); if ($row = $db->sql_fetchrow($result)) { $sql = "UPDATE ".$prefix."_session SET uname='$uname', time='$ctime', host_addr='$ip', guest='$guest' WHERE uname='$uname'"; $db->sql_query($sql); } else { $sql = "INSERT INTO ".$prefix."_session (uname, time, host_addr, guest) VALUES ('$uname', '$ctime', '$ip', '$guest')"; $db->sql_query($sql); } } function blockfileinc($title, $blockfile, $side=0) { $blockfiletitle = $title; $file = @file("blocks/".$blockfile.""); if (!$file) { $content = _BLOCKPROBLEM; } else { include("blocks/".$blockfile.""); } if ($content == "") { $content = _BLOCKPROBLEM2; } if ($side == 1) { themecenterbox($blockfiletitle, $content); } elseif ($side == 2) { themecenterbox($blockfiletitle, $content); } else { themesidebox($blockfiletitle, $content); } } function selectlanguage() { global $useflags, $currentlang; if ($useflags == 1) { $title = _SELECTLANGUAGE; $content = "<center>"._SELECTGUILANG." "; $langdir = dir("language"); while($func=$langdir->read()) { if(substr($func, 0, 5) == "lang-") { $menulist .= "$func "; } } closedir($langdir->handle); $menulist = explode(" ", $menulist); sort($menulist); for ($i=0; $i < sizeof($menulist); $i++) { if($menulist[$i]!="") { $tl = ereg_replace("lang-","",$menulist[$i]); $tl = ereg_replace(".php","",$tl); $altlang = ucfirst($tl); $content .= "<a href=\"index.php?newlang=$tl\"><img src=\"images/language/flag-$tl.png\" border=\"0\" alt=\"$altlang\" title=\"$altlang\" hspace=\"3\" vspace=\"3\"></a> "; } } $content .= "</center>"; themesidebox($title, $content); } else { $title = _SELECTLANGUAGE; $content = "<center>"._SELECTGUILANG." "; $content .= "<form action=\"index.php\" method=\"get\"><select name=\"newlanguage\" onChange=\"top.location.href=this.options[this.selectedIndex].value\">"; $handle=opendir('language'); while ($file = readdir($handle)) { if (preg_match("/^lang\-(.+)\.php/", $file, $matches)) { $langFound = $matches[1]; $languageslist .= "$langFound "; } } closedir($handle); $languageslist = explode(" ", $languageslist); sort($languageslist); for ($i=0; $i < sizeof($languageslist); $i++) { if($languageslist[$i]!="") { $content .= "<option value=\"index.php?newlang=$languageslist[$i]\" "; if($languageslist[$i]==$currentlang) $content .= " selected"; $content .= ">".ucfirst($languageslist[$i])."</option>\n"; } } $content .= "</select></form></center>"; themesidebox($title, $content); } } function ultramode() { global $prefix, $db; $ultra = "ultramode.txt"; $file = fopen("$ultra", "w"); fwrite($file, "General purpose self-explanatory file with news headlines\n"); $sql = "SELECT sid, aid, title, time, comments, topic FROM ".$prefix."_stories ORDER BY time DESC LIMIT 0,10"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $rsid = intval($row['sid']); $raid = $row['aid']; $rtitle = stripslashes(check_html($row['title'], "nohtml")); $rtime = $row['time']; $rcomments = stripslashes($row['comments']); $rtopic = intval($row['topic']); $row2 = $db->sql_fetchrow($db->sql_query("select topictext, topicimage from ".$prefix."_topics where topicid='$rtopic'")); $topictext = stripslashes(check_html($row2['topictext'], "nohtml")); $topicimage = $row2['topicimage']; $content = "%%\n$rtitle\n/modules.php?name=News&file=article&sid=$rsid\n$rtime\n$raid\n$topictext\n$rcomments\n$topicimage\n"; fwrite($file, $content); } fclose($file); } function cookiedecode($user) { global $cookie, $prefix, $db, $user_prefix; $user = addslashes($user); $user = base64_decode($user); $user = addslashes($user); $user = htmlentities($user, ENT_QUOTES); $cookie = explode(":", $user); $sql = "SELECT user_password FROM ".