There was an error while connecting to the database.
Check your database settings.'; //Database error message return $db[$variable]; } // LANGUAGE VARIABLES function l($variable) { if (s('language') != 'EN' && file_exists('snews_'.s('language').'.php')) {include('snews_'.s('language').'.php');} else { $l = array(); #SITE LANGUAGE VARIABLES $l['home'] = 'Home'; $l['home_sef'] = 'home'; //home SEF $l['archives'] = 'Archive'; $l['rss_feed'] = 'RSS Feed'; $l['contact'] = 'Contact'; $l['sitemap'] = 'Site Map'; $l['divider'] = '·'; //divider character $l['image_folder'] = 'img'; #categories $l['cat_listSEF'] = 'home,archives,contact,sitemap,rss,gallery,login,administration,add_category,add_article,article_new,side_new,page_new,categories,articles,extra_contents,pages,settings,files,logout'; //SEF links of the hardcoded categories $l['month_names'] = 'January, February, March, April, May, June, July, August, September, October, November, December'; #search $l['search_keywords'] = 'Search Keywords'; $l['search_button'] = 'Search'; $l['search_results'] = 'Search results'; $l['charerror'] = 'At least 4 characters are needed to perform the search.'; $l['noresults'] = 'There are no results for query '; $l['resultsfound'] = 'results were found for query'; #comments $l['addcomment'] = 'Write a comment'; $l['comments'] = 'Comments'; $l['comment'] = 'Comment'; $l['page'] = 'Page'; #paginator $l['first_page'] = 'First'; $l['last_page'] = 'Last'; $l['previous_page'] = 'Previous'; $l['next_page'] = 'Next'; $l['name'] = 'Name'; #comments $l['comment_sent'] = 'Your comment has been sent'; $l['comment_sent_approve'] = 'Your comment is waiting moderation.'; $l['comment_error'] = 'Your comment was not sent'; $l['comment_back'] = 'Back to your comment'; $l['no_comment'] = 'This article hasn\'t been commented yet.'; $l['ce_reasons'] = 'Possible reasons: You left blank column or the comment is too short.'; $l['url'] = 'Website URL'; #contact $l['email'] = 'Email'; $l['message'] = 'Message'; $l['contact_sent'] = 'Thank you, your message has been sent.'; $l['contact_not_sent'] = 'Your message was not sent'; $l['message_error'] = 'Possible reasons: You left name or message field blank, or email address does not exist.'; #generic links $l['backhome'] = 'Back home'; $l['backarticle'] = 'Back to article'; $l['read_more'] = 'Read more'; #contents error $l['article_not_exist'] = 'Requested contents does not exist'; $l['category_not_exist'] = 'Requested category does not exist'; #ADMINISTRATION LANGUAGE VARIABLES #administration $l['administration'] = 'Administration'; $l['manage'] = 'Manage'; $l['articles'] = 'Articles'; $l['extra_contents'] = 'Extra contents'; $l['pages'] = 'Pages'; #basic buttons $l['view'] = 'View'; $l['add_new'] = 'Add new'; $l['article_new'] = 'New Article'; $l['side_new'] = 'New Extra Contents'; $l['page_new'] = 'New Page'; $l['edit'] = 'Edit'; $l['delete'] = 'Delete'; $l['save'] = 'Save'; $l['submit'] = 'Submit'; #settings $l['settings'] = 'Settings'; $l['site_settings'] = 'Site'; #login $l['login_status'] = 'Login status'; $l['login'] = 'Login'; $l['username'] = 'Username'; $l['password'] = 'Password'; $l['logged_in'] = 'You are Logged In'; $l['log_out'] = 'Logging out'; $l['logout'] = 'Logout'; #categories $l['categories'] = 'Categories'; $l['category'] = 'Category'; $l['appear_category'] = 'Appear only on Category'; $l['appear_page'] = 'Appear only on Page'; $l['add_category'] = 'New category'; $l['category_order'] = 'Category order'; $l['order_category'] = 'Reorder'; $l['description'] = 'Description'; $l['publish_category'] = 'Publish category'; $l['status'] = 'Status:'; $l['published'] = 'Published'; $l['unpublished'] = 'Unpublished'; #articles $l['articles'] = 'Articles'; $l['article'] = 'Article'; $l['newarticle'] = 'New Article'; $l['article_date'] = 'Article date (enter a higher date for future posting)'; $l['preview'] = 'Preview'; $l['view'] = 'View'; $l['paginator'] = 'p'; #customize article $l['customize'] = 'Customize'; $l['display_title'] = 'Display title'; $l['display_info'] = 'Display info line (read more/ comments/ date)'; $l['server_time'] = 'Time on Server'; $l['future_posting'] = 'Future posting'; $l['publish_date'] = 'Publish