Navigation
Supportsider
Senest Online
helmuth 3 Dage
HenningS 1 Uge
wholle 1 Uge
Henrik Bendtsen 3 Uger
afoster 3 Uger
olelau 4 Uger
flj 5 Uger
Christian 5 Uger
Bubbi 5 Uger
iceman50 9 Uger
Besøgende
Gæster online: 4

Brugere online: 0

Antal brugere: 180
Nyeste bruger: Michael Mogensen
Se indlæg
PHP-Fusion - Danmark » PHP-Fusion version 7 » MODs & Infusioner v7
 Udskriv debat
Hjæl æøå fejl Booking
johnnysay
På vores hjemmeside [url]www.b-s-f.dk
[/url] har vi et Booking system af vores både som ikke kan vise æøå vi havde os fejlen på hele siden men er rettet bare ikke Booking systemet håber ar der er en af jer der kan løse dette

b-s-f.dk/fejl.png
phpfusion-tips.dk/signaturer/johnnysay.png
 
- Tony -
Har du prøvet at tilføje dette som linje 2 i din maincore.phpheader('Content-Type: text/html; charset=iso-8859-1');

www.lemviginfo.dk/platuglerne_ikon2.gif www.lemviginfo.dk/images/lemviginfo_dk.gif [url=http://www.lemvig.info][img]http://www.lemviginfo.dk/image
 
http://www.lemvig.info/redirect.php
johnnysay
Hej Tony dejligt at se du hjælper igen igen kan se den linje stå der/*-------------------------------------------------------+
| PHP-Fusion Content Management System
| Copyright (C) 2002 - 2008 Nick Jones
| http://www.php-fusion.co.uk/
+--------------------------------------------------------+
| Filename: maincore.php
| Author: Nick Jones (Digitanium)
+--------------------------------------------------------+
| This program is released as free software under the
| Affero GPL license. You can redistribute it and/or
| modify it under the terms of this license which you
| can read by viewing the included agpl.txt or online
| at www.gnu.org/licenses/agpl.html. Removal of this
| copyright header is strictly prohibited without
| written permission from the original author(s).
+--------------------------------------------------------*/

header('Content-Type: text/html; charset=iso-8859-1');

if (preg_match("/maincore.php/i", $_SERVER['PHP_SELF'])) { die(); }

error_reporting(E_ALL);

// Calculate script start/end time
function get_microtime() {
   list($usec, $sec) = explode(" ", microtime());
   return ((float)$usec + (float)$sec);
}

// Define script start time
define("START_TIME", get_microtime());

// Prevent any possible XSS attacks via $_GET.
foreach ($_GET as $check_url) {
   if (!is_array($check_url)) {
      $check_url = str_replace("\"", "", $check_url);
      if ((preg_match("/<[^>]*script*\"?[^>]*>/i", $check_url)) || (preg_match("/<[^>]*object*\"?[^>]*>/i", $check_url)) ||
         (preg_match("/<[^>]*iframe*\"?[^>]*>/i", $check_url)) || (preg_match("/<[^>]*applet*\"?[^>]*>/i", $check_url)) ||
         (preg_match("/<[^>]*meta*\"?[^>]*>/i", $check_url)) || (preg_match("/<[^>]*style*\"?[^>]*>/i", $check_url)) ||
         (preg_match("/<[^>]*form*\"?[^>]*>/i", $check_url)) || (preg_match("/\([^>]*\"?[^)]*\)/i", $check_url)) ||
         (preg_match("/\"/i", $check_url))) {
      die ();
      }
   }
}
unset($check_url);

// Start Output Buffering
//ob_start("ob_gzhandler"); //Uncomment this line to enable output compression.
ob_start();

// Locate config.php and set the basedir path
$folder_level = ""; $i = 0;
while (!file_exists($folder_level."config.php")) {
   $folder_level .= "../"; $i++;
   if ($i == 5) { die("Config file not found"); }
}
require_once $folder_level."config.php";
define("BASEDIR", $folder_level);

// If config.php is empty, activate setup.php script
if (!isset($db_name)) { redirect("setup.php"); }

// Multisite definitions
require_once BASEDIR."includes/multisite_include.php";

// Establish mySQL database connection
$link = dbconnect($db_host, $db_user, $db_pass, $db_name);

// Fetch the Site Settings from the database and store them in the $settings variable
$settings = dbarray(dbquery("SELECT * FROM ".DB_SETTINGS));

