rocksolid-light/Rocksolid_Light/rocksolid/search.php

<?php
include "config.inc.php";
include "newsportal.php";
include $config_dir.'/admin.inc.php';

if(!isset($_POST['key']) || $_POST['key'] !== hash('md5', $admin['key'])) {
include "head.inc"; 
?>

<body>
<table width=100% border="0" align="center" cellpadding="0" cellspacing="1">
<tr>
<form name="form1" method="post" action="search.php">
<td>
<table width="100%" border="0" cellpadding="3" cellspacing="1">
<tr>
<td colspan="3"><strong>Search recent messages in <?php echo $config_name; ?></strong><br />(searches last <?php echo $maxarticles; ?> articles per group)</td>
</tr>
<tr></tr>
<tr>
<td width="78"><strong>Search Terms</strong></td>
<td width="6">:</td>
<td width="294"><input name="terms" type="text" id="terms"></td>
</tr>
<tr></tr>
<tr>
<td><input type="radio" name="searchpoint" value="subject" checked="checked"/>Subject</td>
<td><input type="radio" name="searchpoint" value="name"/>Poster</td>
<td><input type="radio" name="searchpoint" value="msgid"/>Message-ID</td>
</tr>
<tr>
<td><input name="command" type="hidden" id="command" value="Search" readonly="readonly"></td>
<?php echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';?>
</tr>
<tr>
<td>&nbsp;</td>
<td>&nbsp;</td>
<td><input type="submit" name="Submit" value="Search"></td>
</tr>
<tr><td>
<td></td><td></td>
</td></tr>
</table>
</td>
</form>
</tr>
</table>
</body>
</html>

<?php exit(0); } 

if(isset($frames_on) && $frames_on === true) {
?>
<script>
    var contentURL=window.location.pathname+window.location.search+window.location.hash;
    if ( window.self !== window.top ) {
        /* Great! now we move along */
    } else {
        window.location.href = '../index.php?content='+encodeURIComponent(contentURL);
    }
    top.history.replaceState({}, 'Title', 'index.php?content='+encodeURIComponent(contentURL));
</script>

<?php
}

# Maximum number of articles to show
$maxdisplay = 1000;

$thissite = '.';

$groupconfig=$config_path."/groups.txt";

$title.=' - search results for: '.$_POST[terms];
include "head.inc";

ob_start();
if (isset($_POST['thisgroup'])) {
    echo '<h1 class="np_thread_headline">'.$grouplist[0].' (latest)</h1>';
    echo '<table cellpadding="0" cellspacing="0" width="100%" class="np_buttonbar"><tr>';
// Article List button
    echo '<td>';
    echo '<form action="'.$file_thread.'">';
    echo '<input type="hidden" name="group" value="'.$grouplist[0].'"/>';
    echo '<button class="np_button_link" type="submit">'.$text_article["back_to_group"].'</button>';
    echo '</form>';
    echo '</td>';
// Newsgroups button (hidden)
    echo '<td>';
    echo '<form action="'.$file_index.'">';
    echo '<button class="np_button_hidden" type="submit">'.$text_thread["button_grouplist"].'</button>';
    echo '</form>';
    echo '</td>';
    echo '</tr></table>';
} else { 
    echo '<h1 class="np_thread_headline">';
    echo '<a href="'.$file_index.'" target='.$frame['menu'].'>'.basename(getcwd()).'</a> / ';
    echo 'search results for: '.$_POST['terms'].'</h1>';
    echo '<table cellpadding="0" cellspacing="0" width="100%" class="np_buttonbar"><tr>';
// Newsgroups button (hidden)
    echo '<td>';
    echo '<form action="'.$file_index.'">';
    echo '<button class="np_button_hidden" type="submit">'.$text_thread["button_grouplist"].'</button>';
    echo '</form>';
    echo '</td>';
    echo '</tr></table>';
}
echo '<table cellspacing="0" width="100%" class="np_results_table">';

