Some more UTF-8 support thanks to people at php.net Manual. ^_^

[idb/iDB.git.git] / inc / profilemain.php

<?php
/*
    This program is free software; you can redistribute it and/or modify
    it under the terms of the Revised BSD License.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    Revised BSD License for more details.

    Copyright 2004-2007 Cool Dude 2k - http://intdb.sourceforge.net/
    Copyright 2004-2007 Game Maker 2k - http://upload.idb.s1.jcink.com/

    $FileInfo: profilemain.php - Last Update: 11/20/2007 SVN 129 - Author: cooldude2k $
*/
$File3Name = basename($_SERVER['SCRIPT_NAME']);
if ($File3Name=="profilemain.php"||$File3Name=="/profilemain.php") {
        require('index.php');
        exit(); }

// Check if we can edit the profile
if($_SESSION['UserGroup']==$Settings['GuestGroup']||$GroupInfo['CanEditProfile']=="no") {
redirect("location",$basedir.url_maker($exfile['index'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['index'],$exqstr['index'],false));
ob_clean(); @header("Content-Type: text/plain; charset=".$Settings['charset']);
gzip_page($Settings['use_gzip'],$GZipEncode['Type']); @mysql_close(); die(); }
if(!isset($_POST['update'])) { $_POST['update'] = null; }
?>
<table class="Table3">
<tr style="width: 100%; vertical-align: top;">
        <td style="width: 15%; vertical-align: top;">
        <table id="ProfileLinks" class="Table1" style="width: 100%; float: left; vertical-align: top;">
<tr class="TableRow1">
<td class="TableRow1"><?php echo $ThemeSet['TitleIcon'] ?>Profile Settings</td>
</tr><tr class="TableRow2">
<td class="TableRow2">&nbsp;</td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Edit NotePad</a></td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=profile",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Edit Profile</a></td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=signature",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Edit Signature</a></td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=avatar",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Edit Avatar</a></td>
</tr><tr class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr></table><div>&nbsp;</div>
<table class="Table1" style="width: 100%; float: left; vertical-align: top;">
<tr class="TableRow1">
<td class="TableRow1"><?php echo $ThemeSet['TitleIcon'] ?>Board Settings</td>
</tr><tr class="TableRow2">
<td class="TableRow2">&nbsp;</td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=settings",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Board Settings</a></td>
</tr><tr class="TableRow3">
<td class="TableRow3"><a href="<?php echo url_maker($exfile['profile'],$Settings['file_ext'],"act=userinfo",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']); ?>">Change User Info</a></td>
</tr><tr class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr></table>
</td>
        <td style="width: 85%; vertical-align: top;">
<?php if($_POST['update']=="now"&&$_GET['act']!=null) {
$updateact = url_maker($exfile['profile'],$Settings['file_ext'],"act=".$_GET['act'],$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." Updating Settings";
@redirect("refresh",$basedir.url_maker($exfile['profile'],$Settings['file_ext'],"act=".$_GET['act'],$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile'],FALSE),"3");
$noteact = url_maker($exfile['profile'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." NotePad";
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $updateact; ?>">Updating Settings</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">Updating Settings</th>
</tr>
<tr class="TableRow3" id="ProfileUpdate">
<td class="TableRow3">
<div style="text-align: center;">