// Sanitise $_SERVER globals
$_SERVER['PHP_SELF'] = cleanurl($_SERVER['PHP_SELF']);
$_SERVER['QUERY_STRING'] = isset($_SERVER['QUERY_STRING']) ? cleanurl($_SERVER['QUERY_STRING']) : "";
$_SERVER['REQUEST_URI'] = isset($_SERVER['REQUEST_URI']) ? cleanurl($_SERVER['REQUEST_URI']) : "";
$PHP_SELF = cleanurl($_SERVER['PHP_SELF']);
// Common definitions
define("IN_FUSION", TRUE);
define("FUSION_REQUEST", isset($_SERVER['REQUEST_URI']) && $_SERVER['REQUEST_URI'] != "" ? $_SERVER['REQUEST_URI'] : $_SERVER['SCRIPT_NAME']);
define("FUSION_QUERY", isset($_SERVER['QUERY_STRING']) ? $_SERVER['QUERY_STRING'] : "");
define("FUSION_SELF", basename($_SERVER['PHP_SELF']));
define("USER_IP", $_SERVER['REMOTE_ADDR']);
define("QUOTES_GPC", (ini_get('magic_quotes_gpc') ? TRUE : FALSE));
// Path definitions
define("ADMIN", BASEDIR."administration/");
define("IMAGES", BASEDIR."images/");
define("IMAGES_A", IMAGES."articles/");
define("IMAGES_N", IMAGES."news/");
define("IMAGES_NC", IMAGES."news_cats/");
define("RANKS", IMAGES."ranks/");
define("INCLUDES", BASEDIR."includes/");
define("LOCALE", BASEDIR."locale/");
define("LOCALESET", $settings['locale']."/");
define("FORUM", BASEDIR."forum/");
define("INFUSIONS", BASEDIR."infusions/");
define("PHOTOS", IMAGES."photoalbum/");
define("THEMES", BASEDIR."themes/");

// Predefine mysql_cache variables
$smiley_cache = ""; $bbcode_cache = ""; $groups_cache = ""; $forum_rank_cache = ""; $forum_mod_rank_cache = "";

// MySQL database functions
function dbquery($query) {
   $result = @mysql_query($query);
   if (!$result) {
      echo mysql_error();
      return false;
   } else {
      return $result;
   }
}

function dbcount($field, $table, $conditions = "") {
   $cond = ($conditions ? " WHERE ".$conditions : "");
   $result = @mysql_query("SELECT Count".$field." FROM ".$table.$cond);
   if (!$result) {
      echo mysql_error();
      return false;
   } else {
      $rows = mysql_result($result, 0);
      return $rows;
   }
}

function dbresult($query, $row) {
   $result = @mysql_result($query, $row);
   if (!$result) {
      echo mysql_error();
      return false;
   } else {
      return $result;
   }
}

function dbrows($query) {
   $result = @mysql_num_rows($query);
   return $result;
}

function dbarray($query) {
   $result = @mysql_fetch_assoc($query);
   if (!$result) {
      echo mysql_error();
      return false;
   } else {
      return $result;
   }
}

function dbarraynum($query) {
   $result = @mysql_fetch_row($query);
   if (!$result) {
      echo mysql_error();
      return false;
   } else {
      return $result;
   }
}

function dbconnect($db_host, $db_user, $db_pass, $db_name) {
   $db_connect = @mysql_connect($db_host, $db_user, $db_pass);
   $db_select = @mysql_select_db($db_name);
   if (!$db_connect) {
      die("
Unable to establish connection to MySQL
".mysql_errno()." : ".mysql_error()."
");
   } elseif (!$db_select) {
      die("
Unable to select MySQL database
".mysql_errno()." : ".mysql_error()."
");
   }
}

// Initialise the $locale array
$locale = array();

// Load the Global language file
include LOCALE.LOCALESET."global.php";

// Check if users full or partial ip is blacklisted
$sub_ip1 = substr(USER_IP, 0, strlen(USER_IP) - strlen(strrchr(USER_IP, ".")));
$sub_ip2 = substr($sub_ip1, 0, strlen($sub_ip1) - strlen(strrchr($sub_ip1, ".")));

if (dbcount("(*)", DB_BLACKLIST, "blacklist_ip='".USER_IP."' OR blacklist_ip='$sub_ip1' OR blacklist_ip='$sub_ip2'")) {
   redirect("http://www.google.com/");
}

// PHP-Fusion user cookie functions
if (!isset($_COOKIE[COOKIE_PREFIX.'visited'])) {
   $result = dbquery("UPDATE ".DB_SETTINGS." SET counter=counter+1");
   setcookie(COOKIE_PREFIX."visited", "yes", time() + 31536000, "/", "", "0");
}

