3 This program is free software; you can redistribute it and/or modify
4 it under the terms of the Revised BSD License.
6 This program is distributed in the hope that it will be useful,
7 but WITHOUT ANY WARRANTY; without even the implied warranty of
8 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9 Revised BSD License for more details.
11 Copyright 2004-2011 iDB Support - http://idb.berlios.de/
12 Copyright 2004-2011 Game Maker 2k - http://gamemaker2k.org/
14 $FileInfo: messages.php - Last Update: 12/07/2010 SVN 600 - Author: cooldude2k $
16 $File3Name = basename($_SERVER['SCRIPT_NAME']);
17 if ($File3Name=="messages.php"||
$File3Name=="/messages.php") {
20 if(!is_numeric($_GET['id'])) { $_GET['id'] = null; }
21 if(!is_numeric($_GET['post'])) { $_GET['post'] = null; }
22 if(!is_numeric($_GET['page'])) { $_GET['page'] = 1; }
23 // Check if we can read/send PM
24 if($_SESSION['UserGroup']==$Settings['GuestGroup']||
$GroupInfo['CanPM']=="no") {
25 redirect("location",$rbasedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
26 ob_clean(); header("Content-Type: text/plain; charset=".$Settings['charset']);
27 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); session_write_close(); die(); }
28 $_SESSION['ViewingPage'] = url_maker(null,"no+ext","act=view","&","=",$prexqstr['index'],$exqstr['index']);
29 if($Settings['file_ext']!="no+ext"&&$Settings['file_ext']!="no ext") {
30 $_SESSION['ViewingFile'] = $exfile['index'].$Settings['file_ext']; }
31 if($Settings['file_ext']=="no+ext"||
$Settings['file_ext']=="no ext") {
32 $_SESSION['ViewingFile'] = $exfile['index']; }
33 $_SESSION['PreViewingTitle'] = "Viewing";
34 $_SESSION['ViewingTitle'] = "Messages";
35 if($_GET['act']=="view"||
$_GET['act']=="viewsent"||
$_GET['act']=="read") {
37 <div
class="NavLinks"><?php
echo $ThemeSet['NavLinkIcon']; ?
><a href
="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act
=view
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">Board index
</a
><?php
echo $ThemeSet['NavLinkDivider']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Mailbox
</a
></div
>
38 <div
class="DivNavLinks"> 
;</div
>
39 <table
class="Table3">
40 <tr style
="width: 100%; vertical-align: top;">
41 <td style
="width: 15%; vertical-align: top;">
42 <div
class="TableSMenuBorder">
43 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
44 <div
class="TableSMenuRow1">
45 <?php
echo $ThemeSet['TitleIcon']; ?
>Messenger
</div
>
47 <table id
="ProfileLinks" class="TableSMenu" style
="width: 100%; text-align: left; vertical-align: top;">
48 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
49 <tr
class="TableSMenuRow1">
50 <td
class="TableSMenuColumn1"><?php
echo $ThemeSet['TitleIcon']; ?
>Messenger
</td
>
52 <tr
class="TableSMenuRow2">
53 <td
class="TableSMenuColumn2"> 
;</td
>
54 </tr
><tr
class="TableSMenuRow3">
55 <td
class="TableSMenuColumn3"><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">View MailBox
</a
></td
>
56 </tr
><tr
class="TableSMenuRow3">
57 <td
class="TableSMenuColumn3"><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=viewsent
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">View SentBox
</a
></td
>
58 </tr
><tr
class="TableSMenuRow3">
59 <td
class="TableSMenuColumn3"><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=create
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Send Message
</a
></td
>
60 </tr
><tr
class="TableSMenuRow4">
61 <td
class="TableSMenuColumn4"> 
;</td
>
64 <td style
="width: 85%; vertical-align: top;">
66 if($_GET['act']=="view") {
67 //Get SQL LIMIT Number
68 $nums = $_GET['page'] * $Settings['max_pmlist'];
69 $PageLimit = $nums - $Settings['max_pmlist'];
70 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."messenger\" WHERE \"ReciverID\"=%i ORDER BY \"DateSend\" DESC ".$SQLimit, array($_SESSION['UserID'],$PageLimit,$Settings['max_pmlist']));
71 $rnquery = sql_pre_query("SELECT COUNT(*) FROM \"".$Settings['sqltable']."messenger\" WHERE \"ReciverID\"=%i", array($_SESSION['UserID']));
72 $result=sql_query($query,$SQLStat);
73 $rnresult=sql_query($rnquery,$SQLStat);
74 $NumberMessage = sql_result($rnresult,0);
75 sql_free_result($rnresult);
76 if($NumberMessage==null) {
78 $num = $NumberMessage;
79 $num=sql_num_rows($result);
80 //Start MessengerList Page Code
81 if(!isset($Settings['max_pmlist'])) { $Settings['max_pmlist'] = 10; }
82 if($_GET['page']==null) { $_GET['page'] = 1; }
83 if($_GET['page']<=0) { $_GET['page'] = 1; }
84 $nums = $_GET['page'] * $Settings['max_pmlist'];
85 if($nums>$num) { $nums = $num; }
86 $numz = $nums - $Settings['max_pmlist'];
87 if($numz<=0) { $numz = 0; }
89 if($nums<$num) { $nextpage = $_GET['page'] +
1; }
90 if($nums>=$num) { $nextpage = $_GET['page']; }
91 if($numz>=$Settings['max_pmlist']) { $backpage = $_GET['page'] - 1; }
92 if($_GET['page']<=1) { $backpage = 1; }
93 $pnum = $num; $l = 1; $Pages = null;
95 if($pnum>=$Settings['max_pmlist']) {
96 $pnum = $pnum - $Settings['max_pmlist'];
97 $Pages[$l] = $l; ++
$l; }
98 if($pnum<$Settings['max_pmlist']&&$pnum>0) {
99 $pnum = $pnum - $pnum;
100 $Pages[$l] = $l; ++
$l; } }
101 //End MessengerList Page Code
102 $num=sql_num_rows($result);
104 //List Page Number Code Start
105 $pagenum=count($Pages);
106 if($_GET['page']>$pagenum) {
107 $_GET['page'] = $pagenum; }
108 $pagei=0; $pstring = null;
110 $pstring = "<div class=\"PageList\"><span class=\"pagelink\">".$pagenum." Pages:</span> "; }
111 if($_GET['page']<4) { $Pagez[0] = null; }
112 if($_GET['page']>=4) { $Pagez[0] = "First"; }
113 if($_GET['page']>=3) {
114 $Pagez[1] = $_GET['page'] - 2; }
115 if($_GET['page']<3) {
117 if($_GET['page']>=2) {
118 $Pagez[2] = $_GET['page'] - 1; }
119 if($_GET['page']<2) {
121 $Pagez[3] = $_GET['page'];
122 if($_GET['page']<$pagenum) {
123 $Pagez[4] = $_GET['page'] +
1; }
124 if($_GET['page']>=$pagenum) {
126 $pagenext = $_GET['page'] +
1;
127 if($pagenext<$pagenum) {
128 $Pagez[5] = $_GET['page'] +
2; }
129 if($pagenext>=$pagenum) {
131 if($_GET['page']<$pagenum) { $Pagez[6] = "Last"; }
132 if($_GET['page']>=$pagenum) { $Pagez[6] = null; }
133 $pagenumi=count($Pagez);
138 while ($pagei < $pagenumi) {
139 if($_GET['page']!=1&&$pagei==1) {
140 $Pback = $_GET['page'] - 1;
141 $pstring = $pstring."<span class=\"pagelink\">a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=".$Pback,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\"><</a></span> "; }
142 if($Pagez[$pagei]!=null&&
143 $Pagez[$pagei]!="First"&&
144 $Pagez[$pagei]!="Last") {
146 $pstring = $pstring."<span class=\"pagelink\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=".$Pagez[$pagei],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">".$Pagez[$pagei]."</a></span> "; }
148 $pstring = $pstring."<span class=\"pagecurrent\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=".$Pagez[$pagei],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">".$Pagez[$pagei]."</a></span> "; } }
149 if($Pagez[$pagei]=="First") {
150 $pstring = $pstring."<span class=\"pagelinklast\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">«</a></span> "; }
151 if($Pagez[$pagei]=="Last") {
152 $ptestnext = $pagenext +
1;
154 $Pnext = $_GET['page'] +
1;
155 $pstring = $pstring."<span class=\"pagelink\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=".$Pnext,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">></a></span> ";
156 if($ptestnext<$pagenum) {
157 $pstring = $pstring."<span class=\"pagelinklast\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=view&page=".$pagenum,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">»</a></span> "; } }
158 ++
$pagei; } $pstring = $pstring."</div>"; }
160 //List Page Number Code end
164 <div
class="DivPageLinks"> 
;</div
>
166 <div
class="TableMenuBorder">
167 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
168 <div
class="TableMenuRow1">
169 <span style
="float: left;">
170 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">MailBox
 
;(<?php
echo $PMNumber; ?