$user_prefix."_users WHERE username='$cookie[1]'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $pass = $row['user_password']; if ($cookie[2] == $pass && $pass != "") { return $cookie; } else { unset($user); unset($cookie); } } function getusrinfo($user) { global $userinfo, $user_prefix, $db; $user = addslashes($user); $user2 = base64_decode($user); $user2 = addslashes($user2); $user3 = explode(":", $user2); $sql = "SELECT * FROM ".$user_prefix."_users WHERE username='$user3[1]' AND user_password='$user3[2]'"; $result = $db->sql_query($sql); if ($db->sql_numrows($result) == 1) { $userinfo = $db->sql_fetchrow($result); } return $userinfo; } function FixQuotes ($what = "") { $what = ereg_replace("'","''",$what); while (eregi("\\\\'", $what)) { $what = ereg_replace("\\\\'","'",$what); } return $what; } /*********************************************************/ /* text filter */ /*********************************************************/ function check_words($Message) { global $EditedMessage; include("config.php"); $EditedMessage = $Message; if ($CensorMode != 0) { if (is_array($CensorList)) { $Replace = $CensorReplace; if ($CensorMode == 1) { for ($i = 0; $i < count($CensorList); $i++) { $EditedMessage = eregi_replace("$CensorList[$i]([^a-zA-Z0-9])","$Replace\\1",$EditedMessage); } } elseif ($CensorMode == 2) { for ($i = 0; $i < count($CensorList); $i++) { $EditedMessage = eregi_replace("(^|[^[:alnum:]])$CensorList[$i]","\\1$Replace",$EditedMessage); } } elseif ($CensorMode == 3) { for ($i = 0; $i < count($CensorList); $i++) { $EditedMessage = eregi_replace("$CensorList[$i]","$Replace",$EditedMessage); } } } } return ($EditedMessage); } function delQuotes($string){ /* no recursive function to add quote to an HTML tag if needed */ /* and delete duplicate spaces between attribs. */ $tmp=""; # string buffer $result=""; # result string $i=0; $attrib=-1; # Are us in an HTML attrib ? -1: no attrib 0: name of the attrib 1: value of the atrib $quote=0; # Is a string quote delimited opened ? 0=no, 1=yes $len = strlen($string); while ($i<$len) { switch($string[$i]) { # What car is it in the buffer ? case "\"": #" # a quote. if ($quote==0) { $quote=1; } else { $quote=0; if (($attrib>0) && ($tmp != "")) { $result .= "=\"$tmp\""; } $tmp=""; $attrib=-1; } break; case "=": # an equal - attrib delimiter if ($quote==0) { # Is it found in a string ? $attrib=1; if ($tmp!="") $result.=" $tmp"; $tmp=""; } else $tmp .= '='; break; case " ": # a blank ? if ($attrib>0) { # add it to the string, if one opened. $tmp .= $string[$i]; } break; default: # Other if ($attrib<0) # If we weren't in an attrib, set attrib to 0 $attrib=0; $tmp .= $string[$i]; break; } $i++; } if (($quote!=0) && ($tmp != "")) { if ($attrib==1) $result .= "="; /* If it is the value of an atrib, add the '=' */ $result .= "\"$tmp\""; /* Add quote if needed (the reason of the function ;-) */ } return $result; } function check_html ($str, $strip="") { /* The core of this code has been lifted from phpslash */ /* which is licenced under the GPL. */ include("config.php"); if ($strip == "nohtml") $AllowableHTML=array(''); $str = stripslashes($str); $str = eregi_replace("<[[:space:]]*([^>]*)[[:space:]]*>", '<\\1>', $str); // Delete all spaces from html tags . $str = eregi_replace("<a[^>]*href[[:space:]]*=[[:space:]]*\"?[[:space:]]*([^\" >]*)[[:space:]]*\"?