//check that site or user theme exists
function theme_exists($theme) {
   if (!file_exists(THEMES) || !is_dir(THEMES)) {
      return false;   
   } else if (file_exists(THEMES.$theme."/theme.php") && file_exists(THEMES.$theme."/styles.css")) {
      define("THEME", THEMES.$theme."/");
      return true;
   } else {
      $dh = opendir(THEMES);
      while (false !== ($entry = readdir($dh))) {
         if ($entry != "." && $entry != ".." && is_dir(THEMES.$entry)) {
            if (file_exists(THEMES.$entry."/theme.php") && file_exists(THEMES.$entry."/styles.css")) {
               define("THEME", THEMES.$entry."/");
               return true;
               exit;
            }
         }
      }
      closedir($dh);
      if (!defined("THEME")) {
         return false;
      }
   }
}

if (isset($_POST['login']) && isset($_POST['user_name']) && isset($_POST['user_pass'])) {
   $user_name = preg_replace(array("/\=/","/\#/","/\sOR\s/"), "", stripinput($_POST['user_name']));
   $user_pass = md5($_POST['user_pass']);
   $result = dbquery("SELECT * FROM ".DB_USERS." WHERE user_name='".$user_name."' AND user_password='".md5($user_pass)."' LIMIT 1");
   if (dbrows($result)) {
      $data = dbarray($result);
      $cookie_value = $data['user_id'].".".$user_pass;
      if ($data['user_status'] == 0) {   
         $cookie_exp = isset($_POST['remember_me']) ? time() + 3600 * 24 * 30 : time() + 3600 * 3;
         header("P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM'");
         setcookie(COOKIE_PREFIX."user", $cookie_value, $cookie_exp, "/", "", "0");
         redirect(BASEDIR."setuser.php?user=".$data['user_name'], true);
      } elseif ($data['user_status'] == 1) {
         redirect(BASEDIR."setuser.php?error=1", true);
      } elseif ($data['user_status'] == 2) {
         redirect(BASEDIR."setuser.php?error=2", true);
      }
   } else {
      redirect(BASEDIR."setuser.php?error=3");
   }
}

if (isset($_COOKIE[COOKIE_PREFIX.'user'])) {
   $cookie_vars = explode(".", $_COOKIE[COOKIE_PREFIX.'user']);
   $cookie_1 = isnum($cookie_vars['0']) ? $cookie_vars['0'] : "0";
   $cookie_2 = (preg_check("/^[0-9a-z]{32}$/", $cookie_vars['1']) ? $cookie_vars['1'] : "");
   $result = dbquery("SELECT * FROM ".DB_USERS." WHERE user_id='$cookie_1' AND user_password='".md5($cookie_2)."' LIMIT 1");
   unset($cookie_vars,$cookie_1,$cookie_2);
   if (dbrows($result)) {
      $userdata = dbarray($result);
      if ($userdata['user_status'] == 0) {
         if ($userdata['user_theme'] != "Default" && file_exists(THEMES.$userdata['user_theme']."/theme.php") && ($settings['userthemes'] == 1 || $userdata['user_level'] >= 102)) {
            if (!theme_exists($userdata['user_theme'])) {
               echo "".$settings['sitename']." - ".$locale['global_300'].".

\n";
               echo $locale['global_301'];
               die();
            }
         } else {
            if (!theme_exists($settings['theme'])) {
               echo "".$settings['sitename']." - ".$locale['global_300'].".

\n";
               echo $locale['global_301'];
               die();
            }
         }
         if ($userdata['user_offset'] <> 0) {
            $settings['timeoffset'] = $settings['timeoffset'] + $userdata['user_offset'];
         }
         if (!isset($_COOKIE[COOKIE_PREFIX.'lastvisit']) || !isnum($_COOKIE[COOKIE_PREFIX.'lastvisit'])) {
            $result = dbquery("UPDATE ".DB_USERS." SET user_threads='' WHERE user_id='".$userdata['user_id']."'");
            setcookie(COOKIE_PREFIX."lastvisit", $userdata['user_lastvisit'], time() + 3600, "/", "", "0");         
            $lastvisited = $userdata['user_lastvisit'];
         } else {
            $lastvisited = $_COOKIE[COOKIE_PREFIX.'lastvisit'];
         }
         if ($userdata['user_level'] > 101) {
            if (isset($_COOKIE[COOKIE_PREFIX.'admin']) && (!preg_match("#" . str_replace("../", "", "/".ADMIN) . "#i", FUSION_REQUEST) || USER_IP != $userdata['user_ip'])) {
               setcookie(COOKIE_PREFIX."admin", "", time() - 7200, "/", "", "0");
            }
         }
      } else {
         header("P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM'");
         setcookie(COOKIE_PREFIX."user", "", time() - 7200, "/", "", "0");
         setcookie(COOKIE_PREFIX."lastvisit", "", time() - 7200, "/", "", "0");
         redirect(BASEDIR."index.php", true);
      }
   } else {
      header("P3P: CP='NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM'");
      setcookie(COOKIE_PREFIX."user", "", time() - 7200, "/", "", "0");
      setcookie(COOKIE_PREFIX."lastvisit", "", time() - 7200, "/", "", "0");
      redirect(BASEDIR."index.php", true);
   }
} else {
   if (!theme_exists($settings['theme'])) {
      echo "".$settings['sitename']." - ".$locale['global_300'].".

