'; $CNT_TMP .= "\n\n"; $CNT_TMP .= ' Forum '."\n"; $CNT_TMP .= ' Topics '."\n"; $CNT_TMP .= ' Posts '."\n"; $CNT_TMP .= ' Last '; $CNT_TMP .= "\n\n"; if($content['forum']['sel'] != '') { $content['forum']['sel'] = 'AND (forum_id='.$content['forum']['sel'].')'; } $content["forum"]['selected'] = array(); foreach($content["forum"]['selection'] as $content["forum"]['selected_value']) { $content["forum"]['selected'][intval($content["forum"]['selected_value'])] = ''; } $sql_f = "SELECT * FROM ".DB_PREPEND."phpwcms_forum WHERE forum_entry=0 AND forum_deleted=0 ".$content['forum']['sel']; if($result_f = mysql_query($sql_f, $db) or die("error while listing forums")) { while($row_f = mysql_fetch_assoc($result_f)) { if(isset($content["forum"]['selected'][$row_f["forum_id"]]) && $row_f['forum_title']) { $CNT_TMP .= "\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= ''; $CNT_TMP .= ''; $CNT_TMP .= html_specialchars($row_f["forum_title"]).''; if($row_f['forum_text'] != '') { $CNT_TMP .= '
'.html_specialchars($row_f['forum_text']).''; } $CNT_TMP .= "\n"; $CNT_TMP .= ''; $CNT_TMP .= $row_f['forum_ctopic'].''."\n"; $CNT_TMP .= ''; $CNT_TMP .= $row_f['forum_cpost'].''."\n"; $CNT_TMP .= ' '; if(!empty($row_f['forum_lastpost'])) { $content["forum"]['lastpost'] = explode(':', $row_f['forum_lastpost']); $CNT_TMP .= date('Y/m/d H:i', $content["forum"]['lastpost'][0]); } else { $CNT_TMP .= date('Y/m/d H:i', $row_f['forum_created']); } $CNT_TMP .= ' '; $CNT_TMP .= ''."\n"; $CNT_TMP .= "\n\n"; } } mysql_free_result($result_f); } $CNT_TMP .= ''; // end List forums /** * FORUM */ } elseif($content['forum']['ACTION'] === 1) { // list topics $row_f['forum_id'] = $content['forum']['GET']; $row_f["forum_title"] = 'Current'; $sql_f = "SELECT * FROM ".DB_PREPEND."phpwcms_forum WHERE forum_entry=0 AND forum_deleted=0 "; $sql_f .= "AND forum_id=".$content['forum']['GET']." LIMIT 1"; if($result_f = mysql_query($sql_f, $db) or die("error while retrieving forum info")) { $row_f = mysql_fetch_assoc($result_f); mysql_free_result($result_f); } switch($content['forum']['MODE']) { case 'newtopic': $content['forum']['topic'] = array('subject' => '', 'message' => '', 'notify' => 1, 'error' => ''); // Process newtopic POST values if(isset($_POST['forum_subject'])) { $content['forum']['topic']['subject'] = remove_unsecure_rptags(clean_slweg($_POST['forum_subject'])); $content['forum']['topic']['message'] = remove_unsecure_rptags(clean_slweg($_POST['forum_message'])); $content['forum']['topic']['notify'] = isset($_POST['forum_notify']) ? 1 : 0; if(empty($content['forum']['topic']['message'])) { $content['forum']['topic']['error'] = 'There has to be a message for your topic'; } // if no error fill in or update topic if(empty($content['forum']['topic']['error'])) { $sql_topic = "INSERT INTO ".DB_PREPEND."phpwcms_forum SET "; $sql_topic .= "forum_entry = '1', "; // a topic $sql_topic .= "forum_cid = '".$row_f["forum_id"]."', "; $sql_topic .= "forum_title = '".aporeplace($content['forum']['topic']['subject'])."', "; $sql_topic .= "forum_created = '".time()."', "; $sql_topic .= "forum_text = '".aporeplace($content['forum']['topic']['message'])."'"; // save new topic if(@mysql_query($sql_topic, $db)) { //update forum info $sql_topic = "UPDATE ".DB_PREPEND."phpwcms_forum SET "; $sql_topic .= "forum_ctopic='".($row_f["forum_ctopic"]+1)."', "; $sql_topic .= "forum_cpost='".($row_f["forum_cpost"]+1)."', "; $sql_topic .= "forum_lastpost='".time().':'.intval(mysql_insert_id()).":2' "; $sql_topic .= "WHERE forum_entry=0 AND forum_id=".$row_f["forum_id"]." LIMIT 1"; @mysql_query($sql_topic, $db); headerRedirect($content['forum']['ARTICLE'].'&forum='.$row_f["forum_id"]); } else { $content['forum']['topic']['error'] = 'Error while creating new topic.'; } } } // Topic new form $CNT_TMP .= '
'; $CNT_TMP .= ''; $CNT_TMP .= "\n\n".'\n\n
'; $CNT_TMP .= 'Forum overview / '; $CNT_TMP .= ''; $CNT_TMP .= html_specialchars($row_f["forum_title"])."