<br />Profile updated <a href="<?php echo $updateact; ?>">click here</a> to go back. ^_^<br />&nbsp;</div>
<?php } if($_GET['act']=="view") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$Notes=mysql_result($result,$i,"Notes");
$noteact = url_maker($exfile['profile'],$Settings['file_ext'],"act=view",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$notepadact = $noteact; $profiletitle = " ".$ThemeSet['TitleDivider']." NotePad";
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $noteact; ?>">NotePad</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">NotePad</th>
</tr>
<tr class="TableRow3" id="NotePadRow">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $notepadact; ?>"><div style="text-align: center;">
<label class="TextBoxLabel" for="NotePad">Your NotePad</label><br />
<textarea class="TextBox" name="NotePad" id="NotePad" style="width: 75%; height: 128px;" rows="10" cols="84"><?php echo $Notes; ?></textarea>
<input type="hidden" name="act" value="view" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<br /><input type="submit" class="Button" value="Save" />&nbsp;<input class="Button" type="reset" />
</div></form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['act']=="view"&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        $_POST['NotePad'] = htmlspecialchars($_POST['NotePad'], ENT_QUOTES, $Settings['charset']);
        $_POST['NotePad'] = remove_bad_entities($_POST['NotePad']);
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        $querynewskin = query("UPDATE `".$Settings['sqltable']."members` SET `Notes`='%s',`LastActive`=%i,`IP`='%s' WHERE `id`=%i", array($_POST['NotePad'],$NewDay,$NewIP,$_SESSION['UserID']));
                mysql_query($querynewskin); } } }
if($_GET['act']=="signature") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$Signature=mysql_result($result,$i,"Signature"); 
$signatureact = url_maker($exfile['profile'],$Settings['file_ext'],"act=signature",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." Signature Editor";
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $signatureact; ?>">Signature Editer</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">Signature Editor</th>
</tr>
<tr class="TableRow3" id="SignatureRow">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $signatureact; ?>"><div style="text-align: center;">
<label class="TextBoxLabel" for="Signature">Your Signature</label><br />
<textarea class="TextBox" name="Signature" id="Signature" style="width: 75%; height: 128px;" rows="10" cols="84"><?php echo $Signature; ?></textarea>
<input type="hidden" name="act" value="signature" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<br /><input type="submit" class="Button" value="Save" />&nbsp;<input class="Button" type="reset" />
</div></form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['act']=="signature"&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        $_POST['Signature'] = stripcslashes(htmlspecialchars($_POST['Signature'], ENT_QUOTES));
        //$_POST['Signature'] = preg_replace("/&amp;#(x[a-f0-9]+|[0-9]+);/i", "&#$1;", $_POST['Signature']);
        //$_POST['Signature'] = @remove_spaces($_POST['Signature']);
        $_POST['Signature'] = remove_bad_entities($_POST['Signature']);
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        $querynewskin = query("UPDATE `".$Settings['sqltable']."members` SET `Signature`='%s',`LastActive`=%i,`IP`='%s' WHERE `id`=%i", array($_POST['Signature'],$NewDay,$NewIP,$_SESSION['UserID']));
        mysql_query($querynewskin); } } }
if($_GET['act']=="avatar") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$User1Avatar=mysql_result($result,$i,"Avatar"); 
$User1AvatarSize=mysql_result($result,$i,"AvatarSize");