Date'; $l['day'] = 'Day'; $l['month'] = 'Month'; $l['year'] = 'Year'; $l['hour'] = 'Hour'; $l['minute'] = 'Minute'; $l['publish_article'] = 'Publish article'; $l['operation_completed'] = 'Operation completed succesfully!'; $l['deleted_success'] = 'Succesfuly deleted'; #files $l['files'] = 'Files'; $l['attach_image'] = 'Attach image'; $l['upload_image'] = 'Upload Image'; $l['upload'] = 'Upload'; $l['no_image'] = 'No image'; $l['image_error'] = 'Image could not be copied'; $l['deleted'] = 'File deleted!'; #comments $l['comments'] = 'Comments'; $l['enable_commenting'] = 'Enable comments'; $l['edit_comment'] = 'Edit comment'; $l['freeze_comments'] = 'Freeze comments'; $l['unfreeze_comments'] = 'Unfreeze comments'; $l['enable'] = 'Enable'; $l['approved'] = 'Approved'; $l['enabled'] = 'Enabled'; $l['disabled'] = 'Disabled'; #article structure $l['title'] = 'Title'; $l['sef_title'] = 'Search engine friendly title (will be used as link to the article)'; $l['sef_title_cat'] = 'Search engine friendly title (will be used as link to the category)'; $l['text'] = 'Text'; $l['position'] = 'Position'; $l['display_page'] = 'Page'; $l['center'] = 'Center'; $l['contents'] = 'Contents'; $l['side'] = 'Extra contents'; #errors $l['error_not_logged_in'] = 'You are not currently logged in and so are not allowed to do that.'; $l['admin_error'] = 'Error'; $l['back'] = 'Back'; $l['err_TitleEmpty'] = 'The Title cannot be empty.'; $l['err_TitleExists'] = 'The Title already exists.'; $l['err_SEFEmpty'] = 'The SEF Title cannot be empty.'; $l['err_SEFExists'] = 'The SEF Title already exists.'; $l['err_SEFIllegal'] = 'The SEF title you entered contains illegal characters.
You can only use a-z 0-9_-
A new SEF url has been selected from the title. Please check it.'; $l['errNote'] = 'Be carefull: Due to the fact that when something goes wrong most posting options are lost, please check them before posting again.'; $l['warning_delete'] = 'Are you sure you want to delete this?'; $l['image_url'] = 'Enter Image URL'; $l['image_alt'] = 'Enter Image Alt'; $l['file_url'] = 'Enter File URL'; #settings form $l['a_true'] = 'True'; $l['a_false'] = 'False'; $l['none'] = "None"; $l['change_up'] = 'Change Username and Password'; $l['newer_top'] = 'Newer on top'; $l['newer_bottom'] = 'Newer on bottom'; $l['pass_mismatch'] = 'Passwords do not match'; $l['a_username'] = 'Username'; $l['a_password'] = 'Password'; $l['a_password2'] = 'Repeat password'; $l['a_prefix'] = 'Database prefix'; $l['a_home'] = 'Home title'; $l['a_display_page'] = "Use Page as Home Page"; $l['a_display_new_on_home'] = 'Display new Articles on home'; $l['a_display_pagination'] = 'Display Pagination on articles'; $l['a_website_title'] = 'Website Title'; $l['a_home_sef'] = 'Home SEF (used as link to Home)'; $l['a_website_email'] = 'Email'; $l['a_description'] = 'Default description META Tag (for search engines)'; $l['a_keywords'] = 'Default keywords META Tag (keywords separated by comma)'; $l['a_contact_info'] = 'Contact info'; $l['a_contact_subject'] = 'Contact Form Subject'; #file inclusion $l['a_word_filter_file'] = 'Badwords filter file'; $l['a_word_filter_change'] = 'Badwords replacement word'; $l['a_word_filter_enable'] = 'Enable Badwords filter'; $l['file_include_extensions'] = 'php,txt,inc'; $l['error_file_name'] = '
Include Error: Forbidden file name
'; $l['error_file_exists'] = '
Include Error: File doesn\'t exists
'; $l['a_num_categories'] = 'Display number of articles next to a category'; $l['charset'] = 'Default charset'; $l['a_time_settings'] = 'Time and Locale settings'; $l['a_date_format'] = 'Date Format'; $l['a_comments_order'] = 'Comments Order'; $l['a_comment_limit'] = 'Comment results per page'; $l['a_rss_limit'] = 'RSS Articles Limit'; $l['a_approve_comments'] = 'Approve comments before publishing'; $l['a_approve'] = 'Approve'; $l['a_article_limit'] = 'Articles per page limit'; $l['a_language'] = 'sNews Language'; $l['description_meta'] = 'Description META Tag (for search engines)'; $l['keywords_meta'] = 'Keywords META Tag (keywords separated by comma)'; $l['all'] = 'All'; } return $l[$variable]; } // INFO LINE TAGS (readmore, comments, date) function tags($tag) { $tags = array(); $tags['infoline'] = '

