[R45phpbbmods-checkins] user_search/admin admin_user_search.php,1.9,1.10
Brought to you by:
rasadam
Menu
▾
▴
[R45phpbbmods-checkins] user_search/admin admin_user_search.php,1.9,1.10
|
From: Adam A. <ra...@us...> - 2004-12-31 13:15:00
|
Update of /cvsroot/r45phpbbmods/user_search/admin In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv22804/admin Modified Files: admin_user_search.php Log Message: Index: admin_user_search.php =================================================================== RCS file: /cvsroot/r45phpbbmods/user_search/admin/admin_user_search.php,v retrieving revision 1.9 retrieving revision 1.10 diff -C2 -d -r1.9 -r1.10 *** admin_user_search.php 31 Dec 2004 05:26:54 -0000 1.9 --- admin_user_search.php 31 Dec 2004 13:14:49 -0000 1.10 *************** *** 392,398 **** { case 'search_username': ! $base_url .= "&search_username=true&username=".rawurlencode($username); ! $text = sprintf($lang['Search_for_username'], strip_tags(htmlspecialchars($username))); if(!$regex) --- 392,398 ---- { case 'search_username': ! $base_url .= "&search_username=true&username=".rawurlencode(stripslashes($username)); ! $text = sprintf($lang['Search_for_username'], strip_tags(htmlspecialchars(stripslashes($username)))); if(!$regex) *************** *** 409,412 **** --- 409,416 ---- } } + else + { + $username = preg_replace('/\\\\\\\(?<!\'|"|NULL)/', '\\', $username); + } if($username == '') *************** *** 437,443 **** break; case 'search_email': ! $base_url .= "&search_email=true&email=".rawurlencode($email); ! $text = sprintf($lang['Search_for_email'], strip_tags(htmlspecialchars($email))); if(!$regex) --- 441,447 ---- break; case 'search_email': ! $base_url .= "&search_email=true&email=".rawurlencode(stripslashes($email)); ! $text = sprintf($lang['Search_for_email'], strip_tags(htmlspecialchars(stripslashes($email)))); if(!$regex) *************** *** 454,458 **** } } ! if($email == '') { --- 458,466 ---- } } ! else ! { ! $email = preg_replace('/\\\\\\\(?<!\'|"|NULL)/', '\\', $email); ! } ! if($email == '') { *************** *** 482,491 **** break; case 'search_ip': ! $base_url .= "&search_ip=true&ip_address=".rawurlencode($ip_address); // Remove any whitespace $ip_address = trim($ip_address); ! $text = sprintf($lang['Search_for_ip'], strip_tags(htmlspecialchars($ip_address))); unset($users); --- 490,499 ---- break; case 'search_ip': ! $base_url .= "&search_ip=true&ip_address=".rawurlencode(stripslashes($ip_address)); // Remove any whitespace $ip_address = trim($ip_address); ! $text = sprintf($lang['Search_for_ip'], strip_tags(htmlspecialchars(stripslashes($ip_address)))); unset($users); *************** *** 634,638 **** break; case 'search_joindate': ! $base_url .= "&search_joindate=true&date_type=".rawurlencode($date_type)."&date_day=".rawurlencode($date_day)."&date_month=".rawurlencode($date_month)."&date_year=".rawurlencode($date_year); $date_type = trim(strtolower($date_type)); --- 642,646 ---- break; case 'search_joindate': ! $base_url .= "&search_joindate=true&date_type=".rawurlencode($date_type)."&date_day=".rawurlencode($date_day)."&date_month=".rawurlencode($date_month)."&date_year=".rawurlencode(stripslashes($date_year)); $date_type = trim(strtolower($date_type)); *************** *** 664,668 **** } ! $text = sprintf($lang['Search_for_date'], strip_tags(htmlspecialchars($date_type)), $date_year, $date_month, $date_day); $time = mktime(0,0,0,$date_month, $date_day, $date_year); --- 672,676 ---- } ! $text = sprintf($lang['Search_for_date'], strip_tags(htmlspecialchars(stripslashes($date_type))), $date_year, $date_month, $date_day); $time = mktime(0,0,0,$date_month, $date_day, $date_year); *************** *** 731,735 **** $postcount_value = trim(strtolower($postcount_value)); ! $base_url .