Файл: wml/shistory.php
Строк: 148
<?php
$r=rand(0,10000);
header ("Content-type:text/vnd.wap.wml; charset=utf-8");
print "<?xml version="1.0" encoding="utf-8"?>";
print '<!DOCTYPE wml PUBLIC "-//WAPFORUM//DTD WML 1.1//EN"'.
' "http://www.wapforum.org/DTD/wml_1.1.xml">'.
'<wml><head><meta http-equiv="Cache-Control" content="no-cache" forua="true"/></head>';
include "./ini.php";
mysql_query ("select * from bannedib WHERE ci='$ci' AND (ip = '".getenv(REMOTE_ADDR)."')and(browser = '".getenv(HTTP_USER_AGENT)."')");
if(mysql_affected_rows()!=0){include "b.php";}
$query_settings = @mysql_query("select * from `".$px.$stable."` where var='$room' and mod='room' and ci='$ci';");
$settings = @mysql_fetch_array($query_settings);
$timenow = strftime("%H:%M");
$login = autorize();
$num_msgs = $login['nmsgs'];
$time_update = $login['tupdate'];
if(empty($num_msgs)) $num_msgs = 5;
if(empty($time_update)) $time_update = 300;
$q_letters_in = @mysql_query("select count(*) from `".$px.$ltable."` where `to_user`='".$login['login']."' and ci='".$ci."' and `new`=1;");
$num_in=@mysql_fetch_array($q_letters_in);
$pr_count = @mysql_query("SELECT count(*) FROM `".$px.$utable."` WHERE ltime>'".intval(time()-$offline)."' AND room='$room' and ci= '$ci';");
if($mod=="privat")
print '<card id="main" title="'.$settings['val2'].'-'.$timenow.'" ontimer="sroom.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&room='.$room.'&mod=privat&r='.$r.'"><timer value="'.$time_update.'0"/>';
else
print '<card id="main" title="'.$settings['val2'].'-'.$timenow.'" ontimer="sroom.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&room='.$room.'&r='.$r.'"><timer value="'.$time_update.'0"/>';
print '<do type="options" name="privat" label="'.$lang['privat'].'"><go href="./sroom.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&room='.$room.'&mod=privat" method="get"/></do>'.
'<do type="options" name="letters" label="Письма('.$num_in['count(*)'].')"><go href="letters/inbox.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&r='.$r.'" method="get"/></do>'.
'<do type="options" name="whowhere" label="'.$lang['who_online'].'"><go href="online.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&room='.$room.'&r='.$r.'" method="get"/></do>'.
'<p>';
if(empty($start)) $start = 0;
$start=intval($start);
if($start<0) $start=0;
$ignor = "";
$qi = @mysql_query("select * from `".$px.$itable."` where loginid=".$login['id']." and ci='$ci';");
while($idata = @mysql_fetch_array($qi)) {
$ignor = "".$idata['user']."";
}
if ($ignor == "");
($ignor == "1");
if($room=="unlim") {
$arr = @mysql_query("select * from `".$px.$untable."` WHERE (pr_to = '' AND pr_from = '' and ci='$ci') OR (pr_from = '".$login['login']."' OR pr_to = '".$login['login']."' and ci='$ci' ) order by time desc;");
$que = @mysql_query("select * from `".$px.$untable."` WHERE (pr_to = '' AND pr_from = '' and ci='$ci') OR (pr_from = '".$login['login']."' OR pr_to = '".$login['login']."' and ci='$ci') order by time desc limit $start,$num_msgs;");
} else {
$arr = @mysql_query("select * from `".$px.$mtable."` WHERE room = '$room' AND ((pr_to = '' AND pr_from = '' and ci='$ci') OR (pr_from = '".$login['login']."' OR pr_to = '".$login['login']."' and ci='$ci')) order by time desc;");
$que = @mysql_query("select * from `".$px.$mtable."` WHERE room = '$room' AND ((pr_to = '' AND pr_from = '' and ci='$ci') OR (pr_from = '".$login['login']."' OR pr_to = '".$login['login']."' and ci='$ci')) order by time desc limit $start,$num_msgs;");
}
$i = @mysql_num_rows($arr);
print "<small><a href="sroom.php?ci=$ci&id=$id&pass=$pass&room=$room&ref=$rand">".$lang['update']."</a></small><br/>";
print '<small><a href="sroom.php?ci='.$ci.'&id='.$id.'&pass='.$pass.'&room='.$room.'&mod=privat&r='.$r.'">'.$lang['privat'].'</a></small><br/>';
print "<small><anchor>".$lang['say']."<go href="sroom.php?ci=$ci&id=$id&pass=$pass&room=$room&ref=$rand#say" method="get"/></anchor></small>";
while($data = @mysql_fetch_array($que)) {
$dblogin = $data['login'];
$dbmsg = $data['msg'];
$dbtime = date("H.i", $data['time']);
$pr_to = $data['pr_to'];
$pr_from = $data['pr_from'];
$qdblogin = @mysql_query("select * from `".$px.$utable."` where login='$dblogin' and ci='$ci'");
$db = @mysql_fetch_array($qdblogin);
if(!empty($pr_to)&&!empty($pr_from)) print "<br/><b><a href="user.php?ci=$ci&id=$id&pass=$pass&room=$room&dbid=".$db['id']."&r=$r">$dblogin</a>[!]</b> [$dbtime]<br/>$dbmsg";
else
print "<br/><small><b><a href="suser.php?ci=$ci&id=$id&pass=$pass&room=$room&dbid=".$db['id']."&r=$r">$dblogin</a></b> [$dbtime]</small><br/><small>$dbmsg</small>";
}
if($start!=0)
print "<br/><small><a href="shistory.php?ci=$ci&id=$id&pass=$pass&room=$room&mod=$mod&r=$r&start=".($start-$num_msgs)."">".htmlspecialchars("<<<")."</a></small>";
if($i>$start+$num_msgs)
print "<br/><small><a href="shistory.php?ci=$ci&id=$id&pass=$pass&room=$room&mod=$mod&r=$r&start=".($start+$num_msgs)."">".htmlspecialchars(">>>")."</a></small>";
print "<br/><small><a href="enter.php?ci=$ci&id=$id&pass=$pass">".$lang['holl']."</a></small><br/>";
print '</p>'.
'</card>'.
'</wml>';
ob_end_flush();
@mysql_close();
?>