intcast($_REQUEST['uid']); $statusid = $db->intcast($_REQUEST['status']); } else { $statuslogged = "Log in"; $statusloggedurl = "../login/"; header("Location: ../"); exit; } if(isset($_REQUEST['profileid'])) { $profile = $db->clean($_REQUEST['profileid'],'encode'); $check = $db->select('profile','*','username',$profile); $profileid = $db->intcast($check[0]['id']); } else { $check = $db->select('profile','*','id',$uid); $profileid = $db->intcast($check[0]['id']); } if($profileid == $db->intcast($_SESSION['uid'])) { $followbutton = false; } else { $followbutton = true; } $uid = $profileid; // get and set a proper token for our instance. if(!isset($_SESSION['token']) || empty($_SESSION['token']) ) { $csrf = $db->getToken(); $_SESSION['token'] = $csrf; } else { $csrf = $db->clean($_SESSION['token'],'encode'); } $timeline = $db->select('timeline','*','tid',$statusid); $userprofile = []; $profile = []; $stmt = $mysqli->prepare("SELECT * FROM profile where id = ? LIMIT 1"); $params = array("s",$uid); foreach($params as $key => $value) $userprofile[$key] = &$params[$key]; call_user_func_array(array($stmt, 'bind_param'), $userprofile); $stmt->execute(); if($stmt->error) { echo $stmt->error; } $query = $stmt->get_result(); while($row = $query->fetch_array(MYSQLI_ASSOC)) { $profile[] = $row; } $stmt->close(); $stats_followers = $db->query("SELECT COUNT(*) AS followers FROM friends where uid = '".$db->intcast($uid)."'"); $stats_following = $db->query("SELECT COUNT(*) AS following FROM friends where fid = '".$db->intcast($uid)."'"); // count number of times from timeline $numberoftimelines = $db->intcast(count($timeline)); if($numberoftimelines < 1) { $numberoftimelines = 0; } ?> css($profile[0]["bodycolor"],$profile[0]["textcolor"]); } } ?>

clean(ucfirst($profile[0]["username"]),'encode');?>

prepareLINK($profile[0]["link"],'encode');?>

clean($host.$profile[0]["header"],'encode')."');"; } ?>background-size: cover;background-repeat:no-repeat;">

') !important; background-size: cover!important;">

clean($profile[0]["bio"],'encode');?> clean($stats_followers[0]['followers'],'encode');?> Following clean($stats_following[0]['following'],'encode');?> Followers query("SELECT * FROM friends WHERE uid = '".$db->intcast($uid)."' and fid = '".$db->intcast($profile[0]["id"])."' LIMIT 1"); $countfriend = count($selectfriend); if($countfriend >= 1) { echo 'clean($csrf,'encode').'\')">UNFOLLOW'; } else { echo 'clean($csrf,'encode').'\')">FOLLOW'; } } } ?>

250) { $times = 250; } for($i=0; $i < $times; $i++) { $stats = $db->query("SELECT * FROM stats WHERE uid = ".$db->intcast($profile[0]["id"])." and pid = ".$db->intcast($timeline[$i]['tid'])); if(!empty($stats)) { $num_views = $db->intcast($stats[0]["views"]); $num_shares = $db->intcast($stats[0]["shares"]); $num_stars = $db->intcast($stats[0]["starred"]); $num_hearts = $db->intcast($stats[0]["likes"]); } else { $num_views = ' '; $num_shares = ' '; $num_stars = ' '; $num_hearts = ' '; } if(strlen($timeline[$i]['sharedname']) >=1) { $sharedvia = ' shared via: @'. $db->clean($timeline[$i]['sharedname'],'encode').''; } else { $sharedvia = ''; } ?>

') !important; background-size: cover!important;">

" class="profile-link">@clean($profile[0]["username"],'encode'));?> intcast($timeline[$i]['created'])); ?>

prepareHTML($timeline[$i]['post']);?> prepareMixedMedia($timeline[$i]['mixedmedia']); ?>

intcast($timeline[$i]['tid']); } // select comments from users on post. $friendscomments = $db->query("SELECT * FROM timeline WHERE cid = ".$db->intcast($tid)); $count = count($friendscomments); if($count >=1) { for($c=0; $c < $count; $c++) { $profile = $db->query("SELECT * FROM profile WHERE id = ".$db->intcast($friendscomments[$c]['uid'])); $stats = $db->query("SELECT * FROM stats WHERE uid = ".$db->intcast($profile[0]["id"])." and pid = ".$db->intcast($timeline[$i]['tid'])); if(!empty($stats)) { $num_views = $db->intcast($stats[0]["views"]); $num_shares = $db->intcast($stats[0]["shares"]); $num_stars = $db->intcast($stats[0]["starred"]); $num_hearts = $db->intcast($stats[0]["likes"]); } else { $num_views = ' '; $num_shares = ' '; $num_stars = ' '; $num_hearts = ' '; } ?>

" width="50"/>

" class="profile-link">@clean($profile[0]["username"],'encode'));?> intcast($friendscomments[$c]['created'])); ?>

prepareHTML($friendscomments[$c]['post']);?>

close(); ?>