11.12.2002, 18:05
also ichh habe alles eingetragen aber meine global war ein bissel anders als die die in der rdme beschrieben war
habe auch schon eine menge hacks drin!!!!
Das ist meine Geenderte mit snow hack
[code=php] <?php
@error_reporting(7);
$phpversion=(int)(str_replace(".","",phpversion()));
$pagestarttime=microtime();
$query_count=0;
/** get function libary **/
require("./acp/lib/functions.php");
if($phpversion<410) {
$_REQUEST=array();
$_COOKIE=array();
$_POST=array();
$_GET=array();
$_SERVER=array();
$_FILES=array();
get_vars_old();
}
// remove slashes in get post cookie data...
if (get_magic_quotes_gpc()) {
if(is_array($_REQUEST)) $_REQUEST=stripslashes_array($_REQUEST);
if(is_array($_POST)) $_POST=stripslashes_array($_POST);
if(is_array($_GET)) $_GET=stripslashes_array($_GET);
if(is_array($_COOKIE)) $_COOKIE=stripslashes_array($_COOKIE);
}
@set_magic_quotes_runtime(0);
/** connect db **/
require("./acp/lib/config.inc.php");
require("./acp/lib/class_db_mysql.php");
$db = new db($sqlhost,$sqluser,$sqlpassword,$sqldb,$phpversion);
/** get configuration **/
require("./acp/lib/options.inc.php");
/** request ids **/
if(isset($_REQUEST['postid'])) $postid=$_REQUEST['postid'];
if(isset($_REQUEST['threadid'])) $threadid=$_REQUEST['threadid'];
if(isset($_REQUEST['pollid'])) $pollid=$_REQUEST['pollid'];
if(isset($_REQUEST['attachmentid'])) $attachmentid=$_REQUEST['attachmentid'];
if(isset($_REQUEST['boardid'])) $boardid=$_REQUEST['boardid'];
/** verify ids **/
if(isset($postid)) {
$postid = intval($postid);
$post = $db->query_first("SELECT * FROM bb".$n."_posts WHERE postid = '$postid'");
if(!$post['postid']) unset($postid);
else $threadid = $post['threadid'];
}
if(isset($threadid)) {
$threadid = intval($threadid);
$thread = $db->query_first("SELECT * FROM bb".$n."_threads WHERE threadid = '$threadid'");
if(!$thread['threadid']) unset($threadid);
else $boardid = $thread['boardid'];
}
if(isset($pollid)) {
$pollid = intval($pollid);
$poll = $db->query_first("SELECT bb".$n."_polls.*, bb".$n."_threads.boardid FROM bb".$n."_polls LEFT JOIN bb".$n."_threads USING (threadid) WHERE bb".$n."_polls.pollid = '$pollid'");
if(!$poll['pollid']) unset($pollid);
else {
$boardid = $poll['boardid'];
unset($threadid);
unset($thread);
}
}
if(isset($attachmentid)) {
$attachmentid = intval($attachmentid);
$attachment = $db->query_first("SELECT bb".$n."_attachments.*, bb".$n."_threads.boardid, bb".$n."_posts.threadid, bb".$n."_posts.visible, bb".$n."_posts.userid FROM bb".$n."_attachments LEFT JOIN bb".$n."_posts ON (bb".$n."_posts.postid=bb".$n."_attachments.postid) LEFT JOIN bb".$n."_threads ON (bb".$n."_threads.threadid=bb".$n."_posts.threadid) WHERE bb".$n."_attachments.attachmentid = '$attachmentid'");
if(!$attachment['attachmentid']) unset($attachmentid);
elseif($attachment['boardid']) {
$boardid = $attachment['boardid'];
unset($threadid);
unset($thread);
}
}
/** start session **/
require("./acp/lib/session.php");
if(isset($boardid)) {
$boardid = intval($boardid);
$board = $db->query_first("SELECT
b.*,".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"
IF(a.boardid=$boardid,a.boardpermission,p.boardpermission) AS boardpermission,
IF(a.boardid=$boardid,a.startpermission,p.startpermission) AS startpermission,
IF(a.boardid=$boardid,a.replypermission,p.replypermission) AS replypermission
","p.*")."
FROM bb".$n."_boards b
LEFT JOIN bb".$n."_permissions p ON (p.boardid='$boardid' AND p.groupid='$wbbuserdata[groupid]')
".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"LEFT JOIN bb".$n."_access a ON (a.boardid='$boardid' AND a.userid='$wbbuserdata[userid]')")."