,readmore,comments,date,edit,

'; $tags['comments'] = '
,

,name, on ,date,edit,

,

,comment,

,
'; return $tags[$tag]; } /*** END OF SETTINGS & VARIABLES, EDIT BELOW THIS LINE ONLY IF YOU KNOW WHAT YOU'RE DOING ***/ // SITE SETTINGS - grab settings from database function s($variable) { $query = "SELECT value FROM ".db('prefix')."settings WHERE name = '$variable'"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) {$value = $r['value'];} return $value; } // STARTUP function snews_startup() { connect_to_db(); if (get_id('category') == "rss") { rss(); die; } update_articles(); if (isset($_POST['Loginform']) == 'True') { if (clean($_POST['uname']) == s('username') && md5(clean($_POST['pass'])) == s('password')) { $_SESSION[db('website').'Logged_In'] = 'True'; $_SESSION['uname'] = s('username'); $_SESSION['Website'] = db('website'); }}} snews_startup(); // TITLE function title() { echo ''; $categorySEF = get_id('category'); $articleSEF = get_id('article'); $categoryName = retrieve('name', 'categories', 'seftitle', $categorySEF); $articleTitle = retrieve('title', 'articles', 'seftitle', $articleSEF); $title = s('website_title'); if (!empty($categoryName)) {$title .= ' '.l('divider').' '.$categoryName;} if (!empty($articleTitle)) {$title .= ' '.l('divider').' '.$articleTitle;} echo ''.$title.''; echo ''; if (!empty($articleSEF)) { $query = "SELECT * FROM ".db(prefix)."articles WHERE seftitle = '$articleSEF'"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) {$dmeta = $r['description_meta']; $kmeta = $r['keywords_meta'];} } echo ''; echo ''; if (isset($_SESSION[db('website').'Logged_In'])) {js();} } //BREADCRUMBS function breadcrumbs() { $link = ''.l('administration').' '.l('divider').' ';} $categorySEF = get_id('category'); $articleSEF = get_id('article'); $home = s('home_sef'); echo (!empty($categorySEF) || $categorySEF == $home || !empty($articleSEF)) ? $link.'" title="'.l('home').'">'.l('home').'' : l('home'); $categoryName = retrieve('name', 'categories', 'seftitle', $categorySEF); if (!empty($categoryName)) { echo ' '.l('divider').' '.(!empty($articleSEF) ? $link.$categorySEF.'/" title="'.$categoryName.'">'.$categoryName.'' : $categoryName); } $articleTitle = retrieve('title', 'articles', 'seftitle', $articleSEF); if (!empty($articleTitle)) {echo ' '.l('divider').' '.$articleTitle;} if (check_category($categorySEF) == true && $categorySEF != $home && $categorySEF != 'administration') {echo ' '.l('divider').' '.l($categorySEF);} } // LOGIN LOGOUT LINK function login_link() { $login = ''.l('administration').'' : 'login/" title="'.l('login').'">'.l('login').''; $login .= ''; echo $login; } // DISPLAY CATEGORIES function categories() { $categorySEF = get_id('category'); echo '
  • '.l('home').'
    • '; $query = "SELECT * FROM ".db('prefix')."categories WHERE published = 'YES' ORDER BY catorder ASC"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) { $calc_num_query = "SELECT * FROM ".db('prefix')."articles WHERE position = 1 AND category = $r[id]"; $cm_result = mysql_query($calc_num_query); $num_rows = mysql_num_rows($cm_result); if ($num_rows > 0) { $category_title = $r['seftitle']; $class = $category_title == $categorySEF ? ' class="current"' : ''; echo '
  • '.$r['name']; echo s('num_categories') == 'on' ? ' ('.$num_rows.')' : ''; echo '
    • '; } } } // DISPLAY PAGES function pages() { $categorySEF = get_id('category'); $pageSEF = get_id('article'); $home = s('home_sef'); $class = (empty($categorySEF) || $categorySEF == $home && empty($pageSEF)) ? ' class="current"' : ''; echo '
  • '.l('home').'
    • '; $class = ($categorySEF == 'archives') ? ' class="current"' : ''; echo '
  • '.l('archives').'
    • '; $query = "SELECT * FROM ".db('prefix')."articles WHERE position = 3 ORDER BY id"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) { $class = ($pageSEF == $r['seftitle'])? ' class="current"' : ''; if ($r['id'] != s('display_page')) {echo '
  • '.$r['title'].'
    • ';} } $class = ($categorySEF == 'contact') ? ' class="current"': ''; echo '
  • '.l('contact').'
    • '; $class = ($categorySEF == 'sitemap') ? ' class="current"': ''; echo '
  • '.l('sitemap').'
    • '; } //EXTRA CONTENT function extra() { $categorySEF = get_id('category'); $categoryId = (check_category($categorySEF) == true || empty($categorySEF) || $categorySEF == s('home_sef')) ? 0 : retrieve('id', 'categories', 'seftitle', $categorySEF); $pageSEF = get_id('article'); $pageId = (empty($categorySEF)) ? 0 : retrieve('id', 'articles', 'seftitle', $pageSEF); $query = "SELECT * FROM ".db('prefix')."articles WHERE SUBSTRING(position, 1, 1) = '2' AND published = 1 ORDER BY id DESC"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) { $pos = $r['position']; $pos_depend = substr($pos, 1, 1); $pos_artID = substr($pos, 2); switch (true) { case ($pos_depend == 0 && $categoryId == 0): $print = true; break; case ($pos_depend == 1 && $categoryId == $pos_artID): $print = true; break; case ($pos_depend == 2 && $pageId == $pos_artID): $print = true; $category = -1; break; case ($pos_depend != 2 && $r['category'] == -1): $print = true; break; default: $print = false; } if ($print == true) { echo $r['displaytitle'] == 'YES' ? '

    '.$r['title'].'

    ' : ''; file_include($r['text'], 99990000); echo $_SESSION[db('website').'Logged_In'] == 'True' ? '

    '.l('edit').'

    ' : ''; }}} // PAGINATOR function paginator($category, $pageNum, $maxPage, $article, $pagePrefix) { $link = ' < '.l('previous_page').' ';} else {$prev = $link.$prefix.($pageNum - 1).'/" title="'.l('page').' '.($pageNum - 1).'">< '.l('previous_page').' ';} $first = $goTo.'" title="'.l('first_page').' '.l('page').'"><< '.l('first_page').''; } else {$prev = '< '.l('previous_page'); $first = '<< '.l('first_page');} if ($pageNum < $maxPage) { $next = $link.$prefix.($pageNum + 1).'/" title="'.l('page').' '.($pageNum + 1).'">'.l('next_page').' > '; $last = $link.$prefix.$maxPage.'/" title="'.l('last_page').' '.l('page').'">'.l('last_page').' >> '; } else {$next = l('next_page').' > '; $last = l('last_page').' >>';} echo '
    '.$first.' '.$prev.' ['.$pageNum.' / '.$maxPage.'] '.$next.' '.$last.'
    '; } // CENTER function center() { if (isset($_GET['category'])) {$id = $action = $_GET['category'];} if (isset($_GET['articleid'])) {$articleid = $_GET['articleid'];} if (isset($_POST['submit_text'])) {processing(); $processed = true;} if (isset($_POST['contactform'])) {contact(); $processed = true;} if (isset($_POST['search_query'])) {search(); $processed = true;} if (isset($_POST['comment'])) {comment('comment_posted'); $processed = true;} if (isset($_POST['Loginform']) == 'True') {administration(); $processed = true;} else if (isset($_GET['action'])) {$action = $_GET['action'];} if (isset($processed) and $processed == true) {unset($action);} switch ($action) { case 'archives': archives(); break; case 'sitemap': sitemap(); break; case 'contact': contact(); break; case 'login': login(); break; case 'administration': if (isset($_SESSION[db('website').'Logged_In'])) {administration();} break; case 'settings': if (isset($_SESSION[db('website').'Logged_In'])) {settings();} break; case 'categories': if (isset($_SESSION[db('website').'Logged_In'])) {admin_categories();} break; case 'add_category': if (isset($_SESSION[db('website').'Logged_In'])) {form_categories();} break; case 'edit_category': if (isset($_SESSION[db('website').'Logged_In'])) {form_categories();} break; case 'articles': if (isset($_SESSION[db('website').'Logged_In'])) {admin_articles('article_view');} break; case 'extra_contents': if (isset($_SESSION[db('website').'Logged_In'])) {admin_articles('side_view');} break; case 'pages': if (isset($_SESSION[db('website').'Logged_In'])) {admin_articles('page_view');} break; case 'article_new': if (isset($_SESSION[db('website').'Logged_In'])) {form_articles('article_new');} break; case 'side_new': if (isset($_SESSION[db('website').'Logged_In'])) {form_articles('side_new');} break; case 'page_new': if (isset($_SESSION[db('website').'Logged_In'])) {form_articles('page_new');} break; case 'edit_article': if (isset($_SESSION[db('website').'Logged_In'])) {form_articles('');} break; case 'editcomment': if (isset($_SESSION[db('website').'Logged_In'])) {edit_comment();} break; case 'files': if (isset($_SESSION[db('website').'Logged_In'])) {files();} break; case 'process': if (isset($_SESSION[db('website').'Logged_In']) && $display_further <> 'NO') {processing();} break; case 'logout': session_destroy(); echo ''; echo '

    '.l('log_out').'

