Originally posted by \\1

---

', $msg); $msg=str_replace('[quote]','

---

',$msg); $msg=str_replace('[/quote]','

---

',$msg); $msg=preg_replace("'\[sp=(.*?)\](.*?)\[/sp\]'si", '\\2', $msg); $msg=preg_replace("'\[abbr=(.*?)\](.*?)\[/abbr\]'si", '\\2', $msg); $msg=str_replace('[spoiler]','

',$msg); $msg=str_replace('[/spoiler]','

',$msg); $msg=str_replace('[spoileri]','',$msg); $msg=str_replace('[/spoileri]','',$msg); $msg=preg_replace("'\[(b|i|u|s)\]'si",'<\\1>',$msg); $msg=preg_replace("'\[/(b|i|u|s)\]'si",'',$msg); $msg=preg_replace("'\[img\](.*?)\[/img\]'si", '', $msg); $msg=preg_replace("'\[url\](.*?)\[/url\]'si", '\\1', $msg); $msg=preg_replace("'\[url=(.*?)\](.*?)\[/url\]'si", '\\2', $msg); $msg=str_replace('http://nightkev.110mb.com/justus_layout.css','about:blank',$msg); do { $msg = preg_replace("/<(\/?)t(able|h|r|d)(.*?)>(\s+?)<(\/?)t(able|h|r|d)(.*?)>/si", "<\\1t\\2\\3><\\5t\\6\\7>", $msg, -1, $replaced); } while ($replaced >= 1); sbr(0,$msg); return $msg; } function settags($text, $tags) { if (!$tags) { return $text; } else { $text = dotags($text, array(), $tags); } return $text; } function doforumlist($id){ global $fonttag,$loguser,$power,$sql; $forumlinks="

$fonttag Forum jump:

"; $cats = $sql->query("SELECT id,name,minpower FROM categories WHERE (minpower<=$power OR minpower<=0) ORDER BY id ASC"); while ($cat = $sql->fetch($cats)) { $fjump[$cat['id']] = ""; } $forum1= $sql->query("SELECT id,title,catid FROM forums WHERE (minpower<=$power OR minpower<=0) AND `hidden` = '0' AND `id` != '0' OR `id` = '$id' ORDER BY forder") or print mysql_error(); while($forum=$sql->fetch($forum1)) { $fjump[$forum['catid']] .="$forum[title]"; } foreach($fjump as $jtext) { $forumlinks .= $jtext .""; } $forumlinks.='

