diff --git a/include/cleanup.php b/include/cleanup.php index 8721d30a..62815aa0 100644 --- a/include/cleanup.php +++ b/include/cleanup.php @@ -59,10 +59,10 @@ function torrent_promotion_expire($days, $type = 2, $targettype = 1){ } } while($arr = mysql_fetch_assoc($res)){ - sql_query("UPDATE torrents SET sp_state = ".sqlesc($sp_state)." WHERE id=$arr[id]") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE torrents SET sp_state = ".sqlesc($sp_state)." WHERE id={$arr['id']}") or sqlerr(__FILE__, __LINE__); if ($sp_state == 1) - write_log("Torrent $arr[id] ($arr[name]) is no longer on promotion (time expired)",'normal'); - else write_log("Promotion type for torrent $arr[id] ($arr[name]) is changed to ".$become." (time expired)",'normal'); + write_log("Torrent {$arr['id']} ({$arr['name']}) is no longer on promotion (time expired)",'normal'); + else write_log("Promotion type for torrent {$arr['id']} ({$arr['name']}) is changed to ".$become." (time expired)",'normal'); } } @@ -78,11 +78,11 @@ function peasant_to_user($down_floor_gb, $down_roof_gb, $minratio){ $dt = sqlesc(date("Y-m-d H:i:s")); while ($arr = mysql_fetch_assoc($res)) { - $subject = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_low_ratio_warning_removed']); - $msg = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_your_ratio_warning_removed']); - writecomment($arr[id],"Leech Warning removed by System."); - sql_query("UPDATE users SET class = 1, leechwarn = 'no', leechwarnuntil = null WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[id], $dt, $subject, $msg)") or sqlerr(__FILE__, __LINE__); + $subject = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_low_ratio_warning_removed']); + $msg = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_your_ratio_warning_removed']); + writecomment($arr['id'],"Leech Warning removed by System."); + sql_query("UPDATE users SET class = 1, leechwarn = 'no', leechwarnuntil = null WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['id']}, $dt, $subject, $msg)") or sqlerr(__FILE__, __LINE__); } } } @@ -101,14 +101,14 @@ function promotion($class, $down_floor_gb, $minratio, $time_week, $addinvite = 0 $dt = sqlesc(date("Y-m-d H:i:s")); while ($arr = mysql_fetch_assoc($res)) { - $subject = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_promoted_to'].get_user_class_name($class,false,false,false)); - $msg = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_now_you_are'].get_user_class_name($class,false,false,false).$lang_cleanup_target[get_user_lang($arr[id])]['msg_see_faq']); + $subject = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_promoted_to'].get_user_class_name($class,false,false,false)); + $msg = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_now_you_are'].get_user_class_name($class,false,false,false).$lang_cleanup_target[get_user_lang($arr['id'])]['msg_see_faq']); if($class<=$arr[max_class_once]) - sql_query("UPDATE users SET class = $class WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE users SET class = $class WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); else - sql_query("UPDATE users SET class = $class, max_class_once=$class, invites=invites+$addinvite WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE users SET class = $class, max_class_once=$class, invites=invites+$addinvite WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[id], $dt, $subject, $msg)") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['id']}, $dt, $subject, $msg)") or sqlerr(__FILE__, __LINE__); } } } @@ -124,10 +124,10 @@ function demotion($class,$deratio){ $dt = sqlesc(date("Y-m-d H:i:s")); while ($arr = mysql_fetch_assoc($res)) { - $subject = $lang_cleanup_target[get_user_lang($arr[id])]['msg_demoted_to'].get_user_class_name($newclass,false,false,false); - $msg = $lang_cleanup_target[get_user_lang($arr[id])]['msg_demoted_from'].get_user_class_name($class,false,false,false).$lang_cleanup_target[get_user_lang($arr[id])]['msg_to'].get_user_class_name($newclass,false,false,false).