$avataract = url_maker($exfile['profile'],$Settings['file_ext'],"act=avatar",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." Avatar Editor";
$Pre1Avatar = $User1Avatar;
if ($User1Avatar==null) { $User1Avatar="http://"; }
if ($Pre1Avatar=="http://"||$Pre1Avatar==null) {
$Pre1Avatar=$ThemeSet['NoAvatar'];
$User1AvatarSize=$ThemeSet['NoAvatarSize']; }
$AvatarSize1=explode("x", $User1AvatarSize);
$AvatarSize1W=$AvatarSize1[0]; $AvatarSize1H=$AvatarSize1[1];
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $avataract; ?>">Avatar Editer</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">Avatar Editor</th>
</tr>
<tr class="TableRow3" id="AvatarEditor">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $avataract; ?>">
 <?php  /* Avatar Table Thanks For SeanJ's Help at http://seanj.jcink.com/ */  ?>
 <table class="AvatarTable" style="width: 100px; height: 100px; text-align: center;">
        <tr class="AvatarRow" style="width: 100%; height: 100%;">
                <td class="AvatarRow" style="width: 100%; height: 100%; text-align: center; vertical-align: middle;">
                <img src="<?php echo $Pre1Avatar; ?>" alt="<?php echo $_SESSION['MemberName']; ?>'s Avatar" title="<?php echo $_SESSION['MemberName']; ?>'s Avatar" style="border: 0px; width: <?php echo $AvatarSize1W; ?>px; height: <?php echo $AvatarSize1H; ?>px;" />
                </td>
        </tr>
 </table>
<table style="text-align: left;">
<tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Avatar">Your Avatar</label></td>
        <td style="width: 60%;"><input type="text" class="TextBox" name="Avatar" id="Avatar" value="<?php echo $User1Avatar; ?>" size="20" /></td>
        </tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="AvatarSizeW">Avatar Width</label></td>
        <td style="width: 60%;"><select size="1" name="AvatarSizeW" id="AvatarSizeW" class="TextBox">
        <option value="<?php echo $AvatarSize1W; ?>" selected="selected"><?php echo $AvatarSize1W; ?></option><?php echo "\n"; $r=1; while ($r <= 100) { ?><option value="<?php echo $r ?>"><?php echo $r; ?></option><?php echo "\n"; ++$r; } ?>
</select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="AvatarSizeH">Avatar Height</label></td>
        <td style="width: 60%;"><select size="1" name="AvatarSizeH" id="AvatarSizeH" class="TextBox">
<option value="<?php echo $AvatarSize1H; ?>" selected="selected"><?php echo $AvatarSize1H; ?></option><?php echo "\n"; $s=1; while ($s <= 100) { ?><option value="<?php echo $s ?>"><?php echo $s; ?></option><?php echo "\n"; ++$s; } ?>
</select></td>
</tr></table>
<table style="text-align: left;">
<tr style="text-align: left;">
<td style="width: 100%;">
<input type="hidden" name="act" value="avatar" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<input type="submit" class="Button" value="Save" />
<input class="Button" type="reset" />
</td></tr></table>
</form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['Avatar']!=null&&$_POST['AvatarSizeW']!=null&&$_POST['AvatarSizeH']!=null&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        if($_POST['AvatarSizeW']>=100) { $_POST['AvatarSizeW']=100; }
        if($_POST['AvatarSizeH']>=100) { $_POST['AvatarSizeH']=100; }
        $fullavatarsize = $_POST['AvatarSizeW']."x".$_POST['AvatarSizeH'];
        $_POST['Avatar'] = htmlentities($_POST['Avatar'], ENT_QUOTES, $Settings['charset']);
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        $_POST['Avatar'] = @remove_spaces($_POST['Avatar']);
        $querynewskin = query("UPDATE `".$Settings['sqltable']."members` SET `Avatar`='%s',`AvatarSize`='%s',`LastActive`=%i,`IP`='%s' WHERE `id`=%i", array($_POST['Avatar'],$fullavatarsize,$NewDay,$NewIP,$_SESSION['UserID']));
        mysql_query($querynewskin); } } }