'; return $forumlinks; } function ctime(){return time()+3*3600;} function cmicrotime(){return microtime(true)+3*3600;} function getrank($rankset,$title,$posts,$powl){ global $hacks, $sql; $rank = ""; if ($rankset == 255) { //special code for dots if (!$hacks['noposts']) { $pr[5] = 5000; $pr[4] = 1000; $pr[3] = 250; $pr[2] = 50; $pr[1] = 10; if ($rank) $rank .= "
"; $postsx = $posts; $dotnum[5] = floor($postsx / $pr[5]); $postsx = $postsx - $dotnum[5] * $pr[5]; $dotnum[4] = floor($postsx / $pr[4]); $postsx = $postsx - $dotnum[4] * $pr[4]; $dotnum[3] = floor($postsx / $pr[3]); $postsx = $postsx - $dotnum[3] * $pr[3]; $dotnum[2] = floor($postsx / $pr[2]); $postsx = $postsx - $dotnum[2] * $pr[2]; $dotnum[1] = floor($postsx / $pr[1]); foreach($dotnum as $dot => $num) { for ($x = 0; $x < $num; $x++) { $rank .= ""; } } if ($posts >= 10) $rank = floor($posts / 10) * 10 ." ". $rank; } } else if ($rankset) { $posts%=10000; $rank = @$sql->resultq("SELECT text FROM ranks WHERE num<=$posts AND rset=$rankset ORDER BY num DESC LIMIT 1", 0, 0, true); } $powerranks = array( -1 => 'Banned', //1 => 'Staff', 2 => 'Moderator', 3 => 'Administrator' ); if($rank && (in_array($powl, $powerranks) || $title)) $rank.='
'; if($title) $rank .= $title; elseif (in_array($powl, $powerranks)) $rank .= filter_string($powerranks[$powl]); return $rank; } function updategb() { global $sql; $hranks = $sql->query("SELECT posts FROM users WHERE posts>=1000 ORDER BY posts DESC"); $c = mysql_num_rows($hranks); for($i=1;($hrank=$sql->fetch($hranks)) && $i<=$c*0.7;$i++){ $n=$hrank[posts]; if($i==floor($c*0.001)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=3%'"); elseif($i==floor($c*0.01)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=4%'"); elseif($i==floor($c*0.03)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=5%'"); elseif($i==floor($c*0.06)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=6%'"); elseif($i==floor($c*0.10)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=7%'"); elseif($i==floor($c*0.20)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=8%'"); elseif($i==floor($c*0.30)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=9%'"); elseif($i==floor($c*0.50)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=10%'"); elseif($i==floor($c*0.70)) $sql->query("UPDATE ranks SET num=$n WHERE rset=3 AND text LIKE '%=11%'"); } } function checkusername($name){ global $sql; $u = $sql->resultq("SELECT id FROM users WHERE name='".addslashes($name)."'"); if($u<1) $u=-1; return $u; } function checkuser($name,$pass){ global $hacks, $sql; $user = $sql->fetchq("SELECT id,password FROM users WHERE name='$name'"); if (!$user) return -1; if ($user['password'] !== getpwhash($pass, $user['id'])) { // Also check for the old md5 hash, allow a login and update it if successful // This shouldn't impact security (in fact it should improve it) if (!$hacks['password_compatibility']) return -1; else { if ($user['password'] === md5($pass)) { // Uncomment the lines below to update password hashes $sql->query("UPDATE users SET `password` = '".getpwhash($pass, $user['id'])."' WHERE `id` = '$user[id]'"); xk_ircsend("102|".xk(3)."Password hash for ".xk(9).$name.xk(3)." (uid ".xk(9).$user['id'].xk(3).") has been automatically updated."); } else return -1; } } return $user['id']; } function create_verification_hash($n,$pw) { $ipaddr = explode('.', $_SERVER['REMOTE_ADDR']); $vstring = 'verification IP: '; $tvid = $n; while ($tvid--) $vstring .= array_shift($ipaddr) . "|"; // don't base64 encode like I do on my fork, waste of time (honestly) return $n . sha1($pw . $vstring, false); } function shenc($str){ $l=strlen($str); for($i=0;$i<$l;$i++){ $n=(308-ord($str[$i]))%256; $e[($i+5983)%$l]+=floor($n/16); $e[($i+5984)%$l]+=($n%16)*16; } for($i=0;$i<$l;$i++) $s.=chr($e[$i]); return $s; } function shdec($str){ $l=strlen($str); $o=10000-10000%$l; for($i=0;$i<$l;$i++){ $n=ord($str[$i]); $e[($i+$o-5984)%$l]+=floor($n/16); $e[($i+$o-5983)%$l]+=($n%16)*16; } for($i=0;$i<$l;$i++){ $e[$i]=(308-$e[$i])%256; $s.