diff --git a/wp-admin/b2edit.form.php b/wp-admin/b2edit.form.php index ffac9b0f20..12c60ee096 100644 --- a/wp-admin/b2edit.form.php +++ b/wp-admin/b2edit.form.php @@ -17,7 +17,8 @@ switch($action) { $form_pingback = ''; } if ($use_trackback) { - $form_trackback = '

(Seperate multiple URLs with commas.)

'; + $form_trackback = '

(Seperate multiple URLs with commas.)
+

'; } else { $form_trackback = ''; } @@ -25,7 +26,7 @@ switch($action) { break; case "edit": $submitbutton_text = 'Edit this!'; - $toprow_title = 'Editing Post #' . $postdata["ID"]; + $toprow_title = 'Editing Post #' . $postdata['ID']; $form_action = 'editpost'; $form_extra = "' />\n -
+ @@ -55,37 +56,44 @@ switch($action) { ?> - - - - - - - - -

-
- -
- -
- -
- - 		-
-
- + +
+ + + +
+ + + +
+ + + +
+ + + +
+ + + +
+ + + + + - -
- " tabindex="1" id="name" /> +
+ - -
- " tabindex="2" id="email" /> +
+ + - -
- " tabindex="3" id="URL" /> +
+ + - +?> Excerpt:'; + echo '