if($_GET['act']=="settings") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$User1TimeZone=mysql_result($result,$i,"TimeZone"); 
$tsa_mem = explode(":",$User1TimeZone);
$TimeZoneArray = array("offset" => $User1TimeZone, "hour" => $tsa_mem[0], "minute" => $tsa_mem[1]);
$User1DST=mysql_result($result,$i,"DST");
$settingsact = url_maker($exfile['profile'],$Settings['file_ext'],"act=settings",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." Board Settings"; ?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $settingsact; ?>">Board Settings</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">Board Settings</th>
</tr>
<tr class="TableRow3" id="BoardSettings">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $settingsact; ?>">
<table style="text-align: left;">
<tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="YourOffSet">Your TimeZone:</label></td>
        <td style="width: 60%;"><select id="YourOffSet" name="YourOffSet" class="TextBox">
<option selected="selected" value="<?php echo $TimeZoneArray['hour']; ?>">Old Value (<?php echo $TimeZoneArray['hour'].":00 hours"; ?>)</option>
<?php
$plusi = 1; $minusi = 12;
$plusnum = 13; $minusnum = 0;
while ($minusi > $minusnum) {
echo "<option value=\"-".$minusi."\">GMT - ".$minusi.":00 hours</option>\n";
--$minusi; }
?>
<option value="0">GMT +/- 0:00 hours</option>
<?php
while ($plusi < $plusnum) {
echo "<option value=\"".$plusi."\">GMT + ".$plusi.":00 hours</option>\n";
++$plusi; }
?></select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="MinOffSet">Minute OffSet:</label></td>
        <td style="width: 60%;"><select id="MinOffSet" name="MinOffSet" class="TextBox">
<option selected="selected" value="<?php echo $TimeZoneArray['minute']; ?>">Old Value (<?php echo "0:".$TimeZoneArray['minute']." minutes"; ?>)</option>
<?php
$mini = 0; $minnum = 60;
while ($mini < $minnum) {
if(pre_strlen($mini)==2) { $showmin = $mini; }
if(pre_strlen($mini)==1) { $showmin = "0".$mini; }
echo "<option value=\"".$showmin."\">0:".$showmin." minutes</option>\n";
++$mini; }
?></select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="skin">Pick a CSS Theme</label></td>
        <td style="width: 60%;"><select id="skin" name="skin" class="TextBox">
<option selected="selected" value="<?php echo $_SESSION['Theme']; ?>">Old Value (<?php echo $_SESSION['Theme']; ?>)</option><?php
$skindir = dirname(realpath("settings.php"))."/".$SettDir['themes'];
if ($handle = opendir($skindir)) { $dirnum = null;
   while (false !== ($file = readdir($handle))) {
           if ($dirnum==null) { $dirnum = 0; }
           if (file_exists($skindir.$file."/info.php")) {
                   if ($file != "." && $file != "..") {
           include($skindir.$file."/info.php");
       $themelist[$dirnum] =  "<option value=\"".$file."\">".$ThemeInfo['ThemeName']."</option>";
           ++$dirnum; } } }
   closedir($handle); asort($themelist);
   $themenum=count($themelist); $themei=0; 
   while ($themei < $themenum) {
   echo $themelist[$themei]."\n";
   ++$themei; }
} ?></select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="DST">Is <span title="Daylight Savings Time">DST</span> / <span title="Summer Time">ST</span> on or off:</label></td>
        <td style="width: 60%;"><select id="DST" name="DST" class="TextBox"><?php echo "\n" ?>
<?php if($User1DST=="off"||$User1DST!="on") { ?>
<option selected="selected" value="off">off</option><?php echo "\n" ?><option value="on">on</option>
<?php } if($User1DST=="on") { ?>
<option selected="selected" value="on">on</option><?php echo "\n" ?><option value="off">off</option>
<?php } echo "\n" ?></select></td>
</tr></table>
<table style="text-align: left;">
<tr style="text-align: left;">
<td style="width: 100%;">