\n";
      echo $locale['global_301'];
      die();
   }
   $userdata = "";   $userdata['user_level'] = 0; $userdata['user_rights'] = ""; $userdata['user_groups'] = "";
}

// Redirect browser using header or script function
function redirect($location, $script = false) {
   if (!$script) {
      header("Location: ".str_replace("&", "&", $location));
      exit;
   } else {
      echo "\n";
      exit;
   }
}

// Clean URL Function, prevents entities in server globals
function cleanurl($url) {
   $bad_entities = array("&", "\"", "'", '\"', "\'", "<", ">", "(", ")", "*");
   $safe_entities = array("&", "", "", "", "", "", "", "", "", "");
   $url = str_replace($bad_entities, $safe_entities, $url);
   return $url;
}

// Strip Input Function, prevents HTML in unwanted places
function stripinput($text) {
   if (QUOTES_GPC) $text = stripslashes($text);
   $search = array("&", "\"", "'", "\\", '\"', "\'", "<", ">", " ");
   $replace = array("&", """, "'", "\", """, "'", "<", ">", " ");
   $text = str_replace($search, $replace, $text);
   return $text;
}

// stripslash function, only stripslashes if magic_quotes_gpc is on
function stripslash($text) {
   if (QUOTES_GPC) { $text = stripslashes($text); }
   return $text;
}

// stripslash function, add correct number of slashes depending on quotes_gpc
function addslash($text) {
   if (!QUOTES_GPC) {
      $text = addslashes(addslashes($text));
   } else {
      $text = addslashes($text);
   }
   return $text;
}

// htmlentities is too agressive so we use this function
function phpentities($text) {
   $search = array("&", "\"", "'", "\\", "<", ">");
   $replace = array("&", """, "'", "\", "<", ">");
   $text = str_replace($search, $replace, $text);
   return $text;
}

// Trim a line of text to a preferred length
function trimlink($text, $length) {
   $dec = array("&", "\"", "'", "\\", '\"', "\'", "<", ">");
   $enc = array("&", """, "'", "\", """, "'", "<", ">");
   $text = str_replace($enc, $dec, $text);
   if (strlen($text) > $length) $text = substr($text, 0, ($length-3))."...";
   $text = str_replace($dec, $enc, $text);
   return $text;
}

// Validate numeric input
function isnum($value) {
   if (!is_array($value)) {
      return (preg_match("/^[0-9]+$/", $value));
   } else {
      return false;
   }
}

// custom preg-match function
function preg_check($expression, $value) {
   if (!is_array($value)) {
      return preg_match($expression, $value);
   } else {
      return false;
   }
}

// Cache smileys mysql
function cache_smileys() {
   global $smiley_cache;
   $result = dbquery("SELECT * FROM ".DB_SMILEYS);
   if (dbrows($result)) {
      $smiley_cache = array();
      while ($data = dbarray($result)) {
         $smiley_cache[] = array(
            "smiley_code" => $data['smiley_code'],
            "smiley_image" => $data['smiley_image'],
            "smiley_text" => $data['smiley_text']
         );
      }
   } else {
      $smiley_cache = array();
   }
}

// Parse smiley bbcode
function parsesmileys($message) {
   global $smiley_cache;
   if (!preg_match("#(\[code\](.*?)\[/code\]|\[geshi=(.*?)\](.*?)\[/geshi\]|\[php\](.*?)\[/php\])#si", $message)) {
      if (!$smiley_cache) { cache_smileys(); }
      if (is_array($smiley_cache) && count($smiley_cache)) {
         foreach ($smiley_cache as $smiley) {
            $smiley_code = preg_quote($smiley['smiley_code']);
            $smiley_image = "'".$smiley['smiley_text']."'";
            $message = preg_replace("#{$smiley_code}#si", $smiley_image, $message);
         }
      }
   }
   return $message;
}

// Show smiley icons in comments, forum and other post pages
function displaysmileys($textarea, $form = "inputform") {
   global $smiley_cache;
   $smileys = ""; $i = 0;
   if (!$smiley_cache) { cache_smileys(); }
   if (is_array($smiley_cache) && count($smiley_cache)) {
      foreach ($smiley_cache as $smiley) {
         if ($i != 0 && ($i % 10 == 0)) { $smileys .= "
\n"; $i++; }
         $smileys .= ">\n";
      }
   }
   return $smileys;
}