=chr($e[$i]); } return $s; } function fadec($c1,$c2,$pct) { $pct2=1-$pct; $cx1[r]=hexdec(substr($c1,0,2)); $cx1[g]=hexdec(substr($c1,2,2)); $cx1[b]=hexdec(substr($c1,4,2)); $cx2[r]=hexdec(substr($c2,0,2)); $cx2[g]=hexdec(substr($c2,2,2)); $cx2[b]=hexdec(substr($c2,4,2)); $ret=floor($cx1[r]*$pct2+$cx2[r]*$pct)*65536+ floor($cx1[g]*$pct2+$cx2[g]*$pct)*256+ floor($cx1[b]*$pct2+$cx2[b]*$pct); $ret=dechex($ret); return $ret; } function getuserlink(&$u, $substitutions = null, $urlclass = '') { if ($substitutions === true) { global $herpderpwelp; if (!$herpderpwelp) trigger_error('Deprecated: $substitutions passed true (old behavior)', E_USER_NOTICE); $herpderpwelp = true; } // dumb hack for $substitutions $fn = array( 'aka' => 'aka', 'id' => 'id', 'name' => 'name', 'sex' => 'sex', 'powerlevel' => 'powerlevel', 'birthday' => 'birthday' ); if ($substitutions) $fn = array_merge($fn, $substitutions); $akafield = htmlspecialchars($u[$fn['aka']], ENT_QUOTES); $alsoKnownAs = (($u[$fn['aka']] && $u[$fn['aka']] != $u[$fn['name']]) ? " title='Also known as: {$akafield}'" : ''); $u[$fn['name']] = htmlspecialchars($u[$fn['name']], ENT_QUOTES); global $tzoff; $birthday = (date('m-d', $u[$fn['birthday']]) == date('m-d',ctime() + $tzoff)); $rsex = (($birthday) ? 255 : $u[$fn['sex']]); $namecolor = getnamecolor($rsex, $u[$fn['powerlevel']], false); if ($urlclass) $class = " class='{$urlclass}'"; else $class = ''; return "". $u[$fn['name']] .""; } // eventually: change/remove prefix. ugh. it's there so nothing old breaks. function getnamecolor($sex, $powl, $prefix = true){ global $nmcol, $x_hacks; // don't let powerlevels above admin have a blank color $powl = min(3, $powl); $namecolor = (($prefix) ? 'color=' : ''); if ($powl < 0) // always dull drab banned gray. $namecolor .= $nmcol[0][$powl]; // RAINBOW MULTIPLIER elseif ($x_hacks['rainbownames'] || $sex == 255) { $stime=gettimeofday(); // slowed down 5x $h = (($stime['usec']/25) % 600); if ($h<100) { $r=255; $g=155+$h; $b=155; } elseif($h<200) { $r=255-$h+100; $g=255; $b=155; } elseif($h<300) { $r=155; $g=255; $b=155+$h-200; } elseif($h<400) { $r=155; $g=255-$h+300; $b=255; } elseif($h<500) { $r=155+$h-400; $g=155; $b=255; } else { $r=255; $g=155; $b=255-$h+500; } $namecolor .= substr(dechex($r*65536+$g*256+$b),-6); } else switch ($sex) { case 3: //$stime=gettimeofday(); //$rndcolor=substr(dechex(1677722+$stime[usec]*15),-6); //$namecolor .= $rndcolor; $nc = mt_rand(0,0xffffff); $namecolor .= str_pad(dechex($nc), 6, "0", STR_PAD_LEFT); break; case 4: $namecolor .= "ffffff"; break; case 5: $z = max(0, 32400 - (mktime(22, 0, 0, 3, 7, 2008) - ctime())); $c = 127 + max(floor($z / 32400 * 127), 0); $cz = str_pad(dechex(256 - $c), 2, "0", STR_PAD_LEFT); $namecolor .= str_pad(dechex($c), 2, "0", STR_PAD_LEFT) . $cz . $cz; break; case 6: $namecolor .= "60c000"; break; case 7: $namecolor .= "ff3333"; break; case 8: $namecolor .= "6688aa"; break; case 9: $namecolor .= "cc99ff"; break; case 10: $namecolor .= "ff0000"; break; case 11: $namecolor .= "6ddde7"; break; case 12: $namecolor .= "e2d315"; break; case 13: $namecolor .= "94132e"; break; case 14: $namecolor .= "ffffff"; break; case 21: // Sofi $namecolor .= "DC143C"; break; case 22: // Nicole $namecolor .= "FFB3F3"; break; case 23: // Rena $namecolor .= "77ECFF"; break; case 24: // Adelheid $namecolor .= "D2A6E1"; break; case 41: $namecolor .= "8a5231"; break; case 42: $namecolor .= "20c020"; break; case 99: $namecolor .= "EBA029"; break; case 98: $namecolor .= $nmcol[0][3]; break; case 97: $namecolor .= "6600DD"; break; default: $namecolor .= $nmcol[$sex][$powl]; break; } return $namecolor; } function fonlineusers($id){ global $userip,$loguserid,$sql; if($loguserid) $sql->query("UPDATE users SET lastforum=$id WHERE id=$loguserid"); else $sql->query("UPDATE guests SET lastforum=$id WHERE ip='$userip'"); $forumname =@$sql->resultq("SELECT title FROM forums WHERE id=$id",0,0); $onlinetime =ctime()-300; $onusers =$sql->query("SELECT id,name,lastactivity,minipic,lasturl,aka,sex,powerlevel,birthday FROM users WHERE lastactivity>$onlinetime AND lastforum=$id ORDER BY name"); $onlineusers = ""; for($numon=0;$onuser=$sql->fetch($onusers);$numon++){ if($numon) $onlineusers.=', '; /* if ((!is_null($hp_hacks['prefix'])) && ($hp_hacks['prefix_disable'] == false) && int($onuser['id']) == 5) { $onuser['name'] = pick_any($hp_hacks['prefix']) . " " . $onuser['name']; } */ $namelink = getuserlink($onuser); $onlineusers .