>)</a
>
173 <table
class="TableMenu" style
="width: 100%;">
174 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
175 <tr
class="TableMenuRow1">
176 <td
class="TableMenuColumn1" colspan
="4"><span style
="float: left;">
177 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">MailBox
 
;(<?php
echo $PMNumber; ?
>)</a
>
180 <tr id
="Messenger" class="TableMenuRow2">
181 <th
class="TableMenuColumn2" style
="width: 4%;">State
</th
>
182 <th
class="TableMenuColumn2" style
="width: 46%;">Message Name
</th
>
183 <th
class="TableMenuColumn2" style
="width: 25%;">Sender
</th
>
184 <th
class="TableMenuColumn2" style
="width: 25%;">Time
</th
>
188 $PMID=sql_result($result,$i,"id");
189 $SenderID=sql_result($result,$i,"SenderID");
190 $SenderIP=sql_result($result,$i,"IP");
191 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat);
192 if($PreSenderName['Name']===null) { $SenderID = -1;
193 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat); }
194 $SenderName = $PreSenderName['Name'];
195 $SenderHidden = $PreSenderName['Hidden'];
196 $ReciverID=sql_result($result,$i,"ReciverID");
197 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat);
198 if($PreReciverName['Name']===null) { $ReciverID = -1;
199 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat); }
200 $ReciverName = $PreReciverName['Name'];
201 $ReciverHidden = $PreReciverName['Hidden'];
202 $PMGuest=sql_result($result,$i,"GuestName");
203 $MessageName=sql_result($result,$i,"MessageTitle");
204 $MessageDesc=sql_result($result,$i,"Description");
205 $DateSend=sql_result($result,$i,"DateSend");
206 $DateSend=GMTimeChange("F j, Y, g:i a",$DateSend,$_SESSION['UserTimeZone'],0,$_SESSION['UserDST']);
207 $MessageStat=sql_result($result,$i,"Read");
208 if($SenderName=="Guest") { $SenderName=$PMGuest;
209 if($SenderName==null) { $SenderName="Guest"; } }
210 $PreMessage = $ThemeSet['MessageUnread'];
211 if ($MessageStat==0) {
212 $PreMessage=$ThemeSet['MessageUnread']; }
213 if ($MessageStat==1) {
214 $PreMessage=$ThemeSet['MessageRead']; }
216 <tr
class="TableMenuRow3" id
="Message<?php echo $PMID; ?>">
217 <td
class="TableMenuColumn3"><div
class="messagestate">
218 <?php
echo $PreMessage; ?
></div
></td
>
219 <td
class="TableMenuColumn3"><div
class="messagename">
220 <a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=read
&id
=".$PMID,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>"><?php
echo $MessageName; ?
></a
></div
>
221 <div
class="messagedesc"><?php
echo $MessageDesc; ?
></div
></td
>
222 <td
class="TableMenuColumn3" style
="text-align: center;"><?php
223 if($SenderID>0&&$SenderHidden=="no") {
225 echo url_maker($exfile['member'],$Settings['file_ext'],"act=view&id=".$SenderID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']);
226 echo "\">".$SenderName."</a>"; }
227 if($SenderID<=0||
$SenderHidden=="yes") {
228 echo "<span>".$SenderName."</span>"; }
230 <td
class="TableMenuColumn3" style
="text-align: center;"><?php
echo $DateSend; ?
></td
>
232 <?php ++
$i; } sql_free_result($result); ?
>
233 <tr id
="MessengerEnd" class="TableMenuRow4">
234 <td
class="TableMenuColumn4" colspan
="4"> 
;</td
>
237 if($_GET['act']=="viewsent") {
238 //Get SQL LIMIT Number
239 $nums = $_GET['page'] * $Settings['max_pmlist'];
240 $PageLimit = $nums - $Settings['max_pmlist'];
241 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."messenger\" WHERE \"SenderID\"=%i ORDER BY \"DateSend\" DESC ".$SQLimit, array($_SESSION['UserID'],$PageLimit,$Settings['max_pmlist']));
242 $rnquery = sql_pre_query("SELECT COUNT(*) FROM \"".$Settings['sqltable']."messenger\" WHERE \"SenderID\"=%i", array($_SESSION['UserID']));
243 $result=sql_query($query,$SQLStat);
244 $rnresult=sql_query($rnquery,$SQLStat);
245 $NumberMessage = sql_result($rnresult,0);
246 sql_free_result($rnresult);
247 if($NumberMessage==null) {
248 $NumberMessage = 0; }
249 $num = $NumberMessage;
250 $num=sql_num_rows($result);
251 //Start MessengerList Page Code
252 if(!isset($Settings['max_pmlist'])) { $Settings['max_pmlist'] = 10; }
253 if($_GET['page']==null) { $_GET['page'] = 1; }
254 if($_GET['page']<=0) { $_GET['page'] = 1; }
255 $nums = $_GET['page'] * $Settings['max_pmlist'];
256 if($nums>$num) { $nums = $num; }
257 $numz = $nums - $Settings['max_pmlist'];
258 if($numz<=0) { $numz = 0; }
260 if($nums<$num) { $nextpage = $_GET['page'] +
1; }
261 if($nums>=$num) { $nextpage = $_GET['page']; }
262 if($numz>=$Settings['max_pmlist']) { $backpage = $_GET['page'] - 1; }
263 if($_GET['page']<=1) { $backpage = 1; }
264 $pnum = $num; $l = 1; $Pages = null;
266 if($pnum>=$Settings['max_pmlist']) {
267 $pnum = $pnum - $Settings['max_pmlist'];
268 $Pages[$l] = $l; ++
$l; }
269 if($pnum<$Settings['max_pmlist']&&$pnum>0) {
270 $pnum = $pnum - $pnum;
271 $Pages[$l] = $l; ++
$l; } }
272 //End MessengerList Page Code
273 $num=sql_num_rows($result);
275 //List Page Number Code Start
276 $pagenum=count($Pages);
277 if($_GET['page']>$pagenum) {
278 $_GET['page'] = $pagenum; }
279 $pagei=0; $pstring = null;
281 $pstring = "<div class=\"PageList\"><span class=\"pagelink\">".$pagenum." Pages:</span> "; }
282 if($_GET['page']<4) { $Pagez[0] = null; }
283 if($_GET['page']>=4) { $Pagez[0] = "First"; }
284 if($_GET['page']>=3) {
285 $Pagez[1] = $_GET['page'] - 2; }
286 if($_GET['page']<3) {
288 if($_GET['page']>=2) {
289 $Pagez[2] = $_GET['page'] - 1; }
290 if($_GET['page']<2) {
