Changeset 891 for trunk/includes/Global.php

Timestamp:

Jan 13, 2023, 12:40:34 AM (23 months ago)

Author:

chronos

Message:

• Fixed: HTML BBCode parser not supported for newer PHP 8.1. Replaced by simpler solution.

File:

• trunk/includes/Global.php (modified) (3 diffs)

trunk/includes/Global.php

@@ -10 +10 @@
 include_once(dirname(__FILE__).'/../Application/UpdateTrace.php');
 include_once(dirname(__FILE__).'/PageEdit.php');
-require_once(dirname(__FILE__).'/../HTML/BBCodeParser2.php');
 
 // Back compatibility, will be removed
@@ -134 +133 @@
   $DbRow = $DbResult->fetch_assoc();
   $lang = $DbRow['Code'];
-  $url = 'http://translate.google.cz/?sl=en&tl='.$lang.'&text='.$text;
+  $url = 'https://translate.google.cz/?sl=en&tl='.$lang.'&text='.$text;
 
   error_reporting(E_ALL ^ E_WARNING);
@@ -786 +785 @@
     else return $_SERVER['PHP_SELF'];
 }
+
+function ShowBBcodes($text)
+{
+    // NOTE : I had to update this sample code with below line to prevent obvious attacks as pointed out by many users.
+    // Always ensure that user inputs are scanned and filtered properly.
+    $text  = htmlspecialchars($text, ENT_QUOTES, 'UTF-8');
+
+    // BBcode array
+    $find = array(
+      '~\[b\](.*?)\[/b\]~s',
+      '~\[i\](.*?)\[/i\]~s',
+      '~\[u\](.*?)\[/u\]~s',
+      '~\[quote\](.*?)\[/quote\]~s',
+      '~\[size=(.*?)\](.*?)\[/size\]~s',
+      '~\[color=(.*?)\](.*?)\[/color\]~s',
+      '~\[url\]((?:ftp|https?)://.*?)\[/url\]~s',
+      '~\[img\](https?://.*?\.(?:jpg|jpeg|gif|png|bmp))\[/img\]~s'
+    );
+
+    // HTML tags to replace BBcode
+    $replace = array(
+      '<b>$1</b>',
+      '<i>$1</i>',
+      '<span style="text-decoration:underline;">$1</span>',
+      '<pre>$1</'.'pre>',
+      '<span style="font-size:$1px;">$2</span>',
+      '<span style="color:$1;">$2</span>',
+      '<a href="$1">$1</a>',
+      '<img src="$1" alt="" />'
+    );
+
+    // Replacing the BBcodes with corresponding HTML tags
+    return preg_replace($find, $replace, $text);
+}