// Cache bbcode mysql
function cache_bbcode() {
   global $bbcode_cache;
   $result = dbquery("SELECT * FROM ".DB_BBCODES." ORDER BY bbcode_order ASC");
   if (dbrows($result)) {
      $bbcode_cache = array();
      while ($data = dbarray($result)) {
         $bbcode_cache[] = $data['bbcode_name'];
      }
   } else {
      $bbcode_cache = array();
   }
}

// Parse bbcode
function parseubb($text, $selected=false) {
   global $bbcode_cache;
   if (!$bbcode_cache) { cache_bbcode(); }
   if (is_array($bbcode_cache) && count($bbcode_cache)) {
      if ($selected) { $sel_bbcodes = explode("|", $selected); }
      foreach ($bbcode_cache as $bbcode) {
         if ($selected && in_array($bbcode, $sel_bbcodes)) {
            if (file_exists(INCLUDES."bbcodes/".$bbcode."_bbcode_include.php")) {
               if (file_exists(LOCALE.LOCALESET."bbcodes/".$bbcode.".php")) {
                  include (LOCALE.LOCALESET."bbcodes/".$bbcode.".php");
               } elseif (file_exists(LOCALE."English/bbcodes/".$bbcode.".php")) {
                  include (LOCALE."English/bbcodes/".$bbcode.".php");
               }
               include (INCLUDES."bbcodes/".$bbcode."_bbcode_include.php");
            }
         } elseif (!$selected) {
            if (file_exists(INCLUDES."bbcodes/".$bbcode."_bbcode_include.php")) {
               if (file_exists(LOCALE.LOCALESET."bbcodes/".$bbcode.".php")) {
                  include (LOCALE.LOCALESET."bbcodes/".$bbcode.".php");
               } elseif (file_exists(LOCALE."English/bbcodes/".$bbcode.".php")) {
                  include (LOCALE."English/bbcodes/".$bbcode.".php");
               }
               include (INCLUDES."bbcodes/".$bbcode."_bbcode_include.php");
            }
         }
      }
   }   
   $text = descript($text, false);
   return $text;
}

// Javascript email encoder by Tyler Akins
// http://rumkin.com/tools/mailto_encoder/
function hide_email($email, $title = "", $subject = "") {
   if (strpos($email, "@")) {
      $parts = explode("@", $email);
      $MailLink = "       if ($subject != "") { $MailLink .= "?subject=".urlencode($subject); }
      $MailLink .= "'>".($title?$title:$parts[0]."@".$parts[1])."
";
      $MailLetters = "";
      for ($i = 0; $i < strlen($MailLink); $i++) {
         $l = substr($MailLink, $i, 1);
         if (strpos($MailLetters, $l) === false) {
            $p = rand(0, strlen($MailLetters));
            $MailLetters = substr($MailLetters, 0, $p).$l.substr($MailLetters, $p, strlen($MailLetters));
         }
      }
      $MailLettersEnc = str_replace("\\", "\\\\", $MailLetters);
      $MailLettersEnc = str_replace("\"", "\\\"", $MailLettersEnc);
      $MailIndexes = "";
      for ($i = 0; $i < strlen($MailLink); $i ++) {
         $index = strpos($MailLetters, substr($MailLink, $i, 1));
         $index += 48;
         $MailIndexes .= chr($index);
      }
      $MailIndexes = str_replace("\\", "\\\\", $MailIndexes);
      $MailIndexes = str_replace("\"", "\\\"", $MailIndexes);
      
      $res = "";
   
      return $res;
   } else {
      return $email;
   }
}

// Format spaces and tabs in code bb tags
function formatcode($text) {
   $text = str_replace("  ", "  ", $text);
   $text = str_replace("  ", "  ", $text);
   $text = str_replace("\t", "   ", $text);
   $text = preg_replace("/^ {1}/m", " ", $text);
   return $text;
}

// Highlights given words in subject
function highlight_words($word, $subject) {
   if (is_array($word)) {
      $regex_chars = "*|#.+?(){}[]^$/";
      for ($j = 0; $j < count($word); $j++) {
         for ($i = 0; $i < strlen($regex_chars); $i++) {
            $char = substr($regex_chars, $i, 1);
            $word[$j] = str_replace($char, '\\'.$char, $word[$j]);
         }
         $subject = preg_replace("/(".$word[$j].")/is", "\\1", $subject);
      }
   }
   return $subject;
}

