See No: 36 Line....
There Sub Limit...
Please someone Help me .......
Code:
<?php
/////////////////////////////////////////////////////////////////////////////////////
// xbtit - Bittorrent tracker/frontend
//
// Copyright (C) 2004 - 2013 Btiteam
//
// This file is part of xbtit.
//
// Redistribution and use in source and binary forms, with or without modification,
// are permitted provided that the following conditions are met:
//
// 1. Redistributions of source code must retain the above copyright notice,
// this list of conditions and the following disclaimer.
// 2. Redistributions in binary form must reproduce the above copyright notice,
// this list of conditions and the following disclaimer in the documentation
// and/or other materials provided with the distribution.
// 3. The name of the author may not be used to endorse or promote products
// derived from this software without specific prior written permission.
//
// THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
// WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
// MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
// IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
// TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
// PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
// LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
// NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
// EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
//
////////////////////////////////////////////////////////////////////////////////////
if(!defined("IN_BTIT"))
die("non direct access!");
if(!defined("IN_BTIT_FORUM"))
die("non direct access!");
$maxsubjectlength = 40;
$postsperpage = $CURUSER["postsperpage"];
if(!$postsperpage)
$postsperpage = 15;
switch($action)
{
case 'editpost':
$postid = intval(0 + $_GET["postid"]);
if(!is_valid_id($postid))
stderr($language["ERROR"], $language["ERR_POST_ID_NA"]);
$res = do_sqlquery("SELECT p.*,t.locked FROM {$TABLE_PREFIX}posts p LEFT JOIN {$TABLE_PREFIX}topics t ON p.topicid=t.id WHERE p.id=$postid", true);
if(mysql_num_rows($res) != 1)
stderr($language["ERROR"], $language["ERR_NO_POST_WITH_ID"]." $postid.");
$arr = mysql_fetch_assoc($res);
if(!$arr["locked"])
stderr($language["ERROR"], $language["ERR_NO_TOPIC_POST_ID"]." $postid.");
$locked = ($arr2["locked"] == 'yes');
if(($CURUSER["uid"] != $arr["userid"] || $locked) && $CURUSER["edit_forum"] != "yes")
stderr($language["ERROR"], $language["ERR_PERM_DENIED"]);
if($_SERVER['REQUEST_METHOD'] == 'POST')
{
$body = $_POST['body'];
if($body == "")
stderr($language["ERROR"], $language["ERR_BODY_EMPTY"]);
$body = sqlesc($body);
$editedat = sqlesc(time());
do_sqlquery("UPDATE {$TABLE_PREFIX}posts SET body=$body, editedat=$editedat, editedby=".intval($CURUSER["uid"])." WHERE id=$postid", true);
$returnto = urldecode($_POST["returnto"]);
if($returnto != "")
{
$returnto .= "#$postid";
redirect("$returnto");
die();
}
else
{
success_msg($language["SUCCESS"], $language["SUC_POST_SUC_EDIT"]);
stdfoot();
die();
}
}
$block_title = $language["EDIT_POST"];
$forumtpl->set("frm_action", "index.php?page=forum&action=editpost&postid=$postid");
$forumtpl->set("return_to", htmlspecialchars($_SERVER["HTTP_REFERER"]));
$forumtpl->set("post_body", textbbcode("edit", "body", htmlspecialchars(unesc($arr["body"]))));
break;
case 'reply':
case 'quotepost':
if($action == "quotepost")
$quote = true;
else
$quote = false;
$topicid = intval(0 + $_GET["topicid"]);
// current user has create acces to this forum ?
