"; print ""; print "
"; print ""; print ""; print ""; $start = filter_input(INPUT_GET, 'start', FILTER_SANITIZE_STRING); if ( !$start ) { $start=0; } $query = "SELECT id, comment, name, mail, homepage, country FROM gbook ORDER BY ID DESC"; if ($statement = $db->prepare($query)) { $statement->execute(); $statement->store_result(); while ($statement->fetch()) { $statement->bind_result($id, $comment, $name, $mail, $homepage, $country); $comment = htmlspecialchars($comment); $comment = BBCode($comment); $comment = smile($comment); $name = htmlspecialchars($name); $country = htmlspecialchars($country); print ""; $formatcount++; } } print "
"; print ""; print "

"; if ($name) { if($gbvalues["mail"]) { print ""; } print $name; if($mail) { print ""; } print "
"; } if ($country) { print $country."
"; } if($homepage) { print $homepage."

"; } $comment = wordwrap( $comment, 19, "\n", 1); print "

$comment

"; if(isset($_SESSION['username'])) { print "
Edit  Delete"; } print "
"; //BBCODE function //Local copy function BBCode($Text) { // Replace any html brackets with HTML Entities to prevent executing HTML or script // Don't use strip_tags here because it breaks [url] search by replacing & with amp // Convert new line chars to html
tags $Text = nl2br($Text); // Set up the parameters for a URL search string $URLSearchString = " a-zA-Z0-9\:\/\-\?\&\.\=\_\~\#\'"; // Set up the parameters for a MAIL search string $MAILSearchString = $URLSearchString . " a-zA-Z0-9\.@"; // Perform URL Search $Text = preg_replace("/\[url\]([$URLSearchString]*)\[\/url\]/", '$1', $Text); $Text = preg_replace("(\[url\=([$URLSearchString]*)\]([$URLSearchString]*)\[/url\])", '$2', $Text); $Text = preg_replace("/\[URL\]([$URLSearchString]*)\[\/URL\]/", '$1', $Text); $Text = preg_replace("(\[URL\=([$URLSearchString]*)\]([$URLSearchString]*)\[/URL\])", '$2', $Text); // Perform MAIL Search $Text = preg_replace("(\[mail\]([$MAILSearchString]*)\[/mail\])", '$1', $Text); $Text = preg_replace("/\[mail\=([$MAILSearchString]*)\](.+?)\[\/mail\]/", '$2', $Text); // Check for bold text $Text = preg_replace("(\[b\](.+?)\[\/b])is",'$1',$Text); // Check for Italics text $Text = preg_replace("(\[i\](.+?)\[\/i\])is",'$1',$Text); // Check for Underline text $Text = preg_replace("(\[u\](.+?)\[\/u\])is",'$1',$Text); // Check for strike-through text $Text = preg_replace("(\[s\](.+?)\[\/s\])is",'$1',$Text); // Check for over-line text $Text = preg_replace("(\[o\](.+?)\[\/o\])is",'$1',$Text); // Check for colored text $Text = preg_replace("(\[color=(.+?)\](.+?)\[\/color\])is","$2",$Text); // Check for sized text $Text = preg_replace("(\[size=(.+?)\](.+?)\[\/size\])is","$2",$Text); // Check for list text $Text = preg_replace("/\[list\](.+?)\[\/list\]/is", '' ,$Text); $Text = preg_replace("/\[list=1\](.+?)\[\/list\]/is", '' ,$Text); $Text = preg_replace("/\[list=i\](.+?)\[\/list\]/s", '' ,$Text); $Text = preg_replace("/\[list=I\](.+?)\[\/list\]/s", '' ,$Text); $Text = preg_replace("/\[list=a\](.+?)\[\/list\]/s", '' ,$Text); $Text = preg_replace("/\[list=A\](.+?)\[\/list\]/s", '' ,$Text); $Text = str_replace("[*]", "
  • ", $Text); // Check for font change text $Text = preg_replace("(\[font=(.+?)\](.+?)\[\/font\])","$2",$Text); // Images // [img]pathtoimage[/img] $Text = preg_replace("/\[IMG\](.+?)\[\/IMG\]/", '', $Text); $Text = preg_replace("/\[img\](.+?)\[\/img\]/", '', $Text); // [img=widthxheight]image source[/img] $Text = preg_replace("/\[img\=([0-9]*)x([0-9]*)\](.+?)\[\/img\]/", '', $Text); return $Text; } //function for smiley icons function smile($post) { $smilies=array( ':)' => "", ':(' => "", ':p' => "", ';)' => "", ';smirk' => "", ':blush' =>"", ':angry' =>"", ':shocked'=> "", ':ninja'=>"", ':cool'=>"", '(!)'=>"", '(?)'=>"", '(heart)'=>"", ':{blink}'=>"", '{clover}'=>"", ':[glasses]'=>"", ':[barf]'=>"", ':[reallymad]'=>"", ':[evil]'=>"" ); $post=str_replace(array_keys($smilies), array_values($smilies), $post); return $post; }