From c822bd5fc8e03fa9763eca489d539402557de445 Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Wed, 10 Jan 2024 20:58:24 +0100
Subject: [PATCH 1/8] Hardening input validation and code stability

---
 cron/tag.php                           |   2 +-
 www/actions/comment_gotolastunread.php |  11 +-
 www/actions/events.php                 |  60 +++--
 www/actions/hz_turn.php                |  60 ++---
 www/actions/profil.php                 |   4 +-
 www/actions/stockbroker.php            |  18 +-
 www/bugtracker.php                     |   2 +-
 www/chess_test.php                     |  10 +-
 www/controller/layout.controller.php   |   4 +-
 www/gallery.php                        | 231 +++++++++++------
 www/includes/activities.inc.php        |   6 +-
 www/includes/comments.fnc.php          |   2 +-
 www/includes/config.inc.php            |   8 +-
 www/includes/errlog.inc.php            |  63 +++--
 www/includes/error.inc.php             |  11 +-
 www/includes/gallery.readpic.php       |  52 ++--
 www/includes/geo2ip.inc.php            |   6 +-
 www/includes/go_game.inc.php           |   3 +-
 www/includes/googleapis.inc.php        |   2 +-
 www/includes/mysql.inc.php             |  70 +++---
 www/includes/notifications.inc.php     |  10 +-
 www/includes/setistats.inc.php         | 330 ++++++++++++++-----------
 www/includes/stl.inc.php               | 112 +++++----
 www/includes/telegrambot.inc.php       |  47 ++--
 www/includes/util.inc.php              |  26 +-
 www/kurse.xml                          |  43 ----
 www/models/gallery.php                 |   3 +-
 www/peter.php                          |  12 +-
 www/profil.php                         | 183 ++++++++------
 www/scripts/rezepte.php                |  10 +-
 www/scripts/stockbroker.php            |  20 +-
 www/seti_example.php                   |   6 +-
 www/templates/layout/sidebar.tpl       |   4 +-
 www/wetten.php                         |  21 +-
 34 files changed, 792 insertions(+), 660 deletions(-)
 delete mode 100644 www/kurse.xml

diff --git a/cron/tag.php b/cron/tag.php
index 4db270d..c302a1c 100644
--- a/cron/tag.php
+++ b/cron/tag.php
@@ -25,7 +25,7 @@
 
 	error_log(sprintf('[%s] [NOTICE] <%s> Try including files...', date('d.m.Y H:i:s',time()), __FILE__));
 	define('SITE_ROOT', $wwwroot); // Define own SITE_ROOT before loading general zConfigs
-	require_once( SITE_ROOT.'/includes/config.inc.php');
+	(!require_once( SITE_ROOT.'/includes/config.inc.php')) ?? error_log(sprintf('[%s] [ERROR] <%s> Including %s failed', date('d.m.Y H:i:s',time()), __FILE__, SITE_ROOT.'/includes/config.inc.php'));
 	include_once( INCLUDES_DIR.'addle.inc.php');
 	include_once( INCLUDES_DIR.'hz_game.inc.php');
 	include_once( INCLUDES_DIR.'peter.inc.php');
diff --git a/www/actions/comment_gotolastunread.php b/www/actions/comment_gotolastunread.php
index ec44692..eb8c9da 100644
--- a/www/actions/comment_gotolastunread.php
+++ b/www/actions/comment_gotolastunread.php
@@ -1,10 +1,11 @@
 <?php
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
+require_once INCLUDES_DIR.'forum.inc.php';
 
-if(Forum::getNumunreadposts($user->id) > 0) { 
+if(Forum::getNumunreadposts($user->id) > 0) {
 	header("Location: ".Forum::getUnreadLink());
-	die();
+	exit();
 } else {
-	header("Location: ../index.php?".session_name()."=".session_id());
-	die();
+	header("Location: /index.php");
+	exit();
 }
diff --git a/www/actions/events.php b/www/actions/events.php
index f53571b..b61388e 100644
--- a/www/actions/events.php
+++ b/www/actions/events.php
@@ -8,11 +8,9 @@
 /**
  * File includes
  * @include config.inc.php
- * @include main.inc.php Includes the Main Zorg Configs and Methods
  * @include events.inc.php Includes the Event Class and Methods
  */
 require_once __DIR__.'/../includes/config.inc.php';
-require_once INCLUDES_DIR.'/../includes/main.inc.php';
 require_once INCLUDES_DIR.'events.inc.php';
 