<input type="hidden" name="act" value="settings" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<input type="submit" class="Button" value="Save" />
<input class="Button" type="reset" />
</td></tr></table>
</form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['act']=="settings"&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        if(!is_numeric($_POST['YourOffSet'])) { $_POST['YourOffSet'] = "0"; }
        if($_POST['YourOffSet']>12) { $_POST['YourOffSet'] = "12"; }
        if($_POST['YourOffSet']<-12) { $_POST['YourOffSet'] = "-12"; }
        if(!is_numeric($_POST['MinOffSet'])) { $_POST['MinOffSet'] = "00"; }
        if($_POST['MinOffSet']>59) { $_POST['MinOffSet'] = "59"; }
        if($_POST['MinOffSet']<0) { $_POST['MinOffSet'] = "00"; }
        $_POST['YourOffSet'] = $_POST['YourOffSet'].":".$_POST['MinOffSet'];
        $_SESSION['UserTimeZone'] = $_POST['YourOffSet'];
        $_SESSION['UserDST'] = $_POST['DST'];
        $querynewskin = query("UPDATE `".$Settings['sqltable']."members` SET `UseTheme`='%s',`TimeZone`='%s',`DST`='%s',`LastActive`=%i,`IP`='%s' WHERE `id`=%i", array($_POST['skin'],$_POST['YourOffSet'],$_POST['DST'],$NewDay,$NewIP,$_SESSION['UserID']));
        mysql_query($querynewskin); } } }
if($_GET['act']=="profile") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$User1Interests=mysql_result($result,$i,"Interests"); 
$User1Title=mysql_result($result,$i,"Title");
$User1Website=mysql_result($result,$i,"Website"); 
$User1Gender=mysql_result($result,$i,"Gender");
$User1TimeZone=mysql_result($result,$i,"TimeZone");
$BirthDay=mysql_result($result,$i,"BirthDay");
$BirthMonth=mysql_result($result,$i,"BirthMonth");
$BirthYear=mysql_result($result,$i,"BirthYear");
$User1Birthday = "MM/DD/YYYY";
if($BirthMonth!=null&&$BirthDay!=null&&$BirthYear!=null) { 
        if($BirthYear=="0") { $BirthYear = "YYYY"; }
        if($BirthDay=="0") { $BirthDay = "DD"; }
        if($BirthMonth=="0") { $BirthMonth = "MM"; }
        if(pre_strlen($BirthMonth)=="1") { $BirthMonth = "0".$BirthMonth; }
        if(pre_strlen($BirthDay)=="1") { $BirthDay = "0".$BirthDay; }
        $User1Birthday = $BirthMonth."/".$BirthDay."/".$BirthYear; }
$tsa_mem = explode(":",$User1TimeZone);
$TimeZoneArray = array("offset" => $User1TimeZone, "hour" => $tsa_mem[0], "minute" => $tsa_mem[1]);
$User1DST=mysql_result($result,$i,"DST");
$profileact = url_maker($exfile['profile'],$Settings['file_ext'],"act=profile",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." Profile Editor";
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $profileact; ?>">Profile Editer</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">Profile Editor</th>
</tr>
<tr class="TableRow3" id="ProfileEditor">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $profileact; ?>">
<table style="text-align: left;">
<tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Interests">Your Interests</label></td>
        <td style="width: 60%;"><input type="text" class="TextBox" name="Interests" id="Interests" value="<?php echo $User1Interests; ?>" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Title">Your Title</label></td>
        <td style="width: 60%;"><input type="text" class="TextBox" name="Title" id="Title" value="<?php echo $User1Title; ?>" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Website">Your Website</label></td>
        <td style="width: 60%;"><input type="text" class="TextBox" name="Website" id="Website" value="<?php echo $User1Website; ?>" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="EventDay">Your Birthday</label></td>
        <td style="width: 60%;"><input maxlength="10" type="text" class="TextBox" name="EventDay" id="EventDay" value="<?php echo $User1Birthday; ?>" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="YourOffSet">Your TimeZone:</label></td>
