clean($_REQUEST['profileid'],'encode'); $check = $db->select('profile','*','username',$profile); $profileid = $db->intcast($check[0]['id']); } else { $check = $db->select('profile','*','id',$uid); $profileid = $db->intcast($check[0]['id']); } if($profileid == $db->intcast($_SESSION['uid'])) { $followbutton = false; } else { $followbutton = true; } $uid = $profileid; // get database information on profile. //$profile = $db->select('profile','*','id',$uid); $timeline = $db->select('timeline','*','uid',$uid); $userprofile = []; $profile = []; $stmt = $mysqli->prepare("SELECT * FROM profile where id = ? LIMIT 1"); $params = array("s",$uid); foreach($params as $key => $value) $userprofile[$key] = &$params[$key]; call_user_func_array(array($stmt, 'bind_param'), $userprofile); $stmt->execute(); if($stmt->error) { echo $stmt->error; } $query = $stmt->get_result(); while($row = $query->fetch_array(MYSQLI_ASSOC)) { $profile[] = $row; } $stmt->close(); $stats_followers = $db->query("SELECT COUNT(*) AS followers FROM friends where uid = '".$uid."'"); $stats_following = $db->query("SELECT COUNT(*) AS following FROM friends where fid = '".$uid."'"); // get and set a proper token for our instance. if(!isset($_SESSION['token']) || empty($_SESSION['token']) ) { $csrf = $db->getToken(); $_SESSION['token'] = $csrf; } else { $csrf = $db->clean($_SESSION['token'],'encode'); } // count number of times from timeline $numberoftimelines = count($timeline); if($numberoftimelines < 1) { $numberoftimelines = 0; } ?>

clean(ucfirst($profile[0]["username"]),'encode');?>

','clean($csrf,'encode');?>')">FOLLOW POST

prepareLINK($profile[0]["link"],'encode');?>

clean($profile[0]["bio"],'encode');?>

clean($profile[0]["accounttype"],'encode');?>, clean($profile[0]["location"],'encode');?>, Member since: clean($profile[0]["joined"],'encode');?>

clean($stats_followers[0]['followers'],'encode');?> Following clean($stats_following[0]['following'],'encode');?> Followers

250) { $times = 250; } for($i=0; $i < $times; $i++) { $stats = $db->query("SELECT * FROM stats WHERE uid = ".$db->intcast($profile[0]["id"])." and pid = ".$db->intcast($timeline[$i]['tid'])); if(!empty($stats)) { $num_views = $db->intcast($stats[0]["views"]); $num_shares = $db->intcast($stats[0]["shares"]); $num_stars = $db->intcast($stats[0]["starred"]); $num_hearts = $db->intcast($stats[0]["likes"]); } else { $num_views = ' '; $num_shares = ' '; $num_stars = ' '; $num_hearts = ' '; } ?>

" width="50"/>

" class="profile-link">@clean($profile[0]["username"],'encode'));?> intcast($timeline[$i]['created'])); ?>

prepareHTML($timeline[$i]['post']);?>

close(); ?>