 /** Validate $_GET & $_POST variables */
@@ -25,28 +23,51 @@
 if ( isset($_POST['id']) && is_numeric($_POST['id']) && $_POST['id'] >= 0) $eventId = $_POST['id'];
 if ( isset($_POST['name']) && !empty($_POST['name'])) $eventName = sanitize_userinput($_POST['name']);
 if ( !empty($_POST['location'])) $eventLocation = sanitize_userinput($_POST['location']);
-if ( !empty($_POST['link'])) $eventLink = (filter_var($_POST['link'], FILTER_VALIDATE_URL)===false?(filter_var(SITE_PROTOCOL.$_POST['link'], FILTER_VALIDATE_URL)!==false?SITE_PROTOCOL.$_POST['link']:$error='Ungültiger Event-Link'):$_POST['link']);
-if ( !empty($_POST['review_url'])) $eventReviewlink = (filter_var($_POST['review_url'], FILTER_VALIDATE_URL)===false?(filter_var(SITE_PROTOCOL.$_POST['review_url'], FILTER_VALIDATE_URL)!==false?SITE_PROTOCOL.$_POST['review_url']:$error='Ungültige Review-URL'):$_POST['review_url']);
+if ( !empty($_POST['link'])) $eventLink = (filter_input(INPUT_POST, 'link', FILTER_VALIDATE_URL)===false?(filter_var(SITE_PROTOCOL.$_POST['link'], FILTER_VALIDATE_URL)!==false?SITE_PROTOCOL.$_POST['link']:$error='Ungültiger Event-Link'):$_POST['link']);
+if ( !empty($_POST['review_url'])) $eventReviewlink = (filter_input(INPUT_POST, 'review_url', FILTER_VALIDATE_URL)===false?(filter_var(SITE_PROTOCOL.$_POST['review_url'], FILTER_VALIDATE_URL)!==false?SITE_PROTOCOL.$_POST['review_url']:$error='Ungültige Review-URL'):$_POST['review_url']);
 if ( !empty($_POST['description'])) $eventDescription = htmlspecialchars_decode($_POST['description'], ENT_COMPAT | ENT_SUBSTITUTE);
 if ( isset($_POST['gallery_id']) && is_numeric($_POST['gallery_id']) && $_POST['gallery_id'] >= 0) $eventGallery = $_POST['gallery_id'];
 if ( isset($_GET['join']) && is_numeric($_GET['join']) && $_GET['join'] >= 0) $eventJoinId = $_GET['join'];
 if ( isset($_GET['unjoin']) && is_numeric($_GET['unjoin']) && $_GET['unjoin'] >= 0) $eventUnjoinId = $_GET['unjoin'];
-
-
+if ( isset($_POST['fromDate']) && !empty($_POST['fromDate']) && isset($_POST['fromTime']) && !empty($_POST['fromTime']) ) {
+	$fromDate = explode('-', $_POST['fromDate']);
+	$fromTime = explode(':', $_POST['fromTime']);
+}
+if (isset($_POST['toDate']) && !empty($_POST['toDate']) && isset($_POST['toTime']) && !empty($_POST['toTime']) ) {
+	$toDate = explode('-', $_POST['toDate']);
+	$toTime = explode(':', $_POST['toTime']);
+}
 switch (true)
 {
 	/** Validation Error */
 	case (!empty($error)):
 		/** If $error break switch() instantly */
-		zorgDebugger::me()->warn('Validation Error: %s%s', [$error]);
+		zorgDebugger::log()->warn('Validation Error: %s%s', [$error]);
 		break;
 