[^>]*>", '<a href="\\1">', $str); # " // Delete all attribs from Anchor, except an href, double quoted. $str = eregi_replace("<[[:space:]]* img[[:space:]]*([^>]*)[[:space:]]*>", '', $str); // Delete all img tags $tmp = ""; while (ereg("<(/?[[:alpha:]]*)[[:space:]]*([^>]*)>",$str,$reg)) { $i = strpos($str,$reg[0]); $l = strlen($reg[0]); if ($reg[1][0] == "/") $tag = strtolower(substr($reg[1],1)); else $tag = strtolower($reg[1]); if ($a = $AllowableHTML[$tag]) if ($reg[1][0] == "/") $tag = "</$tag>"; elseif (($a == 1) || ($reg[2] == "")) $tag = "<$tag>"; else { # Place here the double quote fix function. $attrb_list=delQuotes($reg[2]); // A VER $attrb_list = ereg_replace("&","&",$attrb_list); $tag = "<$tag" . $attrb_list . ">"; } # Attribs in tag allowed else $tag = ""; $tmp .= substr($str,0,$i) . $tag; $str = substr($str,$i+$l); } $str = $tmp . $str; return $str; exit; /* Squash PHP tags unconditionally */ $str = ereg_replace("<\?","",$str); return $str; } function filter_text($Message, $strip="") { global $EditedMessage; check_words($Message); $EditedMessage=check_html($EditedMessage, $strip); return ($EditedMessage); } /*********************************************************/ /* formatting stories */ /*********************************************************/ function formatTimestamp($time) { global $datetime, $locale; setlocale (LC_TIME, $locale); ereg ("([0-9]{4})-([0-9]{1,2})-([0-9]{1,2}) ([0-9]{1,2}):([0-9]{1,2}):([0-9]{1,2})", $time, $datetime); $datetime = strftime(""._DATESTRING."", mktime($datetime[4],$datetime[5],$datetime[6],$datetime[2],$datetime[3],$datetime[1])); $datetime = ucfirst($datetime); return($datetime); } function formatAidHeader($aid) { global $prefix, $db; $sql = "SELECT url, email FROM ".$prefix."_authors WHERE aid='$aid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $url = $row['url']; $email = stripslashes($row['email']); if (isset($email)) { $aid = "<a href=\"mailto:$email\">$aid</a>"; } elseif (isset($url)) { $aid = "<a href=\"$url\">$aid</a>"; } else { $aid = $aid; } echo "$aid"; } function get_author($aid) { global $prefix, $db; $sql = "SELECT url, email FROM ".$prefix."_authors WHERE aid='$aid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $url = stripslashes($row['url']); $email = stripslashes($row['email']); if (isset($url)) { $aid = "<a href=\"$url\">$aid</a>"; } elseif (isset($email)) { $aid = "<a href=\"mailto:$email\">$aid</a>"; } else { $aid = $aid; } return($aid); } function themepreview($title, $hometext, $bodytext="", $notes="") { echo "$title $hometext"; if ($bodytext != "") { echo " $bodytext"; } if ($notes != "") { echo " "._NOTE." $notes"; } } function adminblock() { global $admin, $prefix, $db; if (is_admin($admin)) { $sql = "SELECT title, content FROM ".$prefix."_blocks WHERE bkey='admin'"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $row_title = $row['title']; $row_content = $row['content']; $content = "$row_content"; themesidebox($row_title, $row_content); } $title = ""._WAITINGCONT.""; $num = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_queue")); $content = ""; $content .= "<big>·</big> <a href=\"admin.php?op=submissions\">"._SUBMISSIONS."</a>: $num "; $num = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_reviews_add")); $content .= "<big>·</big> <a href=\"admin.php?op=reviews\">"._WREVIEWS."</a>: $num "; $num = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_links_newlink")); $brokenl = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_links_modrequest WHERE brokenlink='1'")); $modreql = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_links_modrequest WHERE brokenlink='0'")); $content .