" . Get_Text(3) . "" . user_news_output(); } function user_news_output() { global $DISPLAY_NEWS, $privileges; $html = ""; if (isset ($_POST["text"]) && isset ($_POST["betreff"]) && IsSet ($_POST["date"])) { if (!isset ($_POST["treffen"])) $_POST["treffen"] = 0; $SQL = "INSERT INTO `News` (`Datum`, `Betreff`, `Text`, `UID`, `Treffen`) " . "VALUES ('" . sql_escape($_POST["date"]) . "', '" . sql_escape($_POST["betreff"]) . "', '" . sql_escape($_POST["text"]) . "', '" . sql_escape($_SESSION['uid']) . "', '" . sql_escape($_POST["treffen"]) . "');"; $Erg = sql_query($SQL); if ($Erg == 1) $html .= Get_Text(4); } if (!IsSet ($_GET["news_begin"])) $_GET["news_begin"] = 0; if (!IsSet ($_GET["DISPLAY_NEWS"])) $_GET["DISPLAY_NEWS"] = 5; $SQL = "SELECT * FROM `News` ORDER BY `ID` DESC LIMIT " . intval($_GET["news_begin"]) . ", " . intval($_GET["DISPLAY_NEWS"]); $Erg = sql_query($SQL); // anzahl zeilen $news_rows = mysql_num_rows($Erg); for ($n = 0; $n < $news_rows; $n++) { if (mysql_result($Erg, $n, "Treffen") == 0) $html .= "
"; else $html .= "
";
$html .= "" . ReplaceSmilies(mysql_result($Erg, $n, "Betreff")) . "\n";
// Schow Admin Page
if ($_SESSION['CVS']["admin/news.php"] == "Y")
$html .= " [edit]
\n\t\t";
$html .= "
" . mysql_result($Erg, $n, "Datum") . ", ";
$html .= UID2Nick(mysql_result($Erg, $n, "UID")) . "";
// avatar anzeigen?
$html .= DisplayAvatar(mysql_result($Erg, $n, "UID"));
$html .= "
" . ReplaceSmilies(nl2br(mysql_result($Erg, $n, "Text"))) . "
\n"; $RefID = mysql_result($Erg, $n, "ID"); $countSQL = "SELECT COUNT(*) FROM `news_comments` WHERE `Refid`='$RefID'"; $countErg = sql_query($countSQL); $countcom = mysql_result($countErg, 0, "COUNT(*)"); $html .= "\n\n"; } $html .= "