-
 	/** Add new Event */
-	case ((isset($_POST['action']) && $_POST['action'] === 'new')):
-		zorgDebugger::me()->debug('Adding new Event: %s', [$eventName]);
-		$startdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
-		$enddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
+	case (isset($_POST['action']) && $_POST['action'] === 'new'):
+		if (isset($fromDate) && isset($fromTime)) {
+			$startdate = timestamp(true, [
+				 'year' => intval($fromDate[0])
+				,'month' => intval($fromDate[1])
+				,'day' => intval($fromDate[2])
+				,'hour' => intval($fromTime[0])
+				,'minute' => intval($fromTime[1])
+			]);
+		}
+		if (isset($toDate) && isset($toTime)) {
+			$enddate = timestamp(true, [
+				 'year' => intval($toDate[0])
+				,'month' => intval($toDate[1])
+				,'day' => intval($toDate[2])
+				,'hour' => intval($toTime[0])
+				,'minute' => intval($toTime[1])
+			]);
+		}
+		/** Backwards-compatibility to old individual Date fields */
+		if (empty($startdate)) $startdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
+		if (empty($enddate)) $enddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
 		$values = [
 			'name' => $eventName,
 			'location' => $eventLocation,
@@ -59,6 +80,7 @@
 			'reportedon_date' => timestamp(true),
 			'review_url' => $eventReviewlink
 		];
+		zorgDebugger::log()->debug('Adding new Event: %s dateFrom %s to %s', [$eventName, $startdate, $enddate]);
 		$idNewEvent = $db->insert('events', $values, __FILE__, __LINE__, 'INSERT INTO events');
 
 		/** Error */
@@ -77,8 +99,8 @@
 
 
 	/** Save updated Event details */
-	case ((isset($_POST['action']) && $_POST['action'] === 'edit')):
-		zorgDebugger::me()->debug('Update existing Event: %d «%s»', [$eventId, $eventName]);
+	case (isset($_POST['action']) && $_POST['action'] === 'edit'):
+		zorgDebugger::log()->debug('Update existing Event: %d «%s»', [$eventId, $eventName]);
 
 		$newStartdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
 		$newEnddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
@@ -103,7 +125,7 @@
 
 	/** Join User to Event */
 	case (isset($eventJoinId) && is_numeric($eventJoinId)):
-		zorgDebugger::me()->debug('User joins Event: %d', [$eventJoinId]);
+		zorgDebugger::log()->debug('User joins Event: %d', [$eventJoinId]);
 		$redirect_url .= '&event_id='.$eventJoinId;
 
 		$insertValues = ['user_id' => $user->id, 'event_id' => $eventJoinId];
@@ -118,7 +140,7 @@
 
 	/** Unjoin User from Event */
 	case (isset($eventUnjoinId) && is_numeric($eventUnjoinId)):
-		zorgDebugger::me()->debug('User unjoins Event: %d', [$eventUnjoinId]);
+		zorgDebugger::log()->debug('User unjoins Event: %d', [$eventUnjoinId]);
 		$redirect_url .= '&event_id='.$eventUnjoinId;
 
 		$sql = 'DELETE FROM events_to_user WHERE user_id=? AND event_id=?';
@@ -128,8 +150,8 @@
 
 
 	/** Post Event to Twitter */
-	case ((isset($_POST['action']) && $_POST['action'] === 'tweet')):
-		zorgDebugger::me()->debug('Tweet Event: %s', [$redirect_url]);
+	case (isset($_POST['action']) && $_POST['action'] === 'tweet'):
+		zorgDebugger::log()->debug('Tweet Event: %s', [$redirect_url]);
 
 		/**
 		 * Load Twitter Class & Grab the Twitter API Keys
@@ -192,6 +214,6 @@
 
 /** Redirect request */
 $goToUrl = $redirect_url . ( !empty($error) ? '&error='.rawurlencode($error) : '');
-zorgDebugger::me()->debug('Redirecting to %s', [$goToUrl]);
+zorgDebugger::log()->debug('Redirecting to %s', [$goToUrl]);
 header('Location: ' . $goToUrl );
 exit;
diff --git a/www/actions/hz_turn.php b/www/actions/hz_turn.php
index d38d1dc..0927b5a 100644
--- a/www/actions/hz_turn.php
+++ b/www/actions/hz_turn.php
@@ -1,49 +1,39 @@
 <?php
-require_once dirname(__FILE__).'/../includes/hz_game.inc.php';
-require_once dirname(__FILE__).'/../includes/usersystem.inc.php';
+require_once __DIR__.'/../includes/hz_game.inc.php';
 