= "<big>·</big> <a href=\"admin.php?op=Links\">"._WLINKS."</a>: $num "; $content .= "<big>·</big> <a href=\"admin.php?op=LinksListModRequests\">"._MODREQLINKS."</a>: $modreql "; $content .= "<big>·</big> <a href=\"admin.php?op=LinksListBrokenLinks\">"._BROKENLINKS."</a>: $brokenl "; $num = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_downloads_newdownload")); $brokend = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_downloads_modrequest WHERE brokendownload='1'")); $modreqd = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_downloads_modrequest WHERE brokendownload='0'")); $content .= "<big>·</big> <a href=\"admin.php?op=downloads\">"._UDOWNLOADS."</a>: $num "; $content .= "<big>·</big> <a href=\"admin.php?op=DownloadsListModRequests\">"._MODREQDOWN."</a>: $modreqd "; $content .= "<big>·</big> <a href=\"admin.php?op=DownloadsListBrokenDownloads\">"._BROKENDOWN."</a>: $brokend "; themesidebox($title, $content); } } function loginbox() { global $user; if (!is_user($user)) { $title = _LOGIN; $boxstuff = "<form action=\"modules.php?name=Your_Account\" method=\"post\">"; $boxstuff .= "<center>"._NICKNAME." "; $boxstuff .= "<input type=\"text\" name=\"username\" size=\"8\" maxlength=\"25\"> "; $boxstuff .= ""._PASSWORD." "; $boxstuff .= "<input type=\"password\" name=\"user_password\" size=\"8\" maxlength=\"20\"> "; $boxstuff .= "<input type=\"hidden\" name=\"op\" value=\"login\">"; $boxstuff .= "<input type=\"submit\" value=\""._LOGIN."\"></center></form>"; $boxstuff .= "<center>"._ASREGISTERED."</center>"; themesidebox($title, $boxstuff); } } function userblock() { global $user, $cookie, $db, $user_prefix; if((is_user($user)) AND ($cookie[8])) { $sql = "SELECT ublock FROM ".$user_prefix."_users WHERE user_id='$cookie[0]'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $title = ""._MENUFOR." $cookie[1]"; $ublock = $row['ublock']; themesidebox($title, $ublock); } } function getTopics($s_sid) { global $topicname, $topicimage, $topictext, $prefix, $db; $sid = intval($s_sid); $sql = "SELECT topic FROM ".$prefix."_stories WHERE sid='$sid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $rtopic = $row['topic']; $sql2 = "SELECT topicid, topicname, topicimage, topictext FROM ".$prefix."_topics WHERE topicid='$rtopic'"; $result2 = $db->sql_query($sql2); $row2 = $db->sql_fetchrow($result2); $topicid = intval($row2['topicid']); $topicname = $row2['topicname']; $topicimage = $row2['topicimage']; $topictext = stripslashes(check_html($row2['topictext'], "nohtml")); } function headlines($bid, $cenbox=0) { global $prefix, $db; $bid = intval($bid); $sql = "SELECT title, content, url, refresh, time FROM ".$prefix."_blocks WHERE bid='$bid'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $title = stripslashes(check_html($row['title'], "nohtml")); $content = stripslashes($row['content']); $url = $row['url']; $refresh = intval($row['refresh']); $otime = $row['time']; $past = time()-$refresh; if ($otime < $past) { $btime = time(); $rdf = parse_url($url); $fp = @fsockopen($rdf['host'], 80, $errno, $errstr, 15); if (!$fp) { $content = ""; $sql = "UPDATE ".$prefix."_blocks SET content='$content', time='$btime' WHERE bid='$bid'"; $db->sql_query($sql); $cont = 0; if ($cenbox == 0) { $content = ""._RSSPROBLEM.""; themesidebox($title, $content); } else { $content = ""._RSSPROBLEM.""; themecenterbox($title, $content); } return; } if ($fp) { fputs($fp, "GET " . $rdf['path'] . "?" . $rdf['query'] . " HTTP/1.0\r\n"); fputs($fp, "HOST: " . $rdf['host'] . "\r\n\r\n"); $string = ""; while(!feof($fp)) { $pagetext = fgets($fp,300); $string .