        <td style="width: 60%;"><select id="YourOffSet" name="YourOffSet" class="TextBox">
<option selected="selected" value="<?php echo $TimeZoneArray['hour']; ?>">Old Value (<?php echo $TimeZoneArray['hour'].":00 hours"; ?>)</option>
<?php
$plusi = 1; $minusi = 12;
$plusnum = 13; $minusnum = 0;
while ($minusi > $minusnum) {
echo "<option value=\"-".$minusi."\">GMT - ".$minusi.":00 hours</option>\n";
--$minusi; }
?>
<option value="0">GMT +/- 0:00 hours</option>
<?php
while ($plusi < $plusnum) {
echo "<option value=\"".$plusi."\">GMT + ".$plusi.":00 hours</option>\n";
++$plusi; }
?></select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="MinOffSet">Minute OffSet:</label></td>
        <td style="width: 60%;"><select id="MinOffSet" name="MinOffSet" class="TextBox">
<option selected="selected" value="<?php echo $TimeZoneArray['minute']; ?>">Old Value (<?php echo "0:".$TimeZoneArray['minute']." minutes"; ?>)</option>
<?php
$mini = 0; $minnum = 60;
while ($mini < $minnum) {
if(pre_strlen($mini)==2) { $showmin = $mini; }
if(pre_strlen($mini)==1) { $showmin = "0".$mini; }
echo "<option value=\"".$showmin."\">0:".$showmin." minutes</option>\n";
++$mini; }
?></select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="YourGender">Your Gender:</label></td>
        <td style="width: 60%;"><select id="YourGender" name="YourGender" class="TextBox">
<option selected="selected" value="<?php echo $User1Gender; ?>">Old Value (<?php echo $User1Gender; ?>)</option>
<option value="Male">Male</option>
<option value="Female">Female</option>
<option value="Unknow">Unknow</option>
</select></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="DST">Is <span title="Daylight Savings Time">DST</span> / <span title="Summer Time">ST</span> on or off:</label></td>
        <td style="width: 60%;"><select id="DST" name="DST" class="TextBox"><?php echo "\n" ?>
<?php if($User1DST=="off"||$User1DST!="on") { ?>
<option selected="selected" value="off">off</option><?php echo "\n" ?><option value="on">on</option>
<?php } if($User1DST=="on") { ?>
<option selected="selected" value="on">on</option><?php echo "\n" ?><option value="off">off</option>
<?php } echo "\n" ?></select></td>
</tr></table>
<table style="text-align: left;">
<tr style="text-align: left;">
<td style="width: 100%;">
<input type="hidden" name="act" value="profile" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<input type="submit" class="Button" value="Save" />
<input class="Button" type="reset" />
</td></tr></table>
</form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['act']=="profile"&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        $_POST['Interests'] = htmlspecialchars($_POST['Interests'], ENT_QUOTES, $Settings['charset']);
        $_POST['Interests'] = @remove_spaces($_POST['Interests']);
        $_POST['Title'] = htmlspecialchars($_POST['Title'], ENT_QUOTES, $Settings['charset']);
        $_POST['Title'] = @remove_spaces($_POST['Title']);
        $_POST['Website'] = htmlentities($_POST['Website'], ENT_QUOTES, $Settings['charset']);
        $_POST['Website'] = @remove_spaces($_POST['Website']);
        if(!isset($_POST['EventDay'])) { $_POST['EventDay'] = null; }
        if($_POST['EventDay']!=null) {
        $BirthExpl = explode("/",$_POST['EventDay']);
        if(count($BirthExpl)=="3") {
        if(is_numeric($BirthExpl[0])&&is_numeric($BirthExpl[1])&&is_numeric($BirthExpl[2])) {
        if(pre_strlen($BirthExpl[0])=="1") { $BirthExpl[0] = "0".$BirthExpl[0]; }
        if(pre_strlen($BirthExpl[1])=="1") { $BirthExpl[1] = "0".$BirthExpl[1]; }
        if(pre_strlen($BirthExpl[0])=="2"&&pre_strlen($BirthExpl[1])=="2"&&pre_strlen($BirthExpl[2])=="4") {
        $BirthIn = mktime(12,12,12,$BirthExpl[0],$BirthExpl[1],$BirthExpl[2]);