292 $Pagez[3] = $_GET['page'];
293 if($_GET['page']<$pagenum) {
294 $Pagez[4] = $_GET['page'] +
1; }
295 if($_GET['page']>=$pagenum) {
297 $pagenext = $_GET['page'] +
1;
298 if($pagenext<$pagenum) {
299 $Pagez[5] = $_GET['page'] +
2; }
300 if($pagenext>=$pagenum) {
302 if($_GET['page']<$pagenum) { $Pagez[6] = "Last"; }
303 if($_GET['page']>=$pagenum) { $Pagez[6] = null; }
304 $pagenumi=count($Pagez);
309 while ($pagei < $pagenumi) {
310 if($_GET['page']!=1&&$pagei==1) {
311 $Pback = $_GET['page'] - 1;
312 $pstring = $pstring."<span class=\"pagelink\">a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=".$Pback,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\"><</a></span> "; }
313 if($Pagez[$pagei]!=null&&
314 $Pagez[$pagei]!="First"&&
315 $Pagez[$pagei]!="Last") {
317 $pstring = $pstring."<span class=\"pagelink\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=".$Pagez[$pagei],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">".$Pagez[$pagei]."</a></span> "; }
319 $pstring = $pstring."<span class=\"pagecurrent\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=".$Pagez[$pagei],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">".$Pagez[$pagei]."</a></span> "; } }
320 if($Pagez[$pagei]=="First") {
321 $pstring = $pstring."<span class=\"pagelinklast\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">«</a></span> "; }
322 if($Pagez[$pagei]=="Last") {
323 $ptestnext = $pagenext +
1;
325 $Pnext = $_GET['page'] +
1;
326 $pstring = $pstring."<span class=\"pagelink\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=".$Pnext,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">></a></span> ";
327 if($ptestnext<$pagenum) {
328 $pstring = $pstring."<span class=\"pagelinklast\"><a href=\"".url_maker($exfile['messenger'],$Settings['file_ext'],"act=viewsent&page=".$pagenum,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger'])."\">»</a></span> "; } }
329 ++
$pagei; } $pstring = $pstring."</div>"; }
331 //List Page Number Code end
335 <div
class="DivPageLinks"> 
;</div
>
337 <div
class="TableMenuBorder">
338 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
339 <div
class="TableMenuRow1">
340 <span style
="float: left;">
341 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=viewsent
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">MailBox
 
;(<?php
echo $PMNumber; ?
>)</a
>
344 <table
class="TableMenu" style
="width: 100%;">
345 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
346 <tr
class="TableMenuRow1">
347 <td
class="TableMenuColumn1" colspan
="4"><span style
="float: left;">
348 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=viewsent
&page
=1",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">MailBox
 
;(<?php
echo $PMNumber; ?
>)</a
>
351 <tr id
="Messenger" class="TableMenuRow2">
352 <th
class="TableMenuColumn2" style
="width: 4%;">State
</th
>
353 <th
class="TableMenuColumn2" style
="width: 46%;">Message Name
</th
>
354 <th
class="TableMenuColumn2" style
="width: 25%;">Sent To
</th
>
355 <th
class="TableMenuColumn2" style
="width: 25%;">Time
</th
>
359 $PMID=sql_result($result,$i,"id");
360 $SenderID=sql_result($result,$i,"SenderID");
361 $SenderIP=sql_result($result,$i,"IP");
362 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat);
363 if($PreSenderName['Name']===null) { $SenderID = -1;
364 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat); }
365 $SenderName = $PreSenderName['Name'];
366 $SenderHidden = $PreSenderName['Hidden'];
367 $ReciverID=sql_result($result,$i,"ReciverID");
368 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat);
369 if($PreReciverName['Name']===null) { $ReciverID = -1;
370 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat); }
371 $ReciverName = $PreReciverName['Name'];
372 $ReciverHidden = $PreReciverName['Hidden'];
373 $PMGuest=sql_result($result,$i,"GuestName");
374 $MessageName=sql_result($result,$i,"MessageTitle");
375 $MessageDesc=sql_result($result,$i,"Description");
376 $DateSend=sql_result($result,$i,"DateSend");
377 $DateSend=GMTimeChange("F j, Y, g:i a",$DateSend,$_SESSION['UserTimeZone'],0,$_SESSION['UserDST']);
378 $MessageStat=sql_result($result,$i,"Read");
379 if($SenderName=="Guest") { $SenderName=$PMGuest;
380 if($SenderName==null) { $SenderName="Guest"; } }
381 $PreMessage = $ThemeSet['MessageUnread'];
382 if ($MessageStat==0) {
383 $PreMessage=$ThemeSet['MessageUnread']; }
384 if ($MessageStat==1) {
385 $PreMessage=$ThemeSet['MessageRead']; }
387 <tr
class="TableMenuRow3" id
="Message<?php echo $PMID; ?>">
388 <td
class="TableMenuColumn3"><div
class="messagestate">
389 <?php
echo $PreMessage; ?
></div
></td
>
390 <td
class="TableMenuColumn3"><div
class="messagename">
391 <a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=read
&id
=".$PMID,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>"><?php
echo $MessageName; ?
></a
></div
>
392 <div
class="messagedesc"><?php
echo $MessageDesc; ?
></div
></td
>
393 <td
class="TableMenuColumn3" style
="text-align: center;"><?php
394 if($ReciverID>0&&$ReciverHidden=="no") {
396 echo url_maker($exfile['member'],$Settings['file_ext'],"act=view&id=".$ReciverID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']);
397 echo "\">".$ReciverName."</a>"; }
398 if($ReciverID<=0||
$ReciverHidden=="yes") {
399 echo "<span>".$ReciverName."</span>"; }
401 <td
class="TableMenuColumn3" style
="text-align: center;"><?php
echo $DateSend; ?