WHERE b.boardid = '$boardid'");
if(!$board['boardid']) unset($boardid);
else {
$modpermissions['userid']=0;
if($wbbuserdata['ismod']==1 && $wbbuserdata['issupermod']!=1) $modpermissions=$db->query_first("SELECT * FROM bb".$n."_moderators WHERE userid='$wbbuserdata[userid]' AND boardid='$boardid'");
}
}
/** get style **/
$style=array();
if($wbbuserdata['styleid'] && (!isset($board) || !$board['enforcestyle'])) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '$wbbuserdata[styleid]'");
if(!$style['styleid'] && isset($board) && $board['styleid']!=0) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '".$board['styleid']."'");
if(!$style['styleid']) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE default_style = 1");
/** template class -> caching **/
require("./acp/lib/class_headers.php");
if($usedbtemplates==1) {
require("./acp/lib/class_tpl_db.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
$tpl->getlist();
$tpl->cache();
}
else {
require("./acp/lib/class_tpl_file.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
}
require("./acp/lib/ftp_function.php");
$ftpoptions=$db->query_first("SELECT * FROM bb".$n."_ftpoptions");
if( $ftpoptions[status]==1 &&($ftpoptions[hidestatistik]==0 || ftpaccess($wbbuserdata[userid],$db,$n)))eval ("\$ftp_knopf = "".$tpl->get("ftp_menu")."";");
/** templates & style **/
$phpinclude = str_replace("\"",""",$tpl->get("phpinclude"));
if(trim($phpinclude)) eval($phpinclude);
$header_pms="";
$header_acp="";
/** Schnee by Big_Fish **/
/** Wenn es bei Gästen schneien soll, diesen Code un-commenten, ansonsten den anderen **/
/** if(!$wbbuserdata[userid]) { **/
/** eval ("\$schneecode = "".$tpl->get("schneecode")."";"); **/
if(!$wbbuserdata[userid]) {
eval ("\$schneecode = "".$tpl->get("noschnee")."";");
} else {
if($wbbuserdata[schnee] == "1") eval ("\$schneecode = "".$tpl->get("schneecode")."";");
if($wbbuserdata[schnee] == "0") eval ("\$schneecode = "".$tpl->get("noschnee")."";");
}
/** Schnee by Big_Fish **/
eval ("\$headinclude = "".$tpl->get("headinclude")."";");
eval ("\$footer = "".$tpl->get("footer")."";");
if($wbbuserdata['userid']) {
eval ("\$usercp_or_register = "".$tpl->get("header_usercp")."";");
eval ("\$usercbar = "".$tpl->get("usercbar")."";");
if($wbbuserdata['receivepm']==1) eval ("\$header_pms = "".$tpl->get("header_pms")."";");
if($wbbuserdata['canuseacp']==1) eval ("\$header_acp = "".$tpl->get("header_acp")."";");
elseif($wbbuserdata['ismod']==1 || $wbbuserdata['issupermod']==1) eval ("\$header_acp = "".$tpl->get("header_modcp")."";");
}
else {
eval ("\$usercp_or_register = "".$tpl->get("header_register")."";");
eval ("\$usercbar = "".$tpl->get("usercbar_guest")."";");
}
eval ("\$header = "".$tpl->get("header")."";");
/* ############## Wer war Heute da von Sascha ############## */
$curtime = time();
$date_today = getdate($curtime);
$time_today=mktime(0,0,0,$date_today[mon],$date_today[mday],$date_today[year]);
$res1 = $db->query("DELETE FROM bb".$n."_sessions_day WHERE time<'".$time_today."'");
if($wbbuserdata['userid']){
$row = $db->query_first("select * FROM bb".$n."_sessions_day WHERE userid='".$wbbuserdata['userid']."'");
if(!$row[userid]) {
$res1 = $db->query("INSERT INTO bb".$n."_sessions_day VALUES('".$wbbuserdata['userid']."', '".$curtime."')");
}
}
if(($wbbuserdata['canviewboard']==0 || $wbbuserdata['blocked']==1 || ($wbbuserdata['userid'] && $wbbuserdata['activation']!=1)) && $filename!="login.php" && $filename!="logout.php" && $filename!="register.php" && $filename!="forgotpw.php") access_error();
verify_ip($REMOTE_ADDR);
if($offline==1 && $wbbuserdata['canviewoffboard']==0 && $filename!="login.php" && $filename!="logout.php" && $filename!="forgotpw.php") {
$offlinemessage=nl2br($offlinemessage);
eval("\$tpl->output("".$tpl->get("offline")."");");
exit();
}
if($wbbuserdata['pmpopup']==2) {
if($filename!="pms.php") eval ("\$headinclude .= "".$tpl->get("pmpopup_open")."";");
}
if(isset($boardid)) {
if(!$board['boardpermission']) access_error();
if($board['password']) {
if(isset($_COOKIE['boardpasswords'])) $boardpasswords=decode_cookie($_COOKIE['boardpasswords']);
else $boardpasswords=array();
if(isset($_POST['boardpassword'])) {
if($_POST['boardpassword']==$board['password']) {
$boardpasswords[$boardid]=md5($board['password']);
if($wbbuserdata['usecookies']==1) encode_cookie("boardpasswords",time()+3600*24*365,false);
else encode_cookie("boardpasswords",0,false);
header("Location: board.php?boardid=$boardid&sid=$session[hash]");
exit();
}
else eval("error("".$tpl->get("error_falsepassword")."");");
}
elseif(!isset($boardpasswords[$boardid]) || $boardpasswords[$boardid]!=md5($board['password'])) {
eval("\$tpl->output("".$tpl->get("board_password")."");");
exit();
}
}
}
if(isset($threadid) && $thread['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
if(isset($postid) && $post['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
?>[/code]
Und das die Originale ohne!!!!
[code=php] <?php
@error_reporting(7);
$phpversion=(int)(str_replace(".","",phpversion()));
$pagestarttime=microtime();
$query_count=0;
/** get function libary **/
require("./acp/lib/functions.php");
if($phpversion<410) {
$_REQUEST=array();
$_COOKIE=array();
$_POST=array();
$_GET=array();
$_SERVER=array();
$_FILES=array();
get_vars_old();
}
// remove slashes in get post cookie data...
if (get_magic_quotes_gpc()) {
if(is_array($_REQUEST)) $_REQUEST=stripslashes_array($_REQUEST);
if(is_array($_POST)) $_POST=stripslashes_array($_POST);
if(is_array($_GET)) $_GET=stripslashes_array($_GET);
if(is_array($_COOKIE)) $_COOKIE=stripslashes_array($_COOKIE);
}
@set_magic_quotes_runtime(0);
/** connect db **/
require("./acp/lib/config.inc.php");
require("./acp/lib/class_db_mysql.php");
$db = new db($sqlhost,$sqluser,$sqlpassword,$sqldb,$phpversion);
/** get configuration **/
require("./acp/lib/options.inc.php");
/** request ids **/
if(isset($_REQUEST['postid'])) $postid=$_REQUEST['postid'];
if(isset($_REQUEST['threadid'])) $threadid=$_REQUEST['threadid'];
if(isset($_REQUEST['pollid'])) $pollid=$_REQUEST['pollid'];
if(isset($_REQUEST['attachmentid'])) $attachmentid=$_REQUEST['attachmentid'];
if(isset($_REQUEST['boardid'])) $boardid=$_REQUEST['boardid'];
/** verify ids **/
if(isset($postid)) {
$postid = intval($postid);
$post = $db->query_first("SELECT * FROM bb".$n."_posts WHERE postid = '$postid'");
if(!$post['postid']) unset($postid);
else $threadid = $post['threadid'];
}
if(isset($threadid)) {
$threadid = intval($threadid);
$thread = $db->query_first("SELECT * FROM bb".$n."_threads WHERE threadid = '$threadid'");
if(!$thread['threadid']) unset($threadid);
else $boardid = $thread['boardid'];
}
if(isset($pollid)) {
$pollid = intval($pollid);
$poll = $db->query_first("SELECT bb".$n."_polls.*, bb".$n."_threads.boardid FROM bb".$n."_polls LEFT JOIN bb".$n."_threads USING (threadid) WHERE bb".$n."_polls.pollid = '$pollid'");
if(!$poll['pollid']) unset($pollid);
else {
$boardid = $poll['boardid'];
unset($threadid);
unset($thread);
}
}
if(isset($attachmentid)) {
$attachmentid = intval($attachmentid);
$attachment = $db->query_first("SELECT bb".$n."_attachments.*, bb".$n."_threads.boardid, bb".$n."_posts.threadid, bb".$n."_posts.visible, bb".$n."_posts.userid FROM bb".$n."_attachments LEFT JOIN bb".$n."_posts ON (bb".$n."_posts.postid=bb".$n."_attachments.postid) LEFT JOIN bb".$n."_threads ON (bb".$n."_threads.threadid=bb".$n."_posts.threadid) WHERE bb".$n."_attachments.attachmentid = '$attachmentid'");
if(!$attachment['attachmentid']) unset($attachmentid);
elseif($attachment['boardid']) {
$boardid = $attachment['boardid'];
unset($threadid);
unset($thread);
}
}
/** start session **/
require("./acp/lib/session.php");
if(isset($boardid)) {
$boardid = intval($boardid);
$board = $db->query_first("SELECT
b.*,".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"
IF(a.boardid=$boardid,a.boardpermission,p.boardpermission) AS boardpermission,
IF(a.boardid=$boardid,a.startpermission,p.startpermission) AS startpermission,
IF(a.boardid=$boardid,a.replypermission,p.replypermission) AS replypermission
","p.*")."
FROM bb".$n."_boards b
LEFT JOIN bb".$n."_permissions p ON (p.boardid='$boardid' AND p.groupid='$wbbuserdata[groupid]')
".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"LEFT JOIN bb".$n."_access a ON (a.boardid='$boardid' AND a.userid='$wbbuserdata[userid]')")."