= "&search_postcount=true&postcount_type=".rawurlencode($postcount_type)."&postcount_value=".rawurlencode($postcount_value); switch($postcount_type) --- 739,743 ---- $postcount_value = trim(strtolower($postcount_value)); ! $base_url .= "&search_postcount=true&postcount_type=".rawurlencode($postcount_type)."&postcount_value=".rawurlencode(stripslashes($postcount_value)); switch($postcount_type) *************** *** 808,814 **** break; case 'search_userfield': ! $base_url .= "&search_userfield=true&userfield_type=".rawurlencode($userfield_type)."&userfield_value=".rawurlencode($userfield_value); ! $text = strip_tags(htmlspecialchars($userfield_value)); if(!$regex) --- 816,822 ---- break; case 'search_userfield': ! $base_url .= "&search_userfield=true&userfield_type=".rawurlencode($userfield_type)."&userfield_value=".rawurlencode(stripslashes($userfield_value)); ! $text = strip_tags(htmlspecialchars(stripslashes($userfield_value))); if(!$regex) *************** *** 825,828 **** --- 833,840 ---- } } + else + { + $userfield_value = preg_replace('/\\\\\\\(?<!\'|"|NULL)/', '\\', $userfield_value); + } if($userfield_value == '') *************** *** 897,901 **** $lastvisited_days = intval($lastvisited_days); ! $base_url .= "&search_lastvisited=true&lastvisited_type=".rawurlencode($lastvisited_type)."&lastvisited_days=".rawurlencode($lastvisited_days); $lastvisited_seconds = ( time() - ( ( ( $lastvisited_days * 24 ) * 60 ) * 60 ) ); --- 909,913 ---- $lastvisited_days = intval($lastvisited_days); ! $base_url .= "&search_lastvisited=true&lastvisited_type=".rawurlencode(stripslashes($lastvisited_type))."&lastvisited_days=".rawurlencode($lastvisited_days); $lastvisited_seconds = ( time() - ( ( ( $lastvisited_days * 24 ) * 60 ) * 60 ) ); *************** *** 932,938 **** break; case 'search_language': ! $base_url .= "&search_language=true&language_type=".rawurlencode($language_type); ! $language_type = trim(strtolower($language_type)); if($language_type == '') --- 944,950 ---- break; case 'search_language': ! $base_url .= "&search_language=true&language_type=".rawurlencode(stripslashes($language_type)); ! $language_type = trim(strtolower(stripslashes($language_type))); if($language_type == '') *************** *** 953,958 **** break; case 'search_timezone': ! $base_url .= "&search_timezone=true&timezone_type=".rawurlencode($timezone_type); ! $text = sprintf($lang['Search_for_timezone'], strip_tags(htmlspecialchars($timezone_type))); $timezone_type = intval($timezone_type); --- 965,970 ---- break; case 'search_timezone': ! $base_url .= "&search_timezone=true&timezone_type=".rawurlencode(stripslashes($timezone_type)); ! $text = sprintf($lang['Search_for_timezone'], strip_tags(htmlspecialchars(stripslashes($timezone_type)))); $timezone_type = intval($timezone_type); *************** *** 968,972 **** break; case 'search_style': ! $base_url .= "&search_style=true&style_type=".rawurlencode($style_type); $style_type = intval($style_type); --- 980,984 ---- break; case 'search_style': ! $base_url .= "&search_style=true&style_type=".rawurlencode(stripslashes($style_type)); $style_type = intval($style_type); *************** *** 1001,1005 **** break; case 'search_moderators': ! $base_url .= "&search_moderators=true&style_type=".rawurlencode($moderators_forum); $moderators_forum = intval($moderators_forum); --- 1013,1017 ---- break; case 'search_moderators': ! $base_url .= "&search_moderators=true&moderators_forum=".rawurlencode(stripslashes($moderators_forum)); $moderators_forum = intval($moderators_forum); *************** *** 1045,1049 **** $misc = trim(strtolower($misc)); ! $base_url .= "&search_misc=true&misc=".rawurlencode($misc); switch($misc) --- 1057,1061 ---- $misc = trim(strtolower($misc)); ! $base_url .= "&search_misc=true&misc=".rawurlencode(stripslashes($misc)); switch($misc) |
