intcast($_SESSION['uid']); } else { $statuslogged = "Log in"; $statusloggedurl = "../login/"; $uid = $db->intcast($_SESSION['uid']); } if(isset($_REQUEST['profileid'])) { $pid = str_replace('@','',$_REQUEST['profileid']); $profile = $db->clean($pid,'encode'); $check = $db->select('profile','*','username',$profile); $profileid = $db->intcast($check[0]['id']); } else { $check = $db->select('profile','*','id',$uid); $profileid = $db->intcast($check[0]['id']); } if($profileid == $db->intcast($_SESSION['uid'])) { $followbutton = false; } else { $followbutton = true; } $uid = $profileid; if($uid < 1) { header("Location: ../"); exit; } // photo editor if(isset($_POST['photo-editor-result'])) { if($_SESSION['token'] == $db->clean($_POST['csrf'],'encode')) { // update database with css. $stmt = $mysqli->prepare("UPDATE profile SET headerfilter = ? WHERE id = ?"); $headerfilter = $db->clean($_POST['photo-editor-result'],'encode'); $userid = $uid; $stmt->bind_param("si", $headerfilter, $userid); $stmt->execute(); } } // get database information on profile. $timeline = $db->query("SELECT * FROM timeline WHERE uid = ".$db->intcast($uid)." ORDER BY tid DESC"); $userprofile = []; $profile = []; $stmt = $mysqli->prepare("SELECT * FROM profile where id = ? LIMIT 1"); $params = array("s",$uid); foreach($params as $key => $value) $userprofile[$key] = &$params[$key]; call_user_func_array(array($stmt, 'bind_param'), $userprofile); $stmt->execute(); $query = $stmt->get_result(); while($row = $query->fetch_array(MYSQLI_ASSOC)) { $profile[] = $row; } $stmt->close(); $stats_followers = $db->query("SELECT COUNT(*) AS followers FROM friends where uid = '".$db->intcast($uid)."'"); $stats_following = $db->query("SELECT COUNT(*) AS following FROM friends where fid = '".$db->intcast($uid)."'"); // get and set a proper token for our instance. if(!isset($_SESSION['token']) || empty($_SESSION['token']) ) { $csrf = $db->getToken(); $_SESSION['token'] = $csrf; } else { $csrf = $db->clean($_SESSION['token'],'encode'); } // count number of times from timeline $numberoftimelines = count($timeline); if($numberoftimelines < 1) { $numberoftimelines = 0; } ?> css($profile[0]["bodycolor"],$profile[0]["textcolor"],$profile[0]["background"]); } else { echo $social->css($profile[0]["bodycolor"],$profile[0]["textcolor"],false); } } } ?>

clean(ucfirst($profile[0]["username"]),'encode');?>

prepareLINK($profile[0]["link"],'encode');?>

clean($host.$profile[0]["header"],'encode')."');"; } ?>background-size: cover;background-repeat:no-repeat;background-color: #fff!important; ">

') !important; background-size: cover!important;background-color: #fff!important; ">

clean($profile[0]["bio"],'encode');?> clean($stats_followers[0]['followers'],'encode');?> Following clean($stats_following[0]['following'],'encode');?> Followers query("SELECT * FROM friends WHERE uid = '".$db->intcast($uid)."' and fid = '".$db->intcast($profile[0]["id"])."' LIMIT 1"); $countfriend = count($selectfriend); if($countfriend >= 1) { echo 'clean($csrf,'encode').'\')">UNFOLLOW'; } else { echo 'clean($csrf,'encode').'\')">FOLLOW'; } } } else { ?> POST

250) { $times = 250; } for($i=0; $i < $times; $i++) { $stats = $db->query("SELECT COUNT(likes),COUNT(starred),COUNT(views),COUNT(shares) FROM stats WHERE uid = ".$db->intcast($timeline[$i]['uid'])." and pid = ".$db->intcast($timeline[$i]['tid'])); $num_views = $db->intcast($stats[0]["COUNT(views)"]); $num_shares = $db->intcast($stats[0]["COUNT(shares)"]); $num_stars = $db->intcast($stats[0]["COUNT(starred"]); $num_hearts = $db->intcast($stats[0]["COUNT(likes)"]); if($num_views == '0') { $num_views = ''; } if($num_shares == '0') { $num_shares = ''; } if($num_stars == '0') { $num_stars = ''; } if($num_hearts == '0') { $num_hearts = ''; } if(isset($timeline[$i]['sharedname'])) { $sharedvia = ' shared via: @'. $db->clean($timeline[$i]['sharedname'],'encode').''; } else { $sharedvia = ''; } ?>

') !important; background-size: cover!important; background-color: #fff!important;">

/intcast($timeline[$i]['uid']);?>/status/intcast($timeline[$i]['tid']);?>/';"> " class="profile-link">@clean($profile[0]["username"],'encode'));?> intcast($timeline[$i]['created'])); ?>

prepareHTML($timeline[$i]['post']); echo $social->prepareMixedMedia($timeline[$i]['mixedmedia']); echo PHP_EOL; ?>

');" />

delete twig

close(); ?>