WHERE b.boardid = '$boardid'");
if(!$board['boardid']) unset($boardid);
else {
$modpermissions['userid']=0;
if($wbbuserdata['ismod']==1 && $wbbuserdata['issupermod']!=1) $modpermissions=$db->query_first("SELECT * FROM bb".$n."_moderators WHERE userid='$wbbuserdata[userid]' AND boardid='$boardid'");
}
}
/** get style **/
$style=array();
if($wbbuserdata['styleid'] && (!isset($board) || !$board['enforcestyle'])) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '$wbbuserdata[styleid]'");
if(!$style['styleid'] && isset($board) && $board['styleid']!=0) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '".$board['styleid']."'");
if(!$style['styleid']) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE default_style = 1");
/** template class -> caching **/
require("./acp/lib/class_headers.php");
if($usedbtemplates==1) {
require("./acp/lib/class_tpl_db.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
$tpl->getlist();
$tpl->cache();
}
else {
require("./acp/lib/class_tpl_file.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
}
require("./acp/lib/ftp_function.php");
$ftpoptions=$db->query_first("SELECT * FROM bb".$n."_ftpoptions");
if( $ftpoptions[status]==1 &&($ftpoptions[hidestatistik]==0 || ftpaccess($wbbuserdata[userid],$db,$n)))eval ("\$ftp_knopf = "".$tpl->get("ftp_menu")."";");
/** templates & style **/
$phpinclude = str_replace("\"",""",$tpl->get("phpinclude"));
if(trim($phpinclude)) eval($phpinclude);
$header_pms="";
$header_acp="";
eval ("\$headinclude = "".$tpl->get("headinclude")."";");
eval ("\$footer = "".$tpl->get("footer")."";");
if($wbbuserdata['userid']) {
eval ("\$usercp_or_register = "".$tpl->get("header_usercp")."";");
eval ("\$usercbar = "".$tpl->get("usercbar")."";");
if($wbbuserdata['receivepm']==1) eval ("\$header_pms = "".$tpl->get("header_pms")."";");
if($wbbuserdata['canuseacp']==1) eval ("\$header_acp = "".$tpl->get("header_acp")."";");
elseif($wbbuserdata['ismod']==1 || $wbbuserdata['issupermod']==1) eval ("\$header_acp = "".$tpl->get("header_modcp")."";");
}
else {
eval ("\$usercp_or_register = "".$tpl->get("header_register")."";");
eval ("\$usercbar = "".$tpl->get("usercbar_guest")."";");
}
eval ("\$header = "".$tpl->get("header")."";");
/* ############## Wer war Heute da von Sascha ############## */
$curtime = time();
$date_today = getdate($curtime);
$time_today=mktime(0,0,0,$date_today[mon],$date_today[mday],$date_today[year]);
$res1 = $db->query("DELETE FROM bb".$n."_sessions_day WHERE time<'".$time_today."'");
if($wbbuserdata['userid']){
$row = $db->query_first("select * FROM bb".$n."_sessions_day WHERE userid='".$wbbuserdata['userid']."'");
if(!$row[userid]) {
$res1 = $db->query("INSERT INTO bb".$n."_sessions_day VALUES('".$wbbuserdata['userid']."', '".$curtime."')");
}
}
if(($wbbuserdata['canviewboard']==0 || $wbbuserdata['blocked']==1 || ($wbbuserdata['userid'] && $wbbuserdata['activation']!=1)) && $filename!="login.php" && $filename!="logout.php" && $filename!="register.php" && $filename!="forgotpw.php") access_error();
verify_ip($REMOTE_ADDR);
if($offline==1 && $wbbuserdata['canviewoffboard']==0 && $filename!="login.php" && $filename!="logout.php" && $filename!="forgotpw.php") {
$offlinemessage=nl2br($offlinemessage);
eval("\$tpl->output("".$tpl->get("offline")."");");
exit();
}
if($wbbuserdata['pmpopup']==2) {
if($filename!="pms.php") eval ("\$headinclude .= "".$tpl->get("pmpopup_open")."";");
}
if(isset($boardid)) {
if(!$board['boardpermission']) access_error();
if($board['password']) {
if(isset($_COOKIE['boardpasswords'])) $boardpasswords=decode_cookie($_COOKIE['boardpasswords']);
else $boardpasswords=array();
if(isset($_POST['boardpassword'])) {
if($_POST['boardpassword']==$board['password']) {
$boardpasswords[$boardid]=md5($board['password']);
if($wbbuserdata['usecookies']==1) encode_cookie("boardpasswords",time()+3600*24*365,false);
else encode_cookie("boardpasswords",0,false);
header("Location: board.php?boardid=$boardid&sid=$session[hash]");
exit();
}
else eval("error("".$tpl->get("error_falsepassword")."");");
}
elseif(!isset($boardpasswords[$boardid]) || $boardpasswords[$boardid]!=md5($board['password'])) {
eval("\$tpl->output("".$tpl->get("board_password")."");");
exit();
}
}
}
if(isset($threadid) && $thread['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
if(isset($postid) && $post['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
?>[/code]
vieleicht erkennt ihr den fehler!!!!
habe auch schon eine menge hacks drin!!!!