// This function sanitises news & article submissions
function descript($text, $striptags = true) {
   // Convert problematic ascii characters to their true values
   $search = array("40","41","58","65","66","67","68","69","70",
      "71","72","73","74","75","76","77","78","79","80","81",
      "82","83","84","85","86","87","88","89","90","97","98",
      "99","100","101","102","103","104","105","106","107",
      "108","109","110","111","112","113","114","115","116",
      "117","118","119","120","121","122"
      );
   $replace = array("(",")",":","a","b","c","d","e","f","g","h",
      "i","j","k","l","m","n","o","p","q","r","s","t","u",
      "v","w","x","y","z","a","b","c","d","e","f","g","h",
      "i","j","k","l","m","n","o","p","q","r","s","t","u",
      "v","w","x","y","z"
      );
   $entities = count($search);
   for ($i=0; $i < $entities; $i++) {
      $text = preg_replace("#(&\#)(0*".$search[$i]."+);*#si", $replace[$i], $text);
   }
   $text = preg_replace('#(&\#x)([0-9A-F]+);*#si', "", $text);
   $text = preg_replace('#(<[^>]+[/\"\'\s])(onmouseover|onmousedown|onmouseup|onmouseout|onmousemove|onclick|ondblclick|onfocus|onload|xmlns)[^>]*>#iU', ">", $text);
   $text = preg_replace('#([a-z]*)=([\`\'\"]*)script:#iU', '$1=$2nojscript...', $text);
   $text = preg_replace('#([a-z]*)=([\`\'\"]*)javascript:#iU', '$1=$2nojavascript...', $text);
   $text = preg_replace('#([a-z]*)=([\'\"]*)vbscript:#iU', '$1=$2novbscript...', $text);
   $text = preg_replace('#(<[^>]+)style=([\`\'\"]*).*expression\([^>]*>#iU', "$1>", $text);
   $text = preg_replace('#(<[^>]+)style=([\`\'\"]*).*behaviour\([^>]*>#iU', "$1>", $text);
   if ($striptags) {
      do {
         $thistext = $text;
         $text = preg_replace('#]*>#i', "", $text);
      } while ($thistext != $text);
   }
   return $text;
}

// Scan image files for malicious code
function verify_image($file) {
   $txt = file_get_contents($file);
   $image_safe = true;
   if (preg_match('#&(quot|lt|gt|nbsp|    elseif (preg_match("#&\#x([0-9a-f]+);#i", $txt)) { $image_safe = false; }
   elseif (preg_match('#&\#([0-9]+);#i', $txt)) { $image_safe = false; }
   elseif (preg_match("#([a-z]*)=([\`\'\"]*)script:#iU", $txt)) { $image_safe = false; }
   elseif (preg_match("#([a-z]*)=([\`\'\"]*)javascript:#iU", $txt)) { $image_safe = false; }
   elseif (preg_match("#([a-z]*)=([\'\"]*)vbscript:#iU", $txt)) { $image_safe = false; }
   elseif (preg_match("#(<[^>]+)style=([\`\'\"]*).*expression\([^>]*>#iU", $txt)) { $image_safe = false; }
   elseif (preg_match("#(<[^>]+)style=([\`\'\"]*).*behaviour\([^>]*>#iU", $txt)) { $image_safe = false; }
   elseif (preg_match("#]*>#i", $txt)) { $image_safe = false; }
   return $image_safe;
}

// captcha routines
function make_captcha() {
   global $settings;
   $captcha_string = ""; $captcha_encode = "";
   $chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
   for ($i = 0; $i < 5; $i++) {
      $captcha_string .= substr($chars, mt_rand(0, strlen($chars) - 1), 1);
   }
   for ($i = 0; $i < 31; $i++) {
      $captcha_encode .= substr($chars, mt_rand(0, strlen($chars) - 1), 1);
   }
   $result = mysql_query("INSERT INTO ".DB_PREFIX."captcha (captcha_datestamp, captcha_ip, captcha_encode, captcha_string) VALUES('".time()."', '".USER_IP."', '$captcha_encode', '$captcha_string')");
   if ($settings['validation_method'] == "image") {
      return "''\n";
   } else {
      return "".$captcha_string."\n";
   }
}

function check_captcha($captchs_encode, $captcha_string) {
   if (preg_check("/^[0-9A-Za-z]+$/", $captchs_encode) && preg_check("/^[0-9A-Za-z]+$/", $captcha_string)) {
      $result = dbquery("SELECT * FROM ".DB_CAPTCHA." WHERE captcha_ip='".USER_IP."' AND captcha_encode='".$captchs_encode."' AND captcha_string='".$captcha_string."'");
      if (dbrows($result)) {
         $result = dbquery("DELETE FROM ".DB_CAPTCHA." WHERE captcha_ip='".USER_IP."' AND captcha_encode='".$captchs_encode."' AND captcha_string='".$captcha_string."'");
         return true;
      } else {
         return false;
      }
   } else {
      return false;
   }
}