# Iterate through groups

$results=0;
  if(isset($_COOKIE['tzo'])) {
    $offset=$_COOKIE['tzo'];
  } else {
    $offset=$CONFIG['timezone'];
  }
	$searchterms = "%".$_POST['terms']."%";
	# Prepare search database
  	$database = $spooldir.'/'.$config_name.'-overview.db3';
  	$table = 'overview';
  	$dbh = rslight_db_open($database, $table);
	if($dbh) {
//	$stmt = $dbh->prepare("SELECT * FROM $table WHERE ".$_POST['searchpoint']." like '%".$_POST['terms']."%' ORDER BY date DESC");
	  $stmt = $dbh->prepare("SELECT * FROM $table WHERE ".$_POST['searchpoint']." like :terms ORDER BY date DESC");
	  $stmt->bindParam(':terms', $searchterms);
	  $stmt->execute();
	  while($overviewline = $stmt->fetch()) {
		    # Generate link
		    $url = $thissite."/article-flat.php?id=".$overviewline['number']."&group="._rawurlencode($overviewline['newsgroup'])."#".$overviewline['number'];
		    $groupurl = $thissite."/thread.php?group="._rawurlencode($overviewline['newsgroup']);
		    $fromoutput = explode("<", html_entity_decode($overviewline['name']));

		// Use local timezone if possible
		$ts = new DateTime(date($text_header["date_format"], $overviewline['date']), new DateTimeZone('UTC'));
      		$ts->add(DateInterval::createFromDateString($offset.' minutes'));
      		if($offset != 0) {
        		$newdate = $ts->format('D, j M Y H:i');
      		} else {
        		$newdate = $ts->format($text_header["date_format"]);
      		}
      		unset($ts);
		    
		$fromline=address_decode(headerDecode($overviewline['name']),"nirgendwo");
      		if (!isset($fromline[0]["personal"])) {
        		$lastname=$fromline[0]["mailbox"];;
      		} else {
        		$lastname=$fromline[0]["personal"];
      		}
		if(($results % 2) != 0){
			    echo '<tr class="np_result_line1"><td style="word-wrap:break-word";>';
		    } else {
			    echo '<tr class="np_result_line2"><td style="word-wrap:break-word";>';
		    }
		    echo '<p class=np_ob_subject>';
		    echo '<b><a href="'.$url.'">'.mb_decode_mimeheader($overviewline['subject'])."</a></b>\r\n";
		    echo '</p><p class=np_ob_group>';
		    echo '<a href="'.$groupurl.'">'.$overviewline['newsgroup'].'</a>';
		    echo '</p>';
  
	   	    echo '<p class=np_ob_posted_date>Posted: '.$newdate.' by: '.mb_decode_mimeheader($lastname).'</p>';
		    echo '</td></tr>';
		    if($results++ > ($maxdisplay - 2))
                        break;
	  }
	  $dbh = null;
}

echo '</table>';
echo "<p class=np_ob_tail><b>".$results."</b> matching articles found.</p>\r\n";
#echo "<center><i>Rocksolid Overboard</i> version ".$version;
include "tail.inc";

$thispage = ob_get_contents();

ob_end_clean();

echo $thispage;

function highlightStr($haystack, $needle) {
    preg_match_all("/$needle+/i", $haystack, $matches);
    if (is_array($matches[0]) && count($matches[0]) >= 1) {
	foreach ($matches[0] as $match) {
	    $haystack = str_replace($match, '<b>'.$match.'</b>', $haystack);
	}
    }
    return $haystack;
}
?>
</body>
</html>
Initial commit 2020-11-29 01:55:31 +01:00			`<?php`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00			`include "config.inc.php";`
			`include "newsportal.php";`
			`include $config_dir.'/admin.inc.php';`