= chop($pagetext); } fputs($fp,"Connection: close\r\n\r\n"); fclose($fp); //uprava pro element image - start $imagesindex = eregi("<image>(.*)</image>",$string,$imagearray); $image = $imagearray[1]; //uloZena cast s datY o obraZku $imagetitle = eregi("<title>(.*)</title>",$image,$titlea); $imgtitle = $titlea[1]; //title image $imageurl = eregi("<url>(.*)</url>",$image,$urlimage); $imagesrc = $urlimage[1]; //src na obrazek $imagedescription = eregi("<description>(.*)</description>",$image,$description); $imagealt = $description[1]; $imagewidth = eregi("<width>(.*)</width>",$image,$width); $imagew = $width[1]; $imageheight = eregi("<height>(.*)</height>",$image,$height); $imageh = $height[1]; if ($imagesrc != "") { $imageformat = "<center><img src=\"$imagesrc\" border=\"0\" alt=\"$imagealt\" width=\"$imagew\" height=\"$imageh\"></center> "; } //uprava pro element image - konec $items = explode("</item>",$string); $content = "$imageformat"; for ($i=0;$i<10;$i++) { $link = ereg_replace(".*<link>","",$items[$i]); $link = ereg_replace("</link>.*","",$link); $title2 = ereg_replace(".*<title>","",$items[$i]); $title2 = ereg_replace("</title>.*","",$title2); $title2 = stripslashes($title2); if ($items[$i] == "" AND $cont != 1) { $content = ""; $sql = "UPDATE ".$prefix."_blocks SET content='$content', time='$btime' WHERE bid='$bid'"; $db->sql_query($sql); $cont = 0; if ($cenbox == 0) { themesidebox($title, $content); } else { themecenterbox($title, $content); } return; } else { if (strcmp($link,$title2) AND $items[$i] != "") { $cont = 1; $content .= "<big>·</big><a href=\"$link\" target=\"new\">$title2</a> \n"; } } } } $sql = "UPDATE ".$prefix."_blocks SET content='$content', time='$btime' WHERE bid='$bid'"; $db->sql_query($sql); } $siteurl = ereg_replace("http://","",$url); $siteurl = explode("/",$siteurl); if (($cont == 1) OR ($content != "")) { $content .= " <a href=\"http://$siteurl[0]\" target=\"blank\">"._HREADMORE."</a>"; } elseif (($cont == 0) OR ($content == "")) { $content = ""._RSSPROBLEM.""; } if ($cenbox == 0) { themesidebox($title, $content); } else { themecenterbox($title, $content); } } function automated_news() { global $prefix, $multilingual, $currentlang, $db; if ($multilingual == 1) { $querylang = "WHERE (alanguage='$currentlang' OR alanguage='')"; /* the OR is needed to display stories who are posted to ALL languages */ } else { $querylang = ""; } $today = getdate(); $day = $today['mday']; if ($day < 10) { $day = "0$day"; } $month = $today['mon']; if ($month < 10) { $month = "0$month"; } $year = $today['year']; $hour = $today['hours']; $min = $today['minutes']; $sec = "00"; $sql = "SELECT anid, time FROM ".$prefix."_autonews $querylang"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { $anid = $row['anid']; $time = $row['time']; ereg ("([0-9]{4})-([0-9]{1,2})-([0-9]{1,2}) ([0-9]{1,2}):([0-9]{1,2}):([0-9]{1,2})", $time, $date); if (($date[1] <= $year) AND ($date[2] <= $month) AND ($date[3] <= $day)) { if (($date[4] < $hour) AND ($date[5] >= $min) OR ($date[4] <= $hour) AND ($date[5] <= $min)) { $sql2 = "SELECT * FROM ".$prefix."