 /** Validate passed $_GET Parameters */
-if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $_GET-Params: %s', __FILE__, __LINE__, print_r($_GET,true)));
-$gameId = (isset($_GET['game']) && is_numeric($_GET['game']) && $_GET['game']>0 ? (int)strip_tags(filter_var(trim($_GET['game']), FILTER_SANITIZE_NUMBER_INT)) : null);
-$ticketType = (isset($_GET['ticket']) && !is_numeric($_GET['ticket']) && !is_bool($_GET['ticket']) ? (string)strip_tags(filter_var(trim($_GET['ticket']), FILTER_SANITIZE_STRING)) : null);
-$moveToStationNum = (isset($_GET['move']) && is_numeric($_GET['move']) && $_GET['move']>0 ? (int)strip_tags(filter_var(trim($_GET['move']), FILTER_SANITIZE_NUMBER_INT)) : null);
-if (isset($_GET['do']) && !is_numeric($_GET['do']) && !is_bool($_GET['do'])) $doAction = (string)strip_tags(filter_var(trim($_GET['do']), FILTER_SANITIZE_STRING));
-if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Sanitized-Params (%s): $gameId => %d | $ticketType => %s | $stationNum => %d', __FILE__, __LINE__, (isset($doAction) ? $doAction : 'mobe'), $gameId, $ticketType, $moveToStationNum));
+zorgDebugger::log()->debug('$_GET-Params: %s', [print_r($_GET,true)]);
+$gameId = filter_input(INPUT_GET, 'game', FILTER_SANITIZE_NUMBER_INT) ?? null;
+$ticketType = filter_input(INPUT_GET, 'ticket', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null;;
+$moveToStationNum = filter_input(INPUT_GET, 'move', FILTER_SANITIZE_NUMBER_INT) ?? null;
+$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null;
+zorgDebugger::log()->debug('do => %s: $gameId => %d | $ticketType => %s | $stationNum => %d', [(!empty($doAction) ? $doAction : $moveToStationNum), $gameId, $ticketType, $moveToStationNum]);
 
 /** hz actions */
 if (!empty($gameId) && $user->is_loggedin())
 {
 	if (turn_allowed($gameId, $user->id))
 	{
-// 		$e = $db->query('SELECT g.*, me.station mystation FROM hz_games g
-// 						JOIN hz_players me ON me.game = g.id
-// 						WHERE g.id='.$gameId.' AND me.user='.$user->id,
-// 						__FILE__, __LINE__, 'SELECT mystation');
-// 		$game = $db->fetch($e);
-//
-// 		if (!$game)
-// 		{
-			/** move */
-			if (!empty($ticketType) && !empty($moveToStationNum))
-			{
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_move(): %d, %s, %s', __FILE__, __LINE__, $gameId, $ticketType, $moveToStationNum));
-				turn_move($gameId, $ticketType, $moveToStationNum);
-			}
+		/** move */
+		if (!empty($ticketType) && !empty($moveToStationNum))
+		{
+			zorgDebugger::log()->debug('turn_move(): %d, %s, %s', [$gameId, $ticketType, $moveToStationNum]);
+			turn_move($gameId, $ticketType, $moveToStationNum); // TODO add 4th Param: $user->id
+		}
 
-			/** sentinel */
-			elseif (isset($doAction) && $doAction === 'sentinel')
-			{
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_sentinel(): %d', __FILE__, __LINE__, $gameId));
-				turn_sentinel($gameId);
-			}
+		/** sentinel */
+		elseif ($doAction === 'sentinel')
+		{
+			zorgDebugger::log()->debug('turn_sentinel(): %d', [$gameId]);
+			turn_sentinel($gameId);
+		}
 
-			/** stay */
-			elseif (isset($doAction) && $doAction === 'stay')
-			{
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_stay(): %d', __FILE__, __LINE__, $gameId));
-				turn_stay($gameId, $user->id);
-			}
-		// }
+		/** stay */
+		elseif ($doAction === 'stay')
+		{
+			zorgDebugger::log()->debug('turn_stay(): %d', [$gameId]);
+			turn_stay($gameId, $user->id);
+		}
 	}
 	header('Location: /tpl/103?game='.$gameId);
 	exit;
diff --git a/www/actions/profil.php b/www/actions/profil.php
index 4bd1e90..462b701 100644
--- a/www/actions/profil.php
+++ b/www/actions/profil.php
@@ -8,8 +8,8 @@
  * @include mysql.inc.php required
  * @include usersystem.inc.php required
  */
-require_once dirname(__FILE__).'/../includes/mysql.inc.php';
-require_once dirname(__FILE__).'/../includes/usersystem.inc.php';
+require_once __DIR__.'/../includes/mysql.inc.php';
+require_once __DIR__.'/../includes/usersystem.inc.php';
 