    '; break; default: if ($processed == false) { $article = get_id('article'); $currentPage = strpos($article, l('paginator')) === 0 ? str_replace(l('paginator'), '', $article) : ''; $home = s('home_sef'); $categorySEF = get_id('category'); $categorySEF = empty($categorySEF) ? $home : $categorySEF; $use_cat_id = $categorySEF == $home ? 0 : retrieve('id', 'categories', 'seftitle', $categorySEF); $query_articles = "SELECT * FROM ".db('prefix')."articles WHERE published = 1 AND SUBSTRING(position, 1, 1) != '2'"; if (!empty($article) && empty($currentPage)) {$query_articles .= " AND seftitle = '$article'";} else if ($categorySEF == $home && s('display_page') <> 0) {$id_page = s('display_page'); $query_articles .= " AND id = '$id_page'";} else { if (s('display_new_on_home') == 'on') {$query_articles .= $use_cat_id != 0 ? " AND category = $use_cat_id" : '';} else {$query_articles .= " AND category = $use_cat_id";} $query_articles .= " AND position <> 3 ORDER BY date DESC"; $result_articles = mysql_query($query_articles); $numrows_articles = mysql_num_rows($result_articles); if ($result_articles && $numrows_articles) { $articleCount = s('article_limit'); $article_limit = (empty($articleCount) || $articleCount < 1) ? 100 : $articleCount; $totalPages = ceil($numrows_articles/$article_limit); if (!isset($currentPage) || !is_numeric($currentPage) || $currentPage < 1) {$currentPage = 1;} else if ($currentPage > $totalPages) {$currentPage = $totalPages;} $query_articles .= " LIMIT ".($currentPage - 1) * $article_limit.", ".$article_limit; } } $result = mysql_query($query_articles); $numrows = mysql_num_rows($result); if (!$result || !$numrows) {echo '

    '.l('article_not_exist').'

    ';} else { while ($r = mysql_fetch_array($result)) { $infoline = $r['displayinfo'] == 'YES' ? true : false; if (!empty($currentPage)) {$short_display = strpos($r['text'], '[break]'); $shorten = $short_display == 0 ? 9999000 : $short_display;} else {$shorten = 9999000;} $comments_query = "SELECT * FROM ".db('prefix')."comments WHERE articleid = $r[id] AND approved = 'True'"; $comments_result = mysql_query($comments_query); $comments_num = mysql_num_rows($comments_result); $a_date_format = date(s('date_format'), strtotime($r['date'])); $position = $r['position']; $category = $r['category'] == 0 ? $home : retrieve('seftitle', 'categories', 'id', $r['category']); if ($r['displaytitle'] == 'YES') { echo '

    '; if (strlen($r['text']) > $shorten) { echo ''.$r['title'].''; } else {echo $r['title'];} echo '

    '; } file_include(str_replace('[break]', '', $r['text']), $shorten); $commentable = $r['commentable']; if (!empty($currentPage)) { $tag = explode(',', tags('infoline')); $link = ''.l('edit').''; if ($infoline == true) { foreach ($tag as $tag) { switch (true) { case ($tag == 'date'): echo $a_date_format; break; case ($tag == 'readmore' && strlen($r['text']) > $shorten): echo $link.$category.'/'.$r['seftitle'].'/" title="'.l('read_more').'">'.l('read_more').' '; break; case ($tag == 'comments' && ($commentable == 'YES' || $commentable == 'FREEZ')): echo $link.$category.'/'.$r['seftitle'].'/#'.l('comment').'1" title="'.l('comments').'">'.l('comments').' ('.$comments_num.') '; break; case ($tag == 'edit' && $_SESSION[db('website').'Logged_In'] == 'True'): echo ' '.$edit_link; break; case ($tag != 'readmore' && $tag != 'comments' && $tag != 'edit'): echo $tag; break; } } } else if ($_SESSION[db('website').'Logged_In'] == 'True') {echo '

    '.$edit_link.'

    ';} } else if (substr($position, 0, 1) != 2 && empty($currentPage)) { $edit_link = ''.l('edit').''; if ($infoline == true) { $tag = explode(',', tags('infoline')); foreach ($tag as $tag ) { switch ($tag) { case 'date': echo $a_date_format; break; case 'readmore': case 'comments': ; break; case 'edit': if ($_SESSION[db('website').'Logged_In'] == 'True') {echo '  '.$edit_link;} break; default: echo $tag; } } } else if ($_SESSION[db('website').'Logged_In'] == 'True') {echo '

    '.$edit_link.'