></td
>
404 <tr id
="MessengerEnd" class="TableMenuRow4">
405 <td
class="TableMenuColumn4" colspan
="4"> 
;</td
>
407 <?php
sql_free_result($result); }
408 if($_GET['act']=="read") {
409 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."messenger\" WHERE \"id\"=%i", array($_GET['id']));
410 $result=sql_query($query,$SQLStat);
411 $num=sql_num_rows($result);
413 if($num==0) { redirect("location",$rbasedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
414 ob_clean(); header("Content-Type: text/plain; charset=".$Settings['charset']);
415 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); session_write_close(); die(); }
417 $PMID=sql_result($result,$is,"id");
418 $SenderID=sql_result($result,$is,"SenderID");
419 $SenderIP=sql_result($result,$is,"IP");
420 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat);
421 if($PreSenderName['Name']===null) { $SenderID = -1;
422 $PreSenderName = GetUserName($SenderID,$Settings['sqltable'],$SQLStat); }
423 $SenderName = $PreSenderName['Name'];
424 $SenderHidden = $PreSenderName['Hidden'];
425 $ReciverID=sql_result($result,$is,"ReciverID");
426 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat);
427 if($PreReciverName['Name']===null) { $ReciverID = -1;
428 $PreReciverName = GetUserName($ReciverID,$Settings['sqltable'],$SQLStat); }
429 $ReciverName = $PreReciverName['Name'];
430 $ReciverHidden = $PreReciverName['Hidden'];
431 $PMGuest=sql_result($result,$is,"GuestName");
432 $MessageName=sql_result($result,$is,"MessageTitle");
433 $DateSend=sql_result($result,$is,"DateSend");
434 $DateSend=GMTimeChange("F j, Y, g:i a",$DateSend,$_SESSION['UserTimeZone'],0,$_SESSION['UserDST']);
435 $MessageText=sql_result($result,$is,"MessageText");
436 $MessageText = preg_replace("/\<br\>/", "<br />", nl2br($MessageText));
437 $MessageDesc=sql_result($result,$is,"Description");
439 $requery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"id\"=%i", array($SenderID));
440 $reresult=sql_query($requery,$SQLStat);
441 $renum=sql_num_rows($reresult);
443 if($_SESSION['UserID']!=$ReciverID&&
444 $_SESSION['UserID']!=$SenderID) {
445 redirect("location",$rbasedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
446 ob_clean(); header("Content-Type: text/plain; charset=".$Settings['charset']);
447 gzip_page($Settings['use_gzip'],$GZipEncode['Type']); session_write_close(); die(); }
448 while ($rei < $renum) {
450 $User1Name=sql_result($reresult,$rei,"Name");
451 $SenderName = $User1Name;
452 $User1IP=sql_result($reresult,$rei,"IP");
453 if($User1IP==$SenderIP) { $ipshow = "one"; }
454 $User1Email=sql_result($reresult,$rei,"Email");
455 $User1Title=sql_result($reresult,$rei,"Title");
456 $User1Joined=sql_result($reresult,$rei,"Joined");
457 $User1Joined=GMTimeChange("M j Y",$User1Joined,$_SESSION['UserTimeZone'],0,$_SESSION['UserDST']);
458 $User1GroupID=sql_result($reresult,$rei,"GroupID");
459 $User1Hidden=sql_result($reresult,$rei,"HiddenMember");
460 $SenderHidden = $User1Hidden;
461 $gquery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"id\"=%i", array($User1GroupID));
462 $gresult=sql_query($gquery,$SQLStat);
463 $User1Group=sql_result($gresult,0,"Name");
464 $User1CanDoHTML=sql_result($gresult,0,"CanDoHTML");
465 if($User1CanDoHTML!="yes"&&$User1CanDoHTML!="no") {
466 $User1CanDoHTML = "no"; }
467 $User1CanUseBBags=sql_result($gresult,0,"CanUseBBags");
468 if($User1CanUseBBags!="yes"&&$User1CanUseBBags!="no") {
469 $User1CanUseBBags = "no"; }
470 $GroupNamePrefix=sql_result($gresult,0,"NamePrefix");
471 $GroupNameSuffix=sql_result($gresult,0,"NameSuffix");
472 sql_free_result($gresult);
473 if($User1Title=="") { $User1Title = $User1Group; }
474 $User1Signature=sql_result($reresult,$rei,"Signature");
475 $User1Avatar=sql_result($reresult,$rei,"Avatar");
476 $User1AvatarSize=sql_result($reresult,$rei,"AvatarSize");
477 if ($User1Avatar=="http://"||
$User1Avatar==null||
478 strtolower($User1Avatar)=="noavatar") {
479 $User1Avatar=$ThemeSet['NoAvatar'];
480 $User1AvatarSize=$ThemeSet['NoAvatarSize']; }
481 $AvatarSize1=explode("x", $User1AvatarSize);
482 $AvatarSize1W=$AvatarSize1[0]; $AvatarSize1H=$AvatarSize1[1];
483 $User1Website=sql_result($reresult,$rei,"Website");
484 $User1Website = urlcheck($User1Website);
485 $BoardWWWChCk = parse_url($Settings['idburl']);
486 $User1WWWChCk = parse_url($User1Website);
487 $opennew = " onclick=\"window.open(this.href);return false;\"";
488 if($BoardWWWChCk['host']==$User1WWWChCk['host']) {
490 $User1PostCount=sql_result($reresult,$rei,"PostCount");
491 $User1Karma=sql_result($reresult,$rei,"Karma");
492 $User1IP=sql_result($reresult,$rei,"IP");
493 ++
$rei; } sql_free_result($reresult);
494 ++
$is; } sql_free_result($result);
495 if($_SESSION['UserID']==$ReciverID) {
496 $queryup = sql_pre_query("UPDATE \"".$Settings['sqltable']."messenger\" SET \"Read\"=%i WHERE \"id\"=%i", array(1,$_GET['id']));
497 sql_query($queryup,$SQLStat); }
498 if($User1Name=="Guest") { $User1Name=$PMGuest;
499 if($User1Name==null) { $User1Name="Guest"; } }
500 if(isset($GroupNamePrefix)&&$GroupNamePrefix!=null) {
501 $User1Name = $GroupNamePrefix.$User1Name; }
502 if(isset($GroupNameSuffix)&&$GroupNameSuffix!=null) {
503 $User1Name = $User1Name.$GroupNameSuffix; }
504 $MessageText = url2link($MessageText);
505 $MessageText = text2icons($MessageText,$Settings['sqltable'],$SQLStat);
506 if($User1CanUseBBags=="yes") { $MessageText = bbcode_parser($MessageText); }
507 if($User1CanDoHTML=="yes") { $MessageText = do_html_bbcode($MessageText); }
508 $User1Signature = preg_replace("/\<br\>/", "<br />", nl2br($User1Signature));
509 $User1Signature = url2link($User1Signature);
510 $User1Signature = text2icons($User1Signature,$Settings['sqltable'],$SQLStat);
511 if($User1CanUseBBags=="yes") { $User1Signature = bbcode_parser($User1Signature); }
512 if($User1CanDoHTML=="yes") { $User1Signature = do_html_bbcode($User1Signature); }
514 <div
class="TableInfoMini1Border">
515 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
516 <div
class="TableInfoMiniRow1">
517 <span style
="font-weight: bold; text-align: left;"><?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&id
=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>"><?php
echo $MessageName; ?
></a
> ( <?php
echo $MessageDesc; ?
> )</span
>
520 <table
class="TableInfoMini1" style
="width: 100%;">
521 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
522 <tr
class="TableInfoMiniRow1">
523 <td
class="TableInfoMiniColumn1" colspan
="2"><span style
="font-weight: bold; text-align: left;"><?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=view
&id
=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>"><?php
echo $MessageName; ?
></a
> ( <?php
echo $MessageDesc; ?
> )</span
>
526 <tr
class="TableInfoMiniRow2">
527 <td
class="TableInfoMiniColumn2" style
="vertical-align: middle; width: 160px;">
529 if($User1ID>0&&$User1Hidden=="no") {
531 echo url_maker($exfile['member'],$Settings['file_ext'],"act=view&id=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']);
532 echo "\">".$User1Name."</a>"; }
533 if($User1ID<=0||
$User1Hidden=="yes") {
534 echo "<span>".$User1Name."</span>"; }
536 <td
class="TableInfoMiniColumn2" style
="vertical-align: middle;">
537 <div style
="float: left; text-align: left;">
538 <span style
="font-weight: bold;">Time Sent
: </span
><?php
echo $DateSend; ?
>
540 <div style
="text-align: right;">
541 <?php
if(isset($ThemeSet['Report'])&&$ThemeSet['Report']!=null) { ?
>
542 <a href
="#Act/Report"><?php
echo $ThemeSet['Report']; ?
></a
>
543 <?php
} if($GroupInfo['CanPM']=="yes"&&isset($ThemeSet['QuoteReply'])&&$ThemeSet['QuoteReply']!=null) {
544 echo $ThemeSet['LineDividerTopic']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=create
&id
=".$User1ID."&post
=".$_GET['id'],$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>"><?php
echo $ThemeSet['QuoteReply']; ?
></a
>
545 <?php
} ?