"; $CNT_TMP .= ''."\n\n"; $CNT_TMP .= ''."\n\n"; // Topic message Error if(!empty($content['forum']['topic']['error'])) { $CNT_TMP .= "\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= '\n\n"; } // Topic Subject $CNT_TMP .= "\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= ''; $CNT_TMP .= "\n\n"; // Topic Message $CNT_TMP .= "\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= ''; $CNT_TMP .= "\n\n"; // Reply Options $CNT_TMP .= "\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= '
Write New Topic
 '.html_specialchars($content['forum']['topic']['error']); $CNT_TMP .= "
title
message
options'; $CNT_TMP .= ''."\n"; $CNT_TMP .= '\n"; $CNT_TMP .= ''; $CNT_TMP .= "\n\n
\n"; $CNT_TMP .= ''; $CNT_TMP .= 'Post new topic'; $CNT_TMP .= '  '; $CNT_TMP .= ''; $CNT_TMP .= 'Post reply'; $CNT_TMP .= '  '; $CNT_TMP .= 'Forum overview / '; $CNT_TMP .= ''; $CNT_TMP .= html_specialchars($row_f["forum_title"])." 
"; // list posts $CNT_TMP .= ''; $CNT_TMP .= "\n\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= ''."\n"; $CNT_TMP .= "\n\n"; $CNT_TMP .= "\n\n"; $CNT_TMP .= '\n"; $CNT_TMP .= '\n\n"; $sql_post = "SELECT * FROM ".DB_PREPEND."phpwcms_forum WHERE forum_entry=2 AND forum_deleted=0 "; $sql_post .= "AND forum_cid=".$row_t["forum_id"]." ORDER BY forum_created ASC"; if($result_p = mysql_query($sql_post, $db) or die("error while listing topic for current forum")) { $row_p_alter = 0; while($row_p = mysql_fetch_assoc($result_p)) { $CNT_TMP .= ''."\n"; $row_p_alter_class = ($row_p_alter % 2) ? 'rowReply' : 'rowReplyA'; get_fe_userinfo($row_p["forum_uid"]); $CNT_TMP .= "\n\n"; $CNT_TMP .= '\n"; $CNT_TMP .= '\n\n"; $row_p_alter++; } mysql_free_result($result_p); } $CNT_TMP .= ''."\n"; $CNT_TMP .= '
 Author  Message 
'; get_fe_userinfo($row_t["forum_uid"]); $CNT_TMP .= html_specialchars($GLOBALS['FE_USER'][$row_t['forum_uid']]['login'])."
'; $CNT_TMP .= ''; $CNT_TMP .= 'Postcomposed: '; $CNT_TMP .= international_date_format($phpwcms['default_lang'], 'j F Y H:i', $row_t["forum_created"]); $CNT_TMP .= '  title: '.html_specialchars($row_t["forum_title"]); $CNT_TMP .= '
'.html_specialchars($row_t["forum_text"]); $CNT_TMP .= "
'; $CNT_TMP .= html_specialchars($GLOBALS['FE_USER'][$row_p['forum_uid']]['login'])."
'; $CNT_TMP .= ''; $CNT_TMP .= 'Postcomposed: '; $CNT_TMP .= international_date_format($phpwcms['default_lang'], 'j F Y H:i', $row_p["forum_created"]); $CNT_TMP .= '  title: '.html_specialchars($row_p["forum_title"]); $CNT_TMP .= '
'.html_specialchars($row_p["forum_text"]); $CNT_TMP .= "
'; } } unset($content['forum']); ?>