// Replace offensive words with the defined replacement word
function censorwords($text) {
   global $settings;
   if ($settings['bad_words_enabled'] == "1" && $settings['bad_words'] != "" ) {
      $word_list = explode("\r\n", $settings['bad_words']);
      for ($i=0; $i < count($word_list); $i++) {
         if ($word_list[$i] != "") $text = preg_replace("/".$word_list[$i]."/si", $settings['bad_word_replace'], $text);
      }
   }
   return $text;
}

// Display the user's level
function getuserlevel($userlevel) {
   global $locale;
   if ($userlevel == 101) { return $locale['user1'];
   } elseif ($userlevel == 102) { return $locale['user2'];
   } elseif ($userlevel == 103) { return $locale['user3']; }
}

// Check if Administrator has correct rights assigned
function checkrights($right) {
   if (iADMIN && in_array($right, explode(".", iUSER_RIGHTS))) {
      return true;
   } else {
      return false;
   }
}

// Check if user is assigned to the specified user group
function checkgroup($group) {
   if (iSUPERADMIN) { return true; }
   elseif (iADMIN && ($group == "0" || $group == "101" || $group == "102")) { return true;
   } elseif (iMEMBER && ($group == "0" || $group == "101")) { return true;
   } elseif (iGUEST && $group == "0") { return true;
   } elseif (iMEMBER && in_array($group, explode(".", iUSER_GROUPS))) {
      return true;
   } else {
      return false;
   }
}

// Cache groups mysql
function cache_groups() {
   global $groups_cache;
   $result = dbquery("SELECT * FROM ".DB_USER_GROUPS." ORDER BY group_id ASC");
   if (dbrows($result)) {
      $groups_cache = array();
      while ($data = dbarray($result)) {
         $groups_cache[] = $data;
      }
   } else {
      $groups_cache = array();
   }
}

// Compile access levels & user group array
function getusergroups() {
   global $locale, $groups_cache;
   $groups_array = array(
      array("0", $locale['user0']),
      array("101", $locale['user1']),
      array("102", $locale['user2']),
      array("103", $locale['user3'])
   );
   if (!$groups_cache) { cache_groups(); }
   if (is_array($groups_cache) && count($groups_cache)) {
      foreach ($groups_cache as $group) {
         array_push($groups_array, array($group['group_id'], $group['group_name']));
      }
   }
   return $groups_array;
}

// Get the name of the access level or user group
function getgroupname($group_id, $return_desc = false) {
   global $locale, $groups_cache;
   if ($group_id == "0") { return $locale['user0'];
   } elseif ($group_id == "101") { return $locale['user1']; exit;
   } elseif ($group_id == "102") { return $locale['user2']; exit;
   } elseif ($group_id == "103") { return $locale['user3']; exit;
   } else {
      if (!$groups_cache) { cache_groups(); }
      if (is_array($groups_cache) && count($groups_cache)) {
         foreach ($groups_cache as $group) {
            if ($group_id == $group['group_id']) { return ($return_desc ? ($group['group_description'] ? $group['group_description'] : '-') : $group['group_name']); exit; }
         }
      }
   }
   return "N/A";
}

function groupaccess($field) {
   if (iGUEST) { return "$field = '0'";
   } elseif (iSUPERADMIN) { return "1 = 1";
   } elseif (iADMIN) { $res = "($field='0' OR $field='101' OR $field='102'";
   } elseif (iMEMBER) { $res = "($field='0' OR $field='101'";
   }
   if (iUSER_GROUPS != "" && !iSUPERADMIN) { $res .= " OR $field='".str_replace(".", "' OR $field='", iUSER_GROUPS)."'"; }
   $res .= ")";
   return $res;
}

// Create a list of files or folders and store them in an array
function makefilelist($folder, $filter, $sort=true, $type="files") {
   $res = array();
   $filter = explode("|", $filter);
   $temp = opendir($folder);
   while ($file = readdir($temp)) {
      if ($type == "files" && !in_array($file, $filter)) {
         if (!is_dir($folder.$file)) { $res[] = $file; }
      } elseif ($type == "folders" && !in_array($file, $filter)) {
         if (is_dir($folder.$file)) { $res[] = $file; }
      }
   }
   closedir($temp);
   if ($sort) { sort($res); }
   return $res;
}

// Create a selection list from an array created by makefilelist()
function makefileopts($files, $selected = "") {
   $res = "";
   for ($i = 0; $i < count($files); $i++) {
      $sel = ($selected == $files[$i] ? " selected='selected'" : "");
      $res .= "\n";
   }
   return $res;
}

function makepagenav($start, $count, $total, $range = 0, $link = "") {

   global $locale;

   if ($link == "") { $link = FUSION_SELF."?"; }

   $pg_cnt = ceil($total / $count);
   if ($pg_cnt <= 1) { return ""; }

   $idx_back = $start - $count;
   $idx_next = $start + $count;
   $cur_page = ceil(($start + 1) / $count);

