$team_db = mysql_query("SELECT * FROM team WHERE nickname = '$_SESSION[nickname]' && r12 = '1'");
$team = mysql_fetch_array($team_db);
if($_GET['del'] && $team == true)
{
mysql_query("DELETE FROM shoutbox WHERE ID='$_GET[del]'");
}
if(!$_SESSION['nickname'])
{
echo "Du bist nicht eingeloggt";
exit();
}
include_once("_menu.php");
$links = array('
UR Spieler Support '.show_tip(103,$_SESSION['nickname'],0));
echo createMenu($links,300)."
";
if(ltrim($_POST['text']))
{
if($_SESSION['nickname'] == "Testuser")
{
echo "Du bist im Testaccount eingeloggt, eintrag nicht möglich.";
exit();
}
if(strip_tags($_POST['text'])==false)
echo "HTML IST VERBOTEN";
else
{
$text = strip_tags($_POST['text']);
$check = mysql_fetch_array(mysql_query("SELECT * FROM status WHERE nickname = '$_SESSION[nickname]'"));
$sendok = true;
if($check['sbox']>1 && $team == false)
{
echo "Du darfst keine 3 Nachrichten hintereinander schreiben.
";
$sendok = false;
}
$lastpost = mysql_fetch_array(mysql_query("SELECT text FROM shoutbox ORDER BY ID DESC LIMIT 1"));
if($lastpost['text'] == $text && $team == false)
{
echo "Du darfst nicht 2 mal hintereinander das gleiche schreiben.
";
$sendok = false;
}
if(preg_match("/^[A-Z]*$/",$text) && $team == false)
{
echo "Du darfst nicht \"schreien\".
";
$sendok = false;
}
if(!preg_match("/ /",$text))
{
echo "Du darfst nicht ohne Leerzeichen oder nur ein Wort schreiben.
";
$sendok = false;
}
if(!preg_match("/[a-zA-Z]+/",$text))
{
echo "Du musst Wörter schreiben.
";
$sendok = false;
}
if(preg_match("/^[ ]*(:cool:|:shocked:|:lol:|:rolleyes:|:yes:|:no:|:\)|:\]|;\)|:P|:p|:D|:\(|;\(|X\(|:\|| )+[ ]*$/",$text))
{
echo "Reine Smilie-Nachrichten sind verboten.
";
$sendok = false;
}
//Schimpfwort-Überprüfung
$blacklist = false;
$cw_db = mysql_query("SELECT * FROM schimpfwort ORDER BY wort");
while($cw = mysql_fetch_array($cw_db))
{
$text = str_replace($cw['wort'],"***",$text);
}
if($sendok)
{
mysql_query("UPDATE status SET sbox='0' WHERE sbox > '0' && nickname != '$_SESSION[nickname]'");
$status = mysql_fetch_array(mysql_query("SELECT ID FROM status WHERE nickname='$_SESSION[nickname]'"));
mysql_query("INSERT INTO shoutbox (datum, UID, text) VALUES ('$time', $status[ID], '$text')");
mysql_query("UPDATE status SET sbox=sbox+1 WHERE nickname = '$_SESSION[nickname]'");
}
}
}
$usersmile = mysql_fetch_array(mysql_query("SELECT smilies FROM user WHERE nickname='$_SESSION[nickname]'"));
if($usersmile['smilies'] == "1")
{
?>
}
?>
if($_GET['order'] != 0){
$limit = $_GET['order'];
$x = $limit*50 -50;
$limit = "DESC LIMIT $x,50"; }
else{
$limit = "DESC LIMIT 0,50"; }
$SB_count_db = mysql_query("SELECT count(ID) AS count FROM shoutbox");
$SB_count = mysql_fetch_array($SB_count_db);
$seiten = $SB_count['count']/50;
$seiten = ceil($seiten);
if($seiten > 15) $seiten = 15;
for($i=1; $i<=$seiten; $i++)
{
if((!$_GET['order']&&$i==1) or ($_GET['order']==$i))
{
?>
}
?>
[ echo $i ?>]
if((!$_GET['order']&&$i==1) or ($_GET['order']==$i))
{
?>
}
}
?>
|
if($_GET['bew']){
$box_db = mysql_query("SELECT * FROM box WHERE nickname = '$_SESSION[nickname]' && bID = '$_GET[ID]'");
$box = mysql_fetch_array($box_db);
if($box['ID'] == false){
if($_GET['bew'] == 1){
mysql_query("UPDATE shoutbox SET yes=yes+1 WHERE ID = '$_GET[ID]'");
mysql_query("INSERT INTO box (nickname, bID) VALUES ('$_SESSION[nickname]', '$_GET[ID]')");
echo "
Eintrag Bewertet!
";
}
if($_GET['bew'] == 2){
mysql_query("UPDATE shoutbox SET no=no+1 WHERE ID = '$_GET[ID]'");
mysql_query("INSERT INTO box (nickname, bID) VALUES ('$_SESSION[nickname]', '$_GET[ID]')");
echo "
Eintrag Bewertet!
";
}
}
}
$ID=mysql_fetch_array(mysql_query("SELECT ID, nickname, boxnr FROM status WHERE nickname='$_SESSION[nickname]'"));
$sb_db = mysql_query("SELECT sb.*,u.ID AS userID,nickname,yes, no FROM shoutbox AS sb INNER JOIN status AS u ON sb.UID=u.ID order by ID $limit");
while($sb = mysql_fetch_array($sb_db))
{
$text = $sb['text'];
$usersmile = mysql_fetch_array(mysql_query("SELECT smilies FROM user WHERE nickname='$_SESSION[nickname]'"));
if($usersmile['smilies'] == "1")
$text = replace_smilies($text);
?>
$box2_db = mysql_query("SELECT * FROM shoutbox WHERE ID = '$sb[ID]'");
$box2 = mysql_fetch_array($box2_db);
if($ID['boxnr']<$sb['ID']){
echo "Shoutboxeintrag ".$sb['ID']."
Mag ich | Mag ich nicht - ".$box2[yes]." ".$box2[no]."";
}
else{
echo "Shoutboxeintrag ".$sb['ID']."
Mag ich | Mag ich nicht - ".$box2[yes]." ".$box2[no]."";
}
?>
if($team['nickname'] != "")
{
?>
|
}
?>
|
echo "Verfasst am ".strftime("%d.%m.%y um %R", $sb['datum'])." Uhr von ".$sb['nickname'].""; ?> |
echo $text; ?> |
}
?>
for($f=1; $f<=$seiten; $f++)
{
if((!$_GET['order']&&$f==1) or ($_GET['order']==$f))
{
?>
}
?>
[ echo $f ?>]
if((!$_GET['order']&&$f==1) || ($_GET['order']==$f))
{
?>
}
}
?>
|
$box_db = mysql_query("SELECT ID FROM shoutbox ORDER BY ID DESC");
$box = mysql_fetch_array($box_db);
mysql_query("UPDATE status SET boxnr = '$box[ID]' WHERE nickname = '$_SESSION[nickname]'");
function replace_smilies($text)
{
$text = str_replace(":)","