Das ist meine Geenderte mit snow hack
[code=php] <?php
@error_reporting(7);
$phpversion=(int)(str_replace(".","",phpversion()));
$pagestarttime=microtime();
$query_count=0;
/** get function libary **/
require("./acp/lib/functions.php");
if($phpversion<410) {
$_REQUEST=array();
$_COOKIE=array();
$_POST=array();
$_GET=array();
$_SERVER=array();
$_FILES=array();
get_vars_old();
}
// remove slashes in get post cookie data...
if (get_magic_quotes_gpc()) {
if(is_array($_REQUEST)) $_REQUEST=stripslashes_array($_REQUEST);
if(is_array($_POST)) $_POST=stripslashes_array($_POST);
if(is_array($_GET)) $_GET=stripslashes_array($_GET);
if(is_array($_COOKIE)) $_COOKIE=stripslashes_array($_COOKIE);
}
@set_magic_quotes_runtime(0);
/** connect db **/
require("./acp/lib/config.inc.php");
require("./acp/lib/class_db_mysql.php");
$db = new db($sqlhost,$sqluser,$sqlpassword,$sqldb,$phpversion);
/** get configuration **/
require("./acp/lib/options.inc.php");
/** request ids **/
if(isset($_REQUEST['postid'])) $postid=$_REQUEST['postid'];
if(isset($_REQUEST['threadid'])) $threadid=$_REQUEST['threadid'];
if(isset($_REQUEST['pollid'])) $pollid=$_REQUEST['pollid'];
if(isset($_REQUEST['attachmentid'])) $attachmentid=$_REQUEST['attachmentid'];
if(isset($_REQUEST['boardid'])) $boardid=$_REQUEST['boardid'];
/** verify ids **/
if(isset($postid)) {
$postid = intval($postid);
$post = $db->query_first("SELECT * FROM bb".$n."_posts WHERE postid = '$postid'");
if(!$post['postid']) unset($postid);
else $threadid = $post['threadid'];
}
if(isset($threadid)) {
$threadid = intval($threadid);
$thread = $db->query_first("SELECT * FROM bb".$n."_threads WHERE threadid = '$threadid'");
if(!$thread['threadid']) unset($threadid);
else $boardid = $thread['boardid'];
}
if(isset($pollid)) {
$pollid = intval($pollid);
$poll = $db->query_first("SELECT bb".$n."_polls.*, bb".$n."_threads.boardid FROM bb".$n."_polls LEFT JOIN bb".$n."_threads USING (threadid) WHERE bb".$n."_polls.pollid = '$pollid'");
if(!$poll['pollid']) unset($pollid);
else {
$boardid = $poll['boardid'];
unset($threadid);
unset($thread);
}
}
if(isset($attachmentid)) {
$attachmentid = intval($attachmentid);
$attachment = $db->query_first("SELECT bb".$n."_attachments.*, bb".$n."_threads.boardid, bb".$n."_posts.threadid, bb".$n."_posts.visible, bb".$n."_posts.userid FROM bb".$n."_attachments LEFT JOIN bb".$n."_posts ON (bb".$n."_posts.postid=bb".$n."_attachments.postid) LEFT JOIN bb".$n."_threads ON (bb".$n."_threads.threadid=bb".$n."_posts.threadid) WHERE bb".$n."_attachments.attachmentid = '$attachmentid'");
if(!$attachment['attachmentid']) unset($attachmentid);
elseif($attachment['boardid']) {
$boardid = $attachment['boardid'];
unset($threadid);
unset($thread);
}
}
/** start session **/
require("./acp/lib/session.php");
if(isset($boardid)) {
$boardid = intval($boardid);
$board = $db->query_first("SELECT
b.*,".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"
IF(a.boardid=$boardid,a.boardpermission,p.boardpermission) AS boardpermission,
IF(a.boardid=$boardid,a.startpermission,p.startpermission) AS startpermission,
IF(a.boardid=$boardid,a.replypermission,p.replypermission) AS replypermission
","p.*")."
FROM bb".$n."_boards b
LEFT JOIN bb".$n."_permissions p ON (p.boardid='$boardid' AND p.groupid='$wbbuserdata[groupid]')
".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"LEFT JOIN bb".$n."_access a ON (a.boardid='$boardid' AND a.userid='$wbbuserdata[userid]')")."