$lang_cleanup_target[get_user_lang($arr[id])]['msg_because_ratio_drop_below'].$deratio.".\n"; - sql_query("UPDATE users SET class = $newclass WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[id], $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); + $subject = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_demoted_to'].get_user_class_name($newclass,false,false,false); + $msg = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_demoted_from'].get_user_class_name($class,false,false,false).$lang_cleanup_target[get_user_lang($arr['id'])]['msg_to'].get_user_class_name($newclass,false,false,false).$lang_cleanup_target[get_user_lang($arr['id'])]['msg_because_ratio_drop_below'].$deratio.".\n"; + sql_query("UPDATE users SET class = $newclass WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['id']}, $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); } } } @@ -145,11 +145,11 @@ function user_to_peasant($down_floor_gb, $minratio){ $dt = sqlesc(date("Y-m-d H:i:s")); while ($arr = mysql_fetch_assoc($res)) { - $subject = $lang_cleanup_target[get_user_lang($arr[id])]['msg_demoted_to'].get_user_class_name(UC_PEASANT,false,false,false); - $msg = $lang_cleanup_target[get_user_lang($arr[id])]['msg_must_fix_ratio_within'].$deletepeasant_account.$lang_cleanup_target[get_user_lang($arr[id])]['msg_days_or_get_banned']; - writecomment($arr[id],"Leech Warned by System - Low Ratio."); - sql_query("UPDATE users SET class = 0 , leechwarn = 'yes', leechwarnuntil = ".sqlesc($until)." WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[id], $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); + $subject = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_demoted_to'].get_user_class_name(UC_PEASANT,false,false,false); + $msg = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_must_fix_ratio_within'].$deletepeasant_account.$lang_cleanup_target[get_user_lang($arr['id'])]['msg_days_or_get_banned']; + writecomment($arr['id'],"Leech Warned by System - Low Ratio."); + sql_query("UPDATE users SET class = 0 , leechwarn = 'yes', leechwarnuntil = ".sqlesc($until)." WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['id']}, $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); } } } @@ -199,7 +199,7 @@ function docleanup($forceAll = 0, $printProgress = false) { $A = 0; $count = 0; $all_bonus = 0; - $torrentres = sql_query("select torrents.added, torrents.size, torrents.seeders from torrents LEFT JOIN peers ON peers.torrent = torrents.id WHERE peers.userid = $arr[userid] AND peers.seeder ='yes'") or sqlerr(__FILE__, __LINE__); + $torrentres = sql_query("select torrents.added, torrents.size, torrents.seeders from torrents LEFT JOIN peers ON peers.torrent = torrents.id WHERE peers.userid = {$arr['userid']} AND peers.seeder ='yes'") or sqlerr(__FILE__, __LINE__); while ($torrent = mysql_fetch_array($torrentres)) { $weeks_alive = ($timenow - strtotime($torrent['added'])) / $sectoweek; @@ -315,15 +315,15 @@ function docleanup($forceAll = 0, $printProgress = false) { { $postcount = 0; $topiccount = 0; - $topics = sql_query("select id from topics where forumid=$forum[id]") or sqlerr(__FILE__, __LINE__); + $topics = sql_query("select id from topics where forumid={$forum['id']}") or sqlerr(__FILE__, __LINE__); while ($topic = mysql_fetch_assoc($topics)) { - $res = sql_query("select count(*) from posts where topicid=$topic[id]") or sqlerr(__FILE__, __LINE__); + $res = sql_query("select count(*) from posts where topicid={$topic['id']}") or sqlerr(__FILE__, __LINE__); $arr = mysql_fetch_row($res); $postcount += $arr[0]; ++$topiccount; } - sql_query("update forums set postcount=$postcount, topiccount=$topiccount where id=$forum[id]") or sqlerr(__FILE__, __LINE__); + sql_query("update forums set postcount=$postcount, topiccount=$topiccount where id={$forum['id']}") or sqlerr(__FILE__, __LINE__); } $Cache->delete_value('forums_list'); $log = "update forum post/topic