<?php
echo '<h1 class="p_space">' . $lang['manage_pinboard'] . '</h1>';
$sql = "SELECT
pinboard.id AS pinID,
pinboard.id2 AS usrID,
pinboard.post,
pinboard.date AS postDATE,
members.id AS memID,
members.name,
members.avatar
FROM
pinboard
LEFT JOIN
members
ON
pinboard.id2 = members.id
WHERE
pinboard.id2 = '" . (int)$_SESSION['id'] . "'
ORDER BY
pinID DESC";
$result = mysql_query($sql) OR die(mysql_error());
if(intval(mysql_num_rows($result)) == 0) {
echo '<p class="false">' . $lang['no_pb_entries'] . '</p>';
}else{
while($row = mysql_fetch_assoc($result)) {
include_once('framework/filter.php');
include_once('framework/functions/badwords.php');
include_once('framework/functions/smileys.php');
$pinID = (int)$row['pinID'];
$usrID = (int)$row['usrID'];
echo '<ul id="conversationPosts" class="postList">
<li>
<div class="post hasControls">
<div class="avatar"><a href="member.php?id=' . (int)$row['memID'] . '"><img src="' . htmlentities($row['avatar']) . '" class="Avatar" border="0" alt="Avatar"></a></div>
<div class="postContent thing">
<div class="postHeader">
<div class="info">
<a href="member.php?id=' . (int)$row['memID'] . '">' . htmlentities($row['name'], ENT_QUOTES) . '</a> <small>' . date('d.m.Y - H:i', strtotime($row['postDATE'])) . ' ' . $lang['o_clock'] . ' - <a href="management.php?site=unpin&id=' . $pinID . '&id2=' . $usrID . '" class="delete_red">' . $lang['blank_delete'] . '</a></small>
</div>
<div class="controls"></div>
</div>
<div class="postBody">
<p>' . mysql_filter(filter_html(badwords(smileys(stripslashes(nl2br($row['post'])))))) . '</p>
</div>
</div>
</div></li>
</ul>';
}
}
?>