			`if(!isset($_POST['key']) \|\| $_POST['key'] !== hash('md5', $admin['key'])) {`
			`include "head.inc";`
Initial commit 2020-11-29 01:55:31 +01:00			`?>`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00
Initial commit 2020-11-29 01:55:31 +01:00			`<body>`
			`<table width=100% border="0" align="center" cellpadding="0" cellspacing="1">`
			`<tr>`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00			`<form name="form1" method="post" action="search.php">`
Initial commit 2020-11-29 01:55:31 +01:00			`<td>`
			`<table width="100%" border="0" cellpadding="3" cellspacing="1">`
			`<tr>`
			`<td colspan="3"><strong>Search recent messages in <?php echo $config_name; ?></strong><br />(searches last <?php echo $maxarticles; ?> articles per group)</td>`
			`</tr>`
			`<tr></tr>`
			`<tr>`
			`<td width="78"><strong>Search Terms</strong></td>`
			`<td width="6">:</td>`
			`<td width="294"><input name="terms" type="text" id="terms"></td>`
			`</tr>`
			`<tr></tr>`
			`<tr>`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00			`<td><input type="radio" name="searchpoint" value="subject" checked="checked"/>Subject</td>`
			`<td><input type="radio" name="searchpoint" value="name"/>Poster</td>`
			`<td><input type="radio" name="searchpoint" value="msgid"/>Message-ID</td>`
Initial commit 2020-11-29 01:55:31 +01:00			`</tr>`
			`<tr>`
			`<td><input name="command" type="hidden" id="command" value="Search" readonly="readonly"></td>`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00			`<?php echo '<input type="hidden" name="key" value="'.hash('md5', $admin['key']).'">';?>`
Initial commit 2020-11-29 01:55:31 +01:00			`</tr>`
			`<tr>`
			`<td> </td>`
			`<td> </td>`
			`<td><input type="submit" name="Submit" value="Search"></td>`
			`</tr>`
			`<tr><td>`
			`<td></td><td></td>`
			`</td></tr>`
			`</table>`
			`</td>`
			`</form>`
			`</tr>`
			`</table>`
			`</body>`
			`</html>`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00
			`<?php exit(0); }`

			`if(isset($frames_on) && $frames_on === true) {`
			`?>`
			`<script>`
			`var contentURL=window.location.pathname+window.location.search+window.location.hash;`
			`if ( window.self !== window.top ) {`
			`/* Great! now we move along */`
			`} else {`
			`window.location.href = '../index.php?content='+encodeURIComponent(contentURL);`
			`}`
			`top.history.replaceState({}, 'Title', 'index.php?content='+encodeURIComponent(contentURL));`
			`</script>`

			`<?php`
			`}`

			`# Maximum number of articles to show`
			`$maxdisplay = 1000;`

			`$thissite = '.';`

			`$groupconfig=$config_path."/groups.txt";`

			`$title.=' - search results for: '.$_POST[terms];`
			`include "head.inc";`

			`ob_start();`
			`if (isset($_POST['thisgroup'])) {`
			`echo '<h1 class="np_thread_headline">'.$grouplist[0].' (latest)</h1>';`
			`echo '<table cellpadding="0" cellspacing="0" width="100%" class="np_buttonbar"><tr>';`
			`// Article List button`
			`echo '<td>';`
			`echo '<form action="'.$file_thread.'">';`
			`echo '<input type="hidden" name="group" value="'.$grouplist[0].'"/>';`
			`echo '<button class="np_button_link" type="submit">'.$text_article["back_to_group"].'</button>';`
			`echo '</form>';`
			`echo '</td>';`
			`// Newsgroups button (hidden)`
			`echo '<td>';`
			`echo '<form action="'.$file_index.'">';`
			`echo '<button class="np_button_hidden" type="submit">'.$text_thread["button_grouplist"].'</button>';`
			`echo '</form>';`
			`echo '</td>';`
			`echo '</tr></table>';`
			`} else {`
			`echo '<h1 class="np_thread_headline">';`
			`echo '<a href="'.$file_index.'" target='.$frame['menu'].'>'.basename(getcwd()).'</a> / ';`
			`echo 'search results for: '.$_POST['terms'].'</h1>';`
			`echo '<table cellpadding="0" cellspacing="0" width="100%" class="np_buttonbar"><tr>';`
			`// Newsgroups button (hidden)`
			`echo '<td>';`
			`echo '<form action="'.$file_index.'">';`
			`echo '<button class="np_button_hidden" type="submit">'.$text_thread["button_grouplist"].'</button>';`
			`echo '</form>';`
			`echo '</td>';`
			`echo '</tr></table>';`
			`}`
			`echo '<table cellspacing="0" width="100%" class="np_results_table">';`