count"; @@ -338,10 +338,10 @@ function docleanup($forceAll = 0, $printProgress = false) { $dt = sqlesc(date("Y-m-d H:i:s",(TIMENOW - ($offervotetimeout_main)))); $res = sql_query("SELECT id, name FROM offers WHERE added < $dt AND allowed <> 'allowed'") or sqlerr(__FILE__, __LINE__); while($arr = mysql_fetch_assoc($res)){ - sql_query("DELETE FROM offers WHERE id=$arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("DELETE FROM offervotes WHERE offerid=$arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("DELETE FROM comments WHERE offer=$arr[id]") or sqlerr(__FILE__, __LINE__); - write_log("Offer $arr[id] ($arr[name]) was deleted by system (vote timeout)",'normal'); + sql_query("DELETE FROM offers WHERE id={$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("DELETE FROM offervotes WHERE offerid={$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("DELETE FROM comments WHERE offer={$arr['id']}") or sqlerr(__FILE__, __LINE__); + write_log("Offer {$arr['id']} ({$arr['name']}) was deleted by system (vote timeout)",'normal'); } } $log = "delete offers if not voted on after some time"; @@ -356,10 +356,10 @@ function docleanup($forceAll = 0, $printProgress = false) { $dt = sqlesc(date("Y-m-d H:i:s",(TIMENOW - ($secs)))); $res = sql_query("SELECT id, name FROM offers WHERE allowedtime < $dt AND allowed = 'allowed'") or sqlerr(__FILE__, __LINE__); while($arr = mysql_fetch_assoc($res)){ - sql_query("DELETE FROM offers WHERE id=$arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("DELETE FROM offervotes WHERE offerid=$arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("DELETE FROM comments WHERE offer=$arr[id]") or sqlerr(__FILE__, __LINE__); - write_log("Offer $arr[id] ($arr[name]) was deleted by system (upload timeout)",'normal'); + sql_query("DELETE FROM offers WHERE id={$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("DELETE FROM offervotes WHERE offerid={$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("DELETE FROM comments WHERE offer={$arr['id']}") or sqlerr(__FILE__, __LINE__); + write_log("Offer {$arr['id']} ({$arr['name']}) was deleted by system (upload timeout)",'normal'); } } $log = "delete offers if not uploaded after being voted on for some time."; @@ -523,15 +523,15 @@ function docleanup($forceAll = 0, $printProgress = false) { while ($arr = mysql_fetch_assoc($res)) { $dt = sqlesc(date("Y-m-d H:i:s")); - $subject = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_vip_status_removed']); - $msg = sqlesc($lang_cleanup_target[get_user_lang($arr[id])]['msg_vip_status_removed_body']); + $subject = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_vip_status_removed']); + $msg = sqlesc($lang_cleanup_target[get_user_lang($arr['id'])]['msg_vip_status_removed_body']); ///---AUTOSYSTEM MODCOMMENT---// $modcomment = htmlspecialchars($arr["modcomment"]); $modcomment = date("Y-m-d") . " - VIP status removed by - AutoSystem.\n". $modcomment; $modcom = sqlesc($modcomment); ///---end - sql_query("UPDATE users SET class = '1', vip_added = 'no', vip_until = null, modcomment = $modcom WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, msg, subject) VALUES(0, $arr[id], $dt, $msg, $subject)") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE users SET class = '1', vip_added = 'no', vip_until = null, modcomment = $modcom WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, msg, subject) VALUES(0, {$arr['id']}, $dt, $msg, $subject)") or sqlerr(__FILE__, __LINE__); } } $log = "remove VIP status if time's up"; @@ -611,9 +611,9 @@ function docleanup($forceAll = 0, $printProgress = false) { { while ($arr = mysql_fetch_assoc($res)) { - writecomment($arr[id],"Banned by System because of Leech Warning expired."); + writecomment($arr['id'],"Banned by System because of Leech Warning expired."); - sql_query("UPDATE users SET enabled = 'no', leechwarnuntil = null WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE users SET enabled = 'no', leechwarnuntil = null WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); } } $log = "ban users with leechwarning expired"; @@ -630,11 +630,11 @@ function docleanup($forceAll = 0, $printProgress = false) { { while ($arr = mysql_fetch_assoc($res)) { - $subject = $lang_cleanup_target[get_user_lang($arr[id])]['msg_warning_removed']; - $msg = $lang_cleanup_target[get_user_lang($arr[id])]['msg_your_warning_removed']; - writecomment($arr[id],"Warning removed by System."); - sql_query("UPDATE users SET warned = 'no', warneduntil = null WHERE id = $arr[id]") or sqlerr(__FILE__, __LINE__); - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[id], $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); + $subject = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_warning_removed']; + $msg = $lang_cleanup_target[get_user_lang($arr['id'])]['msg_your_warning_removed']; + writecomment($arr['id'],"Warning removed by System."); + sql_query("UPDATE users SET warned = 'no', warneduntil = null WHERE id = {$arr['id']}") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['id']}, $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); } } $log = "remove warning of users"; @@ -671,10 +671,10 @@ function docleanup($forceAll = 0, $printProgress = false) { while($arr = mysql_fetch_assoc($res)) { deletetorrent($arr['id']); - $subject = $lang_cleanup_target[get_user_lang($arr[owner])]['msg_your_torrent_deleted']; - $msg = $lang_cleanup_target[get_user_lang($arr[owner])]['msg_your_torrent']."[i]".$arr['name']."[/i]".$lang_cleanup_target[get_user_lang($arr[owner])]['msg_was_deleted_because_dead']; - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, $arr[owner], $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); - write_log("Torrent $arr[id] ($arr[name]) is deleted by system because of being dead for a long time.",'normal'); + $subject = $lang_cleanup_target[get_user_lang($arr['owner'])]['msg_your_torrent_deleted']; + $msg = $lang_cleanup_target[get_user_lang($arr['owner'])]['msg_your_torrent']."[i]".$arr['name']."[/i]".$lang_cleanup_target[get_user_lang($arr['owner'])]['msg_was_deleted_because_dead']; + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES(0, {$arr['owner']}, $dt, ".sqlesc($subject).", ".sqlesc($msg).")") or sqlerr(__FILE__, __LINE__); + write_log("Torrent {$arr['id']} ({$arr['name']}) is deleted by system because of being dead for a long time.",'normal'); } } $log = "delete torrents that have been dead for a long time"; diff --git a/public/allagents.php b/public/allagents.php index 2e2317c3..38fced11 100644 --- a/public/allagents.php +++ b/public/allagents.php @@ -10,7 +10,7 @@ print("\n"); print("\n"); while($arr2 = mysql_fetch_assoc($res2)) { - print("\n"); + print("\n"); } print("
ClientPeer ID
$arr2[agent]$arr2[peer_id]
{$arr2['agent']}{$arr2['peer_id']}
\n"); stdfoot(); diff --git a/public/bitbucket-upload.php b/public/bitbucket-upload.php index 7ff5a71d..660115ec 100644 --- a/public/bitbucket-upload.php +++ b/public/bitbucket-upload.php @@ -68,8 +68,8 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") $public='"0"'; else $public='"1"'; - sql_query("INSERT INTO bitbucket (owner, name, added, public) VALUES ($CURUSER[id], $name, $added, $public)") or sqlerr(__FILE__, __LINE__); - sql_query("UPDATE users SET avatar = ".sqlesc($url)." WHERE id = $CURUSER[id]") or sqlerr(__FILE__, __LINE__); + sql_query("INSERT INTO bitbucket (owner, name, added, public) VALUES ({$CURUSER['id']}, $name, $added, $public)") or sqlerr(__FILE__, __LINE__); + sql_query("UPDATE users SET avatar = ".sqlesc($url)." WHERE id = {$CURUSER['id']}") or sqlerr(__FILE__, __LINE__); stderr($lang_bitbucketupload['std_success'], $lang_bitbucketupload['std_use_following_url']."
$url

".$lang_bitbucketupload['std_upload_another_file'].".



