$userdata['user_level']))) { redirect(BASEDIR."maintenance.php"); }
if (iMEMBER) { $result = dbquery("UPDATE ".DB_USERS." SET user_lastvisit='".time()."', user_ip='".USER_IP."' WHERE user_id='".$userdata['user_id']."'"); }
echo "\n";
echo "\n";
echo "
\n".$settings['sitename']."\n";
echo "\n";
echo "\n";
echo "\n";
echo "\n";
echo "\n\n";
if ((isset($_GET['type']) && $_GET['type'] == "A") && (isset($_GET['item_id']) && isnum($_GET['item_id']))) {
$result = dbquery(
"SELECT ta.article_subject, ta.article_article, ta.article_breaks, article_datestamp, tac.article_cat_access,
tu.user_id, tu.user_name, tu.user_status
FROM ".DB_ARTICLES." ta
INNER JOIN ".DB_ARTICLE_CATS." tac ON ta.article_cat=tac.article_cat_id
LEFT JOIN ".DB_USERS." tu ON ta.article_name=tu.user_id
WHERE article_id='".$_GET['item_id']."' AND article_draft='0'"
);
$res = false;
if (dbrows($result)) {
$data = dbarray($result);
if (checkgroup($data['article_cat_access'])) {
$res = true;
$article = str_replace("<--PAGEBREAK-->", "", stripslashes($data['article_article']));
if ($data['article_breaks'] == "y") { $article = nl2br($article); }
echo "".$data['article_subject']."
\n";
echo "".$locale['400'].profile_link($data['user_id'], $data['user_name'], $data['user_status']).$locale['401'].ucfirst(showdate("longdate", $data['article_datestamp']))."\n";
echo "
".$article."\n";
}
}
if (!$res) { redirect("index.php"); }
} elseif ((isset($_GET['type']) && $_GET['type'] == "N") && (isset($_GET['item_id']) && isnum($_GET['item_id']))) {
$result = dbquery(
"SELECT tn.news_subject, tn.news_news, tn.news_extended, tn.news_breaks, tn.news_datestamp, tn.news_visibility,
tu.user_id, tu.user_name, tu.user_status
FROM ".DB_NEWS." tn
LEFT JOIN ".DB_USERS." tu ON tn.news_name=tu.user_id
WHERE news_id='".$_GET['item_id']."' AND news_draft='0'"
);
$res = false;
if (dbrows($result) != 0) {
$data = dbarray($result);
if (checkgroup($data['news_visibility'])) {
$res = true;
$news = stripslashes($data['news_news']);
if ($data['news_breaks'] == "y") { $news = nl2br($news); }
if ($data['news_extended']) {
$news_extended = stripslashes($data['news_extended']);
if ($data['news_breaks'] == "y") { $news_extended = nl2br($news_extended); }
} else {
$news_extended = "";
}
echo "".$data['news_subject']."
\n";
echo "".$locale['400'].profile_link($data['user_id'], $data['user_name'], $data['user_status']).$locale['401'].ucfirst(showdate("longdate", $data['news_datestamp']))."\n";
echo "
".$news."\n";
if ($news_extended) { echo "
\n".$locale['402']."\n
\n$news_extended\n"; }
}
}
if (!$res) { redirect("index.php"); }
} elseif ((isset($_GET['type']) && $_GET['type'] == "F") && (isset($_GET['thread']) && isnum($_GET['thread'])) && !isset($_GET['post'])) {
$posts_per_page = 20;
if (!isset($_GET['rowstart']) || !isnum($_GET['rowstart'])) { $_GET['rowstart'] = 0; }
$result = dbquery(
"SELECT fp.post_message, fp.post_datestamp, fp.post_edittime, fp.post_author, fp.post_edituser,
fu.user_name AS user_name, fu.user_status AS user_status, fe.user_name AS edit_name, fe.user_status AS edit_status,
ft.thread_subject, ff.forum_access
FROM ".DB_THREADS." ft
INNER JOIN ".DB_POSTS." fp ON ft.thread_id = fp.thread_id
INNER JOIN ".DB_FORUMS." ff ON ff.forum_id = ft.forum_id
INNER JOIN ".DB_USERS." fu ON fu.user_id = fp.post_author
LEFT JOIN ".DB_USERS." fe ON fe.user_id = fp.post_edituser
WHERE ft.thread_id=".$_GET['thread']."
ORDER BY fp.post_datestamp
LIMIT ".$_GET['rowstart'].",$posts_per_page"
);
$res = false; $i = 0;
if (dbrows($result)) {
while ($data = dbarray($result)) {
if (checkgroup($data['forum_access'])) {
$res = true;
if ($i == 0) echo $locale['500']." ".$settings['sitename']." :: ".$data['thread_subject']."
\n";
echo "\n";
echo "
".$locale['501'].profile_link($data['post_author'], $data['user_name'], $data['user_status']).$locale['502'].showdate("forumdate", $data['post_datestamp'])."
#".($i+1)."
\n";
echo nl2br(parseubb(parsesmileys($data['post_message'])));
if ($data['edit_name']!='') {
echo "
\n
\n";
echo $locale['503'].profile_link($data['post_edituser'], $data['edit_name'], $data['edit_status']).$locale['502'].showdate("forumdate", $data['post_edittime']);
echo "\n";
}
echo "
\n";
echo "
\n";
$i++;
}
}
}
if (!$res) { redirect("index.php"); }
} elseif ((isset($_GET['type']) && $_GET['type'] == "F") && (isset($_GET['thread']) && isnum($_GET['thread'])) && (isset($_GET['post']) && isnum($_GET['post'])) && (isset($_GET['nr']) && isnum($_GET['nr']))) {
$result = dbquery(
"SELECT fp.post_message, fp.post_datestamp, fp.post_edittime, fp.post_author as post_author, fp.post_edituser,
fu.user_name AS user_name, fu.user_status AS user_status, fe.user_name AS edit_name, fe.user_status AS edit_status,
ft.thread_subject, ff.forum_access
FROM ".DB_THREADS." ft
INNER JOIN ".DB_POSTS." fp ON ft.thread_id = fp.thread_id
INNER JOIN ".DB_FORUMS." ff ON ff.forum_id = ft.forum_id
INNER JOIN ".DB_USERS." fu ON fu.user_id = fp.post_author
LEFT JOIN ".DB_USERS." fe ON fe.user_id = fp.post_edituser
WHERE ft.thread_id=".$_GET['thread']." AND fp.post_id = ".$_GET['post']
);
$res = false;
if (dbrows($result)) {
$data = dbarray($result);
if (checkgroup($data['forum_access'])) {
$res = true;
echo $locale['500']." ".$settings['sitename']." :: ".$data['thread_subject']."
\n";
echo "\n";
echo "
".$locale['501'].profile_link($data['post_author'], $data['user_name'], $data['user_status']).$locale['502'].showdate("forumdate", $data['post_datestamp'])."
#".$_GET['nr']."
\n";
echo nl2br(parseubb(parsesmileys($data['post_message'])));
if ($data['edit_name'] != "") {
echo "
\n
\n";
echo $locale['503'].profile_link($data['post_edituser'], $data['edit_name'], $data['edit_status']).$locale['502'].showdate("forumdate", $data['post_edittime']);
echo "\n";
}
echo "
\n";
echo "
\n";
}
}
if (!$res) { redirect("index.php"); }
} elseif (isset($_GET['type']) && $_GET['type'] == "T" && $settings['enable_terms'] == 1) {
echo "".$settings['sitename']." ".$locale['600']."
\n";
echo "".$locale['601']." ".ucfirst(showdate("longdate", $settings['license_lastupdate']))."\n";
echo "
".stripslashes($settings['license_agreement'])."\n";
} else {
redirect("index.php");
}
echo "\n\n";
if ($settings['login_method'] == "sessions") {
session_write_close();
}
if (ob_get_length() !== FALSE){
ob_end_flush();
}
mysql_close($db_connect);
?>