advanced();\n"; if ($settings['tinymce_enabled'] == 1) echo "\n"; if ($_GET['stype'] == "l") { if (isset($_POST['submit_link'])) { if ($_POST['link_name'] != "" && $_POST['link_url'] != "" && $_POST['link_description'] != "") { $submit_info['link_category'] = stripinput($_POST['link_category']); $submit_info['link_name'] = stripinput($_POST['link_name']); $submit_info['link_url'] = stripinput($_POST['link_url']); $submit_info['link_description'] = stripinput($_POST['link_description']); $result = dbquery("INSERT INTO ".DB_SUBMISSIONS." (submit_type, submit_user, submit_datestamp, submit_criteria) VALUES ('l', '".$userdata['user_id']."', '".time()."', '".addslashes(serialize($submit_info))."')"); add_to_title($locale['global_200'].$locale['400']); opentable($locale['400']); echo "

\n".$locale['410']."

\n"; echo "".$locale['411']."

\n"; echo "".$locale['412']."

\n
\n"; closetable(); } } else { $opts = ""; add_to_title($locale['global_200'].$locale['400']); opentable($locale['400']); $result = dbquery("SELECT * FROM ".DB_WEBLINK_CATS." WHERE ".groupaccess("weblink_cat_access")." ORDER BY weblink_cat_name"); if (dbrows($result)) { while ($data = dbarray($result)) { $opts .= "\n"; } echo $locale['420']."

\n"; echo "
\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n
".$locale['421']."
".$locale['422']."
".$locale['423']."
".$locale['424']."

\n"; echo "\n
\n
\n"; } else { echo "

\n".$locale['551']."

\n
\n"; } closetable(); } } elseif ($_GET['stype'] == "n") { if (isset($_POST['submit_news'])) { if ($_POST['news_subject'] != "" && $_POST['news_body'] != "") { $submit_info['news_subject'] = stripinput($_POST['news_subject']); $submit_info['news_cat'] = isnum($_POST['news_cat']) ? $_POST['news_cat'] : "0"; $submit_info['news_body'] = descript($_POST['news_body']); $submit_info['news_breaks'] = (isset($_POST['line_breaks']) ? "y" : "n"); $result = dbquery("INSERT INTO ".DB_SUBMISSIONS." (submit_type, submit_user, submit_datestamp, submit_criteria) VALUES('n', '".$userdata['user_id']."', '".time()."', '".addslashes(serialize($submit_info))."')"); add_to_title($locale['global_200'].$locale['450']); opentable($locale['450']); echo "

\n".$locale['460']."

\n"; echo "".$locale['461']."

\n"; echo "".$locale['412']."

\n
\n"; closetable(); } } else { if (isset($_POST['preview_news'])) { $news_subject = stripinput($_POST['news_subject']); $news_cat = isnum($_POST['news_cat']) ? $_POST['news_cat'] : "0"; $news_body = phpentities(descript(stripslash($_POST['news_body']))); $breaks = (isset($_POST['line_breaks']) ? " checked='checked'" : ""); opentable($news_subject); echo (isset($_POST['line_breaks']) ? nl2br($news_body) : $news_body); closetable(); tablebreak(); } if (!isset($_POST['preview_news'])) { $news_subject = ""; $news_cat = "0"; $news_body = ""; $breaks = " checked='checked'"; } $cat_list = ""; $sel = ""; $result2 = dbquery("SELECT * FROM ".DB_NEWS_CATS." ORDER BY news_cat_name"); if (dbrows($result2)) { while ($data2 = dbarray($result2)) { if (isset($_POST['preview_news'])) { $sel = ($news_cat == $data2['news_cat_id'] ? " selected" : ""); } $cat_list .= "\n"; } } add_to_title($locale['global_200'].$locale['450']); opentable($locale['450']); echo $locale['470']."

\n"; echo "
\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n
".$locale['471']."
".$locale['476']."
".$locale['472']."

\n"; echo "".$locale['473']."

\n"; echo "\n"; echo "\n
\n
\n"; closetable(); } } elseif ($_GET['stype'] == "a") { if (isset($_POST['submit_article'])) { if ($_POST['article_subject'] != "" && $_POST['article_body'] != "") { $submit_info['article_cat'] = isnum($_POST['article_cat']) ? $_POST['article_cat'] : "0"; $submit_info['article_subject'] = stripinput($_POST['article_subject']); $submit_info['article_snippet'] = descript($_POST['article_snippet']); $submit_info['article_body'] = descript($_POST['article_body']); $submit_info['article_breaks'] = (isset($_POST['line_breaks']) ? "y" : "n"); $result = dbquery("INSERT INTO ".DB_SUBMISSIONS." (submit_type, submit_user, submit_datestamp, submit_criteria) VALUES ('a', '".$userdata['user_id']."', '".time()."', '".addslashes(serialize($submit_info))."')"); add_to_title($locale['global_200'].$locale['500']); opentable($locale['500']); echo "

\n".$locale['510']."

\n"; echo "".$locale['511']."

\n"; echo "".$locale['412']."

