// Some security stuff...
if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
- $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+ $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4)."/security.php";
require($INC);
}
while (strpos($OUTPUT, '{!') > 0) {
// Prepare the content and eval() it...
$newContent = "";
- $eval = "\$newContent = \"" . COMPILE_CODE(addslashes($OUTPUT)) . "\";";
+ $eval = "\$newContent = \"".COMPILE_CODE(addslashes($OUTPUT))."\";";
@eval($eval);
if (empty($newContent)) {
// Compile and run finished rendered HTML code
while (strpos($OUTPUT, '{!') > 0) {
- $eval = "\$OUTPUT = \"" . COMPILE_CODE(addslashes($OUTPUT)) . "\";";
+ $eval = "\$OUTPUT = \"".COMPILE_CODE(addslashes($OUTPUT))."\";";
eval($eval);
}
// Add more variables which you want to use in your template files
global $DATA, $_CONFIG, $username;
+ // Make all template names lowercase
+ $template = strtolower($template);
+
// Count the template load
if (!isset($_CONFIG['num_templates'])) $_CONFIG['num_templates'] = 0;
$_CONFIG['num_templates']++;
while (strpos($tmpl_file, "\'") !== false) { $tmpl_file = str_replace("\'", '{QUOT}', $tmpl_file); }
// Do we have to compile the code?
+ $ret = "";
if ((strpos($tmpl_file, "\$") !== false) || (strpos($tmpl_file, '{--') !== false) || (strpos($tmpl_file, '--}') > 0)) {
// Okay, compile it!
- $tmpl_file = "\$ret=\"" . COMPILE_CODE(addslashes($tmpl_file)) . "\";";
+ $tmpl_file = "\$ret=\"".COMPILE_CODE(addslashes($tmpl_file))."\";";
eval($tmpl_file);
} else {
// Simply return loaded code
// Send mail out to an email address
function SEND_EMAIL($TO, $SUBJECT, $MSG, $HTML='N', $FROM="") {
// Compile subject line (for POINTS constant etc.)
- $eval = "\$SUBJECT = \"" . COMPILE_CODE(addslashes($SUBJECT)) . "\";";
+ $eval = "\$SUBJECT = \"".COMPILE_CODE(addslashes($SUBJECT))."\";";
eval($eval);
$SUBJECT = html_entity_decode($SUBJECT);
return $PASS;
}
//
-function MAKE_DATETIME($time, $mode="0")
+function MAKE_DATETIME ($time, $mode="0")
{
if ($time == 0) {
// Never happend
switch (GET_LANGUAGE())
{
case "de": // German date / time format
- switch ($mode)
- {
+ switch ($mode) {
case "0": $ret = date("d.m.Y \u\m H:i \U\h\\r", $time); break;
case "1": $ret = strtolower(date("d.m.Y - H:i", $time)); break;
case "2": $ret = date("d.m.Y|H:i", $time); break;
break;
default: // Default is the US date / time format!
- switch ($mode)
- {
+ switch ($mode) {
case "0": $ret = date("r", $time); break;
case "1": $ret = date("Y-m-d - g:i A", $time); break;
case "2": $ret = date("y-m-d|H:i", $time); break;
}
// Translates the american decimal dot into a german comma
-function TRANSLATE_COMMA($dotted, $cut=true) {
+function TRANSLATE_COMMA ($dotted, $cut=true) {
global $_CONFIG;
+
// Default is 3 you can change this in admin area "Misc -> Misc Options"
if (empty($_CONFIG['max_comma'])) $_CONFIG['max_comma'] = "3";
- if (!ereg("\.", $dotted)) $dotted .= ".".str_repeat("0", $_CONFIG['max_comma']);
- if ($cut) {
- // Remove trailing zeros
- $dot = str_replace(".", "x", $dotted);
- while(substr($dot, -1, 1) == "0") {
- $dot = substr($dot, 0, -1);
- }
+ $maxComma = $_CONFIG['max_comma'];
- if (substr($dot, -1, 1) == "x") {
- // Last char is the 'x'
- $dotted = substr($dot, 0, -1);
+ // Cut zeros off?
+ if ($cut) {
+ // Test for commata if in cut-mode
+ $com = explode(".", $dotted);
+ if (count($com) > 1) {
+ // Commata found, so only zeros?