 if($_GET['do'] == 'aussperren')
 {
diff --git a/www/actions/stockbroker.php b/www/actions/stockbroker.php
index a8020d7..1123e0b 100644
--- a/www/actions/stockbroker.php
+++ b/www/actions/stockbroker.php
@@ -5,10 +5,16 @@
 require_once INCLUDES_DIR.'/includes/main.inc.php';
 require_once INCLUDES_DIR.'/includes/stockbroker.inc.php';
 
+$doAction = filter_input(INPUT_POST, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['do']
+$symbol = filter_input(INPUT_POST, 'symbol', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['symbol']
+$compareOperator = filter_input(INPUT_POST, 'compare', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['comparison']
+$kursWert = filter_input(INPUT_POST, 'kurs', FILTER_VALIDATE_FLOAT) ?? null; // $_POST['kurs']
+$anzahlMenge = filter_input(INPUT_POST, 'menge', FILTER_VALIDATE_INT) ?? 0; // $_POST['comparison']
+$useMaximum = filter_input(INPUT_POST, 'max', FILTER_VALIDATE_BOOLEAN) ?? false; // $_POST['max']
 
 // Warning ändern -------------------------------------------------------------
-if($_POST['do'] == 'changewarning') {
-	if(Stockbroker::changeWarning($user->id, $_POST['symbol'], $_POST['comparison'], $_POST['kurs'])) {
+if($doAction === 'changewarning') {
+	if($stockbroker->changeWarning($user->id, $symbol, $compareOperator, $kursWert)) {
 		header("Location: /?tpl=164");
 	}
 	exit;
@@ -16,8 +22,8 @@
 
 
 // Kaufen ---------------------------------------------------------------------
-if($_POST['action'] == 'buy') {
-	if(Stockbroker::buyStock($user->id, $_POST['symbol'], $_POST['menge'], $_POST['max'])) {
+if($doAction === 'buy') {
+	if($stockbroker->buyStock($user->id, $symbol, $anzahlMenge, $useMaximum)) {
 		header("Location: /?tpl=164");
 	}
 	exit;
@@ -25,8 +31,8 @@
 
 
 // Verkaufen ------------------------------------------------------------------
-if($_POST['action'] == 'sell') {
-	if(Stockbroker::sellStock($user->id, $_POST['symbol'], $_POST['menge'], $_POST['max'])) {
+if($doAction === 'sell') {
+	if($stockbroker->sellStock($user->id, $symbol, $anzahlMenge, $useMaximum)) {
 		header("Location: /?tpl=164");
 	}
 	exit;
diff --git a/www/bugtracker.php b/www/bugtracker.php
index 0e17d36..97c9daa 100644
--- a/www/bugtracker.php
+++ b/www/bugtracker.php
@@ -22,7 +22,7 @@
 /**
  * Validate GET-Parameters
  */
-$bug_id = (isset($_GET['bug_id']) ? (int)$_GET['bug_id'] : null);
+$bug_id = (isset($getBugId) ? $getBugId : (filter_input(INPUT_GET, 'bug_id', FILTER_VALIDATE_INT) ?? null));
 $show = (isset($_GET['show']) && !empty($_GET['show']) ? (array)$_GET['show'] : []);
 $order = isset($_GET['order'])?$_GET['order']:'';
 
diff --git a/www/chess_test.php b/www/chess_test.php
index b6deb46..85553a4 100644
--- a/www/chess_test.php
+++ b/www/chess_test.php
@@ -4,11 +4,15 @@
  *
  * @package zorg\Games\Chess
  */
+
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
-include_once INCLUDES_DIR.'usersystem.inc.php';
+require_once __DIR__.'/includes/config.inc.php';
 include_once INCLUDES_DIR.'chess.inc.php';
 