$aut = get_result("SELECT id,subject FROM {$TABLE_PREFIX}topics WHERE id=$topicid LIMIT 1", true);
if(count($aut) < 1)
stderr($language["ERROR"], $language["TOPIC_NOT_FOUND"]);
if(!is_valid_id($topicid))
stderr($language["ERROR"], $language["BAD_TOPIC_ID"]);
$block_title = $language["REPLY"]." ".$language["TOPIC"]." <a href=\"index.php?page=forum&action=viewtopic&topicid=$topicid\">".htmlspecialchars(unesc($aut[0]["subject"]))."</a>";
unset($aut);
$query1_select = "";
if($btit_settings["fmhack_private_profile"] == "enabled")
{
$query1_select .= "`u`.`profileview`,";
}
if($XBTT_USE)
$query = "SELECT ".$query1_select." p.*, u.username, ul.level as user_group, u.avatar, u.uploaded+IFNULL(x.uploaded,0) as uploaded".", u.downloaded+IFNULL(x.downloaded,0) as downloaded, c.name as name, ue.username as editor, flagpic FROM {$TABLE_PREFIX}posts p"." LEFT JOIN {$TABLE_PREFIX}users u ON p.userid=u.id LEFT JOIN xbt_users x ON x.uid=u.id INNER JOIN {$TABLE_PREFIX}users_level ul"." ON u.id_level=ul.id LEFT JOIN {$TABLE_PREFIX}countries c ON u.flag = c.id LEFT JOIN {$TABLE_PREFIX}users ue ON p.editedby=ue.id"." WHERE topicid=$topicid ORDER BY id DESC LIMIT 10";
else
$query = "SELECT ".$query1_select." p.*, u.username, ul.level as user_group, u.avatar, u.uploaded".", u.downloaded, c.name as name, ue.username as editor, flagpic FROM {$TABLE_PREFIX}posts p"." LEFT JOIN {$TABLE_PREFIX}users u ON p.userid=u.id INNER JOIN {$TABLE_PREFIX}users_level ul"." ON u.id_level=ul.id LEFT JOIN {$TABLE_PREFIX}countries c ON u.flag = c.id LEFT JOIN {$TABLE_PREFIX}users ue ON p.editedby=ue.id"." WHERE topicid=$topicid ORDER BY id DESC LIMIT 10";
// get last 10 posts
$res = get_result($query, true);
$posts = array();
$pn = 0;
foreach($res as $id => $arr)
{
if($arr["username"])
$posts[$pn]["username"] = "<a href='".(($btit_settings["fmhack_SEO_panel"] == "enabled" && $res_seo["activated_user"] == "true")?$arr["userid"]."_".strtr($arr["username"], $res_seo["str"], $res_seo["strto"]).".html":"index.php?page=userdetails&id=".$arr["userid"])."'>".unesc($arr["username"])."</a>";
else
$posts[$pn]["username"] = "unknown[".$arr["userid"]."]";
$posts[$pn]["date"] = get_date_time($arr["added"]);
$posts[$pn]["elapsed"] = "(".get_elapsed_time($arr["added"])." ago)";
$posts[$pn]["avatar"] = "<img onload=\"resize_avatar(this);\" src=\"".($arr["avatar"] && $arr["avatar"] != ""?htmlspecialchars($arr["avatar"]):"$STYLEURL/images/default_avatar.gif")."\" alt=\"\" />";
$posts[$pn]["user_group"] = $arr["user_group"];
if($btit_settings["fmhack_private_profile"] == "enabled")
{
if($arr["profileview"] == 0 || $CURUSER["uid"] == $arr["userid"])
{
$posts[$pn]["flag"] = "<img src=\"images/flag/".($arr["flagpic"] && $arr["flagpic"] != ""?$arr["flagpic"]:"unknown.gif")."\" alt=\"".($arr["name"] && $arr["name"] != ""?$arr["name"]:"unknown")."\" />";
$posts[$pn]["ratio"] = (intval($arr['downloaded']) > 0?number_format($arr['uploaded'] / $arr['downloaded'], 2):"---");
}
else
{
$posts[$pn]["flag"] = "<img src=\"images/private2.png\" title=\"".$language["PP_PRIVATE"]."\">";
$posts[$pn]["ratio"] = "<img src=\"images/private2.png\" title=\"".$language["PP_PRIVATE"]."\">";
}
}
else
{
$posts[$pn]["flag"] = "<img src=\"images/flag/".($arr["flagpic"] && $arr["flagpic"] != ""?$arr["flagpic"]:"unknown.gif")."\" alt=\"".($arr["name"] && $arr["name"] != ""?$arr["name"]:"unknown")."\" />";
$posts[$pn]["ratio"] = (intval($arr['downloaded']) > 0?number_format($arr['uploaded'] / $arr['downloaded'], 2):"---");
}
$sql = get_result("SELECT COUNT(*) as posts FROM {$TABLE_PREFIX}posts p INNER JOIN {$TABLE_PREFIX}users u ON p.userid = u.id WHERE u.id = ".$arr["userid"], true);
$posts[$pn]["posts"] = intval(0 + $sql[0]["posts"]);
$posts[$pn]["id"] = $arr["id"];
$posts[$pn]["actions"] = "";
if((!$locked || $CURUSER["edit_forum"] == "yes") && $usercan_write)
$posts[$pn]["actions"] .= "<a href=\"index.php?page=forum&action=quotepost&topicid=$topicid&postid=".$arr["id"]."\">".image_or_link($STYLEPATH."/images/f_quote.png", "", "[".$language["QUOTE"]."]")."</a>";
if(($CURUSER["uid"] == $posterid && !$locked) || $CURUSER["edit_forum"] == "yes")
$posts[$pn]["actions"] .= " <a href=\"index.php?page=forum&action=editpost&postid=".$arr["id"]."\">".image_or_link($STYLEPATH."/images/f_edit.png", "", "[".$language["EDIT"]."]")."</a>";
if($CURUSER["delete_forum"] == "yes")
$posts[$pn]["actions"] .= " <a href=\"index.php?page=forum&action=deletepost&postid=".$arr["id"]."&forumid=$forumid\">".image_or_link($STYLEPATH."/images/f_delete.png", "", "[".$language["DELETE"]."]")."</a>";
$posts[$pn]["body"] = format_comment($arr["body"]);
if(is_valid_id($arr['editedby']))
$posts[$pn]["body"] .= "<p><font size=\"1\">".$language["LAST_EDITED_BY"]." <a href='".(($btit_settings["fmhack_SEO_panel"] == "enabled" && $res_seo["activated_user"] == "true")?$arr["editedby"]."_".strtr($arr["editor"], $res_seo["str"], $res_seo["strto"]).".html":"index.php?page=userdetails&id=".$arr["editedby"])."'><b>".$arr["editor"]."</b></a> at ".get_date_time($arr['editedat'])."</font></p>\n";
$posts[$pn]["pm"] = ($CURUSER["uid"] > 1?"<a href=\"index.php?page=usercp&do=pm&action=edit&uid=$userid&what=new&to=".urlencode($arr["username"])."\">".image_or_link("$STYLEPATH/images/pm.png", "", $language["PM"])."</a>":"");
$posts[$pn]["top"] = image_or_link("$STYLEPATH/images/top.gif", "", $language["TOP"]);
++$pn;
}
unset($arr);
unset($res);
$forumtpl->set("old_posts", ($pn > 0), true);
$forumtpl->set("frm_action", "index.php?page=forum&action=post");
$forumtpl->set("topic_id", "$topicid");
$forumtpl->set("newtopic", false, true);
$forumtpl->set("newtopic_1", false, true);
$forumtpl->set("posts", $posts);
$forumtpl->set("replies", true, true);
$forumtpl->set("post_subject", "");
if($quote)
{
$postid = intval(0 + $_GET["postid"]);
$arr = get_result("SELECT p.*, u.username FROM {$TABLE_PREFIX}posts p LEFT JOIN {$TABLE_PREFIX}users u ON p.userid = u.id WHERE p.id=$postid LIMIT 1", true);
if(count($arr) < 1)
stderr($language["ERROR"], $language["ERR_NO_POST_WITH_ID"]." $postid.");
}
$forumtpl->set("post_bbcode", textbbcode("compose", "body", ($quote?"<<<@!1!@>>>":"")));
unset($arr);
break;
case 'newtopic':
$forumid = intval(0 + $_GET["forumid"]);
// current user has create acces to this forum ?
$aut = get_result("SELECT id,name FROM {$TABLE_PREFIX}forums WHERE id=$forumid AND minclasscreate<=".$CURUSER["id_level"]." LIMIT 1", true, $btit_settings["cache_duration"]);
if(count($aut) < 1)
stderr($language["ERROR"], $language["ERR_CANT_START_TOPICS"]);
if(!is_valid_id($forumid))
stderr($language["ERROR"], $language["BAD_FORUM_ID"]);
$block_title = $language["NEW_TOPIC"]." ".$language["IN"]." <a href=\"index.php?page=forum&action=viewforum&forumid=$forumid\">".$aut[0]["name"]."</a> ".$language["FORUM"];
$forumtpl->set("old_posts", false, true);
$forumtpl->set("frm_action", "index.php?page=forum&action=post");
$forumtpl->set("newtopic", true, true);
$forumtpl->set("newtopic_1", true, true);
$forumtpl->set("replies", false, true);
;
$forumtpl->set("forum_id", "$forumid");
$forumtpl->set("post_subject", "");
$forumtpl->set("post_bbcode", textbbcode("compose", "body", ""));
break;
case 'post':
$forumid = isset($_POST["forumid"])?intval($_POST["forumid"]):false;
$topicid = isset($_POST["topicid"])?intval($_POST["topicid"]):false;
if(!is_valid_id($forumid) && !is_valid_id($topicid))
stderr($language["ERROR"], $language["ERR_FORUM_TOPIC"]);
if($_POST["confirm"] == $language["FRM_CONFIRM"])
{
$newtopic = $topicid?false:true;
$subject = isset($_POST["subject"])?sqlesc(htmlspecialchars(trim($_POST["subject"]))):false;
if($newtopic)
{
if(!$subject || $subject == "''")
stderr($language["ERROR"], $language["ERR_SUBJECT"]);
if(strlen($subject) > $maxsubjectlength)
stderr($language["ERROR"], $language["SUBJECT_MAX_CHAR"]." $maxsubjectlength ".$language["CHARACTERS"]);
$query = "SELECT id, minclasswrite, minclasscreate FROM {$TABLE_PREFIX}forums WHERE id=$forumid LIMIT 1";
}
else
$query = "SELECT f.id, minclasswrite, minclasscreate, t.locked FROM {$TABLE_PREFIX}forums f INNER JOIN {$TABLE_PREFIX}topics t ON t.forumid=f.id WHERE t.id=$topicid LIMIT 1";
$aut = get_result($query, true);
$forumid = $aut[0]["id"];
//------ Make sure sure user has write access in forum
if($CURUSER["id_level"] < $aut[0]["minclasswrite"] || ($newtopic && $CURUSER["id_level"] < $aut[0]["minclasscreate"]))
stderr($language["ERROR"], $language["ERR_PERM_DENIED"]);
$body = sqlesc(trim($_POST["body"]));
if($body == "''")
stderr($language["ERROR"], $language["ERR_NO_BODY"]);
$userid = intval($CURUSER["uid"]);
if($newtopic)
{
//---- Create topic
$add_topic_count = ", topiccount=topiccount+1";
do_sqlquery("INSERT INTO {$TABLE_PREFIX}topics (userid, forumid, subject) VALUES($userid, $forumid, $subject)", true);
$topicid = mysql_insert_id() or stderr($language["ERROR"], $language["ERR_NO_TOPIC_ID"]);
if($btit_settings["fmhack_download_requires_introduction"]=="enabled")
{
if($CURUSER["made_intro"]==0 && $forumid==$btit_settings["ibd_forumid"] && $btit_settings["ibd_topicid"]==0)
do_sqlquery("UPDATE `{$TABLE_PREFIX}users` SET `made_intro`=1 WHERE `id`=".$userid, true);
}
}
else
{
//---- Make sure topic exists and is unlocked
if($aut[0]["locked"] == 'yes' && $CURUSER["edit_forum"] != "yes")
stderr($language["ERROR"], $language["ERR_TOPIC_LOCKED"]);
$add_topic_count = "";
}
//------ Insert post
if($btit_settings["fmhack_bonus_system"] == "enabled" && $btit_settings["forpost_enable"] == "true")
{
do_sqlquery("UPDATE `{$TABLE_PREFIX}users` SET `seedbonus`=`seedbonus`+".$btit_settings["bonus_forpost"]." WHERE `id`=".$userid);
$_SESSION["CURUSER"]["seedbonus"] += $btit_settings["bonus_forpost"];
}
do_sqlquery("INSERT INTO {$TABLE_PREFIX}posts (topicid, userid, added, body".(($btit_settings["fmhack_bonus_system"] == "enabled" && $btit_settings["forpost_enable"] == "true")?",sbonus":"").") VALUES($topicid, $userid, UNIX_TIMESTAMP(), $body".(($btit_settings["fmhack_bonus_system"] == "enabled" && $btit_settings["forpost_enable"] == "true")?",".$btit_settings["bonus_forpost"]:"").")", true);
$postid = mysql_insert_id() or stderr($language["ERROR"], $language["ERR_POST_ID_NA"]);
if($btit_settings["fmhack_download_requires_introduction"]=="enabled" && !$newtopic)
{
if($CURUSER["made_intro"]==0 && $forumid==$btit_settings["ibd_forumid"] && $btit_settings["ibd_topicid"]==$topicid)
do_sqlquery("UPDATE `{$TABLE_PREFIX}users` SET `made_intro`=1 WHERE `id`=".$userid, true);
}
//------ Update topic last post
do_sqlquery("UPDATE {$TABLE_PREFIX}topics SET lastpost=(SELECT MAX(id) FROM {$TABLE_PREFIX}posts WHERE topicid=$topicid) WHERE id=$topicid", true);
// update post/topic count
do_sqlquery("UPDATE {$TABLE_PREFIX}forums SET postcount=postcount+1 $add_topic_count WHERE id=$forumid", true);
//------ All done, redirect user to the post
//---- Get reply count
$res = do_sqlquery("SELECT COUNT(*) FROM {$TABLE_PREFIX}posts WHERE topicid=$topicid", true);
$arr = mysql_fetch_row($res);
$posts = $arr[0];
$tpages = floor($posts / $postsperpage);
if($tpages * $postsperpage != $posts)
++$tpages;
for($i = 1; $i <= $tpages; ++$i)
$headerstr = "index.php?page=forum&action=viewtopic&topicid=$topicid&pages=$i";
if($newtopic)
redirect($headerstr);
else
redirect("$headerstr#$postid");
}
else
{
if($forumid)
redirect("index.php?page=forum&action=viewforum&forumid=$forumid");
elseif($topicid)
redirect("index.php?page=forum&action=viewtopic&topicid=$topicid");
else
redirect("index.php?page=forum");
}
die();
break;
}
?>