			`# Iterate through groups`

			`$results=0;`
			`if(isset($_COOKIE['tzo'])) {`
			`$offset=$_COOKIE['tzo'];`
			`} else {`
			`$offset=$CONFIG['timezone'];`
			`}`
			`$searchterms = "%".$_POST['terms']."%";`
			`# Prepare search database`
			`$database = $spooldir.'/'.$config_name.'-overview.db3';`
			`$table = 'overview';`
			`$dbh = rslight_db_open($database, $table);`
			`if($dbh) {`
Add db support to nocem.php and clean up var 2020-12-15 10:12:06 +01:00			`// $stmt = $dbh->prepare("SELECT * FROM $table WHERE ".$_POST['searchpoint']." like '%".$_POST['terms']."%' ORDER BY date DESC");`
			`$stmt = $dbh->prepare("SELECT * FROM $table WHERE ".$_POST['searchpoint']." like :terms ORDER BY date DESC");`
Introduce modified files using database support and remove result.php 2020-12-12 05:16:13 +01:00			`$stmt->bindParam(':terms', $searchterms);`
			`$stmt->execute();`
			`while($overviewline = $stmt->fetch()) {`
			`# Generate link`
			`$url = $thissite."/article-flat.php?id=".$overviewline['number']."&group="._rawurlencode($overviewline['newsgroup'])."#".$overviewline['number'];`
			`$groupurl = $thissite."/thread.php?group="._rawurlencode($overviewline['newsgroup']);`
			`$fromoutput = explode("<", html_entity_decode($overviewline['name']));`

			`// Use local timezone if possible`
			`$ts = new DateTime(date($text_header["date_format"], $overviewline['date']), new DateTimeZone('UTC'));`
			`$ts->add(DateInterval::createFromDateString($offset.' minutes'));`
			`if($offset != 0) {`
			`$newdate = $ts->format('D, j M Y H:i');`
			`} else {`
			`$newdate = $ts->format($text_header["date_format"]);`
			`}`
			`unset($ts);`

			`$fromline=address_decode(headerDecode($overviewline['name']),"nirgendwo");`
			`if (!isset($fromline[0]["personal"])) {`
			`$lastname=$fromline[0]["mailbox"];;`
			`} else {`
			`$lastname=$fromline[0]["personal"];`
			`}`
			`if(($results % 2) != 0){`
			`echo '<tr class="np_result_line1"><td style="word-wrap:break-word";>';`
			`} else {`
			`echo '<tr class="np_result_line2"><td style="word-wrap:break-word";>';`
			`}`
			`echo '<p class=np_ob_subject>';`
			`echo '<b><a href="'.$url.'">'.mb_decode_mimeheader($overviewline['subject'])."</a></b>\r\n";`
			`echo '</p><p class=np_ob_group>';`
			`echo '<a href="'.$groupurl.'">'.$overviewline['newsgroup'].'</a>';`
			`echo '</p>';`

			`echo '<p class=np_ob_posted_date>Posted: '.$newdate.' by: '.mb_decode_mimeheader($lastname).'</p>';`
			`echo '</td></tr>';`
			`if($results++ > ($maxdisplay - 2))`
			`break;`
			`}`
			`$dbh = null;`
			`}`

			`echo '</table>';`
			`echo "<p class=np_ob_tail><b>".$results."</b> matching articles found.</p>\r\n";`
			`#echo "<center><i>Rocksolid Overboard</i> version ".$version;`
			`include "tail.inc";`

			`$thispage = ob_get_contents();`

			`ob_end_clean();`

			`echo $thispage;`

			`function highlightStr($haystack, $needle) {`
			`preg_match_all("/$needle+/i", $haystack, $matches);`
			`if (is_array($matches[0]) && count($matches[0]) >= 1) {`
			`foreach ($matches[0] as $match) {`
			`$haystack = str_replace($match, '<b>'.$match.'</b>', $haystack);`
			`}`
			`}`
			`return $haystack;`
			`}`
			`?>`
			`</body>`
			`</html>`