".$lang_bitbucketupload['std_image']. ($width=$newwidth && $height==$newheight ? $lang_bitbucketupload['std_need_not_rescaling']:$lang_bitbucketupload['std_rescaled_from']."$height x $width".$lang_bitbucketupload['std_to']."$newheight x $newwidth") .$lang_bitbucketupload['std_profile_updated'],false); } diff --git a/public/bitbucketlog.php b/public/bitbucketlog.php index 060d771e..10df79ba 100644 --- a/public/bitbucketlog.php +++ b/public/bitbucketlog.php @@ -15,8 +15,8 @@ if (get_user_class() >= UC_MODERATOR) $a = mysql_fetch_assoc($r); if (get_user_class() >= UC_MODERATOR || $a["owner"] == $CURUSER["id"]) { sql_query("DELETE FROM bitbucket WHERE id=".mysql_real_escape_string($delete)) or sqlerr(__FILE__, __LINE__); - if (!unlink("$bucketpath/$a[name]")) - stderr("Warning", "Unable to unlink file: $a[name]. You should contact an administrator about this error.",false); + if (!unlink("$bucketpath/{$a['name']}")) + stderr("Warning", "Unable to unlink file: {$a['name']}. You should contact an administrator about this error.",false); } } } } stdhead("BitBucket Log"); $res = sql_query("SELECT count(*) FROM bitbucket") or die(mysql_error()); $row = mysql_fetch_array($res); $count = $row[0]; @@ -41,7 +41,7 @@ if (get_user_class() >= UC_MODERATOR) print("Uploaded by: " . get_username($arr['owner']). "
"); print("(#{$arr['id']}) Filename: $name ($width x $height)"); if (get_user_class() >= UC_MODERATOR) - print(" [Delete]
"); + print(" [Delete]
"); print("Added: $date $time"); print(""); } diff --git a/public/donorlist.php b/public/donorlist.php index 3c50b9a1..a7c3ec7b 100644 --- a/public/donorlist.php +++ b/public/donorlist.php @@ -25,7 +25,7 @@ if (get_user_class() > UC_MODERATOR) { $res=sql_query("SELECT id,username,email,added,donated FROM users WHERE donor='yes' ORDER BY id DESC $limit") or print(mysql_error()); // ------------------ while ($arr = @mysql_fetch_assoc($res)) { - echo "" . $arr[id] . "" . get_username($arr[id]) . "" . $arr[email] . "" . $arr[added] . "$" . $arr[donated] . ""; + echo "" . $arr['id'] . "" . get_username($arr['id']) . "" . $arr['email'] . "" . $arr['added'] . "$" . $arr['donated'] . ""; } ?> diff --git a/public/faqactions.php b/public/faqactions.php index b89f32a2..50441f51 100644 --- a/public/faqactions.php +++ b/public/faqactions.php @@ -89,10 +89,10 @@ elseif (isset($_GET['action']) && $_GET['action'] == "edit" && isset($_GET['id'] } // subACTION: edititem - edit an item -elseif (isset($_GET['action']) && $_GET['action'] == "edititem" && $_POST['id'] != NULL && $_POST['question'] != NULL && $_POST['answer'] != NULL && $_POST['flag'] != NULL && $_POST[categ] != NULL) { +elseif (isset($_GET['action']) && $_GET['action'] == "edititem" && $_POST['id'] != NULL && $_POST['question'] != NULL && $_POST['answer'] != NULL && $_POST['flag'] != NULL && $_POST['categ'] != NULL) { $question = $_POST['question']; $answer = $_POST['answer']; - sql_query("UPDATE `faq` SET `question`=".sqlesc($question).", `answer`=".sqlesc($answer).", `flag`=".sqlesc($_POST['flag']).", `categ`=".sqlesc($_POST[categ])." WHERE id=".sqlesc($_POST['id'])) or sqlerr(); + sql_query("UPDATE `faq` SET `question`=".sqlesc($question).", `answer`=".sqlesc($answer).", `flag`=".sqlesc($_POST['flag']).", `categ`=".sqlesc($_POST['categ'])." WHERE id=".sqlesc($_POST['id'])) or sqlerr(); header("Location: " . get_protocol_prefix() . "$BASEURL/faqmanage.php"); die; } @@ -168,7 +168,7 @@ elseif (isset($_GET['action']) && $_GET['action'] == "addsection") { elseif (isset($_GET['action']) && $_GET['action'] == "addnewitem" && $_POST['question'] != NULL && $_POST['answer'] != NULL) { $question = $_POST['question']; $answer = $_POST['answer']; - $categ = intval($_POST[categ] ?? 0); + $categ = intval($_POST['categ'] ?? 0); $langid = intval($_POST['langid'] ?? 0); $res = sql_query("SELECT MAX(`order`) AS maxorder, MAX(`link_id`) AS maxlinkid FROM `faq` WHERE `type`='item' AND `categ`=".sqlesc($categ)." AND lang_id=".sqlesc($langid)); while ($arr = mysql_fetch_array($res, MYSQLI_BOTH)) diff --git a/public/fun.php b/public/fun.php index d2d30cf3..4c9a4aa6 100644 --- a/public/fun.php +++ b/public/fun.php @@ -184,12 +184,12 @@ if ($action == 'ban') $Cache->delete_value('current_fun_vote_count'); $Cache->delete_value('current_fun_vote_funny_count'); - $subject = $lang_fun_target[get_user_lang($arr[userid])]['msg_fun_item_banned']; - $msg = $lang_fun_target[get_user_lang($arr[userid])]['msg_your_fun_item'].