    ';} } } if (!empty($currentPage) && ($numrows_articles > $article_limit) && s('display_pagination') == 'True') { paginator($categorySEF, $currentPage, $totalPages, '', l('paginator')); } if (!empty($article) && empty($currentPage) && $infoline == true) { if ($commentable == 'YES') {comment('unfreezed');} else if ($commentable == 'FREEZ') {comment('freezed');} }}}}} // COMMENTS function comment($freeze_status) { $categorySEF = get_id('category'); $articleSEF = get_id('article'); if (strpos($articleSEF, l('paginator')) === 0) {$articleSEF = str_replace(l('paginator'), '', $articleSEF);} $query = "SELECT id FROM ".db('prefix')."articles WHERE seftitle = '$articleSEF'"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) {$articleId = $r['id'];} $commentsPage = get_id('commentspage'); if (!isset($commentsPage) || !is_numeric($commentsPage) || $commentsPage < 1) {$commentsPage = 1;} $comments_order = s('comments_order'); if (isset($_POST['comment'])) { $comment = cleanXSS($_POST['text']); $name = clean(cleanXSS($_POST['name'])); $url = strtolower(clean(cleanXSS($_POST['url']))); if ($_POST['ip'] == $_SERVER['REMOTE_ADDR'] && (time() - $_POST['time']) > 4 && strlen($comment) >= 5 && strlen($name) >= 2 && is_numeric($_POST['id'])) { $url = (preg_match('/((http)+(s)?:(\/\/)|(www\.))([a-z0-9_\-]+)/', $url) && strpos($url, ' ') === false && strpos($url, '?') === false) ? $url : ''; $url = substr($url, 0, 3) == 'www' ? 'http://'.$url : $url; $time = date("Y-m-d H:i:s"); $post_article_id = cleanXSS($_POST['id']); if(s('approve_comments') != 'on') {$approved = 'True';} $query = "INSERT INTO ".db('prefix')."comments(articleid, name, url, comment, time, approved) VALUES('$post_article_id', '$name', '$url', '$comment', '$time', '$approved')"; mysql_query($query); $commentStatus = s('approve_comments') == 'on' ? l('comment_sent_approve') : l('comment_sent'); } else {$commentStatus = l('comment_error'); $commentReason = l('ce_reasons');} echo '

    '.$commentStatus.'

    '; if (!empty($commentReason)) {echo '

    '.$commentReason.'

    ';} $back_link = db('website').$_POST['category'].'/'.$_POST['article'].'/'; echo '

    ';} else {echo '" title="'.l('comment_back').'">';} echo l('backarticle').'

    '; echo ''; } else { $commentCount = s('comment_limit'); $comment_limit = (empty($commentCount) || $commentCount < 1) ? 100 : $commentCount; if(isset($commentsPage)) {$pageNum = $commentsPage;} $offset = ($pageNum - 1) * $comment_limit; $totalrows = "SELECT id FROM ".db('prefix')."comments WHERE articleid = $articleId AND approved = 'True'"; $rowsresult = mysql_query($totalrows); $numrows = mysql_num_rows($rowsresult); if (!$numrows || !$rowsresult) { if ($freeze_status != 'freezed') {echo '

    '.l('no_comment').'

    ';} } else { $query = "SELECT * FROM ".db('prefix')."comments WHERE articleid = $articleId AND approved = 'True' ORDER BY id $comments_order LIMIT $offset, $comment_limit"; $result = mysql_query($query) or die(db('dberror')); $ordinal = 1; $date_format = s('date_format'); while ($r = mysql_fetch_array($result)) { $date = date($date_format, strtotime($r['time'])); $commentNum = $offset + $ordinal; $tag = explode(',', tags('comments')); $edit_link = '  '.$date; break; case ($tag == 'name'): echo !empty($r['url']) ? ''.$r['name'].' ' : $r['name']; break; case ($tag == 'comment'): echo $r['comment']; break; case ($tag == 'edit' && $_SESSION[db('website').'Logged_In'] == 'True'): echo $edit_link.'editcomment&commentid='.$r['id'].'" title="'.l('edit').' '.l('comment').'">'.l('edit').' '; echo $edit_link.'process&task=deletecomment&articleid='.$r['articleid'].'&commentid='.$r['id'].'" title="'.l('delete').' '.l('comment').'" onclick="return pop()">'.l('delete').''; break; case ($tag == 'edit'): ; break; default: echo $tag; } } $ordinal++; } $maxPage = ceil($numrows / $comment_limit); $back_to_page = ceil(($numrows + 1) / $comment_limit); if ($maxPage > 1) {paginator($categorySEF, $pageNum, $maxPage, $articleSEF, '');} } if ($freeze_status != 'freezed') { ?>




    '.l('archives').'
    '; $query = "SELECT * FROM ".db('prefix')."articles WHERE position = 1 AND published = 1 ORDER BY date DESC"; $result = mysql_query($query); echo '

    '; $home = s('home_sef'); $home_name = l('home'); $month_names = explode(', ', l('month_names')); while ($r = mysql_fetch_array($result)) { $year = substr($r['date'], 0, 4); $month = substr($r['date'], 5, 2) -1; $month_name = (substr($month, 0, 1) == 0) ? $month_names[substr($month, 1, 1)] : $month_names[$month]; $categorySEF = $r['category'] != 0 ? find_cat_sef($r['category']) : $home; $articleSEF = retrieve('seftitle', 'articles', 'id', $r['id']); $cat_name = $r['category'] != 0 ? retrieve('name', 'categories', 'seftitle', $categorySEF) : $home_name; if ($last <> $year.$month) {echo ''.$month_name.', '.$year.'
    ';} echo l('divider').' '.$r['title'].' ('.$cat_name.')
    '; $last = $year.$month; } echo '

    '; } //SITEMAP function sitemap() { echo '

    '.l('sitemap').'

    '; echo '

    '.l('pages').'

    '; $link = l('divider').' '.l('home').'
    '; echo l('divider').' '.l('archives').'
    '; $query = "SELECT * FROM ".db('prefix')."articles WHERE position = 3 AND published = '1' ORDER BY id"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) { if ($r['id'] != s('display_page')) { echo l('divider').' '.$r['title'].'
    '; } } echo $link.'contact/">'.l('contact').'
    '; echo $link.'sitemap/">'.l('sitemap').'
    '; echo $link.'rss/">'.l('rss_feed').'

    '; echo '

    '.l('articles').'

