<?php
header("Content-type:text/html; charset=utf-8");
header("Cache-Control: no-store, no-cache, must-revalidate");
include("core.php"); //load main functions
include("conf.php"); //load config
echo "<!DOCTYPE html PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"><html><head>
<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\">
<link rel=\"shortcut icon\" href=\"logo/icon.php\"><meta http-equiv=\"refresh\" content=\"1;URL=index.php?action=viewforum&nick=$nick&pass=$pass&id=$forumas&page=1\"/><title>PIZDEC.RU</title><style type=\"text/css\">
body { font-weight: normal; font-size: normal; font-family: georgia; color: #FFFF00; background-color: #000033 }
a:link { text-decoration: underline; color : #FF00FF }
a:active { text-decoration: underline; color : #FFFF00 }
a:visited { text-decoration: underline; color : #00FFFF }
a:hover { text-decoration: none; color : #FFFF00 }
div { margin: 1px 0px 1px 0px; padding: 5px 5px 5px 5px; font-weight: bold;}
div.black{ background-color: #33CCFF; padding-top: 3px; padding-bottom: 3px; padding-left: 4px; border: 1px solid; text-align: center;}
div.blue{ background-color: #000066; text-align: left;}
a {font-weight: bold;}</style>
</head>
<body bgcolor=\"#000033\"><div class=\"black\"><img src=\"logo.gif\" alt=\"\"/><br/><font color=\"#FF0000\">Форум для риальных поцанов!</font></div>";
echo "<div>";
$nick=$_GET["nick"];
$pass=$_GET["pass"];
$tname=$_POST["tname"];
$ttext=$_POST["ttext"];
$forumas=$_GET["forumas"];
str_replace("$","\$",$tname);
str_replace("$","$$",$ttext);
echo connect($dbuser,$dbpass,$dbserver,$dbname);
echo login($nick,$pass);
echo "<br/><br/>";
global $logged;
if ($logged)
{
canuppost($nick,$pass,$forumas);
global $postlet;
if ($postlet) {
$phone = explode(" ",$HTTP_USER_AGENT);
$phone = $phone[0];
echo post(1,$nick,$pass,$tname,$ttext,$forumas,$phone);
echo "<br/>";
} else echo "You are not allowed to create a thread here!<br/>";
} else echo "Please login first!<br/>";
$tname=htmlspecialchars($tname);
$tname=substr($tname,0,100);
$tname=str_replace("$","",$tname);
$tname=str_replace("<","",$tname);
$tname=str_replace("<","",$tname);
$tname=str_replace(">","",$tname);
$tname=str_replace(">","",$tname);
$tname=str_replace("\"","",$tname);
$tname=str_replace("'","",$tname);
$tname=str_replace("\\","",$tname);
$tname=str_replace("&","",$tname);
$idpost=mysql_fetch_array(mysql_query("SELECT id FROM posts WHERE name='".$tname."' AND forum='".$forumas."'"));
if ($logged) echo "<a href=\"index.php?action=viewpost&idp=$idpost[0]&nick=$nick&pass=$pass&read=new&forumas=$forumas&page=1\"><font color=\"#00FF00\">Посмотреть сообщение</font></a><br/>";
echo "<br/><hr/><a href=\"index.php?nick=$nick&pass=$pass\"><font color=\"#FF00FF\">: Хуерумы</font></a><br/><a href=\"$ssite\"><font color=\"#FF0000\">$coppy</font></a>";
echo $endhtml;
?>