> 
;</div
>
548 <tr
class="TableInfoMiniRow3">
549 <td
class="TableInfoMiniColumn3" style
="vertical-align: top; width: 180px;">
550 <?php
// Avatar Table Thanks For SeanJ's Help at http://seanj.jcink.com/
552 <table
class="AvatarTable" style
="width: 100px; height: 100px; text-align: center;">
553 <tr
class="AvatarRow" style
="width: 100%; height: 100%;">
554 <td
class="AvatarRow" style
="width: 100%; height: 100%; text-align: center; vertical-align: middle;">
555 <img src
="<?php echo $User1Avatar; ?>" alt
="<?php echo $User1Name; ?>'s Avatar" title
="<?php echo $User1Name; ?>'s Avatar" style
="border: 0px; width: <?php echo $AvatarSize1W; ?>px; height: <?php echo $AvatarSize1H; ?>px;" />
559 <?php
echo $User1Title; ?
><br
/>
560 Group
: <?php
echo $User1Group; ?
><br
/>
562 if($User1ID>0&&$User1Hidden=="no") { echo $User1ID; }
563 if($User1ID<=0||
$User1Hidden=="yes") { echo 0; }
565 Posts
: <?php
echo $User1PostCount; ?
><br
/>
566 Karma
: <?php
echo $User1Karma; ?
><br
/>
567 Joined
: <?php
echo $User1Joined; ?
><br
/>
568 <?php
if($GroupInfo['HasAdminCP']=="yes") { ?
>
569 User IP
: <a onclick
="window.open(this.href);return false;" href
="<?php echo sprintf($IPCheckURL,$User1IP); ?>">
570 <?php
echo $User1IP; ?
></a
><br
/>
571 <?php
if($ipshow=="two") { ?
>
572 Message IP
: <a onclick
="window.open(this.href);return false;" href
="<?php echo sprintf($IPCheckURL,$SenderIP); ?>">
573 <?php
echo $SenderIP; ?
></a
><br
/>
576 <td
class="TableInfoMiniColumn3" style
="vertical-align: middle;">
577 <div
class="pmpost"><?php
echo $MessageText; ?
></div
>
578 <?php
if(isset($User1Signature)&&$User1Signature!="") { ?
> <br
/>--------------------
579 <div
class="signature"><?php
echo $User1Signature; ?
></div
><?php
} ?
>
582 <tr
class="TableInfoMiniRow4">
583 <td
class="TableInfoMiniColumn4" colspan
="2">
584 <span style
="text-align: left;"> 
;<a href
="<?php
585 if($User1ID>0&&$User1Hidden=="no
"&&isset($ThemeSet['Profile'])&&$ThemeSet['Profile']!=null) {
586 echo url_maker($exfile['member'],$Settings['file_ext'],"act
=view
&id
=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['member'],$exqstr['member']); }
587 if(($User1ID<=0||$User1Hidden=="yes
")&&isset($ThemeSet['Profile'])&&$ThemeSet['Profile']!=null) {
588 echo url_maker($exfile['index'],$Settings['file_ext'],"act
=view
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); }
589 ?>"><?php
echo $ThemeSet['Profile']; ?
></a
>
590 <?php
if(isset($ThemeSet['WWW'])&&$ThemeSet['WWW']!=null) {
591 echo $ThemeSet['LineDividerTopic']; ?
><a href
="<?php echo $User1Website; ?>"<?php
echo $opennew; ?
>><?php
echo $ThemeSet['WWW']; ?
></a
><?php
} echo $ThemeSet['LineDividerTopic']; ?
><a href
="<?php
592 if($User1ID>0&&$User1Hidden=="no
"&&isset($ThemeSet['PM'])&&$ThemeSet['PM']!=null) {
593 echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=create
&id
=".$User1ID,$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); }
594 if(($User1ID<=0||$User1Hidden=="yes
")&&isset($ThemeSet['PM'])&&$ThemeSet['PM']!=null) {
595 echo url_maker($exfile['index'],$Settings['file_ext'],"act
=view
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); }
596 ?>"><?php
echo $ThemeSet['PM']; ?
></a
></span
>
602 <?php
} if($_GET['act']=="create") {
603 $SendMessageTo = null;
604 if($_GET['id']!=null&&$_GET['id']!=-1) {
605 $requery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"id\"=%i", array($_GET['id']));
606 $reresult=sql_query($requery,$SQLStat);
607 $renum=sql_num_rows($reresult);
609 while ($rei < $renum) {
610 $SendMessageTo = sql_result($reresult,$rei,"Name");
611 $SendMessageTo = htmlspecialchars($SendMessageTo, ENT_QUOTES
, $Settings['charset']);
612 $SendToGroupID = sql_result($reresult,$rei,"GroupID");
613 ++
$rei; } sql_free_result($reresult); }
614 if(!isset($renum)) { $renum = 0; }
615 if($renum==0) { $SendMessageTo = null; }
616 $QuoteReply = null; $QuoteDescription = null; $QuoteTitle = null;
617 if($_GET['post']!=null) {
618 if(isset($SendMessageTo)) {
619 $QuoteUserName = $SendMessageTo; }
620 if(!isset($SendMessageTo)) {
621 $QuoteUserName = "Unknown"; }
622 $query = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."messenger\" WHERE \"id\"=%i", array($_GET['post']));
623 $result=sql_query($query,$SQLStat);
624 $num=sql_num_rows($result);
625 $QuoteTitle=sql_result($result,0,"MessageTitle");
626 $MessageText=sql_result($result,0,"MessageText");
627 $QuoteReply = preg_replace("/\<br\>/", "<br />", nl2br($MessageText));
628 $QuoteDescription=sql_result($result,0,"Description");
629 $result=sql_query($query,$SQLStat);
630 $num=sql_num_rows($result);
631 $QuoteReply = remove_bad_entities($QuoteReply);
632 $QuoteDescription = str_replace("Re: ","",$QuoteDescription);
633 $QuoteDescription = "Re: ".$QuoteDescription;
634 $QuoteTitle = str_replace("Re: ","",$QuoteTitle);
635 $QuoteTitle = "Re: ".$QuoteTitle;
636 $QuoteReply = null; }
637 $UFID = rand_uuid("rand");
638 $_SESSION['UserFormID'] = $UFID;
640 <div
class="Table1Border">
641 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
642 <div
class="TableRow1">
643 <span style
="text-align: left;">
644 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=create
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Seanding a Message
</a
></span
></div
>
646 <table
class="Table1" id
="MakeMessage">
647 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
648 <tr
class="TableRow1" id
="MessageStart">
649 <td
class="TableColumn1" colspan
="2"><span style
="text-align: left;">
650 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=create
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Seanding a Message
</a
></span
>
653 <tr id
="MakeMessageRow" class="TableRow2">
654 <td
class="TableColumn2" colspan
="2" style
="width: 100%;">Making a Message
</td
>
656 <tr
class="TableRow3" id
="MkMessage">
657 <td
class="TableColumn3" style
="width: 15%; vertical-align: middle; text-align: center;">
658 <div style
="width: 100%; height: 160px; overflow: auto;">
659 <table style
="width: 100%; text-align: center;"><?php
660 $renee_query=sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."smileys\" WHERE \"Display\"='yes'", array(null));
661 $renee_result=sql_query($renee_query,$SQLStat);
662 $renee_num=sql_num_rows($renee_result);
663 $renee_s=0; $SmileRow=0; $SmileCRow=0;
664 while ($renee_s < $renee_num) { ++
$SmileRow;
665 $FileName=sql_result($renee_result,$renee_s,"FileName");
666 $SmileName=sql_result($renee_result,$renee_s,"SmileName");
667 $SmileText=sql_result($renee_result,$renee_s,"SmileText");
668 $SmileDirectory=sql_result($renee_result,$renee_s,"Directory");
669 $ShowSmile=sql_result($renee_result,$renee_s,"Display");
670 $ReplaceType=sql_result($renee_result,$renee_s,"ReplaceCI");
671 if($SmileRow==1) { ?
