$0', $var); $var = preg_replace('(\[b\](.+?)\[\/b\])is', '$1', $var); $var = preg_replace('(\[i\](.+?)\[\/i\])is', '$1', $var); $var = preg_replace('(\[u\](.+?)\[\/u\])is', '$1', $var); return trim($var); } if (isset($_POST['password'])) { $password = md5($_POST['password']); if ($password == md5(ADMIN_PASS)) { setcookie('password', $password); } } else { $password = isset($_COOKIE['password']) ? $_COOKIE['password'] : NULL; } if (isset($_GET['admin']) && $_GET['admin'] == 'logout') { setcookie('password', ''); unset($_COOKIE['password'], $password); header("Location: ".$_SERVER['PHP_SELF']); exit; } else if (isset($_GET['admin']) && $_GET['admin'] == 'delete') { if ($password == md5(ADMIN_PASS)) { if ($file = fopen('./guestbookdb.php', 'r')) { $data = ''; while (!feof($file)) { $line = fgets($file, 4096); list($timestamp) = explode(chr(02), trim($line)); if ($timestamp == $_GET['msg']) { $data .= fread($file, filesize('./guestbookdb.php')); fclose($file); if (!$file = fopen('./guestbookdb.php', 'w')) { break; } fwrite($file, $data); fclose($file); break; } else { $data .= $line; } } } } header("Location: ".$_SERVER['PHP_SELF']); exit; } if($_SERVER['REQUEST_METHOD'] == 'POST') { $_POST = str_replace(chr(02), ' ', $_POST); $ip = $_SERVER['REMOTE_ADDR']; $name = strip_chars($_POST['name']); $subject = strip_chars($_POST['subject']); $email = strip_chars($_POST['email']); $website = strip_chars($_POST['website']); $message = str_replace("\n", "
", strip_chars($_POST['message'])); $message = bbcode($message); $timestamp = time(); if (!(empty($name) || empty($message))) { $file = fopen('./guestbookdb.php', 'a+'); $data = $timestamp . chr(02) . $name . chr(02) . $subject . chr(02) . $email . chr(02) . $website . chr(02) . $message . chr(02) . $ip . "\n"; fwrite($file, $data); fclose($file); } header("Location: ".$_SERVER['PHP_SELF']); exit; } ?> Welcome to my guestbook! You can leave a message- Thanks! \n"; echo "

Guestbook login

\n"; echo "

\n"; echo "\n"; } } else { echo "

Welcome to my guestbook! You can leave a message- Thanks!

\n"; if ($password != md5(ADMIN_PASS)) { echo "
\n"; echo "\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
Name:
Subject:
E-mail:
Website:
Message:
"; echo ""; echo "
\n"; echo "
\n"; } if(filesize('./guestbookdb.php') == 0) { echo "No posts found.
\n"; } else { $items = file('./guestbookdb.php'); $items = array_reverse($items); str_replace("<", "<", $items); str_replace(">", ">", $items); str_replace("\n", "
\n", $items); foreach($items as $line) { list($timestamp, $name, $subject, $email, $website, $message, $ip) = explode(chr(02), trim($line)); $topic = "\n
"; $topic .= date('m/d/Y H:i:s',$timestamp) . " "; if ($email != "") { $topic .= ""; } $topic .= "$name"; if ($email != "") { $topic .= ""; } if ($website != "") { $website = eregi_replace("^http://", "", $website); $topic .= " ($website) - "; } else { $topic .= " - "; } $topic .= "$subject
\n"; $topic .= "
$message
\n"; echo $topic; if ($password == md5(ADMIN_PASS)) { echo "
[delete] [whois]
\n"; } echo "
\n"; } } echo "
\n"; if ($password == md5(ADMIN_PASS)) { echo "Logout
\n"; } } ?>