WHERE b.boardid = '$boardid'");
if(!$board['boardid']) unset($boardid);
else {
$modpermissions['userid']=0;
if($wbbuserdata['ismod']==1 && $wbbuserdata['issupermod']!=1) $modpermissions=$db->query_first("SELECT * FROM bb".$n."_moderators WHERE userid='$wbbuserdata[userid]' AND boardid='$boardid'");
}
}
/** get style **/
$style=array();
if($wbbuserdata['styleid'] && (!isset($board) || !$board['enforcestyle'])) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '$wbbuserdata[styleid]'");
if(!$style['styleid'] && isset($board) && $board['styleid']!=0) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '".$board['styleid']."'");
if(!$style['styleid']) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE default_style = 1");
/** template class -> caching **/
require("./acp/lib/class_headers.php");
if($usedbtemplates==1) {
require("./acp/lib/class_tpl_db.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
$tpl->getlist();
$tpl->cache();
}
else {
require("./acp/lib/class_tpl_file.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
}
require("./acp/lib/ftp_function.php");
$ftpoptions=$db->query_first("SELECT * FROM bb".$n."_ftpoptions");
if( $ftpoptions[status]==1 &&($ftpoptions[hidestatistik]==0 || ftpaccess($wbbuserdata[userid],$db,$n)))eval ("\$ftp_knopf = "".$tpl->get("ftp_menu")."";");
/** templates & style **/
$phpinclude = str_replace("\"",""",$tpl->get("phpinclude"));
if(trim($phpinclude)) eval($phpinclude);
$header_pms="";
$header_acp="";
/** Schnee by Big_Fish **/
/** Wenn es bei Gästen schneien soll, diesen Code un-commenten, ansonsten den anderen **/
/** if(!$wbbuserdata[userid]) { **/
/** eval ("\$schneecode = "".$tpl->get("schneecode")."";"); **/
if(!$wbbuserdata[userid]) {
eval ("\$schneecode = "".$tpl->get("noschnee")."";");
} else {
if($wbbuserdata[schnee] == "1") eval ("\$schneecode = "".$tpl->get("schneecode")."";");
if($wbbuserdata[schnee] == "0") eval ("\$schneecode = "".$tpl->get("noschnee")."";");
}
/** Schnee by Big_Fish **/
eval ("\$headinclude = "".$tpl->get("headinclude")."";");
eval ("\$footer = "".$tpl->get("footer")."";");
if($wbbuserdata['userid']) {
eval ("\$usercp_or_register = "".$tpl->get("header_usercp")."";");
eval ("\$usercbar = "".$tpl->get("usercbar")."";");
if($wbbuserdata['receivepm']==1) eval ("\$header_pms = "".$tpl->get("header_pms")."";");
if($wbbuserdata['canuseacp']==1) eval ("\$header_acp = "".$tpl->get("header_acp")."";");
elseif($wbbuserdata['ismod']==1 || $wbbuserdata['issupermod']==1) eval ("\$header_acp = "".$tpl->get("header_modcp")."";");
}
else {
eval ("\$usercp_or_register = "".$tpl->get("header_register")."";");
eval ("\$usercbar = "".$tpl->get("usercbar_guest")."";");
}
eval ("\$header = "".$tpl->get("header")."";");
/* ############## Wer war Heute da von Sascha ############## */
$curtime = time();
$date_today = getdate($curtime);
$time_today=mktime(0,0,0,$date_today[mon],$date_today[mday],$date_today[year]);
$res1 = $db->query("DELETE FROM bb".$n."_sessions_day WHERE time<'".$time_today."'");
if($wbbuserdata['userid']){
$row = $db->query_first("select * FROM bb".$n."_sessions_day WHERE userid='".$wbbuserdata['userid']."'");
if(!$row[userid]) {
$res1 = $db->query("INSERT INTO bb".$n."_sessions_day VALUES('".$wbbuserdata['userid']."', '".$curtime."')");
}
}
if(($wbbuserdata['canviewboard']==0 || $wbbuserdata['blocked']==1 || ($wbbuserdata['userid'] && $wbbuserdata['activation']!=1)) && $filename!="login.php" && $filename!="logout.php" && $filename!="register.php" && $filename!="forgotpw.php") access_error();
verify_ip($REMOTE_ADDR);
if($offline==1 && $wbbuserdata['canviewoffboard']==0 && $filename!="login.php" && $filename!="logout.php" && $filename!="forgotpw.php") {
$offlinemessage=nl2br($offlinemessage);
eval("\$tpl->output("".$tpl->get("offline")."");");
exit();
}
if($wbbuserdata['pmpopup']==2) {
if($filename!="pms.php") eval ("\$headinclude .= "".$tpl->get("pmpopup_open")."";");
}
if(isset($boardid)) {
if(!$board['boardpermission']) access_error();
if($board['password']) {
if(isset($_COOKIE['boardpasswords'])) $boardpasswords=decode_cookie($_COOKIE['boardpasswords']);
else $boardpasswords=array();
if(isset($_POST['boardpassword'])) {
if($_POST['boardpassword']==$board['password']) {
$boardpasswords[$boardid]=md5($board['password']);
if($wbbuserdata['usecookies']==1) encode_cookie("boardpasswords",time()+3600*24*365,false);
else encode_cookie("boardpasswords",0,false);
header("Location: board.php?boardid=$boardid&sid=$session[hash]");
exit();
}
else eval("error("".$tpl->get("error_falsepassword")."");");
}
elseif(!isset($boardpasswords[$boardid]) || $boardpasswords[$boardid]!=md5($board['password'])) {
eval("\$tpl->output("".$tpl->get("board_password")."");");
exit();
}
}
}
if(isset($threadid) && $thread['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
if(isset($postid) && $post['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
?>[/code]
Und das die Originale ohne!!!!