><tr
>
672 <?php
} if($SmileRow<5) { ++
$SmileCRow; ?
>
673 <td
><img src
="<?php echo $SmileDirectory."".$FileName; ?>" style
="vertical-align: middle; border: 0px; cursor: pointer;" title
="<?php echo $SmileName; ?>" alt
="<?php echo $SmileName; ?>" onclick
="addsmiley('ReplyPost',' <?php echo htmlspecialchars($SmileText, ENT_QUOTES, $Settings['charset']); ?> ')" /></td
>
674 <?php
} if($SmileRow==5) { ++
$SmileCRow; ?
>
675 <td
><img src
="<?php echo $SmileDirectory."".$FileName; ?>" style
="vertical-align: middle; border: 0px; cursor: pointer;" title
="<?php echo $SmileName; ?>" alt
="<?php echo $SmileName; ?>" onclick
="addsmiley('ReplyPost',' <?php echo htmlspecialchars($SmileText, ENT_QUOTES, $Settings['charset']); ?> ')" /></td
></tr
>
676 <?php
$SmileCRow=0; $SmileRow=0; }
678 if($SmileCRow<5&&$SmileCRow!=0) {
679 $SmileCRowL = 5 - $SmileCRow;
680 echo "<td colspan=\"".$SmileCRowL."\"> </td></tr>"; }
682 sql_free_result($renee_result);
684 <td
class="TableColumn3" style
="width: 85%;">
685 <form style
="display: inline;" method
="post" id
="MkReplyForm" action
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=sendmessage
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">
686 <table style
="text-align: left;">
687 <tr style
="text-align: left;">
688 <td style
="width: 50%;"><label
class="TextBoxLabel" for="SendMessageTo">Insert UserName
:</label
></td
>
689 <td style
="width: 50%;"><input maxlength
="25" type
="text" name
="SendMessageTo" class="TextBox" id
="SendMessageTo" size
="20" value
="<?php echo $SendMessageTo; ?>" /></td
>
690 </tr
><tr style
="text-align: left;">
691 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MessageName">Insert Message Name
:</label
></td
>
692 <td style
="width: 50%;"><input maxlength
="30" type
="text" name
="MessageName" class="TextBox" id
="MessageName" size
="20" value
="<?php echo $QuoteTitle; ?>" /></td
>
693 </tr
><tr style
="text-align: left;">
694 <td style
="width: 50%;"><label
class="TextBoxLabel" for="MessageDesc">Insert Message Description
:</label
></td
>
695 <td style
="width: 50%;"><input maxlength
="45" type
="text" name
="MessageDesc" class="TextBox" id
="MessageDesc" size
="20" value
="<?php echo $QuoteDescription; ?>" /></td
>
696 </tr
><?php
if($_SESSION['UserGroup']==$Settings['GuestGroup']) { ?
><tr style
="text-align: left;">
697 <td style
="width: 50%;"><label
class="TextBoxLabel" for="GuestName">Insert Guest Name
:</label
></td
>
698 <?php
if(!isset($_SESSION['GuestName'])) { ?
>
699 <td style
="width: 50%;"><input maxlength
="25" type
="text" name
="GuestName" class="TextBox" id
="GuestName" size
="20" /></td
>
700 <?php
} if(isset($_SESSION['GuestName'])) { ?
>
701 <td style
="width: 50%;"><input maxlength
="25" type
="text" name
="GuestName" class="TextBox" id
="GuestName" size
="20" value
="<?php echo $_SESSION['GuestName']; ?>" /></td
>
702 <?php
} ?
></tr
><?php
} ?
>
704 <table style
="text-align: left;">
705 <tr style
="text-align: left;">
706 <td style
="width: 100%;">
707 <label
class="TextBoxLabel" for="Message">Insert Your Message
:</label
><br
/>
708 <textarea rows
="10" name
="Message" id
="Message" cols
="40" class="TextBox"><?php
echo $QuoteReply; ?
></textarea
><br
/>
709 <?php
if($_SESSION['UserGroup']==$Settings['GuestGroup']&&$Settings['captcha_guest']=="on") { ?
>
710 <label
class="TextBoxLabel" for="signcode"><img src
="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act
=MkCaptcha
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>" alt
="CAPTCHA Code" title
="CAPTCHA Code" /></label
><br
/>
711 <input maxlength
="25" type
="text" class="TextBox" name
="signcode" size
="20" id
="signcode" value
="Enter SignCode" /><br
/>
713 <input type
="hidden" name
="act" value
="sendmessages" style
="display: none;" />
714 <?php
if($_SESSION['UserGroup']!=$Settings['GuestGroup']) { ?
>
715 <input type
="hidden" name
="GuestName" value
="null" style
="display: none;" />
717 <input type
="submit" class="Button" value
="Send Message" name
="send_message" />
718 <input type
="hidden" style
="display: none;" name
="fid" value
="<?php echo $UFID; ?>" />
719 <input type
="reset" value
="Reset Form" class="Button" name
="Reset_Form" />
722 <tr id
="MkReplyEnd" class="TableRow4">
723 <td
class="TableColumn4" colspan
="2"> 
;</td
>
726 <?php
} if($_GET['act']=="sendmessage"&&$_POST['act']=="sendmessages") {
727 $REFERERurl = parse_url($_SERVER['HTTP_REFERER']);
728 $URL['REFERER'] = $REFERERurl['host'];
729 $URL['HOST'] = $_SERVER["SERVER_NAME"];
731 if(!isset($_POST['SendMessageTo'])) { $_POST['SendMessageTo'] = null; }
732 if(!isset($_POST['MessageName'])) { $_POST['MessageName'] = null; }
733 if(!isset($_POST['MessageDesc'])) { $_POST['MessageDesc'] = null; }
734 if(!isset($_POST['Message'])) { $_POST['Message'] = null; }
735 if(!isset($_POST['GuestName'])) { $_POST['GuestName'] = null; }
736 if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
737 $Settings['captcha_guest']=="on") {
738 require($SettDir['inc']."captcha.php"); }
740 <div
class="Table1Border">
741 <?php
if($ThemeSet['TableStyle']=="div") { ?
>
742 <div
class="TableRow1">
743 <span style
="text-align: left;">
744 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=sendmessage
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Making a Message
</a
></span
></div
>
746 <table
class="Table1">
747 <?php
if($ThemeSet['TableStyle']=="table") { ?
>
748 <tr
class="TableRow1">
749 <td
class="TableColumn1"><span style
="text-align: left;">
750 <?php
echo $ThemeSet['TitleIcon']; ?
><a href
="<?php echo url_maker($exfile['messenger'],$Settings['file_ext'],"act
=sendmessage
",$Settings['qstr'],$Settings['qsep'],$prexqstr['messenger'],$exqstr['messenger']); ?>">Making a Message
</a
></span
>
753 <tr
class="TableRow2">
754 <th
class="TableColumn2" style
="width: 100%; text-align: left;"> 
;Make Message
: </th
>
756 <tr
class="TableRow3">
757 <td
class="TableColumn3">
758 <table style
="width: 100%; height: 25%; text-align: center;">
759 <?php
if (pre_strlen($_POST['SendMessageTo'])>="25") { $Error="Yes"; ?