+ if ($com[1] == str_repeat("0", strlen($com[1]))) {
+ // Only zeros, so don't display them
+ $maxComma = 0;
+ } // END - if
} else {
- // Last char is a number
- $dotted = str_replace("x", ".", $dot);
+ // Don't display commatas even if there are none... ;-)
+ $maxComma = 0;
}
- }
+ } // END - if
+
+ // Debug log
+ //DEBUG_LOG(__FUNCTION__.":dotted={$dotted},maxComma={$maxComma}");
// Translate it now
switch (GET_LANGUAGE()) {
case "de":
- $pos = strpos($dotted, ".");
- if ($pos > 0) {
- if ($cut) {
- // Cut x numbers behind comma
- $dotted = str_replace(".", ",", substr($dotted, 0, ($pos + $_CONFIG['max_comma'] + 1)));
- } else {
- // Replace comma with dot
- $dotted = str_replace(".", ",", $dotted);
- }
- } elseif (!$cut) {
- if (empty($pos)) {
- $dotted = "0,".str_repeat("0", $_CONFIG['max_comma']);
- } else {
- $dotted .= ",".str_repeat("0", $_CONFIG['max_comma']);
- }
- }
+ $dotted = number_format($dotted, $maxComma, ",", ".");
break;
default:
- if (!$cut) {
- if ($pos > 0) {
- $dotted = substr($dotted, 0, ($pos + $_CONFIG['max_comma'] + 1));
- } else {
- $dotted .= ".".str_repeat("0", $_CONFIG['max_comma']);
- }
- }
+ $dotted = number_format($dotted, $maxComma, ".", ",");
break;
}
+
+ // Return translated value
return $dotted;
}
//
-function DEREFERER($URL) {
- $URL = URL."/modules.php?module=loader&url=".urlencode(base64_encode(gzcompress(COMPILE_CODE($URL))));
+function DEREFERER ($URL) {
+ $URL = URL."/modules.php?module=loader&url=".urlencode(base64_encode(gzcompress($URL)));
return $URL;
}
//
-function TRANSLATE_SEX($sex) {
+function TRANSLATE_SEX ($sex) {
switch ($sex)
{
case "M": $ret = SEX_M; break;
function LOAD_EMAIL_TEMPLATE($template, $content="", $UID="0") {
global $DATA, $_CONFIG, $REPLACER;
+ // Make sure all template names are lowercase!
+ $template = strtolower($template);
+
// Keept for backward-compatiblity (please replace these variables against our new {--CONST--} syntax!)
$MAIN_TITLE = MAIN_TITLE; $URL = URL; $WEBMASTER = WEBMASTER;
$surname = ""; $family = ""; $nick = ""; $sex = "N";
if (isSessionVariableSet('admin_login')) {
// Load Admin data
$result = SQL_QUERY_ESC("SELECT email FROM "._MYSQL_PREFIX."_admins WHERE login='%s' LIMIT 1",
- array(SQL_ESCAPE(get_session('admin_login'))), __FILE__, __LINE__);
+ array(get_session('admin_login')), __FILE__, __LINE__);
list($ADMIN) = SQL_FETCHROW($result);
SQL_FREERESULT($result);
}
OUTPUT_HTML("<A href=\"".$URL."\">".$URL."</A>");
} elseif (!headers_sent()) {
// Load URL when headers are not sent
+ /*
+ print("<pre>");
+ debug_print_backtrace();
+ die("</pre>URL={$URL}");
+ */
@header ("Location: ".str_replace("&", "&", $URL));
} else {
// Output error message
}
if (ereg("s", $display) || (empty($display)))
{
- $OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">".SECS."</STRONG></TD>\n";
+ $OUT .= " <TD align=\"center\" class=\"admin_title bottom\"><STRONG class=\"tiny\">"._SECONDS."</STRONG></TD>\n";
}
$OUT .= "</TR>\n";
$OUT .= "<TR>\n";
}
}
-//
-function MXCHANGE_OPEN ($script) {
- global $_CONFIG;
- // Default is not to use proxy
- $useProxy = true;
-
- // Are proxy settins set?
- if ((!empty($_CONFIG['proxy_host'])) && ($_CONFIG['proxy_port'] > 0)) {
- // Then use it
- $useProxy = true;
- }
-
- //* DEBUG */ print("SCRIPT=".$script."<br />\n");
- // Compile the script name
- $script = COMPILE_CODE($script);
- //* DEBUG */ print("SCRIPT=".$script."<br />\n");
-
+// Extract host from script name
+function EXTRACT_HOST (&$script) {
// Use default SERVER_URL by default... ;) So?
