escape($_SESSION['mass_subject']);
$message = $_SESSION['mass_message'];
$color = $database->escape(
$_SESSION['mass_color'] ?: 'black'
);
/*
|--------------------------------------------------------------------------
| BBCode
|--------------------------------------------------------------------------
*/
$message = preg_replace_callback(
"/\[img\](.*?)\[\/img\]/is",
function ($m) {
$url = trim($m[1]);
if (!preg_match('#^https?://#i', $url)) {
return '';
}
$safe = htmlspecialchars($url, ENT_QUOTES, 'UTF-8');
return '
';
},
$message
);
$message = preg_replace_callback(
"/\[url\](.*?)\[\/url\]/is",
function ($m) {
$url = trim($m[1]);
if (!preg_match('#^https?://#i', $url)) {
return htmlspecialchars($url, ENT_QUOTES, 'UTF-8');
}
$safe = htmlspecialchars($url, ENT_QUOTES, 'UTF-8');
return '' .
$safe .
'';
},
$message
);
$message = preg_replace_callback(
"/\[url=(.*?)\](.*?)\[\/url\]/is",
function ($m) {
$url = trim($m[1]);
$text = htmlspecialchars($m[2], ENT_QUOTES, 'UTF-8');
if (!preg_match('#^https?://#i', $url)) {
return $text;
}
$safe = htmlspecialchars($url, ENT_QUOTES, 'UTF-8');
return '' .
$text .
'';
},
$message
);
$message = "[message]".$message."[/message]";
$message = $database->escape($message);
/*
|--------------------------------------------------------------------------
| ALL PLAYERS
|--------------------------------------------------------------------------
*/
$result = mysqli_query(
$database->dblink,
"SELECT id
FROM ".TB_PREFIX."users
WHERE id > 5
ORDER BY id ASC"
);
$rows = [];
$time = time();
while ($user = mysqli_fetch_assoc($result)) {
$uid = (int)$user['id'];
$rows[] =
"(".
$uid.",".
"1,".
"'".$subject."',".
"'".$message."',".
"0,".
"0,".
"0,".
$time.",".
"0,".
"0,".
"0,".
"0,".
"0,".
"0".
")";
}
if (!empty($rows)) {
$sql =
"INSERT INTO ".TB_PREFIX."mdata
(
target,
owner,
topic,
message,
viewed,
archived,
send,
time,
deltarget,
delowner,
alliance,
player,
coor,
report
)
VALUES
".implode(",", $rows);
mysqli_query(
$database->dblink,
$sql
);
}
unset(
$_SESSION['mass_subject'],
$_SESSION['mass_message'],
$_SESSION['mass_color']
);
header("Location: ../../../Admin/admin.php?p=massmessage&done=1");
exit;
}
header("Location: ../../../Admin/admin.php?p=massmessage");
exit;
?>