    '; $art_query = "SELECT * FROM ".db('prefix')."articles WHERE position = 1 AND published = '1'"; $query = $art_query." AND category = 0 ORDER BY date DESC"; $result = mysql_query($query); echo '

    '.l('home').'
    '; while ($r = mysql_fetch_array($result)) { echo $link.find_cat_sef($r['category']).'/'.$r['seftitle'].'/" title="'.$r['title'].'">'.$r['title'].'
    '; } echo '

    '; $cat_query = "SELECT * FROM ".db('prefix')."categories WHERE published = 'YES'"; $cat_result = mysql_query($cat_query); while ($c = mysql_fetch_array($cat_result)) { echo '

    '.$c['name'].'
    '; $catid = $c['id']; $query = $art_query." AND category = $catid ORDER BY id DESC"; $result = mysql_query($query); while ($r = mysql_fetch_array($result)) { $date = date(s('date_format'), strtotime($r['date'])); echo $link.$c['seftitle'].'/'.$r['seftitle'].'/" title="'.$r['title'].'">'.$r['title'].'
    '; } echo '

    '; }} //NOTIFICATION function notification($error, $errNote, $link) { $errNote = !empty($errNote) ? '
    '.$errNote : ''; echo ''.l('admin_error').'

    '.$error.$errNote.'

    ' : '>'.l('operation_completed').''); echo (!empty($link)) ? '

    '.l('back').'

    ' : ''; } // CONTACT FORM function contact() { if ($_POST['contactform'] == '') {?>

    *

    *

    *

    2 && strlen($message) > 9 && strlen($mail) > 6) { mail($to, $subject, $body, $from_header); notification('','',''); echo '

    '.l('backhome').'

    '; echo ''; } else { notification(l('contact_not_sent'),l('message_error'),'contact/'); echo ''; } } } // MENU ARTICLES function menu_articles($start, $size) { $query = "SELECT * FROM ".db('prefix')."articles WHERE position = 1 AND published = 1 ORDER BY id DESC LIMIT $start, $size"; $result = mysql_query($query); $home = s('home_sef'); while ($r = mysql_fetch_array($result)) { $date = date(s('date_format'), strtotime($r['date'])); $categorySEF = find_cat_sef($r['category']); $title = $r['category'] == 0 ? $home : retrieve('name', 'categories', 'seftitle', $categorySEF); echo '
  • '.$r['title'].'
    • '; }} // NEW COMMENTS function new_comments($number, $stringlen) { $query = "SELECT * FROM ".db('prefix')."comments WHERE approved = 'True' ORDER BY id DESC LIMIT $number"; $result = mysql_query($query); $comment_limit = s('comment_limit') < 1 ? 1 : s('comment_limit'); $comments_order = s('comments_order'); while ($r = mysql_fetch_array($result)) { $art_query = "SELECT * FROM ".db('prefix')."comments WHERE articleid = '$r[articleid]' ORDER BY id $comments_order"; $art_result = mysql_query($art_query); $num = 1; while ($r_art = mysql_fetch_array($art_result)) { if ($r_art['id'] == $r['id']) {$ordinal = $num;} $num++; } $name = strip_tags($r['name']); $comment = strip_tags($r['comment']); $page = ceil($ordinal / $comment_limit); $ncom = $name.' ('.$comment; $ncom = strlen($ncom) > $stringlen ? substr($ncom, 0, $stringlen - 3).'...' : $ncom; $ncom.= strlen($name) < $stringlen ? ')' : ''; $ncom = str_replace(' ...', '...', $ncom); $articleSEF = retrieve('seftitle', 'articles', 'id', $r['articleid']); $articleCat = retrieve('category', 'articles', 'seftitle', $articleSEF); $categorySEF = find_cat_sef($articleCat); if (!empty($articleSEF)) { $paging = $page > 1 ? '/'.$page : ''; echo '
  • '.$ncom.'
    • '; } $num++; }} // SEARCH FORM function searchform() { ?> '.l(search_results).'
    '; if (strlen($search_query) < 4 || $search_query == l('search_keywords')) {echo '

    '.l(charerror).'

    ';} else { $keywords = explode(' ', $search_query); $keyCount = count($keywords); $query = "SELECT * FROM ".db('prefix')."articles WHERE SUBSTRING(position, 1, 1) != '2' AND published = 1 AND"; if ($keyCount > 1) { for ($i = 0; $i < $keyCount - 1; $i++) {$query = $query." (title LIKE '%$keywords[$i]%' || text LIKE '%$keywords[$i]%') &&";} $j = $keyCount - 1; $query = $query." (title LIKE '%$keywords[$j]%' || text LIKE '%$keywords[$j]%')"; } else {$query = $query." (title LIKE '%$keywords[0]%' || text LIKE '%$keywords[0]%')";} $query = $query." ORDER BY id DESC"; $result = mysql_query($query); $numrows = mysql_num_rows($result); if (!$numrows) {echo '

    '.l('noresults').' '.$search_query.'.

    ';} else { echo ''.$numrows.' '.l('resultsfound').' '.$search_query.'.

    '; while ($r = mysql_fetch_array($result)) { $date = date(s('date_format'), strtotime($r['date'])); echo '

    '.$r['title'].' - '.$date.'

    '; } } } echo '

    '.l('backhome').'

    '; } // RSS FEED function rss() { $limit = s('rss_limit'); $result = mysql_query("SELECT * FROM ".db('prefix')."articles WHERE position = 1 AND published = 1 ORDER BY date DESC LIMIT 0, $limit"); header('Content-type: text/xml; charset='.s('charset')); $header = ''; $header .= ''; $header .= ''; $header .= ''.s('website_title').''; $header .= ''.s('website_title').''; $header .= ''.db('website').''; $header .= 'Copyright '.s('website_title').''; $header .= 'sNews'; $footer = ''; $footer .= ''; echo $header; while ($r = mysql_fetch_assoc($result)) { $link = db('website').find_cat_sef($r['category']).'/'.$r['seftitle'].'/'; $date = date('D, d M Y H:i:s +0000', strtotime($r['date'])); $description = preg_replace("[\[(.*?)\]]", "", stripslashes(strip_tags($r['text']))); $item = ''; $item .= ''.$r['title'].''; $item .= ''.$description.''; $item .= ''.$date.''; $item .= ''.$link.''; $item .= ''.$link.''; $item .= ''; echo $item; } echo $footer; } /*** ADMINISTRATIVE FUNCTIONS ***/ // LOGIN function login() { if ($_SESSION[db('website').'Logged_In'] != 'True') { ?>