'; ?> -

+ +

Post:'; } else { - echo '
'; + echo ''; } ?> diff --git a/wp-admin/b2edit.php b/wp-admin/b2edit.php index aafcd9cfb2..9e328d0d2e 100644 --- a/wp-admin/b2edit.php +++ b/wp-admin/b2edit.php @@ -39,42 +39,46 @@ switch($action) { case 'post': - $standalone = 1; - require_once('b2header.php'); - - $post_pingback = intval($HTTP_POST_VARS["post_pingback"]); - $content = balanceTags($HTTP_POST_VARS["content"]); - $content = format_to_post($content); - $excerpt = balanceTags($HTTP_POST_VARS["excerpt"]); - $excerpt = format_to_post($excerpt); - $post_title = addslashes($HTTP_POST_VARS["post_title"]); - $post_category = intval($HTTP_POST_VARS["post_category"]); - $post_status = $HTTP_POST_VARS['post_status']; - $comment_status = $HTTP_POST_VARS['comment_status']; - $ping_status = $HTTP_POST_VARS['ping_status']; - $post_password = addslashes($HTTP_POST_VARS['post_password']); + $standalone = 1; + require_once('b2header.php'); + + $post_pingback = intval($HTTP_POST_VARS['post_pingback']); + $content = balanceTags($HTTP_POST_VARS['content']); + $content = format_to_post($content); + $excerpt = balanceTags($HTTP_POST_VARS['excerpt']); + $excerpt = format_to_post($excerpt); + $post_title = addslashes($HTTP_POST_VARS['post_title']); + $post_category = intval($HTTP_POST_VARS['post_category']); + $post_status = $HTTP_POST_VARS['post_status']; + $comment_status = $HTTP_POST_VARS['comment_status']; + $ping_status = $HTTP_POST_VARS['ping_status']; + $post_password = addslashes($HTTP_POST_VARS['post_password']); if ($user_level == 0) - die ("Cheatin' uh ?"); + die ('Cheatin’ uh?'); - if (($user_level > 4) && (!empty($HTTP_POST_VARS["edit_date"]))) { - $aa = $HTTP_POST_VARS["aa"]; - $mm = $HTTP_POST_VARS["mm"]; - $jj = $HTTP_POST_VARS["jj"]; - $hh = $HTTP_POST_VARS["hh"]; - $mn = $HTTP_POST_VARS["mn"]; - $ss = $HTTP_POST_VARS["ss"]; + if (($user_level > 4) && (!empty($HTTP_POST_VARS['edit_date']))) { + $aa = $HTTP_POST_VARS['aa']; + $mm = $HTTP_POST_VARS['mm']; + $jj = $HTTP_POST_VARS['jj']; + $hh = $HTTP_POST_VARS['hh']; + $mn = $HTTP_POST_VARS['mn']; + $ss = $HTTP_POST_VARS['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; $ss = ($ss > 59) ? $ss - 60 : $ss; $now = "$aa-$mm-$jj $hh:$mn:$ss"; } else { - $now = date("Y-m-d H:i:s", (time() + ($time_difference * 3600))); + $now = date('Y-m-d H:i:s', (time() + ($time_difference * 3600))); } - $query = "INSERT INTO $tableposts (ID, post_author, post_date, post_content, post_title, post_category, post_excerpt, post_status, comment_status, ping_status, post_password) VALUES ('0','$user_ID','$now','$content','$post_title','$post_category','$excerpt', '$post_status', '$comment_status', '$ping_status', '$post_password')"; - $result = $wpdb->query($query); + $result = $wpdb->query(" + INSERT INTO $tableposts + (ID, post_author, post_date, post_content, post_title, post_category, post_excerpt, post_status, comment_status, ping_status, post_password) + VALUES + ('0','$user_ID','$now','$content','$post_title','$post_category','$excerpt', '$post_status', '$comment_status', '$ping_status', '$post_password') + "); $post_ID = $wpdb->get_var("SELECT ID FROM $tableposts ORDER BY ID DESC LIMIT 1"); @@ -92,7 +96,7 @@ switch($action) { } if (!empty($HTTP_POST_VARS['trackback_url'])) { - $excerpt = (strlen(strip_tags($content)) > 255) ? substr(strip_tags($content), 0, 252).'...' : strip_tags($content); + $excerpt = (strlen(strip_tags($content)) > 255) ? substr(strip_tags($content), 0, 252) . '...' : strip_tags($content); $excerpt = stripslashes($excerpt); $trackback_urls = explode(',', $HTTP_POST_VARS['trackback_url']); foreach($trackback_urls as $tb_url) { @@ -102,20 +106,20 @@ switch($action) { } } // end if publish - if (!empty($HTTP_POST_VARS["mode"])) { - switch($HTTP_POST_VARS["mode"]) { - case "bookmarklet": - $location="b2bookmarklet.php?a=b"; + if (!empty($HTTP_POST_VARS['mode'])) { + switch($HTTP_POST_VARS['mode']) { + case 'bookmarklet': + $location = 'b2bookmarklet.php?a=b'; break; - case "sidebar": - $location="b2sidebar.php?a=b"; + case 'sidebar': + $location = 'b2sidebar.php?a=b'; break; default: - $location="b2edit.php"; + $location = 'b2edit.php'; break; } } else { - $location="b2edit.php"; + $location = 'b2edit.php'; } header("Location: $location"); exit(); @@ -128,16 +132,16 @@ switch($action) { $post = $HTTP_GET_VARS['post']; if ($user_level > 0) { - $postdata = get_postdata($post); - $authordata = get_userdata($postdata["Author_ID"]); - if ($user_level < $authordata->user_level) - die ('You don’t have the right to edit '.$authordata[1].'’s posts.'); - - $content = $postdata['Content']; - $content = format_to_edit($content); - $excerpt = $postdata['Excerpt']; - $excerpt = format_to_edit($excerpt); - $edited_post_title = format_to_edit($postdata['Title']); + $postdata = get_postdata($post); + $authordata = get_userdata($postdata['Author_ID']); + if ($user_level < $authordata->user_level) + die ('You don’t have the right to edit '.$authordata[1].'’s posts.'); + + $content = $postdata['Content']; + $content = format_to_edit($content); + $excerpt = $postdata['Excerpt']; + $excerpt = format_to_edit($excerpt); + $edited_post_title = format_to_edit($postdata['Title']); $post_status = $postdata['post_status']; $comment_status = $postdata['comment_status']; $ping_status = $postdata['ping_status']; @@ -146,48 +150,48 @@ switch($action) { include('b2edit.form.php'); } else { ?> -

Since you're a newcomer, you'll have to wait for an admin to raise your level to 1, +

Since you’re a newcomer, you’ll have to wait for an admin to raise your level to 1, in order to be authorized to post.
- You can also e-mail the admin + You can also e-mail the admin to ask for a promotion.
- When you're promoted, just reload this page and you'll be able to blog. :) + When you’re promoted, just reload this page and you’ll be able to blog. :)