_autonews WHERE anid='$anid'"; $result2 = $db->sql_query($sql2); while ($row2 = $db->sql_fetchrow($result2)) { $title = stripslashes(FixQuotes($row2['title'])); $hometext = stripslashes(FixQuotes($row2['hometext'])); $bodytext = stripslashes(FixQuotes($row2['bodytext'])); $notes = stripslashes(FixQuotes($row2['notes'])); $catid2 = intval($row2['catid']); $aid2 = $row2['aid']; $time2 = $row2['time']; $topic2 = $row2['topic']; $informant2 = $row2['informant']; $ihome2 = intval($row2['ihome']); $alanguage2 = $row2['alanguage']; $acomm2 = intval($row2['acomm']); $associated2 = $row2['associated']; $sql = "INSERT INTO ".$prefix."_stories VALUES (NULL, '$catid2', '$aid2', '$title', '$time2', '$hometext', '$bodytext', '0', '0', '$topic2', '$informant2', '$notes', '$ihome2', '$alanguage2', '$acomm2', '0', '0', '0', '0', '$associated2')"; $db->sql_query($sql); $sql = "DELETE FROM ".$prefix."_autonews WHERE anid='$anid'"; $db->sql_query($sql); } } } } } function themecenterbox($title, $content) { OpenTable(); echo "<center>$title</center> " ."$content"; CloseTable(); echo " "; } function public_message() { global $prefix, $user_prefix, $db, $user, $admin, $p_msg, $cookie, $broadcast_msg; if ($broadcast_msg == 1) { if (is_user($user)) { cookiedecode($user); $sql = "SELECT broadcast FROM ".$user_prefix."_users WHERE username='$cookie[1]'"; $result = $db->sql_query($sql); $row = $db->sql_fetchrow($result); $upref = $row['broadcast']; if ($upref == 1) { $t_off = " [ <a href=\"modules.php?name=Your_Account&op=edithome\">"._TURNOFFMSG."</a> ]"; $pm_show = 1; } else { $pm_show = 0; } } else { $t_off = ""; } if (!is_user($user) OR (is_user($user) AND ($pm_show == 1))) { $c_mid = base64_decode($p_msg); $c_mid = addslashes($c_mid); $c_mid = intval($c_mid); $sql2 = "SELECT mid, content, date, who FROM ".$prefix."_public_messages WHERE mid > '$c_mid' ORDER BY date ASC LIMIT 1"; $result2 = $db->sql_query($sql2); $row2 = $db->sql_fetchrow($result2); $mid = intval($row2['mid']); $content = $row2['content']; $tdate = $row2['date']; $who = $row2['who']; if ((!isset($c_mid)) OR ($c_mid = $mid)) { $public_msg = " <table width=\"90%\" border=\"1\" cellspacing=\"2\" cellpadding=\"0\" bgcolor=\"FFFFFF\" align=\"center\"><tr><td>\n"; $public_msg .= "<table width=\"100%\" border=\"0\" cellspacing=\"1\" cellpadding=\"2\" bgcolor=\"FF0000\"><tr><td>\n"; $public_msg .= ""._BROADCASTFROM." <a href=\"modules.php?name=Your_Account&op=userinfo&username=$who\">$who</a>: \"$content\""; $public_msg .= "$t_off"; $public_msg .= "</td></tr></table>"; $public_msg .= "</td></tr></table>"; $ref_date = $tdate+600; $actual_date = time(); if ($actual_date >= $ref_date) { $public_msg = ""; $numrows = $db->sql_numrows($db->sql_query("SELECT * FROM ".$prefix."_public_messages")); if ($numrows == 1) { $db->sql_query("DELETE FROM ".$prefix."_public_messages"); $mid = 0; } else { $db->sql_query("DELETE FROM ".$prefix."_public_messages WHERE mid='$mid'"); } } if ($mid == 0 OR $mid == "") { setcookie("p_msg"); } else { $mid = base64_encode($mid); $mid = addslashes($mid); setcookie("p_msg",$mid,time()+600); } } } } else { $public_msg = ""; } return($public_msg); } function get_theme() { global $user, $cookie, $Default_Theme; if(is_user($user)) { $user2 = base64_decode($user); $user2 = addslashes($user2); $t_cookie = explode(":", $user2); if($t_cookie[9]=="") $t_cookie[9]=$Default_Theme; if(isset($theme)) $t_cookie[9]=$theme; if(!