File size: 1.42Kb
<?php
include("config.php");
include("core.php");
header("Content-type: text/plain; charset=utf-8");
$action= $_GET["action"];
$pmid = $_GET["pmid"];
$sid = $_GET["sid"];
$who = $_GET["who"];
connectdb();
$sitename = mysql_fetch_array(mysql_query("SELECT value FROM ibwf_settings WHERE name='sitename'"));
$sitename = $sitename[0];
if(islogged($sid)==false)
{
echo "You are not logged in<br/>";
echo "Or Your session has been expired";
exit();
}
if($action=="dpm")
{
$pminfo = mysql_fetch_array(mysql_query("SELECT text, byuid, touid, timesent FROM ibwf_private WHERE id='".$pmid."'"));
if(getuid_sid($sid)==$pminfo[1]||getuid_sid($sid)==$pminfo[2])
{
echo "PM From: ".getnick_uid($pminfo[1])."<br/>";
echo "To: ".getnick_uid($pminfo[2])."<br/>";
echo "Date: ".date("l d/m/y H:i:s", $pminfo[3])."<br/><br/>-------------------<br/>";
echo "$pminfo[0]<br/>-------------------<br/>";
echo "<br/>(c)$sitename";
}else{
echo "This PM isn't yours";
}
}
else if($action=="dlg")
{
$uid = getuid_sid($sid);
$pms = mysql_query("SELECT text, byuid, timesent FROM ibwf_private WHERE (byuid='".$uid."' AND touid='".$who."') OR (byuid='".$who."' AND touid='".$uid."') ORDER BY timesent LIMIT 0, 50");
while($pm = mysql_fetch_array($pms))
{
echo getnick_uid($pm[1])."(".date("d/m H:i", $pm[2])."): ".$pm[0]."<br/>--------<br/>";
}
echo "(c)<br/>$sitename";
}
else{
echo "wtf?";
}
exit();
?>