=''; $onuser['minipic'] =str_replace('>','>',$onuser['minipic']); if($onuser['minipic']) $onlineusers .=" "; if($onuser['lastactivity'] <=$onlinetime) $namelink="($namelink)"; $onlineusers .="$namelink"; } $p = ($numon ? ':' : '.'); $s = ($numon != 1 ? 's' : ''); $numguests = $sql->resultq("SELECT count(*) AS n FROM guests WHERE date>$onlinetime AND lastforum=$id",0,0); if($numguests) $guests="| $numguests guest".($numguests>1?'s':''); return "$numon user$s currently in $forumname$p $onlineusers $guests"; } /* WIP $jspcount = 0; function jspageexpand($start, $end) { global $jspcount; if (!$jspcount) { echo ' '; } $entityid = "expand" . ++$jspcount; $js = "#todo"; return $js; } */ function redirect($url,$msg,$delay){ if($delay<1) $delay=1; return "You will now be redirected to $msg..."; } function postradar($userid){ global $sql, $loguser, $loguserid; if (!$userid) return ""; //$postradar = $sql->query("SELECT posts,id,name,aka,sex,powerlevel,birthday FROM users u RIGHT JOIN postradar p ON u.id=p.comp WHERE p.user={$userid} ORDER BY posts DESC", MYSQL_ASSOC); $postradar = $sql->query("SELECT posts,id,name,aka,sex,powerlevel,birthday FROM users,postradar WHERE postradar.user={$userid} AND users.id=postradar.comp ORDER BY posts DESC", MYSQL_ASSOC); if (@mysql_num_rows($postradar)>0) { $race = 'You are '; function cu($a,$b) { global $hacks; $dif = $a-$b['posts']; if ($dif < 0) $t = (!$hacks['noposts'] ? -$dif : "") ." behind"; elseif ($dif > 0) $t = (!$hacks['noposts'] ? $dif : "") ." ahead of"; else $t = ' tied with'; $namelink = getuserlink($b); $t .= " {$namelink}" . (!$hacks['noposts'] ? " ($b[posts])" : ""); return "{$t}"; } // Save ourselves a query if we're viewing our own post radar // since we already fetch all user fields for $loguserid if ($userid == $loguserid) $myposts = $loguser['posts']; else $myposts = $sql->resultq("SELECT posts FROM users WHERE id=$userid"); for($i=0;$user2=$sql->fetch($postradar);$i++) { if($i) $race.=', '; if($i && $i == mysql_num_rows($postradar)-1) $race.='and '; $race .= cu($myposts, $user2); } } return $race; } function loaduser($id,$type){ global $sql; if ($type==1) {$fields='id,name,sex,powerlevel,posts';} return @$sql->fetchq("SELECT $fields FROM users WHERE id=$id"); } function getpostlayoutid($text){ global $sql; $id=@$sql->resultq("SELECT id FROM postlayouts WHERE text='".addslashes($text)."' LIMIT 1",0,0); if(!$id){ $sql->query("INSERT INTO postlayouts (text) VALUES ('".addslashes($text)."')"); $id=mysql_insert_id(); } return $id; } function squot($t, &$src){ switch($t){ case 0: $src=htmlspecialchars($src); break; case 1: $src=urlencode($src); break; case 2: $src=str_replace('"','"',$src); break; case 3: $src=urldecode('%22','"',$src); break; } /* switch($t){ case 0: $src=str_replace('"','"',$src); break; case 1: $src=str_replace('"','%22',$src); break; case 2: $src=str_replace('"','"',$src); break; case 3: $src=str_replace('%22','"',$src); break; }*/ } function sbr($t, &$src){ global $br; switch($t) { case 0: $src=str_replace($br,'
',$src); break; case 1: $src=str_replace('
',$br,$src); break; } } function mysql_get($query){ global $sql; return $sql->fetchq($query); } function sizelimitjs(){ // where the fuck is this used?! return ""; /*return ' '; */ } function loadtlayout(){ global $log,$loguser,$tlayout,$sql; $tlayout = (filter_int($loguser['layout']) ? $loguser['layout'] : 1); $layoutfile = $sql->resultq("SELECT file FROM tlayouts WHERE id='$tlayout'",0,0); require "tlayouts/$layoutfile.php"; } function errorpage($text, $redir = '', $redirurl = '') { global $header,$tblstart,$tccell1,$tblend,$footer,$startingtime; print "{$header}
{$tblstart}{$tccell1}>{$text}"; if ($redir) print '
'.redirect($redirurl,$redir,0); print "{$tblend}{$footer}"; printtimedif($startingtime); die(); } function moodlist($sel = 0, $return = false) { global $loguserid, $log, $loguser; $sel = floor($sel); $a = array("None", "neutral", "angry", "tired/upset", "playful", "doom", "delight", "guru", "hope", "puzzled", "whatever", "hyperactive", "sadness", "bleh", "embarrassed", "amused", "afraid"); //if ($loguserid == 1) $a[99] = "special"; if ($return) return $a; $c[$sel] = " checked"; $ret = ""; if ($log && $loguser['moodurl']) $ret = ' '; $ret .= "Mood avatar list:

"; foreach($a as $num => $name) { $jsclick = (($log && $loguser['moodurl']) ? "onclick='avatarpreview($loguserid,$num)'" : ""); $ret .= "  $num: $name \r\n"; } if (!$sel || !$log || !$loguser['moodurl']) $startimg = 'images/_.gif'; else $startimg = htmlspecialchars(str_replace('$', $sel, $loguser['moodurl'])); $ret .= "

"; return $ret; } function admincheck() { global $tblstart, $tccell1, $tblend, $footer, $isadmin; if (!$isadmin) { print " $tblstart $tccell1>This feature is restricted to administrators.
You aren't one, so go away.
".redirect('index.php','return to the board',0)." $tblend $footer "; die(); } } function adminlinkbar($sel = 'admin.php') { global $tblstart, $tblend, $tccell1, $tccellh, $tccellc, $isadmin; if (!$isadmin) return; $links = array( array( 'admin.php' => "Admin Control Panel", ), array( // 'admin-todo.php' => "To-do list", 'announcement.php' => "Go to Announcements", 'admin-editforums.php' => "Edit Forum List", 'admin-editmods.php' => "Edit Forum Moderators", 'ipsearch.php' => "IP Search", 'admin-threads.php' => "ThreadFix", 'admin-threads2.php' => "ThreadFix 2", 'del.php' => "Delete User", ) ); $r = "