4) && (!empty($HTTP_POST_VARS["edit_date"]))) { - $aa = $HTTP_POST_VARS["aa"]; - $mm = $HTTP_POST_VARS["mm"]; - $jj = $HTTP_POST_VARS["jj"]; - $hh = $HTTP_POST_VARS["hh"]; - $mn = $HTTP_POST_VARS["mn"]; - $ss = $HTTP_POST_VARS["ss"]; + if (($user_level > 4) && (!empty($HTTP_POST_VARS['edit_date']))) { + $aa = $HTTP_POST_VARS['aa']; + $mm = $HTTP_POST_VARS['mm']; + $jj = $HTTP_POST_VARS['jj']; + $hh = $HTTP_POST_VARS['hh']; + $mn = $HTTP_POST_VARS['mn']; + $ss = $HTTP_POST_VARS['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; @@ -197,14 +201,24 @@ switch($action) { $datemodif = ''; } - $query = "UPDATE $tableposts SET post_content='$content', post_excerpt='$excerpt', post_title='$post_title', post_category='$post_category'".$datemodif.", post_status='$post_status', comment_status='$comment_status', ping_status='$ping_status', post_password='$post_password' WHERE ID = $post_ID"; - $result = $wpdb->query($query); + $result = $wpdb->query(" + UPDATE $tableposts SET + post_content = '$content', + post_excerpt = '$excerpt', + post_title = '$post_title', + post_category = '$post_category'".$datemodif.", + post_status = '$post_status', + comment_status = '$comment_status', + ping_status = '$ping_status', + post_password = '$post_password' + WHERE ID = $post_ID +"); if (isset($sleep_after_edit) && $sleep_after_edit > 0) { sleep($sleep_after_edit); } - // are we going from draft/private to publishd? + // are we going from draft/private to published? if ((($prev_status == 'draft') || ($prev_status == 'private')) && ($post_status == 'publish')) { pingWeblogs($blog_ID); pingCafelog($cafelogID, $post_title, $post_ID); @@ -215,7 +229,7 @@ switch($action) { } if (!empty($HTTP_POST_VARS['trackback_url'])) { - $excerpt = (strlen(strip_tags($content)) > 255) ? substr(strip_tags($content), 0, 252).'...' : strip_tags($content); + $excerpt = (strlen(strip_tags($content)) > 255) ? substr(strip_tags($content), 0, 252) . '...' : strip_tags($content); $excerpt = stripslashes($excerpt); $trackback_urls = explode(',', $HTTP_POST_VARS['trackback_url']); foreach($trackback_urls as $tb_url) { @@ -229,34 +243,32 @@ switch($action) { header ($location); break; - case "delete": + case 'delete': $standalone = 1; - require_once("./b2header.php"); + require_once('./b2header.php'); if ($user_level == 0) - die ("Cheatin' uh ?"); + die ('Cheatin’ uh?'); $post = $HTTP_GET_VARS['post']; - $postdata=get_postdata($post) or die("Oops, no post with this ID. Go back !"); - $authordata = get_userdata($postdata["Author_ID"]); + $postdata = get_postdata($post) or die('Oops, no post with this ID. Go back!'); + $authordata = get_userdata($postdata['Author_ID']); if ($user_level < $authordata->user_level) - die ("You don't have the right to delete ".$authordata[1]."'s posts."); + die ('You don’t have the right to delete '.$authordata[1].'’s posts.'); - $query = "DELETE FROM $tableposts WHERE ID=$post"; - $result = $wpdb->query($query); + $result = $wpdb->query("DELETE FROM $tableposts WHERE ID=$post"); if (!$result) - die("Error in deleting... contact the webmaster..."); + die('Error in deleting... contact the webmaster.'); - $query = "DELETE FROM $tablecomments WHERE comment_post_ID=$post"; - $result = $wpdb->query($query); + $result = $wpdb->query("DELETE FROM $tablecomments WHERE comment_post_ID=$post"); if (isset($sleep_after_edit) && $sleep_after_edit > 0) { sleep($sleep_after_edit); } - //pingWeblogs($blog_ID); + // pingWeblogs($blog_ID); header ('Location: b2edit.php'); @@ -282,32 +294,31 @@ switch($action) { break; - case "deletecomment": + case 'deletecomment': $standalone = 1; - require_once("./b2header.php"); + require_once('./b2header.php'); if ($user_level == 0) - die ("Cheatin' uh ?"); + die ('Cheatin’ uh?'); $comment = $HTTP_GET_VARS['comment']; $p = $HTTP_GET_VARS['p']; - $commentdata=get_commentdata($comment) or