>
761 <td
><span
class="TableMessage">
762 <br
/>Send to user name too big
.<br
/>
765 <?php
} if($_POST['fid']!=$_SESSION['UserFormID']) { $Error="Yes"; ?
>
767 <td
><span
class="TableMessage">
768 <br
/>Sorry the referering url dose not match our host name
.<br
/>
771 <?php
} if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
772 $Settings['captcha_guest']=="on") {
773 if (PhpCaptcha
::Validate($_POST['signcode'])) {
774 //echo 'Valid code entered';
775 } else { $Error="Yes"; ?
>
777 <td
><span
class="TableMessage">
778 <br
/>Invalid code entered
<br
/>
781 <?php
} } if ($_POST['SendMessageTo']==null) { $Error="Yes"; ?
>
783 <td
><span
class="TableMessage">
784 <br
/>You need to enter a user name to send message to
.<br
/>
787 <?php
} if (pre_strlen($_POST['MessageName'])>="30") { $Error="Yes"; ?
>
789 <td
><span
class="TableMessage">
790 <br
/>Message Name is too big
.<br
/>
793 <?php
} if (pre_strlen($_POST['MessageDesc'])>="45") { $Error="Yes"; ?
>
795 <td
><span
class="TableMessage">
796 <br
/>Message Description is too big
.<br
/>
799 <?php
} if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
800 pre_strlen($_POST['GuestName'])>="25") { $Error="Yes"; ?
>
802 <td
><span
class="TableMessage">
803 <br
/>You Guest Name is too big
.<br
/>
806 <?php
} if ($Settings['TestReferer']=="on") {
807 if ($URL['HOST']!=$URL['REFERER']) { $Error="Yes"; ?
>
809 <td
><span
class="TableMessage">
810 <br
/>Sorry the referering url dose not match our host name
.<br
/>
814 $_POST['MessageName'] = stripcslashes(htmlspecialchars($_POST['MessageName'], ENT_QUOTES
, $Settings['charset']));
815 //$_POST['MessageName'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['MessageName']);
816 $_POST['MessageName'] = remove_spaces($_POST['MessageName']);
817 $_POST['MessageDesc'] = stripcslashes(htmlspecialchars($_POST['MessageDesc'], ENT_QUOTES
, $Settings['charset']));
818 //$_POST['MessageDesc'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['MessageDesc']);
819 $_POST['MessageDesc'] = remove_spaces($_POST['MessageDesc']);
820 $_POST['SendMessageTo'] = stripcslashes(htmlspecialchars($_POST['SendMessageTo'], ENT_QUOTES
, $Settings['charset']));
821 //$_POST['SendMessageTo'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['SendMessageTo']);
822 $_POST['SendMessageTo'] = remove_spaces($_POST['SendMessageTo']);
823 $_POST['GuestName'] = stripcslashes(htmlspecialchars($_POST['GuestName'], ENT_QUOTES
, $Settings['charset']));
824 //$_POST['GuestName'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['GuestName']);
825 $_POST['GuestName'] = remove_spaces($_POST['GuestName']);
826 $_POST['Message'] = stripcslashes(htmlspecialchars($_POST['Message'], ENT_QUOTES
, $Settings['charset']));
827 //$_POST['Message'] = preg_replace("/&#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['Message']);
828 //$_POST['Message'] = remove_spaces($_POST['Message']);
829 $_POST['Message'] = remove_bad_entities($_POST['Message']);
830 if($_SESSION['UserGroup']==$Settings['GuestGroup']) {
831 if(isset($_POST['GuestName'])&&$_POST['GuestName']!=null) {
832 if($cookieDomain==null) {
833 setcookie("GuestName", $_POST['GuestName'], time() +
(7 * 86400), $cbasedir); }
834 if($cookieDomain!=null) {
835 if($cookieSecure===true) {
836 setcookie("GuestName", $_POST['GuestName'], time() +
(7 * 86400), $cbasedir, $cookieDomain, 1); }
837 if($cookieSecure===false) {
838 setcookie("GuestName", $_POST['GuestName'], time() +
(7 * 86400), $cbasedir, $cookieDomain); } }
839 $_SESSION['GuestName']=$_POST['GuestName']; } }
840 /* <_< iWordFilter >_>
841 by Kazuki Przyborowski - Cool Dude 2k */
842 $katarzynaqy=sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."wordfilter\"", array(null));
843 $katarzynart=sql_query($katarzynaqy,$SQLStat);
844 $katarzynanm=sql_num_rows($katarzynart);
846 while ($katarzynas < $katarzynanm) {
847 $Filter=sql_result($katarzynart,$katarzynas,"FilterWord");
848 $Replace=sql_result($katarzynart,$katarzynas,"Replacement");
849 $CaseInsensitive=sql_result($katarzynart,$katarzynas,"CaseInsensitive");
850 if($CaseInsensitive=="on") { $CaseInsensitive = "yes"; }
851 if($CaseInsensitive=="off") { $CaseInsensitive = "no"; }
852 if($CaseInsensitive!="yes"||
$CaseInsensitive!="no") { $CaseInsensitive = "no"; }
853 $WholeWord=sql_result($katarzynart,$katarzynas,"WholeWord");
854 if($WholeWord=="on") { $WholeWord = "yes"; }
855 if($WholeWord=="off") { $WholeWord = "no"; }
856 if($WholeWord!="yes"&&$WholeWord!="no") { $WholeWord = "no"; }
857 $Filter = preg_quote($Filter, "/");
858 if($CaseInsensitive!="yes"&&$WholeWord=="yes") {
859 $_POST['Message'] = preg_replace("/\b(".$Filter.")\b/", $Replace, $_POST['Message']);
860 $_POST['MessageDesc'] = preg_replace("/\b(".$Filter.")\b/", $Replace, $_POST['MessageDesc']); }
861 if($CaseInsensitive=="yes"&&$WholeWord=="yes") {
862 $_POST['Message'] = preg_replace("/\b(".$Filter.")\b/i", $Replace, $_POST['Message']);
863 $_POST['MessageDesc'] = preg_replace("/\b(".$Filter.")\b/i", $Replace, $_POST['MessageDesc']); }
864 if($CaseInsensitive!="yes"&&$WholeWord!="yes") {
865 $_POST['Message'] = preg_replace("/".$Filter."/", $Replace, $_POST['Message']);
866 $_POST['MessageDesc'] = preg_replace("/".$Filter."/", $Replace, $_POST['MessageDesc']); }
867 if($CaseInsensitive=="yes"&&$WholeWord!="yes") {
868 $_POST['Message'] = preg_replace("/".$Filter."/i", $Replace, $_POST['Message']);
869 $_POST['MessageDesc'] = preg_replace("/".$Filter."/i", $Replace, $_POST['MessageDesc']); }
870 ++
$katarzynas; } sql_free_result($katarzynart);
871 $lonewolfqy=sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."restrictedwords\" WHERE \"RestrictedMessageName\"='yes' or \"RestrictedUserName\"='yes'", array(null));
872 $lonewolfrt=sql_query($lonewolfqy,$SQLStat);
873 $lonewolfnm=sql_num_rows($lonewolfrt);
874 $lonewolfs=0; $RMatches = null; $RGMatches = null;
875 while ($lonewolfs < $lonewolfnm) {
876 $RWord=sql_result($lonewolfrt,$lonewolfs,"Word");
877 $RCaseInsensitive=sql_result($lonewolfrt,$lonewolfs,"CaseInsensitive");
878 if($RCaseInsensitive=="on") { $RCaseInsensitive = "yes"; }
879 if($RCaseInsensitive=="off") { $RCaseInsensitive = "no"; }