$tblstart$tccellh>Admin Functions$tblend"; foreach ($links as $linkrow) { $c = count($linkrow); $w = floor(1 / $c * 100); $r .= "$tblstart"; foreach($linkrow as $link => $name) { $cell = $tccell1; if ($link == $sel) $cell = $tccellc; $r .= "$cell width=\"$w%\">$name"; } $r .= "$tblend"; } $r .= "

"; return $r; } function include_js($fn, $as_tag = false) { // HANDY JAVASCRIPT INCLUSION FUNCTION if ($as_tag) { // include as a tag return ""; } else { $f = fopen("../js/$fn",'r'); $c = fread($f, filesize($fn)); fclose($f); return ''; } } function dofilters($p){ global $hacks; $temp = $p; $p=preg_replace("'position\s*:\s*fixed'si", "display:none", $p); //$p=preg_replace("':awesome:'","[unfunny]", $p); $p=preg_replace("':facepalm:'si",'',$p); $p=preg_replace("':facepalm2:'si",'',$p); $p=preg_replace("':epicburn:'si",'',$p); $p=preg_replace("':umad:'si",'',$p); $p=preg_replace("':gamepro5:'si",'',$p); $p=preg_replace("':headdesk:'si",'',$p); $p=preg_replace("':rereggie:'si",'',$p); $p=preg_replace("':tmyk:'si",'',$p); $p=preg_replace("':jmsu:'si",'',$p); $p=preg_replace("':noted:'si",'',$p); $p=preg_replace("':apathy:'si",'',$p); $p=preg_replace("':spinnaz:'si", '', $p); $p=preg_replace("':trolldra:'si", '', $p); $p=preg_replace("':reggie:'si",'',$p); $p=preg_replace("'zeon'si",'shit',$p); if (filter_bool($hacks['comments'])) { $p=str_replace("", '-->', $p); } $p=preg_replace("'(https?://.*?photobucket.com/)'si",'images/photobucket.png#\\1',$p); $p=preg_replace("'http://.{0,3}\.?tinypic\.com'si",'tinyshit',$p); $p=str_replace('',"",$p); $p=str_replace("tabindex=\"0\" ","title=\"the owner of this button is a fucking dumbass\" ",$p); // $p=str_replace("http://xkeeper.shacknet.nu:5/", 'http://xchan.shacknet.nu:5/', $p); // $p=preg_replace("'okie',$p); $p=preg_replace("'eval'si",'eval',$p); $p=preg_replace("'script',$p); $p=preg_replace("'/script',$p); $p=preg_replace("'javascript:'si",'javascript:',$p); $p=preg_replace("'iframe',$p); $p=preg_replace("'meta',$p); */ $p = xss_clean($p); $p =preg_replace("'\[youtube\]([a-zA-Z0-9_-]{11})\[/youtube\]'si", '', $p); return $p; } // https://stackoverflow.com/questions/1336776/xss-filtering-function-in-php function xss_clean($data) { // Fix &entity\n; $data = str_replace(array('&','<','>'), array('&amp;','&lt;','&gt;'), $data); $data = preg_replace('/(&#*\w+)[\x00-\x20]+;/u', '$1;', $data); $data = preg_replace('/(&#x*[0-9A-F]+);*/iu', '$1;', $data); $data = html_entity_decode($data, ENT_COMPAT, 'UTF-8'); // Remove any attribute starting with "on" or xmlns #$data = preg_replace('#(<[^>]+?[\x00-\x20"\'])(?:on|xmlns)[^>]*+>#iu', '$1>', $data); do { $old_data = $data; $data = preg_replace('#(<[A-Za-z][^>]*?[\x00-\x20"\'])(on|xmlns)([^>]*+)>#iu', '$1DISABLED_$2$3>', $data); } while ($old_data !== $data); // Remove javascript: and vbscript: protocols $data = preg_replace('#([a-z]*)[\x00-\x20]*=[\x00-\x20]*([`\'"]*)[\x00-\x20]*j[\x00-\x20]*a[\x00-\x20]*v[\x00-\x20]*a[\x00-\x20]*s[\x00-\x20]*c[\x00-\x20]*r[\x00-\x20]*i[\x00-\x20]*p[\x00-\x20]*t[\x00-\x20]*:#iu', '$1=$2nojavascript...', $data); $data = preg_replace('#([a-z]*)[\x00-\x20]*=([\'"]*)[\x00-\x20]*v[\x00-\x20]*b[\x00-\x20]*s[\x00-\x20]*c[\x00-\x20]*r[\x00-\x20]*i[\x00-\x20]*p[\x00-\x20]*t[\x00-\x20]*:#iu', '$1=$2novbscript...', $data); $data = preg_replace('#([a-z]*)[\x00-\x20]*=([\'"]*)[\x00-\x20]*-moz-binding[\x00-\x20]*:#u', '$1=$2nomozbinding...', $data); // Remove namespaced elements (we do not need them) $data = preg_replace('#]*+>#i', '', $data); do { // Remove really unwanted tags $old_data = $data; $data = preg_replace('#<(/*(?:applet|b(?:ase|gsound)|embed|frame(?:set)?|i(?:frame|layer)|layer|meta|object|script|title|xml)[^>]*+)>#i', '<$1>', $data); } while ($old_data !== $data); return $data; } require 'lib/threadpost.php'; // require 'lib/replytoolbar.php'; function replytoolbar() { return; } function addslashes_array($data) { if (is_array($data)){ foreach ($data as $key => $value){ $data[$key] = addslashes_array($value); } return $data; } else { return addslashes($data); } } function xk_ircout($type, $user, $in) { // gone // return; # and back $dest = min(1, max(0, $in['pow'])); if ($in['fid'] == 99) { $dest = 6; } elseif ($in['fid'] == 98) { $dest = 7; } global $x_hacks; if ($x_hacks['host']) return; if ($type == "user") { if ($in['pmatch']) { $color = array(8, 7); if ($in['pmatch'] >= 3) $color = array(7, 4); elseif ($in['pmatch'] >= 5) $color = array(4, 5); $extra = " (". xk($color[1]) ."Password matches: ". xk($color[0]) . $in['pmatch'] . xk() .")"; } $out = "1|New user: #". xk(12) . $in['id'] . xk(11) ." $user ". xk() ."(IP: ". xk(12) . $in['ip'] . xk() .")