$title.$lang_fun_target[get_user_lang($arr[userid])]['msg_is_ban_by'].$CURUSER['username'].$lang_fun_target[get_user_lang($arr[userid])]['msg_reason'].$banreason; + $subject = $lang_fun_target[get_user_lang($arr['userid'])]['msg_fun_item_banned']; + $msg = $lang_fun_target[get_user_lang($arr['userid'])]['msg_your_fun_item'].$title.$lang_fun_target[get_user_lang($arr['userid'])]['msg_is_ban_by'].$CURUSER['username'].$lang_fun_target[get_user_lang($arr['userid'])]['msg_reason'].$banreason; sql_query("INSERT INTO messages (sender, subject, receiver, added, msg) VALUES(0, ".sqlesc($subject).", ".$arr['userid'].", '" . date("Y-m-d H:i:s") . "', " . sqlesc($msg) . ")") or sqlerr(__FILE__, __LINE__); $Cache->delete_value('user_'.$arr['userid'].'_unread_message_count'); $Cache->delete_value('user_'.$arr['userid'].'_inbox_count'); - write_log("Fun item $id ($title) was banned by $CURUSER[username]. Reason: $banreason", 'normal'); + write_log("Fun item $id ($title) was banned by {$CURUSER['username']}. Reason: $banreason", 'normal'); stderr($lang_fun['std_success'], $lang_fun['std_fun_item_banned']); } else { @@ -198,7 +198,7 @@ if ($action == 'ban') } function funreward($funvote, $totalvote, $title, $posterid, $bonus) { - global $lang_fun_target, $lang_fun; + global $lang_fun_target, $lang_fun, $Cache; KPS("+",$bonus,$posterid); $subject = $lang_fun_target[get_user_lang($posterid)]['msg_fun_item_reward']; $msg = $funvote.$lang_fun_target[get_user_lang($posterid)]['msg_out_of'].$totalvote.$lang_fun_target[get_user_lang($posterid)]['msg_people_think'].$title.$lang_fun_target[get_user_lang($posterid)]['msg_is_fun'].$bonus.$lang_fun_target[get_user_lang($posterid)]['msg_bonus_as_reward']; @@ -217,7 +217,7 @@ if ($action == 'vote') if (!$arr) stderr($lang_fun['std_error'], $lang_fun['std_invalid_id']); else { - $res = sql_query("SELECT * FROM funvotes WHERE funid=$id AND userid = $CURUSER[id]") or sqlerr(__FILE__,__LINE__); + $res = sql_query("SELECT * FROM funvotes WHERE funid=$id AND userid = {$CURUSER['id']}") or sqlerr(__FILE__,__LINE__); $checkvote = mysql_fetch_array($res); if ($checkvote) stderr($lang_fun['std_error'], $lang_fun['std_already_vote']); diff --git a/public/massmail.php b/public/massmail.php index f5d2437b..25b3c863 100644 --- a/public/massmail.php +++ b/public/massmail.php @@ -55,7 +55,7 @@ stdhead("Mass E-mail Gateway"); UC_POWER_USER) -printf("".htmlspecialchars($arr['name']).""; + $reporting = "".htmlspecialchars($arr['name']).""; } break; } @@ -143,7 +143,7 @@ while ($row = mysql_fetch_array($reportres)) } } - print("".gettime($row['added'])."" . get_username($row['addedby']) . "".$reporting."".$type."".htmlspecialchars($row['reason'])."".$dealtwith."\n"); + print("".gettime($row['added'])."" . get_username($row['addedby']) . "".$reporting."".$type."".htmlspecialchars($row['reason'])."".$dealtwith."\n"); } ?> diff --git a/public/staffbox.php b/public/staffbox.php index 8e306710..d912bca9 100644 --- a/public/staffbox.php +++ b/public/staffbox.php @@ -40,7 +40,7 @@ if (!$action) { while ($arr = mysql_fetch_assoc($res)) { - if ($arr[answered]) + if ($arr['answered']) { $answered = "".$lang_staffbox['text_yes']." - " . get_username($arr['answeredby']) . ""; } @@ -48,7 +48,7 @@ if (!$action) { $answered = "".$lang_staffbox['text_no'].""; $pmid = $arr["id"]; - print("".htmlspecialchars($arr[subject])."" . get_username($arr['sender']) . "".gettime($arr[added], true, false)."$answered\n"); + print("".htmlspecialchars($arr['subject'])."" . get_username($arr['sender']) . "".gettime($arr['added'], true, false)."$answered\n"); } print(""); print("\n"); @@ -220,7 +220,7 @@ if ($action == "setanswered") { $id = intval($_GET["id"] ?? 