\n
\n"; closetable(); } } else { if (isset($_POST['preview_article'])) { $article_cat = isnum($_POST['article_cat']) ? $_POST['article_cat'] : "0"; $article_subject = stripinput($_POST['article_subject']); $article_snippet = phpentities(descript(stripslash($_POST['article_snippet']))); $article_body = phpentities(descript(stripslash($_POST['article_body']))); $breaks = (isset($_POST['line_breaks']) ? " checked='checked'" : ""); opentable($article_subject); echo (isset($_POST['line_breaks']) ? nl2br($article_body) : $article_body); closetable(); tablebreak(); } if (!isset($_POST['preview_article'])) { $article_cat = "0"; $article_subject = ""; $article_snippet = ""; $article_body = ""; $breaks = " checked='checked'"; } $cat_list = ""; $sel = ""; add_to_title($locale['global_200'].$locale['500']); opentable($locale['500']); $result = dbquery("SELECT * FROM ".DB_ARTICLE_CATS." WHERE ".groupaccess("article_cat_access")." ORDER BY article_cat_name"); if (dbrows($result)) { while ($data = dbarray($result)) { if (isset($_POST['preview_article'])) { $sel = $article_cat == $data['article_cat_id'] ? " selected" : ""; } $cat_list .= "\n"; } echo $locale['520']."

\n"; echo "
\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n
".$locale['521']."
".$locale['522']."
".$locale['523']."
".$locale['524']."

\n"; echo "".$locale['525']."

\n"; echo "\n"; echo "\n
\n
\n"; } else { echo "

\n".$locale['551']."

\n
\n"; } closetable(); } } elseif ($_GET['stype'] == "p") { if (isset($_POST['submit_photo'])) { require_once INCLUDES."photo_functions_include.php"; $error = ""; $submit_info['photo_title'] = stripinput($_POST['photo_title']); $submit_info['photo_description'] = stripinput($_POST['photo_description']); $submit_info['album_id'] = isnum($_POST['album_id']) ? $_POST['album_id'] : "0"; if (is_uploaded_file($_FILES['photo_pic_file']['tmp_name'])) { $photo_types = array(".gif",".jpg",".jpeg",".png"); $photo_pic = $_FILES['photo_pic_file']; $photo_name = strtolower(substr($photo_pic['name'], 0, strrpos($photo_pic['name'], "."))); $photo_ext = strtolower(strrchr($photo_pic['name'],".")); $photo_dest = PHOTOS."submissions/"; if (!preg_match("/^[-0-9A-Z_\[\]]+$/i", $photo_name)) { $error = 1; } elseif ($photo_pic['size'] > $settings['photo_max_b']){ $error = 2; } elseif (!in_array($photo_ext, $photo_types)) { $error = 3; } else { $photo_file = image_exists($photo_dest, $photo_name.$photo_ext); move_uploaded_file($photo_pic['tmp_name'], $photo_dest.$photo_file); chmod($photo_dest.$photo_file, 0644); $imagefile = @getimagesize($photo_dest.$photo_file); if (!verify_image($photo_dest.$photo_file)) { $error = 3; unlink($photo_dest.$photo_file); } elseif ($imagefile[0] > $settings['photo_max_w'] || $imagefile[1] > $settings['photo_max_h']) { $error = 4; unlink($photo_dest.$photo_file); } else { $submit_info['photo_file'] = $photo_file; } } } add_to_title($locale['global_200'].$locale['570']); opentable($locale['570']); if (!$error) { $result = dbquery("INSERT INTO ".DB_SUBMISSIONS." (submit_type, submit_user, submit_datestamp, submit_criteria) VALUES ('p', '".$userdata['user_id']."', '".time()."', '".addslashes(serialize($submit_info))."')"); echo "

\n".$locale['580']."

\n"; echo "".$locale['581']."

\n"; echo "".$locale['412']."

\n
\n"; } else { echo "

\n".$locale['600']."

\n"; if ($error == 1) { echo $locale['601']; } elseif ($error == 2) { echo sprintf($locale['602'], $settings['photo_max_b']); } elseif ($error == 3) { echo $locale['603']; } elseif ($error == 4) { echo sprintf($locale['604'], $settings['photo_max_w'], $settings['photo_max_h']); } echo "

\n".$locale['581']."

\n
\n"; } closetable(); } else { $opts = ""; add_to_title($locale['global_200'].$locale['570']); opentable($locale['570']); $result = dbquery("SELECT * FROM ".DB_PHOTO_ALBUMS." WHERE ".groupaccess("album_access")." ORDER BY album_title"); if (dbrows($result)) { while ($data = dbarray($result)) $opts .= "\n"; echo $locale['620']."

\n"; echo "
\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n"; echo "\n\n"; echo "\n"; echo "\n
".$locale['621']."
".$locale['622']."
".$locale['623']."
\n"; echo "".sprintf($locale['624'], parsebytesize($settings['photo_max_b']), $settings['photo_max_w'], $settings['photo_max_h'])."
".$locale['625']."

\n"; echo "\n
\n
\n"; } else { echo "

\n".$locale['551']."

\n
\n"; } closetable(); } } else { redirect("index.php"); } require_once THEMES."templates/footer.php"; ?>