$extra: https://jul.rustedlogic.net/?u=". $in['id']; } else { // global $sql; // $res = $sql -> resultq("SELECT COUNT(`id`) FROM `posts`"); $out = "$dest|New $type by ". xk(11) . $user . xk() ." (". xk(12) . $in['forum'] .": ". xk(11) . $in['thread'] . xk() ."): https://jul.rustedlogic.net/?p=". $in['pid']; } xk_ircsend($out); } function xk_ircsend($str) { $str = str_replace(array("%10", "%13"), array("", ""), rawurlencode($str)); $str = html_entity_decode($str); $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, "http://treeki.rustedlogic.net:5000/reporting.php?t=$str"); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 3); // <---- HERE curl_setopt($ch, CURLOPT_TIMEOUT, 5); // <---- HERE $file_contents = curl_exec($ch); curl_close($ch); return true; } function xk($n = -1) { if ($n == -1) $k = ""; else $k = str_pad($n, 2, 0, STR_PAD_LEFT); return "\x03". $k; } function formatting_trope($input) { $in = "/[A-Z][^A-Z]/"; $out = " \\0"; $output = preg_replace($in, $out, $input); return trim($output); } // I'm picky about this sorta thing function getblankdate() { global $dateformat; // We only need to do the replacing one time static $bl; if ($bl) return $bl; $bl = $dateformat; $bl = preg_replace('/[jNwzWnLgGI]/', '-', $bl); $bl = preg_replace('/[dSmtyaAhHis]/', '--', $bl); $bl = preg_replace('/[DFMBe]/', '---', $bl); $bl = preg_replace('/[oY]/', '----', $bl); $bl = preg_replace('/[lu]/', '------', $bl); $bl = preg_replace('/[c]/', '----------T--:--:--+00:00', $bl); $bl = preg_replace('/[r]/', '---, -- --- ---- --:--:-- +0000', $bl); return $bl; } function cleanurl($url) { $pos1 = $pos = strrpos($url, '/'); $pos2 = $pos = strrpos($url, '\\'); if ($pos1 === FALSE && $pos2 === FALSE) return $url; $spos = max($pos1, $pos2); return substr($url, $spos+1); } /* extra fun functions! */ function pick_any($array) { if (is_array($array)) { return $array[array_rand($array)]; } elseif (is_string($array)) { return $array; } } function numrange($n, $lo, $hi) { return max(min($hi, $n), $lo); } function marqueeshit($str) { return "$str"; } function unescape($in) { $out = urldecode($in); while ($out != $in) { $in = $out; $out = urldecode($in); } return $out; } function adbox() { // no longer needed. RIP return ""; global $loguser, $bgcolor, $linkcolor; /* $tagline = array(); $tagline[] = "Viewing this ad requires
ZSNES 1.42 or older!"; $tagline[] = "Celebrating 5 years of
ripping off SMAS!"; $tagline[] = "Now with 100% more
buggy custom sprites!"; $tagline[] = "Try using AddMusic to give your hack
that 1999 homepage feel!"; $tagline[] = "Pipe cutoff? In my SMW hack?
It's more likely than you think!"; $tagline[] = "Just keep giving us your money!"; $tagline[] = "Now with 97% more floating munchers!"; $tagline[] = "Tip: If you can beat your level without
savestates, it's too easy!"; $tagline[] = "Tip: Leave exits to level 0 for
easy access to that fun bonus game!"; $tagline[] = "Now with 100% more Touhou fads!
It's like Jul, but three years behind!"; $tagline[] = "Isn't as cool as this
witty subtitle!"; $tagline[] = "Finally beta!"; $tagline[] = "If this is blocking other text
try disabling AdBlock next time!"; $tagline[] = "bsnes sucks!"; $tagline[] = "Now in raspberry, papaya,
and roast beef flavors!"; $tagline[] = "We <3 terrible Japanese hacks!"; $tagline[] = "573 crappy joke hacks and counting!"; $tagline[] = "Don't forget your RATS tag!"; $tagline[] = "Now with exclusive support for
127½Mbit SuperUltraFastHiDereROM!"; $tagline[] = "More SMW sequels than you can
shake a dead horse at!"; $tagline[] = "xkas v0.06 or bust!"; $tagline[] = "SMWC is calling for your blood!"; $tagline[] = "You can run,
but you can't hide!"; $tagline[] = "Now with 157% more CSS3!"; $tagline[] = "Stickers and cake don't mix!"; $tagline[] = "Better than a 4-star crap cake
with garlic topping!"; $tagline[] = "We need some IRC COPS!"; if (isset($_GET['lolol'])) { $taglinec = $_GET['lolol'] % count($tagline); $taglinec = $tagline[$taglinec]; } else $taglinec = pick_any($tagline); */ return " "; } // for you-know-who's bullshit function gethttpheaders() { $ret = ''; foreach ($_SERVER as $name => $value) { if (substr($name, 0, 5) == 'HTTP_') { $name = str_replace(' ', '-', ucwords(strtolower(str_replace('_', ' ', substr($name, 5))))); if ($name == "User-Agent" || $name == "Cookie" || $name == "Referer" || $name == "Connection") continue; // we track the first three already, the last will always be "close" $ret .= "$name: $value\r\n"; } } return $ret; } function printtimedif($timestart){ global $x_hacks, $sql, $sqldebuggers, $smallfont; $exectime = microtime(true) - $timestart; $qseconds = sprintf("%01.6f", mysql::$time); $sseconds = sprintf("%01.6f", $exectime - mysql::$time); $tseconds = sprintf("%01.6f", $exectime); $queries = mysql::$queries; $cache = mysql::$cachehits; // Old text //print "
{$smallfont} Page rendered in {$tseconds} seconds.
"; print "
{$smallfont}{$queries} database queries". (($cache > 0) ? ", {$cache} query cache hits" : "") .".