    Login




    '.$label.'' : ''; $ID = !empty($id) ? ' id="'.$id.'"' : ''; $style = !empty($css) ? ' class="'.$css.'"' : ''; $js1 = !empty($script1) ? ' '.$script1 : ''; $js2 = !empty($script2) ? ' '.$script2 : ''; $js3 = !empty($script3) ? ' '.$script3 : ''; $attribs = $ID.$style.$js1.$js2.$js3; $val = ' value="'.$value.'"'; $input = '' : ''; break; case 'fieldset': $output = (!empty($legend) && $legend != 'end') ? '
    '.$legend.'' : '
    '; break; case 'text': case 'password': $output = '

    '.$lbl.':
    '.$input.$val.' />

    '; break; case 'checkbox': case 'radio': $check = $checked == 'ok' ? ' checked="checked"' : ''; $output = '

    '.$input.$check.' /> '.$lbl.'

    '; break; case 'hidden': case 'submit': case 'reset': case 'button': $output = $input.$val.' />'; break; case 'textarea': $output = $lbl.':
    '; break; } echo $output; } // ADMINISTRATION FORM function administration() { if ($_SESSION[db('website').'Logged_In'] != 'True') {notification(l('error_not_logged_in'),'','login/');} else { foreach ($_POST as $key => $value) {unset($_POST[$key]);} echo $_POST['Loginform']; echo $_POST['uname']; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '','sNews '.l('administration')); echo '

    '.l('categories').': '.l('add_new').''; $link = ' '.l('divider').' '.l('view').'

    ';} echo '

    '.l('articles').': '.l('add_new').''; if (stats('articles',1) > 0) {echo $link.'articles/" title="'.l('view').'">'.l('view').'

    ';} echo '

    '.l('extra_contents').': '.l('add_new').''; if (stats('articles',2) > 0) {echo $link.'extra_contents/" title="'.l('view').'">'.l('view').'

    ';} echo '

    '.l('pages').': '.l('add_new').''; if (stats('articles',3) > 0) {echo $link.'pages/" title="'.l('view').'">'.l('view').'

    ';} echo ''; $query_comm = "SELECT * FROM ".db('prefix')."comments WHERE approved <> 'True'"; $result_comm = mysql_query($query_comm); $unapproved = mysql_num_rows($result_comm); if ($unapproved > 0) { html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', l('comments')); echo '

    '.$unapproved.' comments waiting approval

    '; echo ''; } if ($unapproved > 0) {echo '';} html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', l('site_settings')); echo '

    '.l('settings').'

    '; echo '

    '.l('files').'

    '; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', l('login_status')); echo '

    '.l('logout').'

    '; }} // SETTINGS FORM function settings() { html_input('form', '', '', '', '', '', '', '', '', '', '', '', 'post', 'index.php?action=process&task=save_settings', ''); html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '',''.l('settings').''); echo ''; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', ''.l('a_contact_info').''); echo ''; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', ''.l('a_time_settings').''); echo ''; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '',''.l('contents').''); echo ''; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', ''.l('comments').''); echo '

    '; html_input('hidden', 'task', 'task', 'save_settings', '', '', '', '', '', '', '', '', '', '', ''); html_input('submit', 'save', 'save', l('save'), '', '', '', '', '', '', '', '', '', '', ''); echo '

    '; html_input('form', '', '', '', '', '', '', '', '', '', '', '', 'post', 'index.php?action=process&task=changeup', ''); html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', ''.l('change_up').''); echo ''; } // CATEGORIES FORM function form_categories() { if (isset($_GET['id']) && is_numeric($_GET['id']) && !is_null($_GET['id'])) { $categoryid = $_GET['id']; $query = mysql_query("SELECT * FROM ".db('prefix')."categories WHERE id='$categoryid'"); $r = mysql_fetch_array($query); $frm_action = db('website').'index.php?action=process&task=edit_category&id='.$categoryid; $frm_add_edit = l('edit'); $frm_name = $r['name']; $frm_sef_title = $r['seftitle']; $frm_description = $r['description']; $frm_publish = $r['published'] == 'YES' ? 'ok' : ''; $frm_task = 'edit_category'; $frm_submit = l('edit'); } else { $frm_action = db('website').'index.php?action=process&task=add_category'; $frm_add_edit = l('add_category'); $frm_name = $_POST['name']; $frm_sef_title = $_POST['name'] == '' ? cleanSEF($_POST['name']) : cleanSEF($_POST['seftitle']); $frm_description = ''; $frm_publish = 'ok'; $frm_task = 'add_category'; $frm_submit = l('add_category'); } html_input('form', '', 'post', '', '', '', '', '', '', '', '', '', 'post', $frm_action, ''); html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', $frm_add_edit); html_input('text', 'name', 't', $frm_name, l('name'), '', 'onchange="genSEF(this,document.forms[\'post\'].seftitle)"', 'onkeyup="genSEF(this,document.forms[\'post\'].seftitle)"', '', '', '', '', '', '', ''); html_input('text', 'seftitle', 's', $frm_sef_title, l('sef_title_cat'), '', '', '', '', '', '', '', '', '', ''); html_input('text', 'description', 'desc', $frm_description, l('description'), '', '', '', '', '', '', '', '', '', ''); html_input('checkbox', 'publish', 'pub', 'YES', l('publish_category'), '', '', '', '', $frm_publish, '', '', '', '', ''); echo '

    '; html_input('hidden', 'task', 'task', $frm_task, '', '', '', '', '', '', '', '', '', '', ''); html_input('submit', 'submit_category', 'submit_category', $frm_submit, '', '', '', '', '', '', '', '', '', '', ''); if (!empty($categoryid)) { echo '  '; html_input('hidden', 'id', 'id', $categoryid, '', '', '', '', '', '', '', '', '', '', ''); html_input('submit', 'delete_category', 'delete_category', l('delete'), '', '', 'onclick="javascript: return pop()"', '', '', '', '', '', '', '', ''); } echo '