        $BirthMonth=GMTimeChange("m",$BirthIn,0,0,"off");
        $BirthDay=GMTimeChange("d",$BirthIn,0,0,"off");
        $BirthYear=GMTimeChange("Y",$BirthIn,0,0,"off"); }
        if(pre_strlen($BirthExpl[0])!="2"||pre_strlen($BirthExpl[1])!="2"||pre_strlen($BirthExpl[2])!="4") { 
                $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
        if (!is_numeric($BirthExpl[0])||!is_numeric($BirthExpl[1])||!is_numeric($BirthExpl[2])) { 
                $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
        if(count($BirthExpl)!="3") { $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; } }
        if($_POST['EventDay']==null) { $BirthMonth="0"; $BirthDay="0"; $BirthYear="0"; }
        if(!is_numeric($_POST['YourOffSet'])) { $_POST['YourOffSet'] = "0"; }
        if($_POST['YourOffSet']>12) { $_POST['YourOffSet'] = "12"; }
        if($_POST['YourOffSet']<-12) { $_POST['YourOffSet'] = "-12"; }
        if(!is_numeric($_POST['MinOffSet'])) { $_POST['MinOffSet'] = "00"; }
        if($_POST['MinOffSet']>59) { $_POST['MinOffSet'] = "59"; }
        if($_POST['MinOffSet']<0) { $_POST['MinOffSet'] = "00"; }
        $_POST['YourOffSet'] = $_POST['YourOffSet'].":".$_POST['MinOffSet'];
        $_SESSION['UserTimeZone'] = $_POST['YourOffSet'];
        $_SESSION['UserDST'] = $_POST['DST'];
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        $querynewprofile = query("UPDATE `".$Settings['sqltable']."members` SET `Interests`='%s',`Title`='%s',`Website`='%s',`TimeZone`='%s',`Gender`='%s',`DST`='%s',`LastActive`=%i,`BirthMonth`=%i,`BirthDay`=%i,`BirthYear`=%i,`IP`='%s' WHERE `id`=%i", array($_POST['Interests'],$_POST['Title'],$_POST['Website'],$_POST['YourOffSet'],$_POST['YourGender'],$_POST['DST'],$NewDay,$BirthMonth,$BirthDay,$BirthYear,$NewIP,$_SESSION['UserID']));
        mysql_query($querynewprofile); } } }
if($_GET['act']=="userinfo") {
if($_POST['update']!="now") {
$query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
$result=mysql_query($query);
$num=mysql_num_rows($result);
$i=0;
$YourID=mysql_result($result,$i,"id");
$User1Email=mysql_result($result,$i,"Email"); 
$userinfoact = url_maker($exfile['profile'],$Settings['file_ext'],"act=userinfo",$Settings['qstr'],$Settings['qsep'],$prexqstr['profile'],$exqstr['profile']);
$profiletitle = " ".$ThemeSet['TitleDivider']." User Info Editer";
?>
<div class="Table1Border">
<table class="Table1" style="width: 100%;">
<tr class="TableRow1">
<td class="TableRow1"><span style="float: left;">
<?php echo $ThemeSet['TitleIcon'] ?><a href="<?php echo $userinfoact; ?>">User Info Editer</a>
</span><span style="float: right;">&nbsp;</span></td>
</tr>
<tr id="ProfileTitle" class="TableRow2">
<th class="TableRow2">User Info Editer</th>
</tr>
<tr class="TableRow3" id="UserInfoEditor">
<td class="TableRow3">
<form style="display: inline;" method="post" action="<?php echo $userinfoact; ?>">
<table style="text-align: left;">
<tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="OldPass">Insert old Password:</label></td>
        <td style="width: 60%;"><input maxlength="30" type="password" class="TextBox" name="OldPass" size="20" id="OldPass" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Password">Insert a Password:</label></td>
        <td style="width: 60%;"><input maxlength="30" type="password" class="TextBox" name="Password" size="20" id="Password" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="RePassword">ReInsert a Password:</label></td>
        <td style="width: 60%;"><input maxlength="30" type="password" class="TextBox" name="RePassword" size="20" id="RePassword" /></td>
</tr><tr style="text-align: left;">
        <td style="width: 40%;"><label class="TextBoxLabel" for="Email">Insert Your Email:</label></td>