$tfile=@opendir("themes/$t_cookie[9]")) { $ThemeSel = $Default_Theme; } else { $ThemeSel = $t_cookie[9]; } } else { $ThemeSel = $Default_Theme; } return($ThemeSel); } function removecrlf($str) { // Function for Security Fix by Ulf Harnhammar, VSU Security 2002 // Looks like I don't have so bad track record of security reports as Ulf believes // He decided to not contact me, but I'm always here, digging on the net return strtr($str, "\015\012", ' '); } function stripos_clone($haystack, $needle, $offset=0) { return strpos(strtoupper($haystack), strtoupper($needle), $offset); } function un_update_system_alert(){ global $prefix, $db, $adminmail, $sitename, $nukeurl, $language; if (file_exists("verstamps/system.ver.php") AND file_exists("verstamps/update.ver.php")) { //je-li system jiz ready :) //nacteme konfiguraci a data $row_config_data_result = $db->sql_query("SELECT * FROM ".$prefix."_un_update_system"); while ($row_config_data = $db->sql_fetchrow($row_config_data_result)) { $name = $row_config_data['config_name']; $value = $row_config_data['config_value']; define("$name", "$value"); } $checktime = UN_UPDATE_LASTDOWNLOAD + UN_UPDATE_DOWNLOAD_INTERVAL; $now = time(); if($checktime < $now) { //aktualizovat udaje v DB if (($un_xml_file = @file_get_contents(UN_UPDATE_SERVER . UN_UPDATE_SOURCEFILE)) == TRUE) { include("verstamps/system.ver.php"); include("verstamps/update.ver.php"); eregi("<required-update-system>(.*)</required-update-system>", $un_xml_file, $update_system_ver); eregi("<united-nuke version=\"".SYSTEM_SERIES."\">(.*)</united-nuke>", $un_xml_file, $unitednuke_series); eregi("<main-tips>(.*)</main-tips>", $unitednuke_series[1], $main_tips); $update_system_ver[1] = str_replace(".", "", $update_system_ver[1]); $update_system_installedver = str_replace(".", "", UPDATE_SYSTEM_VERSION); if ($update_system_ver[1] > $update_system_installedver) { $new_update_system = "1"; } else { $new_update_system = "0"; } $updatedversion = explode("</updated-version>", $unitednuke_series[1]); array_pop($updatedversion); //odstranit posledni polozku pole for ($i=0; $i < (sizeof($updatedversion)); $i++) { eregi("<version>(.*)</version>", $updatedversion[$i], $version); $version_int = str_replace(".", "", $version[1]); if ($version_int > $lastversion) { $lastversion = $version_int; $lastversion_print = $version[1]; } } $installed_system_version_cache = str_replace(".", "", UN_UPDATE_CACHE_LASTVERSION); if ($lastversion > $installed_system_version_cache AND $installed_system_version_cache != "" AND $lastversion > str_replace(".", "", SYSTEM_VERSION_INT)) { include("admin/modules/language/updatemail-".$language.".php"); $subject = ""._UPDATEMAIL_SUBJECT." $lastversion_print"; $msg = ""._UPDATEMAIL_MSG1." $sitename ($nukeurl). "._UPDATEMAIL_MSG2." ($lastversion_print). "._UPDATEMAIL_MSG3." $nukeurl/admin.php?op=SystemUpdate.\n\n"._UPDATEMAIL_MSG4."\n--\n"._UPDATEMAIL_MSG5.""; $mailheaders = "From: "._UPDATEMAIL_FROM." <$adminmail>\n"; $mailheaders .= "Content-Type: text/plain; charset=\""._CHARSET."\"\n\n"; // Mime type mail($adminmail, $subject, $msg, $mailheaders); } $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value='$new_update_system' WHERE config_name='UN_UPDATE_CACHE_NEWUPDATESYSTEM'"); $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value='$main_tips[1]' WHERE config_name='UN_UPDATE_CACHE_TIPS'"); $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value='$lastversion_print' WHERE config_name='UN_UPDATE_CACHE_LASTVERSION'"); $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value='".time()."' WHERE config_name='UN_UPDATE_LASTDOWNLOAD'"); $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value='0' WHERE config_name='UN_UPDATE_CACHE_FAILCOUNT'"); } else { $db->sql_query("UPDATE ".$prefix."_un_update_system SET config_value=config_value+1 WHERE config_name='UN_UPDATE_CACHE_FAILCOUNT'"); } } } } ?>