1){ // Forum List addnav($menu, $lForumList, "$forum_page.$ext?f=$f$GetVars"); } // Go To Top addnav($menu, $lGoToTop, "$list_page.$ext?f=$num$GetVars"); // New Topic addnav($menu, $lStartTopic, "$post_page.$ext?f=$num$GetVars"); // Search addnav($menu, $lSearch, "$search_page.$ext?f=$num$GetVars"); // Log Out/Log In if(!empty($phorum_auth)){ // Log Out addnav($menu, $lLogOut, "login.$ext?f=$f&logout=1$GetVars"); //The profile of the logged in user if($id!=$phorum_user["id"]) addnav($menu, $lMyProfile, "profile.$ext?f=$f&id=$phorum_user[id]$GetVars"); } else{ // Register addnav($menu, $lRegisterLink, "register.$ext?f=$f$GetVars"); // Log In addnav($menu, $lLogIn, "login.$ext?f=$f$GetVars"); } $nav=getnav($menu); ////////////////////////// // END NAVIGATION // ////////////////////////// if($mod == "update") { if(!get_magic_quotes_gpc()){ $author = addslashes($author); $email = addslashes($email); $subject = addslashes($subject); $attachment = @addslashes($attachment); $body = addslashes($body); } if($html){ $body="$body"; } if($bold){ $subject="$subject"; $author="$author"; } if(is_array($attachments)){ $del=array(); while(list($key, $name)=each($attachments)){ if(isset($del_attachment[$key])){ $del[]=$key; unlink("$AttachmentDir/".$PHORUM['ForumTableName']."/$id"."_$key".strtolower(strrchr($name, "."))); } elseif($new_attachment[$key]!=$name){ $SQL="Update ".$PHORUM['ForumTableName']."_attachments set filename='$new_attachment[$key]' where id=$key"; $q->query($DB, $SQL); } } if(count($del)>0){ $SQL="Delete from ".$PHORUM['ForumTableName']."_attachments where id in (".implode(",", $del).")"; $q->query($DB, $SQL); } } $sSQL="Update $ForumTableName set author='$author', email='$email', subject='$subject' where id=$id"; $q->query($DB, $sSQL); $sSQL="Update ".$PHORUM['ForumTableName']."_bodies set body='$body' where id=$id"; $q->query($DB, $sSQL); header("Location: $read_page.$ext?f=$num&i=$i&t=$t$GetVars"); exit; } if(!empty($i)){ $sSQL="Select author, email, subject, body from ".$PHORUM['ForumTableName']." as t, ".$PHORUM['ForumTableName']."_bodies as b where t.id=b.id and t.id=$i"; $q->query($DB, $sSQL); $mtext = $q->getrow(); if(substr($mtext["body"], 0, 6)==""){ $mtext["body"]=ereg_replace("", "", $mtext["body"]); $html=1; } else { $html=0; } if(substr($mtext["subject"], 0, 3)==""){ $mtext["subject"]=ereg_replace("", "", $mtext["subject"]); $mtext["author"]=ereg_replace("", "", $mtext["author"]); $bold=1; } else { $bold=0; } } include phorum_get_file_name("header"); // is there a message for the user? if(!empty($msg)) { print "$msg"; } ?>

>

> query($DB, $SQL); while($rec=$q->getrow()){ ?> ]" value=""> >  nowrap> : >"> nowrap> : >"> nowrap> : >" size="10" style="width: 300px;" class="TEXT"> >  []: >]" value="" size="10" style="width: 300px;" class="TEXT">  ]" VALUE="true"> delete attachment colspan=2 width="100%" nowrap align="left"> <?php echo htmlspecialchars($mtext["body"]); ?> colspan="2" align="RIGHT">