        <td style="width: 60%;"><input type="text" class="TextBox" name="Email" size="20" id="Email" value="<?php echo $User1Email; ?>" /></td>
</tr></table>
<table style="text-align: left;">
<tr style="text-align: left;">
<td style="width: 100%;">
<input type="hidden" name="act" value="userinfo" style="display: none;" />
<input type="hidden" name="update" value="now" style="display: none;" />
<input type="submit" class="Button" value="Save" />
<input class="Button" type="reset" />
</td></tr></table>
</form></td>
</tr>
<tr id="ProfileEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr>
</table>
</div>
<?php @mysql_free_result($result); }
if($_POST['update']=="now") {
if($_POST['act']=="userinfo"&&
        $_SESSION['UserGroup']!=$Settings['GuestGroup']) {
        $query = query("SELECT * FROM `".$Settings['sqltable']."members` WHERE `id`=%i", array($_SESSION['UserID']));
        $result=mysql_query($query);
        $num=mysql_num_rows($result);
        $i=0;
        $OldPassword=mysql_result($result,$i,"Password");
        $OldHashType=mysql_result($result,$i,"HashType");
        $OldJoined=mysql_result($result,$i,"Joined");
        $OldSalt=mysql_result($result,$i,"Salt");
        $UpdateHash = false; $NewSalt = salt_hmac(); 
if($OldHashType=="ODFH") { 
        $YourPassword = sha1(md5($_POST['OldPass']));
        $NewPassword = b64e_hmac($_POST['Password'],$OldJoined,$NewSalt,"sha1"); }
if($OldHashType=="DF4H") { 
        $YourPassword = b64e_hmac($_POST['OldPass'],$OldJoined,$OldSalt,"sha1");
        $NewPassword = b64e_hmac($_POST['Password'],$OldJoined,$NewSalt,"sha1"); }
if($OldHashType=="iDBH"&&$UpdateHash!=true) { 
        $YourPassword = b64e_hmac($_POST['OldPass'],$OldJoined,$OldSalt,"sha1");
        $NewPassword = b64e_hmac($_POST['Password'],$OldJoined,$NewSalt,"sha1"); }
if($YourPassword!=$OldPassword) { $Error="Yes"; ?>
<div class="TableMessage" style="text-align: center;">Your old Password did not match.<br />&nbsp;</div>
<?php } if(pre_strlen($_POST['Password'])=="30") { $Error="Yes"; ?>
<div class="TableMessage" style="text-align: center;">Your password is too big.<br />&nbsp;</div>
<?php } if(pre_strlen($_POST['OldPass'])=="30") { $Error="Yes"; ?>
<div class="TableMessage" style="text-align: center;">Your old password is too big.<br />&nbsp;</div>
<?php } if ($_POST['Password']!=$_POST['RePassword']) { $Error="Yes";  ?>
<div class="TableMessage" style="text-align: center;">Your passwords did not match.<br />&nbsp;</div>
<?php }
        $NewDay=GMTimeStamp();
        $NewIP=$_SERVER['REMOTE_ADDR'];
        if ($Error!="Yes") { $_SESSION['UserPass']=$NewPassword;
        if($cookieDomain==null) {
        @setcookie("SessPass", $NewPassword, time() + (7 * 86400), $cbasedir); }
        if($cookieDomain!=null) {
        if($cookieSecure==true) {
        @setcookie("SessPass", $NewPassword, time() + (7 * 86400), $cbasedir, $cookieDomain, 1); }
        if($cookieSecure==false) {
        @setcookie("SessPass", $NewPassword, time() + (7 * 86400), $cbasedir, $cookieDomain); } }
        $_POST['Email'] = @remove_spaces($_POST['Email']);
        $querynewuserinfo = query("UPDATE `".$Settings['sqltable']."members` SET `Password`='%s',`HashType`='iDBH',`Email`='%s',`LastActive`=%i,`IP`='%s',`Salt`='%s' WHERE `id`=%i", array($NewPassword,$_POST['Email'],$NewDay,$NewIP,$NewSalt,$_SESSION['UserID']));
        mysql_query($querynewuserinfo); } } } }
?>
<?php if($_POST['update']=="now"&&$_GET['act']!=null) {
        $profiletitle = " ".$ThemeSet['TitleDivider']." Updating Settings"; ?>
</td></tr>
<tr id="ProfileTitleEnd" class="TableRow4">
<td class="TableRow4">&nbsp;</td>
</tr></table></div><?php } ?>
</td></tr>
</table>
<div>&nbsp;</div>