super_query("SELECT * FROM " . PREFIX . "_forum_forums where id = '$forum_id'"); if ($f_info['id'] == $forum_id AND $f_info['id'] != "") // проверка на ID найденного форума { check_xss(); $title = htmlspecialchars ( strip_tags ( stripslashes ( $f_info['name'] ) ) ); $site = $config['http_home_url'];//3 $rss_content = << {$nazvanir_f} » {$title} {$site} ru {$config['description']} {$opisanie} {$adres_1} {$opisanie} {$url_logo} {$adres_2} XML; $access_forum = "(ff.access_read LIKE '%:".$member_id['user_group']."' OR ff.access_read LIKE '%:".$member_id['user_group'].":%' OR ff.access_read LIKE '".$member_id['user_group'].":%' OR ff.access_read LIKE '".$member_id['user_group']."')"; $sql_result = $db->query("SELECT * FROM `".PREFIX."_forum_posts` AS `forum_posts`, `".PREFIX."_forum_forums` AS `ff`, `".PREFIX."_forum_topics` WHERE tid = forum_posts.topic_id AND ff.id = '$f_info[id]' AND forum_posts.hidden = '0' AND (".$access_forum." AND ff.id = ".PREFIX."_forum_topics.forum_id) AND ".PREFIX."_forum_topics.hidden = '0' ORDER BY forum_posts.post_date DESC LIMIT 0,30"); while($row = $db->get_row($sql_result)) { $t_title = htmlspecialchars ( strip_tags ( stripslashes ( $row['title'] ) ) ); $rss_content .= << {$t_title} XML; $url = $config['http_home_url']."forum/topic_".$row['tid']; $rss_content .= "{$url}\n"; $row['post_text'] = preg_replace ( "'\\[hide\\](.*?)\\[/hide\\]'ies", "", $row['post_text'] ); $author = "".$row['post_author'].""; $rss_content2 = << Опубликовал: {$author}
HTML; $rss_content3 = stripslashes(str_replace("
", "
", $rss_content2)); $rss_content .= << undefined {$row['post_author']} {$row['post_date']} XML; } $rss_content .= <<
XML; header ( 'Content-type: application/xml' ); echo $rss_content; } else header( "Location: {$config['http_home_url']}" ); } else header( "Location: {$config['http_home_url']}" ); exit (); ?>