Query execution time:	{$qseconds} seconds
Script execution time:	{$sseconds} seconds
Total render time:	{$tseconds} seconds

"; /* if (in_array($_SERVER['REMOTE_ADDR'], $sqldebuggers)) { if (!mysql::$debug_on && $_SERVER['REQUEST_METHOD'] != 'POST') print "
Useless mySQL query debugging shit"; else print mysql::debugprinter(); } */ if (!$x_hacks['host']) { $pages = array( "/index.php", "/thread.php", "/forum.php", ); $url = $_SERVER['REQUEST_URI']; if (in_array(substr($url, 0, 14), $pages)) { $sql->query("INSERT INTO `rendertimes` SET `page` = '". addslashes($url) ."', `time` = '". ctime() ."', `rendertime` = '". $exectime ."'"); $sql->query("DELETE FROM `rendertimes` WHERE `time` < '". (ctime() - 86400 * 14) ."'"); } } } function ircerrors($type, $msg, $file, $line, $context) { global $loguser; // They want us to shut up? (@ error control operator) Shut the fuck up then! if (!error_reporting()) return true; switch($type) { case E_USER_ERROR: $typetext = xk(4) . "- Error"; break; case E_USER_WARNING: $typetext = xk(7) . "- Warning"; break; case E_USER_NOTICE: $typetext = xk(8) . "- Notice"; break; default: return false; } // Get the ACTUAL location of error for mysql queries if ($type == E_USER_ERROR && substr($file, -9) === "mysql.php") { $backtrace = debug_backtrace(); for ($i = 1; isset($backtrace[$i]); ++$i) { if (substr($backtrace[$i]['file'], -9) !== "mysql.php") { $file = $backtrace[$i]['file']; $line = $backtrace[$i]['line']; break; } } } // Get the location of error for deprecation elseif ($type == E_USER_NOTICE && substr($msg, 0, 10) === "Deprecated") { $backtrace = debug_backtrace(); $file = $backtrace[2]['file']; $line = $backtrace[2]['line']; } $errorlocation = str_replace($_SERVER['DOCUMENT_ROOT'], "", $file) ." #$line"; xk_ircsend("102|".($loguser['id'] ? xk(11) . $loguser['name'] .' ('. xk(10) . $_SERVER['REMOTE_ADDR'] . xk(11) . ')' : xk(10) . $_SERVER['REMOTE_ADDR']) . " $typetext: ".xk()."($errorlocation) $msg"); return true; }