   $res = $locale['global_092']." ".$cur_page.$locale['global_093'].$pg_cnt.": ";
   if($idx_back >= 0) {
      if($cur_page > ($range + 1)) {
         $res .= "1...";
      }
   }
   $idx_fst = max($cur_page - $range, 1);
   $idx_lst = min($cur_page + $range, $pg_cnt);
   if ($range == 0) {
      $idx_fst = 1;
      $idx_lst = $pg_cnt;
   }
   for ($i = $idx_fst; $i <= $idx_lst; $i++) {
      $offset_page = ($i - 1) * $count;
      if ($i == $cur_page) {
         $res .= "".$i."";
      } else {
         $res .= "".$i."";
      }
   }
   if ($idx_next < $total) {
      if ($cur_page < ($pg_cnt - $range)) {
         $res .= "...".$pg_cnt."\n";
      }
   }
   
   return "
\n".$res."
\n";
}

// Format the date & time accordingly
function showdate($format, $val) {
   global $settings;
   if ($format == "shortdate" || $format == "longdate" || $format == "forumdate") {
      return strftime($settings[$format], $val + ($settings['timeoffset']*3600));
   } else {
      return strftime($format, $val + ($settings['timeoffset'] * 3600));
   }
}

// Translate bytes into kb, mb, gb or tb by CrappoMan
function parsebytesize($size, $digits = 2, $dir = false) {
   $kb = 1024; $mb = 1024 * $kb; $gb= 1024 * $mb; $tb = 1024 * $gb;
   if (($size == 0) && ($dir)) { return "Empty"; }
   elseif ($size < $kb) { return $size."Bytes"; }
   elseif ($size < $mb) { return round($size / $kb,$digits)."Kb"; }
   elseif ($size < $gb) { return round($size / $mb,$digits)."Mb"; }
   elseif ($size < $tb) { return round($size / $gb,$digits)."Gb"; }
   else { return round($size / $tb, $digits)."Tb"; }
}

// User level, Admin Rights & User Group definitions
define("iGUEST", $userdata['user_level'] == 0 ? 1 : 0);
define("iMEMBER", $userdata['user_level'] >= 101 ? 1 : 0);
define("iADMIN", $userdata['user_level'] >= 102 ? 1 : 0);
define("iSUPERADMIN", $userdata['user_level'] == 103 ? 1 : 0);
define("iUSER", $userdata['user_level']);
define("iUSER_RIGHTS", $userdata['user_rights']);
define("iUSER_GROUPS", substr($userdata['user_groups'], 1));

if (iADMIN) {
   define("iAUTH", substr($userdata['user_password'], 16, 32));
   $aidlink = "?aid=".iAUTH;
}

include INCLUDES."system_images.php";
?>

phpfusion-tips.dk/signaturer/johnnysay.png
 
- Tony -
Hvis det ikke hjalp, hvad med denne så http://php-fusion.dk/forum/viewthread...ost_122020 ellers prøv Egon med en venlig forespørgsel, om han måske havde løsning.www.lemviginfo.dk/platuglerne_ikon2.gif www.lemviginfo.dk/images/lemviginfo_dk.gif [url=http://www.lemvig.info][img]http://www.lemviginfo.dk/image
 
http://www.lemvig.info/redirect.php
johnnysay
Ok men takker for nu må prøve at se om jeg kan finde Egon
phpfusion-tips.dk/signaturer/johnnysay.png
 
egonbj
Booking systemet er lavet med AJAX/Java script og det kan nogen gange være en udfordring.
Nu kan jeg ikke huske hvilken version i har, men typisk er der et antal filer som hver især danner en del, og de afsluttes som regel med følgende:


//sikrer korrekt karaktersæt til outputtet
$response=utf8_encode ( $response );
//output the response
echo  "$response";


Det er her $response=utf8_encode ( $response ); kommandoen som formaterer output, så hvis den ikke er i filerne, kan du prøve at sætte den ind, men bemærk kun i filer der slutter med echo "$response";
Hvis den er i filerne kan du prøve at slette/udkommentere den, og se hvilken effekt det har.

Mvg Egon
 
www.myphp.dk
johnnysay
Kan ikke finde ud af hvilken filer den skal ind i
phpfusion-tips.dk/signaturer/johnnysay.png
 
egonbj
Jeg kommer til at se på din billede i indlægget at det er tekster der er gemt i databasen så det kan også være her det går galt.
Du kunne evt. prøve at redigere teksterne og så gemme dem igen og se om det hjælper.
 
www.myphp.dk
johnnysay
hej igen jeg har prøvet at rette i teksterne uden held
phpfusion-tips.dk/signaturer/johnnysay.png
 
Spring til debat: