* @link http://www.pioder.pl/ * @license see LICENSE.txt **/ if ( !defined('IN_uF') ) { die('Hacking attempt'); } $msg =''; if ((isset($_POST['textedit'])) and (isset($_POST['nmsg'])) and (isset($_POST['username']))) { if (($_POST['textedit'] != '') and ($_POST['nmsg']!='') and ($_POST['username']!='') and (strlen($_POST['textedit'])>10) and (strlen($_POST['nmsg'])>5)) { $nick = strip_tags($_POST['username']); $sql = "SELECT * FROM `".USERS_TABLE."` WHERE `nick`='$nick'"; $result = DataBase::fetch(DataBase::sql_query($sql, CRITICAL,'Could not obtain user information.')); if ($result['u_id']!='') { $cntu = Pms::PMCnt($result['u_id']); if ($cntu[0] < $forum_config['pm_inbox_max']) { //antiflood lock if (isset($_COOKIE['antiflood_time'])) { if ($_COOKIE['antiflood_time']>$_SERVER['REQUEST_TIME']) { message_forum($lng['antiflood_enabled'],$_SERVER['REQUEST_URI']); } } else { setcookie('antiflood_time',($_SERVER['REQUEST_TIME'] + $forum_config['time_antiflood'])); $_POST['textedit'] = Secure::TagsReplace($_POST['textedit']); $_POST['nmsg'] = strip_tags($_POST['nmsg']); Pms::SendMessage($_POST['textedit'],$_POST['nmsg'], $_POST['username']); message_forum($lng['post_is_saved'],'pms.php'); } } else { $message = $lng['pm_inbox_full']; $msg = './skins/'.$default_skin.'/post_error_body.tpl'; } } else { $message = $lng['no_user']; $msg = './skins/'.$default_skin.'/post_error_body.tpl'; } } else { $message = $lng['perror_1']; $msg = './skins/'.$default_skin.'/post_error_body.tpl'; } } else { if (isset($_GET['id'])) { Secure::user_exists(intval($_GET['id'])); $_POST['username'] = User::UserInformation(intval($_GET['id']), 'nick'); } else { $_POST['username'] = ''; } $_POST['nmsg']=''; $_POST['textedit']=''; } $cnt = Pms::PMCnt(); //add skin variables $skin = array( 'smiles'=>Post::SmilesShow(), //labels 'luser'=>$lng['user'], 'lsmiles'=>$lng['smiles'], 'lmsgname'=>$lng['msgname'], 'lmsg'=>$lng['message'], 'lsave'=>$lng['save'], 'lreset'=>$lng['reset'], 'lwritemsg'=>$lng['write_pm'], 'action'=>$_SERVER['REQUEST_URI'], 'lsentbox_full'=>($cnt[1]==$forum_config['pm_sentbox_max']) ? $lng['pm_sentbox_full'] : '' ); $skin = array_push_assoc($skin, GenerateHeader($lng['lpm'].': '.$lng['write_pm'], ''.$lng['lpm'].' » '.$lng['write_pm'])); if ($msg=='') { $msg='./skins/'.$default_skin.'/blank.tpl'; } //do it! require('./skins/'.$default_skin.'/overall_header.tpl'); require('./skins/'.$default_skin.'/pms_new_body.tpl'); if(RANK=='2') { $skin['pa_link']=''.$lng['pa_link'].''; } else { $skin['pa_link']=''; } $stop = TimeGeneration(); $skin['queries'] = ShowQueries($start, $stop); require('./skins/'.$default_skin.'/overall_footer.tpl'); ?>