    '; $query = "SELECT * FROM ".db('prefix')."categories WHERE published = 'YES' ORDER BY catorder ASC"; $result = mysql_query($query); $numrows = mysql_num_rows($result); if ($numrows > 1) { html_input('form', '', 'post', '', '', '', '', '', '', '', '', '', 'post', 'index.php?action=process&task=order_category', ''); html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', l('category_order')); $counter = 0; while ($r = mysql_fetch_array($result)) { echo '

    '; $counter++; } echo '

    '; html_input('hidden', 'counter', 'counter', $counter, '', '', '', '', '', '', '', '', '', '', ''); html_input('hidden', 'task', 'task', 'order_category', '', '', '', '', '', '', '', '', '', '', ''); html_input('submit', 'order_category', 'order_category', l('order_category'), '', '', '', '', '', '', '', '', '', '', ''); echo '

    '; }} // ARTICLES - POSTING TIME function posting_time($time='') { echo '

    '.l('day').':'.l('month').':'.l('year').':'.l('hour').':'.l('minute').':

    '; } // ARTICLES FORM function form_articles($contents) { if (isset($_GET['id']) && is_numeric($_GET['id']) && !is_null($_GET['id'])) { $id = $_GET['id']; $query = mysql_query("SELECT * FROM ".db('prefix')."articles WHERE id='$id'"); $r = mysql_fetch_array($query); $article_category = $r['category']; $edit_option = substr($r['position'], 0, 1); $edit_page = substr($r['position'], 2); switch ($edit_option) { case 1: $frm_fieldset = l('edit').' '.l('article'); $frm_position1 = 'selected="selected"'; break; case 2: $frm_fieldset = l('edit').' '.l('extra_contents'); $frm_position2 = 'selected="selected"'; break; case 3: $frm_fieldset = l('edit').' '.l('page'); $frm_position3 = 'selected="selected"'; break; } $frm_action = db('website').'index.php?action=process&task=edit_article&id='.$id; $frm_title = $_SESSION['temp']['title'] ? $_SESSION['temp']['title'] : $r['title']; $frm_sef_title = $_SESSION['temp']['seftitle'] ? cleanSEF($_SESSION['temp']['seftitle']) : $r['seftitle']; $frm_text = str_replace('&', '&', $_SESSION['temp']['text'] ? $_SESSION['temp']['text'] : $r['text']); $frm_meta_desc = $_SESSION['temp']['description_meta'] ? cleanSEF($_SESSION['temp']['description_meta']) : $r['description_meta']; $frm_meta_key = $_SESSION['temp']['keywords_meta'] ? cleanSEF($_SESSION['temp']['keywords_meta']) : $r['keywords_meta']; $frm_display_title = $r['displaytitle'] == 'YES' ? 'ok' : ''; $frm_display_info = $r['displayinfo'] == 'YES' ? 'ok' : ''; $frm_publish = $r['published'] == 1 ? 'ok' : ''; $frm_commentable = ($r['commentable'] == 'YES' || $r['commentable'] == 'FREEZ') ? 'ok' : ''; $frm_task = 'edit_article'; $frm_submit = l('edit'); } else { switch ($contents) { case 'article_new': $frm_fieldset = l('article_new'); $pos = 1; $frm_position1 = 'selected="selected"'; break; case 'side_new': $frm_fieldset = l('side_new'); $pos = 2; $frm_position2 = 'selected="selected"'; break; case 'page_new': $frm_fieldset = l('page_new'); $pos = 3; $frm_position3 = 'selected="selected"'; break; } $frm_action = db('website').'index.php?action=process&task=add_article'; $frm_title = $_SESSION['temp']['title']; $frm_sef_title = cleanSEF($_SESSION['temp']['seftitle']); $frm_text = $_SESSION['temp']['text']; $frm_meta_desc = cleanSEF($_SESSION['temp']['description_meta']); $frm_meta_key = cleanSEF($_SESSION['temp']['keywords_meta']); $frm_display_title = 'ok'; $frm_display_info = ($contents == 'side_new') ? '' : 'ok'; $frm_publish = 'ok'; $frm_commentable = ($contents == 'side_new' || $contents == 'page_new') ? '' : 'ok'; $frm_task = 'add_article'; $frm_submit = l('submit'); } html_input('form', '', 'post', '', '', '', '', '', '', '', '', '', 'post', $frm_action, ''); html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', $frm_fieldset); html_input('text', 'title', 'at', $frm_title, 'Title', '', 'onchange="genSEF(this,document.forms[\'post\'].seftitle)"', 'onkeyup="genSEF(this,document.forms[\'post\'].seftitle)"', '', '', '', '', '', '', ''); if ($contents == 'side_new' || $edit_option == 2) { echo '
    '; html_input('text', 'seftitle', 'as', $frm_sef_title, l('sef_title'), '', '', '', '', '', '', '', '', '', ''); echo '
    '; } else {html_input('text', 'seftitle', 'as', $frm_sef_title, l('sef_title'), '', '', '', '', '', '', '', '', '', '');} html_input('textarea', 'text', 'txt', str_replace('
    ', '', $frm_text), l('text'), '', '', '', '', '', '2', '100', '', '', ''); echo '

    '; html_input('button', '', '', 'B', '', 'button', 'onclick="tags(\'strong\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'I', '', 'button', 'onclick="tags(\'em\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'Strike', '', 'button', 'onclick="tags(\'strike\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'P', '', 'button', 'onclick="tags(\'p\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'Break', '', 'button', 'onclick="tags(\'break\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'Image', '', 'button', 'onclick="tags(\'img\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'Link', '', 'button', 'onclick="tags(\'link\')"', '', '', '', '', '', '', '', ''); html_input('button', '', '', 'Include', '', 'button', 'onclick="tags(\'include\')"', '', '', '', '', '', '', '', ''); echo '

    '; if ($contents == 'article_new' || $edit_option == 1) { html_input('checkbox', 'publish_article', 'pu', 'YES', l('publish_article'), '', '', '', '', $frm_publish, '', '', '', '', ''); } echo ''; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', l('preview')); echo '
    '; html_input('fieldset', '', '', '', '', '', '', '', '', '', '', '', '', '', ''.l('customize').''); echo '