die("Oops, no comment with this ID. Go back !"); + $commentdata = get_commentdata($comment) or die('Oops, no comment with this ID. Go back!'); - $query = "DELETE FROM $tablecomments WHERE comment_ID=$comment"; - $result = $wpdb->query($query); + $result = $wpdb->query("DELETE FROM $tablecomments WHERE comment_ID=$comment"); - header ("Location: b2edit.php?p=$p&c=1#comments"); //?a=dc"); + header ("Location: b2edit.php?p=$p&c=1#comments"); break; - case "editedcomment": + case 'editedcomment': $standalone = 1; - require_once("./b2header.php"); + require_once('./b2header.php'); if ($user_level == 0) - die ("Cheatin' uh ?"); + die ('Cheatin’ uh?'); $comment_ID = $HTTP_POST_VARS['comment_ID']; $comment_post_ID = $HTTP_POST_VARS['comment_post_ID']; @@ -318,40 +329,46 @@ switch($action) { $newcomment_author_email = addslashes($newcomment_author_email); $newcomment_author_url = addslashes($newcomment_author_url); - if (($user_level > 4) && (!empty($HTTP_POST_VARS["edit_date"]))) { - $aa = $HTTP_POST_VARS["aa"]; - $mm = $HTTP_POST_VARS["mm"]; - $jj = $HTTP_POST_VARS["jj"]; - $hh = $HTTP_POST_VARS["hh"]; - $mn = $HTTP_POST_VARS["mn"]; - $ss = $HTTP_POST_VARS["ss"]; + if (($user_level > 4) && (!empty($HTTP_POST_VARS['edit_date']))) { + $aa = $HTTP_POST_VARS['aa']; + $mm = $HTTP_POST_VARS['mm']; + $jj = $HTTP_POST_VARS['jj']; + $hh = $HTTP_POST_VARS['hh']; + $mn = $HTTP_POST_VARS['mn']; + $ss = $HTTP_POST_VARS['ss']; $jj = ($jj > 31) ? 31 : $jj; $hh = ($hh > 23) ? $hh - 24 : $hh; $mn = ($mn > 59) ? $mn - 60 : $mn; $ss = ($ss > 59) ? $ss - 60 : $ss; - $datemodif = ", comment_date=\"$aa-$mm-$jj $hh:$mn:$ss\""; + $datemodif = ", comment_date = 'aa-$mm-$jj $hh:$mn:$ss'"; } else { - $datemodif = ""; + $datemodif = ''; } $content = balanceTags($content); $content = format_to_post($content); - $query = "UPDATE $tablecomments SET comment_content=\"$content\", comment_author=\"$newcomment_author\", comment_author_email=\"$newcomment_author_email\", comment_author_url=\"$newcomment_author_url\"".$datemodif." WHERE comment_ID=$comment_ID"; - $result = $wpdb->query($query); + $result = $wpdb->query(" + UPDATE $tablecomments SET + comment_content = '$content', + comment_author = '$newcomment_author', + comment_author_email = '$newcomment_author_email', + comment_author_url = '$newcomment_author_url'".$datemodif." + WHERE comment_ID = $comment_ID" + ); - header ("Location: b2edit.php?p=$comment_post_ID&c=1#comments"); //?a=ec"); + header ("Location: b2edit.php?p=$comment_post_ID&c=1#comments"); break; default: - $standalone=0; - require_once ("./b2header.php"); + $standalone = 0; + require_once ('./b2header.php'); if ($user_level > 0) { if ((!$withcomments) && (!$c)) { - $action = 'post'; + $action = 'post'; get_currentuserinfo(); $drafts = $wpdb->get_results("SELECT ID, post_title FROM $tableposts WHERE post_status = 'draft' AND post_author = $user_ID"); if ($drafts) { @@ -362,6 +379,7 @@ switch($action) { $i = 0; foreach ($drafts as $draft) { if (0 != $i) echo ', '; + $draft->post_title = stripslashes($draft->post_title); echo "$draft->post_title"; ++$i; } @@ -369,8 +387,8 @@ switch($action) {
"; + include('b2edit.form.php'); + echo '

'; } @@ -379,15 +397,17 @@ switch($action) { ?>
-

Since you're a newcomer, you'll have to wait for an admin to raise your level to 1, in order to be authorized to post.
You can also e-mail the admin to ask for a promotion.
When you're promoted, just reload this page and you'll be able to blog. :)

+

Since you’re a newcomer, you’ll have to wait for an admin to raise your level to 1, in order to be authorized to post.
+ You can also e-mail the admin to ask for a promotion.
+ When you’re promoted, just reload this page and you’ll be able to blog. :)

*/ -include("b2footer.php"); +include('b2footer.php'); ?> \ No newline at end of file