$url = SERVER_URL;
+
+ // Is this URL valid?
if (substr($script, 0, 7) == "http://") {
// Use the hostname from script URL as new hostname
$url = substr($script, 7);
//* DEBUG */ print("SCRIPT=".$script."<br />\n");
if (substr($script, 0, 1) == "/") $script = substr($script, 1);
+ // Return host name
+ return $host;
+}
+
+// Send a GET request
+function GET_URL ($script) {
+ // Compile the script name
+ $script = COMPILE_CODE($script);
+
+ // Extract host name from script
+ $host = EXTRACT_HOST($script);
+
+ // Generate GET request header
+ $request = "GET /" . trim($script) . " HTTP/1.1\r\n";
+ $request .= "Host: " . $host . "\r\n";
+ $request .= "Referer: " . URL . "/admin.php\r\n";
+ $request .= "User-Agent: " . TITLE . "/" . FULL_VERSION . "\r\n";
+ $request .= "Content-Type: text/plain\r\n";
+ $request .= "Cache-Control: no-cache\r\n";
+ $request .= "Connection: Close\r\n\r\n";
+
+ // Send the raw request
+ $response = SEND_RAW_REQUEST($host, $request);
+
+ // Return the result to the caller function
+ return $response;
+}
+
+// Send a POST request
+function POST_URL ($script, $postData) {
+ // Is postData an array?
+ if (!is_array($postData)) {
+ // Abort here
+ return array("", "", "");
+ } // END - if
+
+ // Compile the script name
+ $script = COMPILE_CODE($script);
+
+ // Extract host name from script
+ $host = EXTRACT_HOST($script);
+
+ // Construct request
+ $data = http_build_query($postData, '', '&');
+
+ // Generate POST request header
+ $request = "POST /" . trim($script) . " HTTP/1.1\r\n";
+ $request .= "Host: " . $host . "\r\n";
+ $request .= "Referer: " . URL . "/admin.php\r\n";
+ $request .= "User-Agent: " . TITLE . "/" . FULL_VERSION . "\r\n";
+ $request .= "Content-type: application/x-www-form-urlencoded\r\n";
+ $request .= "Content-length: " . strlen($data) . "\r\n";
+ $request .= "Cache-Control: no-cache\r\n";
+ $request .= "Connection: Close\r\n\r\n";
+ $request .= $data;
+
+ // Send the raw request
+ $response = SEND_RAW_REQUEST($host, $request);
+
+ // Return the result to the caller function
+ return $response;
+}
+
+// Sends a raw request to another host
+function SEND_RAW_REQUEST ($host, $request) {
+ global $_CONFIG;
+
+ // Initialize array
+ $response = array("", "", "");
+
+ // Default is not to use proxy
+ $useProxy = false;
+
+ // Are proxy settins set?
+ if ((!empty($_CONFIG['proxy_host'])) && ($_CONFIG['proxy_port'] > 0)) {
+ // Then use it
+ $useProxy = true;
+ } // END - if
+
// Open connection
//* DEBUG */ die("SCRIPT=".$script."<br />\n");
if ($useProxy) {
// Is there a link?
if (!is_resource($fp)) {
// Failed!
- return array("", "", "");
+ return $response;
} // END - if
// Do we use proxy?
if ($useProxy) {
// Generate CONNECT request header
- $request = "CONNECT ".$host.":80 HTTP/1.1\r\n";
- $request .= "Host: ".$host."\r\n";
+ $proxyTunnel = "CONNECT ".$host.":80 HTTP/1.1\r\n";
+ $proxyTunnel .= "Host: ".$host."\r\n";
// Use login data to proxy? (username at least!)
if (!empty($_CONFIG['proxy_username'])) {
// Add it as well
$encodedAuth = base64_encode(COMPILE_CODE($_CONFIG['proxy_username']).":".COMPILE_CODE($_CONFIG['proxy_password']));
- $request .= "Proxy-Authorization: Basic ".$encodedAuth."\r\n";
+ $proxyTunnel .= "Proxy-Authorization: Basic ".$encodedAuth."\r\n";
} // END - if
// Add last new-line
- $request .= "\r\n";
- //* DEBUG: */ print("<strong>Request:</strong><pre>".$request."</pre>");
+ $proxyTunnel .= "\r\n";
+ //* DEBUG: */ print("<strong>proxyTunnel=</strong><pre>".$proxyTunnel."</pre>");
// Write request
- fputs($fp, $request);
+ fputs($fp, $proxyTunnel);
// Got response?
if (feof($fp)) {
// No response received
- return array("", "", "");
+ return $response;
} // END - if
// Read the first line
$respArray = explode(" ", $resp);
if ((strtolower($respArray[0]) !== "http/1.0") || ($respArray[1] != "200")) {
// Invalid response!