0); -sql_query ("UPDATE staffmessages SET answered=1, answeredby = $CURUSER[id] WHERE id = $id") or sqlerr(); +sql_query ("UPDATE staffmessages SET answered=1, answeredby = {$CURUSER['id']} WHERE id = $id") or sqlerr(); $Cache->delete_value('staff_new_message_count'); header("Refresh: 0; url=staffbox.php?action=viewpm&pmid=$id"); } @@ -234,14 +234,14 @@ if ($action == "takecontactanswered") { permissiondenied(); if ($_POST['setdealt']){ - $res = sql_query ("SELECT id FROM staffmessages WHERE answered=0 AND id IN (" . implode(", ", $_POST[setanswered]) . ")"); + $res = sql_query ("SELECT id FROM staffmessages WHERE answered=0 AND id IN (" . implode(", ", $_POST['setanswered']) . ")"); while ($arr = mysql_fetch_assoc($res)) - sql_query ("UPDATE staffmessages SET answered=1, answeredby = $CURUSER[id] WHERE id = $arr[id]") or sqlerr(); + sql_query ("UPDATE staffmessages SET answered=1, answeredby = {$CURUSER['id']} WHERE id = {$arr['id']}") or sqlerr(); } elseif ($_POST['delete']){ - $res = sql_query ("SELECT id FROM staffmessages WHERE id IN (" . implode(", ", $_POST[setanswered]) . ")"); + $res = sql_query ("SELECT id FROM staffmessages WHERE id IN (" . implode(", ", $_POST['setanswered']) . ")"); while ($arr = mysql_fetch_assoc($res)) - sql_query ("DELETE FROM staffmessages WHERE id = $arr[id]") or sqlerr(); + sql_query ("DELETE FROM staffmessages WHERE id = {$arr['id']}") or sqlerr(); } $Cache->delete_value('staff_new_message_count'); header("Refresh: 0; url=staffbox.php"); diff --git a/public/takeamountupload.php b/public/takeamountupload.php index 1b2d637b..c400a77a 100644 --- a/public/takeamountupload.php +++ b/public/takeamountupload.php @@ -34,7 +34,7 @@ sql_query("UPDATE users SET uploaded=uploaded + $amount WHERE class IN (".implod while($dat=mysql_fetch_assoc($query)) { - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES ($sender_id, $dat[id], $dt, " . sqlesc($subject) .", " . sqlesc($msg) .")") or sqlerr(__FILE__,__LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES ($sender_id, {$dat['id']}, $dt, " . sqlesc($subject) .", " . sqlesc($msg) .")") or sqlerr(__FILE__,__LINE__); } header("Refresh: 0; url=amountupload.php?sent=1"); diff --git a/public/takeedit.php b/public/takeedit.php index 558b32b9..a3667b1c 100644 --- a/public/takeedit.php +++ b/public/takeedit.php @@ -220,12 +220,12 @@ if($CURUSER["id"] == $row["owner"]) } else { - write_log("Torrent $id ($name) was edited by $CURUSER[username]" . $pick_info . $place_info); + write_log("Torrent $id ($name) was edited by {$CURUSER['username']}" . $pick_info . $place_info); } } else { - write_log("Torrent $id ($name) was edited by $CURUSER[username], Mod Edit" . $pick_info . $place_info); + write_log("Torrent $id ($name) was edited by {$CURUSER['username']}, Mod Edit" . $pick_info . $place_info); } $returl = "details.php?id=$id&edited=1"; if (isset($_POST["returnto"])) diff --git a/public/takelogin.php b/public/takelogin.php index 617447cc..243726dc 100644 --- a/public/takelogin.php +++ b/public/takelogin.php @@ -71,7 +71,7 @@ else } if (!empty($_POST["returnto"])) - header("Location: " . $pprefix . "$BASEURL/$_POST[returnto]"); + header("Location: " . $pprefix . "$BASEURL/{$_POST['returnto']}"); else header("Location: " . $pprefix . "$BASEURL/index.php"); ?> diff --git a/public/takestaffmess.php b/public/takestaffmess.php index 14f815c6..d987b85a 100644 --- a/public/takestaffmess.php +++ b/public/takestaffmess.php @@ -27,7 +27,7 @@ $subject = trim($_POST['subject']); $query = sql_query("SELECT id FROM users WHERE class IN (".implode(",", $updateset).")"); while($dat=mysql_fetch_assoc($query)) { - sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES ($sender_id, $dat[id], $dt, " . sqlesc($subject) .", " . sqlesc($msg) .")") or sqlerr(__FILE__,__LINE__); + sql_query("INSERT INTO messages (sender, receiver, added, subject, msg) VALUES ($sender_id, {$dat['id']}, $dt, " . sqlesc($subject) .", " . sqlesc($msg) .")") or sqlerr(__FILE__,__LINE__); } header("Refresh: 0; url=staffmess.php?sent=1"); diff --git a/public/takeupdate.php b/public/takeupdate.php index 47190b1b..0c4fa0f3 100644 --- a/public/takeupdate.php +++ b/public/takeupdate.php @@ -11,15 +11,15 @@ loggedinorreturn(); if (get_user_class() < $staffmem_class) permissiondenied(); if ($_POST['setdealt']){ -$res = sql_query ("SELECT id FROM reports WHERE dealtwith=0 AND id IN (" . implode(", ", $_POST[delreport]) . ")"); +$res = sql_query ("SELECT id FROM reports WHERE dealtwith=0 AND id IN (" . implode(", ", $_POST['delreport']) . ")"); while ($arr = mysql_fetch_assoc($res)) - sql_query ("UPDATE reports SET dealtwith=1, dealtby = $CURUSER[id] WHERE id = $arr[id]") or sqlerr(); + sql_query ("UPDATE reports SET dealtwith=1, dealtby = {$CURUSER['id']} WHERE id = {$arr['id']}") or sqlerr(); $Cache->delete_value('staff_new_report_count'); } elseif ($_POST['delete']){ -$res = sql_query ("SELECT id FROM reports WHERE id IN (" . implode(", ", $_POST[delreport]) . ")"); +$res = sql_query ("SELECT id FROM reports WHERE id IN (" . implode(", ", $_POST['delreport']) . ")"); while ($arr = mysql_fetch_assoc($res)) - sql_query ("DELETE from reports WHERE id = $arr[id]") or sqlerr(); + sql_query ("DELETE from reports WHERE id = {$arr['id']}") or sqlerr(); $Cache->delete_value('staff_new_report_count'); $Cache->delete_value('staff_report_count'); } diff --git a/public/topten.php b/public/topten.php index 07ee7140..09c4b354 100644 --- a/public/topten.php +++ b/public/topten.php @@ -122,7 +122,7 @@ while ($a = mysql_fetch_assoc($res)) elseif ($what == $lang_topten['col_ratio']) $value = number_format($a["r"],2); print("$num". + "\"\"". "
". - "\"\"$a[name]{$a['name']}
$value\n"); } end_table(); diff --git a/public/torrent_info.php b/public/torrent_info.php index ee1fc16c..cdda67a8 100644 --- a/public/torrent_info.php +++ b/public/torrent_info.php @@ -111,7 +111,7 @@ begin_main_frame(); // Heading -print("

$row[name]

"); +print("

{$row['name']}

"); $dict = bdec_file($fn, (1024*1024)); diff --git a/public/userdetails.php b/public/userdetails.php index c531fb98..54db4c3a 100644 --- a/public/userdetails.php +++ b/public/userdetails.php @@ -186,7 +186,7 @@ if (($user["privacy"] != "strong") OR (get_user_class() >= $prfmanage_class) || tr_small($lang_userdetails['row_join_date'], $joindate, 1); tr_small($lang_userdetails['row_last_seen'], $lastseen, 1); if ($where_tweak == "yes") { - tr_small($lang_userdetails['row_last_seen_location'], $user[page], 1); + tr_small($lang_userdetails['row_last_seen_location'], $user['page'], 1); } if (get_user_class() >= $userprofile_class OR $user["privacy"] == "low") { tr_small($lang_userdetails['row_email'], "".$user['email']."", 1); @@ -407,9 +407,9 @@ if (get_user_class() >= $prfmanage_class && $user["class"] < get_user_class()) $warnedby = "
[".$lang_userdetails['text_by']."" . get_username($arr['id']) . "]"; }else{ $warnedby = "
[".$lang_userdetails['text_by_system']."]"; - print("".$lang_userdetails['text_last_warning']." $user[lastwarned] .(".$lang_userdetails['text_until'] ."$elapsedlw) $warnedby\n"); + print("".$lang_userdetails['text_last_warning']." {$user['lastwarned']} .(".$lang_userdetails['text_until'] ."$elapsedlw) $warnedby\n"); } - print("".$lang_userdetails['text_last_warning']." $user[lastwarned] ($elapsedlw".$lang_userdetails['text_ago'].") ".$warnedby."\n"); + print("".$lang_userdetails['text_last_warning']." {$user['lastwarned']} ($elapsedlw".$lang_userdetails['text_ago'].") ".$warnedby."\n"); } $leechwarn = $user["leechwarn"] == "yes"; diff --git a/public/warned.php b/public/warned.php index 69068774..bcbf080c 100644 --- a/public/warned.php +++ b/public/warned.php @@ -53,9 +53,9 @@ print("" . get_username($arr['id']) ." $downloaded $uploaded $ratio - $arr[warneduntil] - - \n"); + {$arr['warneduntil']} + + \n"); } if (get_user_class() >= UC_ADMINISTRATOR) { print("\n");