[code=php] <?php
@error_reporting(7);
$phpversion=(int)(str_replace(".","",phpversion()));
$pagestarttime=microtime();
$query_count=0;
/** get function libary **/
require("./acp/lib/functions.php");
if($phpversion<410) {
$_REQUEST=array();
$_COOKIE=array();
$_POST=array();
$_GET=array();
$_SERVER=array();
$_FILES=array();
get_vars_old();
}
// remove slashes in get post cookie data...
if (get_magic_quotes_gpc()) {
if(is_array($_REQUEST)) $_REQUEST=stripslashes_array($_REQUEST);
if(is_array($_POST)) $_POST=stripslashes_array($_POST);
if(is_array($_GET)) $_GET=stripslashes_array($_GET);
if(is_array($_COOKIE)) $_COOKIE=stripslashes_array($_COOKIE);
}
@set_magic_quotes_runtime(0);
/** connect db **/
require("./acp/lib/config.inc.php");
require("./acp/lib/class_db_mysql.php");
$db = new db($sqlhost,$sqluser,$sqlpassword,$sqldb,$phpversion);
/** get configuration **/
require("./acp/lib/options.inc.php");
/** request ids **/
if(isset($_REQUEST['postid'])) $postid=$_REQUEST['postid'];
if(isset($_REQUEST['threadid'])) $threadid=$_REQUEST['threadid'];
if(isset($_REQUEST['pollid'])) $pollid=$_REQUEST['pollid'];
if(isset($_REQUEST['attachmentid'])) $attachmentid=$_REQUEST['attachmentid'];
if(isset($_REQUEST['boardid'])) $boardid=$_REQUEST['boardid'];
/** verify ids **/
if(isset($postid)) {
$postid = intval($postid);
$post = $db->query_first("SELECT * FROM bb".$n."_posts WHERE postid = '$postid'");
if(!$post['postid']) unset($postid);
else $threadid = $post['threadid'];
}
if(isset($threadid)) {
$threadid = intval($threadid);
$thread = $db->query_first("SELECT * FROM bb".$n."_threads WHERE threadid = '$threadid'");
if(!$thread['threadid']) unset($threadid);
else $boardid = $thread['boardid'];
}
if(isset($pollid)) {
$pollid = intval($pollid);
$poll = $db->query_first("SELECT bb".$n."_polls.*, bb".$n."_threads.boardid FROM bb".$n."_polls LEFT JOIN bb".$n."_threads USING (threadid) WHERE bb".$n."_polls.pollid = '$pollid'");
if(!$poll['pollid']) unset($pollid);
else {
$boardid = $poll['boardid'];
unset($threadid);
unset($thread);
}
}
if(isset($attachmentid)) {
$attachmentid = intval($attachmentid);
$attachment = $db->query_first("SELECT bb".$n."_attachments.*, bb".$n."_threads.boardid, bb".$n."_posts.threadid, bb".$n."_posts.visible, bb".$n."_posts.userid FROM bb".$n."_attachments LEFT JOIN bb".$n."_posts ON (bb".$n."_posts.postid=bb".$n."_attachments.postid) LEFT JOIN bb".$n."_threads ON (bb".$n."_threads.threadid=bb".$n."_posts.threadid) WHERE bb".$n."_attachments.attachmentid = '$attachmentid'");
if(!$attachment['attachmentid']) unset($attachmentid);
elseif($attachment['boardid']) {
$boardid = $attachment['boardid'];
unset($threadid);
unset($thread);
}
}
/** start session **/
require("./acp/lib/session.php");
if(isset($boardid)) {
$boardid = intval($boardid);
$board = $db->query_first("SELECT
b.*,".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"
IF(a.boardid=$boardid,a.boardpermission,p.boardpermission) AS boardpermission,
IF(a.boardid=$boardid,a.startpermission,p.startpermission) AS startpermission,
IF(a.boardid=$boardid,a.replypermission,p.replypermission) AS replypermission
","p.*")."
FROM bb".$n."_boards b
LEFT JOIN bb".$n."_permissions p ON (p.boardid='$boardid' AND p.groupid='$wbbuserdata[groupid]')
".ifelse($useuseraccess==1 && $wbbuserdata['userid'],"LEFT JOIN bb".$n."_access a ON (a.boardid='$boardid' AND a.userid='$wbbuserdata[userid]')")."