- return array("", "", "");
+ return $response;
} // END - if
} // END - if
-
- // Generate GET request header
- $request = "GET /".trim($script)." HTTP/1.1\r\n";
- $request .= "Host: ".$host."\r\n";
- $request .= "Referer: ".URL."/admin.php\r\n";
- $request .= "User-Agent: ".TITLE."/".FULL_VERSION."\r\n";
- $request .= "Content-Type: text/plain\r\n";
- $request .= "Cache-Control: no-cache\r\n";
- $request .= "Connection: Close\r\n\r\n";
- //* DEBUG: */ print("<strong>Request:</strong><pre>".$request."</pre>");
-
- // Initialize array
- $response = array();
// Write request
fputs($fp, $request);
// Close socket
fclose($fp);
+ // Skip first empty lines
+ $resp = $response;
+ foreach ($resp as $idx => $line) {
+ // Trim space away
+ $line = trim($line);
+
+ // Is this line empty?
+ if (empty($line)) {
+ // Then remove it
+ array_shift($response);
+ } else {
+ // Abort on first non-empty line
+ break;
+ }
+ } // END - foreach
+
//* DEBUG: */ print("<strong>Response:</strong><pre>".print_r($response, true)."</pre>");
// Proxy agent found?
}
// Finish navigation link
- $eval = substr($eval, 0, -7) . "]\";";
+ $eval = substr($eval, 0, -7)."]\";";
eval($eval);
// Return string
}
// Return hash
- return $salt . sha1($salt . $plainText);
+ return $salt.sha1($salt.$plainText);
}
//
function scrambleString($str) {
if (isSessionVariableSet($var)) {
// Then get it secured!
$value = SQL_ESCAPE($_SESSION[$var]);
- }
+ } // END - if
// Return the value
return $value;
debug_print_backtrace();
die("</pre>");
}
+// Debug message logger
+function DEBUG_LOG ($message) {
+ // Is debug mode enabled?
+ if (isBooleanConstantAndTrue('DEBUG_MODE')) {
+ // Log this message away
+ $fp = fopen(PATH."inc/cache/debug.log", 'a') or mxchange_die("Cannot write logfile debug.log!");
+ fwrite($fp, date("d.m.Y|H:i:s", time())."|{$message}\n");
+ fclose($fp);
+ } // END - if
+}
+// Reads a directory with PHP files in and gets only files back
+function GET_DIR_AS_ARRAY ($baseDir, $prefix) {
+ $INCs = array();
+
+ // Open directory
+ $dirPointer = opendir($baseDir) or mxchange_die("Cannot read ".basename($baseDir)." path!");
+
+ // Read all entries
+ while ($baseFile = readdir($dirPointer)) {
+ // Load file only if extension is active
+ // Make full path
+ $file = $baseDir.$baseFile;
+
+ // Is this a valid reset file?
+ if ((is_file($file)) && (is_readable($file)) && (substr($baseFile, 0, strlen($prefix)) == $prefix) && (substr($baseFile, -4, 4) == ".php")) {
+ // Remove both for extension name
+ $extName = substr($baseFile, strlen($prefix), -4);
+
+ // Try to find it
+ $extId = GET_EXT_ID($extName);
+
+ // Is the extension valid and active?
+ if (($extId > 0) && (EXT_IS_ACTIVE($extName))) {
+ // Then add this file
+ $INCs[] = $file;
+ }
+ } // END - if
+ } // END - while
+
+ // Close directory
+ closedir($dirPointer);
+
+ // Return array with include files
+ return $INCs;
+}
+// Load more reset scripts
+function RESET_ADD_INCLUDES () {
+ global $_CONFIG, $INC_POOL;
+
+ // Is the reset set or old sql_patches?
+ if ((!isBooleanConstantAndTrue('__DAILY_RESET')) || (GET_EXT_VERSION("sql_patches") < "0.4.5")) {
+ // Then abort here
+ return;
+ } // END - if
+
+ // Get more daily reset scripts
+ $INC_POOL = array_merge($INC_POOL, GET_DIR_AS_ARRAY(PATH."inc/reset/", "reset_"));
+
+ // Create current week mark
+ $currWeek = date("W", time());
+
+ // Has it changed?
+ if ($_CONFIG['last_week'] != $currWeek) {
+ // Include weekly reset scripts
+ $INC_POOL = array_merge($INC_POOL, GET_DIR_AS_ARRAY(PATH."inc/weekly/", "weekly_"));
+
+ // Update config
+ UPDATE_CONFIG("last_week", $currWeek);
+ } // END - if
+
+ // Create current month mark
+ $currMonth = date("m", time());
+
+ // Has it changed?
+ if ($_CONFIG['last_month'] != $currMonth) {
+ // Include monthly reset scripts
+ $INC_POOL = array_merge($INC_POOL, GET_DIR_AS_ARRAY(PATH."inc/monthly/", "monthly_"));
+
+ // Update config
+ UPDATE_CONFIG("last_month", $currMonth);
+ } // END - if
+}
//
//////////////////////////////////////////////////
// //