880 if($RCaseInsensitive!="yes"||
$RCaseInsensitive!="no") { $RCaseInsensitive = "no"; }
881 $RWholeWord=sql_result($lonewolfrt,$lonewolfs,"WholeWord");
882 if($RWholeWord=="on") { $RWholeWord = "yes"; }
883 if($RWholeWord=="off") { $RWholeWord = "no"; }
884 if($RWholeWord!="yes"||
$RWholeWord!="no") { $RWholeWord = "no"; }
885 $RestrictedMessageName=sql_result($lonewolfrt,$lonewolfs,"RestrictedMessageName");
886 if($RestrictedMessageName=="on") { $RestrictedMessageName = "yes"; }
887 if($RestrictedMessageName=="off") { $RestrictedMessageName = "no"; }
888 if($RestrictedMessageName!="yes"||
$RestrictedMessageName!="no") { $RestrictedMessageName = "no"; }
889 $RestrictedUserName=sql_result($lonewolfrt,$lonewolfs,"RestrictedUserName");
890 if($RestrictedUserName=="on") { $RestrictedUserName = "yes"; }
891 if($RestrictedUserName=="off") { $RestrictedUserName = "no"; }
892 if($RestrictedUserName!="yes"||
$RestrictedUserName!="no") { $RestrictedUserName = "no"; }
893 $RWord = preg_quote($RWord, "/");
894 if($RCaseInsensitive!="yes"&&$RWholeWord=="yes") {
895 if($RestrictedMessageName=="yes") {
896 $RMatches = preg_match("/\b(".$RWord.")\b/", $_POST['MessageName']);
897 if($RMatches==true) { break 1; } }
898 if($RestrictedUserName=="yes") {
899 $RGMatches = preg_match("/\b(".$RWord.")\b/", $_POST['GuestName']);
900 if($RGMatches==true) { break 1; } } }
901 if($RCaseInsensitive=="yes"&&$RWholeWord=="yes") {
902 if($RestrictedMessageName=="yes") {
903 $RMatches = preg_match("/\b(".$RWord.")\b/i", $_POST['MessageName']);
904 if($RMatches==true) { break 1; } }
905 if($RestrictedUserName=="yes") {
906 $RGMatches = preg_match("/\b(".$RWord.")\b/i", $_POST['GuestName']);
907 if($RGMatches==true) { break 1; } } }
908 if($RCaseInsensitive!="yes"&&$RWholeWord!="yes") {
909 if($RestrictedMessageName=="yes") {
910 $RMatches = preg_match("/".$RWord."/", $_POST['MessageName']);
911 if($RMatches==true) { break 1; } }
912 if($RestrictedUserName=="yes") {
913 $RGMatches = preg_match("/".$RWord."/", $_POST['GuestName']);
914 if($RGMatches==true) { break 1; } } }
915 if($RCaseInsensitive=="yes"&&$RWholeWord!="yes") {
916 if($RestrictedMessageName=="yes") {
917 $RMatches = preg_match("/".$RWord."/i", $_POST['MessageName']);
918 if($RMatches==true) { break 1; } }
919 if($RestrictedUserName=="yes") {
920 $RGMatches = preg_match("/".$RWord."/i", $_POST['GuestName']);
921 if($RGMatches==true) { break 1; } } }
922 ++
$lonewolfs; } sql_free_result($lonewolfrt);
923 $requery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."members\" WHERE \"Name\"='%s'", array($_POST['SendMessageTo']));
924 $reresult=sql_query($requery,$SQLStat);
925 $renum=sql_num_rows($reresult);
927 while ($rei < $renum) {
928 $SendMessageToID = sql_result($reresult,$rei,"id");
929 $SendToGroupID = sql_result($reresult,$rei,"GroupID");
930 $gquery = sql_pre_query("SELECT * FROM \"".$Settings['sqltable']."groups\" WHERE \"id\"=%i", array($SendToGroupID));
931 $gresult=sql_query($gquery,$SQLStat);
932 $SendUserCanPM=sql_result($gresult,0,"CanPM");
933 $SendUserCanPM = strtolower($SendUserCanPM);
934 if($SendUserCanPM!="yes"&&$SendUserCanPM!="no") {
935 $SendUserCanPM = "no"; }
936 sql_free_result($gresult);
937 ++
$rei; } sql_free_result($reresult);
938 if($renum==0) { $Error="Yes"; ?
>
940 <td
><span
class="TableMessage">
941 <br
/>Cound not find users name
.<br
/>
944 <?php
} if ($_POST['MessageName']==null) { $Error="Yes"; ?
>
946 <td
><span
class="TableMessage">
947 <br
/>You need to enter a Message Name
.<br
/>
950 <?php
} if ($_POST['MessageDesc']==null) { $Error="Yes"; ?
>
952 <td
><span
class="TableMessage">
953 <br
/>You need to enter a Message Description
.<br
/>
956 <?php
} if ($SendUserCanPM=="no") { $Error="Yes"; ?
>
958 <td
><span
class="TableMessage">
959 <br
/>User Name enter can not get messages
.<br
/>
962 <?php
} if ($_POST['Message']==null) { $Error="Yes"; ?
>
964 <td
><span
class="TableMessage">
965 <br
/>You need to enter a Message
.<br
/>
968 <?php
} if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
969 $_POST['GuestName']==null) { $Error="Yes"; ?
>
971 <td
><span
class="TableMessage">
972 <br
/>You need to enter a Guest Name
.<br
/>
975 <?php
} if($_SESSION['UserGroup']==$Settings['GuestGroup']&&
976 $RGMatches==true) { $Error="Yes"; ?
>
978 <td
><span
class="TableMessage">
979 <br
/>This Guest Name is restricted to
use.<br
/>
982 <?php
} if($RMatches==true) { $Error="Yes"; ?
>
984 <td
><span
class="TableMessage">
985 <br
/>This Message Name is restricted to
use.<br
/>
988 <?php
} if ($Error=="Yes") {
989 redirect("refresh",$rbasedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false),"4"); ?
>
991 <td
><span
class="TableMessage">
992 <br
/>Click
<a href
="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act
=view
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">here
</a
> to
goto index page
.<br
/> 
;
995 <?php
} if ($Error!="Yes") { $LastActive = GMTimeStamp();
996 if($_SESSION['UserGroup']==$Settings['GuestGroup']) { $User1Name = $_POST['GuestName']; }
997 if($_SESSION['UserGroup']!=$Settings['GuestGroup']) { $User1Name = $_SESSION['MemberName']; }
998 $User1IP=$_SERVER['REMOTE_ADDR'];
999 $query = sql_pre_query("INSERT INTO \"".$Settings['sqltable']."messenger\" (\"SenderID\", \"ReciverID\", \"GuestName\", \"MessageTitle\", \"MessageText\", \"Description\", \"DateSend\", \"Read\", \"IP\") VALUES
1000 (%i, %i, '%s', '%s', '%s', '%s', %i, %i, '%s')", array($_SESSION['UserID'],$SendMessageToID,$_SESSION['MemberName'],$_POST['MessageName'],$_POST['Message'],$_POST['MessageDesc'],$LastActive,0,$User1IP));
1001 sql_query($query,$SQLStat);
1002 $messageid = sql_get_next_id($Settings['sqltable'],"messenger",$SQLStat);
1004 <td
><span
class="TableMessage"><br
/>
1005 Message sent to user
<?php
echo $_POST['SendMessageTo']; ?
>.<br
/>
1006 Click
<a href
="<?php echo url_maker($exfile['index'],$Settings['file_ext'],"act
=view
",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index']); ?>">here
</a
> to go back to index
.<br
/> 
;
1012 <tr
class="TableRow4">
1013 <td
class="TableColumn4"> 
;</td
>
1017 <div
class="DivMessages"> 
;</div
>