WHERE b.boardid = '$boardid'");
if(!$board['boardid']) unset($boardid);
else {
$modpermissions['userid']=0;
if($wbbuserdata['ismod']==1 && $wbbuserdata['issupermod']!=1) $modpermissions=$db->query_first("SELECT * FROM bb".$n."_moderators WHERE userid='$wbbuserdata[userid]' AND boardid='$boardid'");
}
}
/** get style **/
$style=array();
if($wbbuserdata['styleid'] && (!isset($board) || !$board['enforcestyle'])) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '$wbbuserdata[styleid]'");
if(!$style['styleid'] && isset($board) && $board['styleid']!=0) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE styleid = '".$board['styleid']."'");
if(!$style['styleid']) $style = $db->query_first("SELECT * FROM bb".$n."_styles WHERE default_style = 1");
/** template class -> caching **/
require("./acp/lib/class_headers.php");
if($usedbtemplates==1) {
require("./acp/lib/class_tpl_db.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
$tpl->getlist();
$tpl->cache();
}
else {
require("./acp/lib/class_tpl_file.php");
$tpl = new tpl(intval($style['templatepackid']),intval($style['subvariablepackid']));
}
require("./acp/lib/ftp_function.php");
$ftpoptions=$db->query_first("SELECT * FROM bb".$n."_ftpoptions");
if( $ftpoptions[status]==1 &&($ftpoptions[hidestatistik]==0 || ftpaccess($wbbuserdata[userid],$db,$n)))eval ("\$ftp_knopf = "".$tpl->get("ftp_menu")."";");
/** templates & style **/
$phpinclude = str_replace("\"",""",$tpl->get("phpinclude"));
if(trim($phpinclude)) eval($phpinclude);
$header_pms="";
$header_acp="";
eval ("\$headinclude = "".$tpl->get("headinclude")."";");
eval ("\$footer = "".$tpl->get("footer")."";");
if($wbbuserdata['userid']) {
eval ("\$usercp_or_register = "".$tpl->get("header_usercp")."";");
eval ("\$usercbar = "".$tpl->get("usercbar")."";");
if($wbbuserdata['receivepm']==1) eval ("\$header_pms = "".$tpl->get("header_pms")."";");
if($wbbuserdata['canuseacp']==1) eval ("\$header_acp = "".$tpl->get("header_acp")."";");
elseif($wbbuserdata['ismod']==1 || $wbbuserdata['issupermod']==1) eval ("\$header_acp = "".$tpl->get("header_modcp")."";");
}
else {
eval ("\$usercp_or_register = "".$tpl->get("header_register")."";");
eval ("\$usercbar = "".$tpl->get("usercbar_guest")."";");
}
eval ("\$header = "".$tpl->get("header")."";");
/* ############## Wer war Heute da von Sascha ############## */
$curtime = time();
$date_today = getdate($curtime);
$time_today=mktime(0,0,0,$date_today[mon],$date_today[mday],$date_today[year]);
$res1 = $db->query("DELETE FROM bb".$n."_sessions_day WHERE time<'".$time_today."'");
if($wbbuserdata['userid']){
$row = $db->query_first("select * FROM bb".$n."_sessions_day WHERE userid='".$wbbuserdata['userid']."'");
if(!$row[userid]) {
$res1 = $db->query("INSERT INTO bb".$n."_sessions_day VALUES('".$wbbuserdata['userid']."', '".$curtime."')");
}
}
if(($wbbuserdata['canviewboard']==0 || $wbbuserdata['blocked']==1 || ($wbbuserdata['userid'] && $wbbuserdata['activation']!=1)) && $filename!="login.php" && $filename!="logout.php" && $filename!="register.php" && $filename!="forgotpw.php") access_error();
verify_ip($REMOTE_ADDR);
if($offline==1 && $wbbuserdata['canviewoffboard']==0 && $filename!="login.php" && $filename!="logout.php" && $filename!="forgotpw.php") {
$offlinemessage=nl2br($offlinemessage);
eval("\$tpl->output("".$tpl->get("offline")."");");
exit();
}
if($wbbuserdata['pmpopup']==2) {
if($filename!="pms.php") eval ("\$headinclude .= "".$tpl->get("pmpopup_open")."";");
}
if(isset($boardid)) {
if(!$board['boardpermission']) access_error();
if($board['password']) {
if(isset($_COOKIE['boardpasswords'])) $boardpasswords=decode_cookie($_COOKIE['boardpasswords']);
else $boardpasswords=array();
if(isset($_POST['boardpassword'])) {
if($_POST['boardpassword']==$board['password']) {
$boardpasswords[$boardid]=md5($board['password']);
if($wbbuserdata['usecookies']==1) encode_cookie("boardpasswords",time()+3600*24*365,false);
else encode_cookie("boardpasswords",0,false);
header("Location: board.php?boardid=$boardid&sid=$session[hash]");
exit();
}
else eval("error("".$tpl->get("error_falsepassword")."");");
}
elseif(!isset($boardpasswords[$boardid]) || $boardpasswords[$boardid]!=md5($board['password'])) {
eval("\$tpl->output("".$tpl->get("board_password")."");");
exit();
}
}
}
if(isset($threadid) && $thread['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
if(isset($postid) && $post['visible']==0 && $wbbuserdata['canuseacp']==0 && $wbbuserdata['issupermod']==0 && ($wbbuserdata['ismod']==0 || !$modpermissions['userid'])) eval("error("".$tpl->get("error_falselink")."");");
?>[/code]
vieleicht erkennt ihr den fehler!!!!