-$board = Chess::get_board(1);
+/** Validate parameters */
+$gameId = (isset($_GET['game']) ? filter_input(INPUT_GET, 'game', FILTER_VALIDATE_INT) : 1); // Default: Game #1
+
+/** Load Chess Board */
+$board = $chess->get_board($gameId);
diff --git a/www/controller/layout.controller.php b/www/controller/layout.controller.php
index dd9bd73..f0ae351 100644
--- a/www/controller/layout.controller.php
+++ b/www/controller/layout.controller.php
@@ -63,7 +63,7 @@ class Layout extends \MVC\Controller
 	public function __construct()
 	{
 		/** Position vom user bestimmen */
-		\zorgDebugger::me()->debug('New \Utils\IP2Geolocation()');
+		\zorgDebugger::log()->debug('New \Utils\IP2Geolocation()');
 		$userLocationData = new \Utils\User\IP2Geolocation();
 
 		/** Assign user location vars */
@@ -147,7 +147,7 @@ private function setCountryFlagicon($countryCode='CHE')
 	 */
 	private function setColors()
 	{
-		\zorgDebugger::me()->debug('Color Layout: %s', [$this->layouttype]);
+		\zorgDebugger::log()->debug('Color Layout: %s', [$this->layouttype]);
 
 		/** Background colors */
 		if (!defined('BACKGROUNDCOLOR')) define('BACKGROUNDCOLOR', ($this->layouttype === 'day' ? '#F2F2F2' : '#141414'));
diff --git a/www/gallery.php b/www/gallery.php
index a46f015..2c2f98f 100644
--- a/www/gallery.php
+++ b/www/gallery.php
@@ -31,15 +31,15 @@
 $model = new MVC\Gallery();
 
 /** Pic-ID zu Album-ID auflösen */
-$getAlbId = isset( $_GET['albID'] ) ? (int) $_GET['albID'] : null;
-$getPicId = isset( $_GET['picID'] ) ? (int) $_GET['picID'] : null;
+$getAlbId = filter_input(INPUT_GET, 'albID', FILTER_VALIDATE_INT) ?? null;
+$getPicId = filter_input(INPUT_GET, 'picID', FILTER_VALIDATE_INT) ?? null;
 $album_id = $model->setAlbumId($getAlbId, $getPicId);
 
 /**
  * [Bug #708] Gallery nur für eingeloggte User anzeigen. Ausnahme: APOD Gallery
  * @link https://zorg.ch/bugtracker.php?bug_id=708
  */
-if (!$user->is_loggedin() && (int)$album_id !== APOD_GALLERY_ID)
+if ($album_id !== APOD_GALLERY_ID && !$user->is_loggedin())
 {
 	$model->showOverview($smarty);
 	$smarty->assign('error', ['type' => 'warn', 'title' => t('error-not-logged-in', 'gallery', [ SITE_URL ]), 'dismissable' => 'false']);
@@ -51,7 +51,7 @@
  * User & Vereinsmitglieder-Check: nur Vereinsmitglieder dürfen Pics sehen (Ausnahme: APOD Gallery & Pics)
  * @link https://github.com/zorgch/zorg-verein-docs/blob/master/GV/GV%202018/2018-12-23%20zorg%20GV%202018%20Protokoll.md
  */
-elseif ((int)$album_id !== APOD_GALLERY_ID && (empty($user->vereinsmitglied) || $user->vereinsmitglied === '0'))
+elseif ($album_id !== APOD_GALLERY_ID && empty($user->vereinsmitglied))
 {
 	$model->showOverview($smarty);
 	$smarty->assign('error', ['type' => 'warn', 'title' => t('error-no-member', 'gallery'), 'dismissable' => 'false']);
@@ -61,103 +61,180 @@
 /** Gallery / Pics anzeigen */
 else {
 
-	if (!empty($_GET['do']))
+	/** Sanitize User Inputs */
+	$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['do']
+	$show = filter_input(INPUT_GET, 'show', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['show']
+	$showPage = filter_input(INPUT_GET, 'page', FILTER_VALIDATE_INT) ?? 0; // $_GET['page'] Default page: 0
+
+	/** User muss mindestens eingeloggt sein, um DO Actions zu machen */
+	if (!empty($doAction) && $user->is_loggedin())
 	{
-		$doAction = (string)$_GET['do'];
-		/** Das Benoten (und mypic markieren) können nebst Schönen auch die registrierten User, deshalb müssen wirs vorziehen... */
-		if ($user->is_loggedin() && ($doAction === 'benoten' || $doAction === 'mypic') && isset($_POST['picID']) && !empty($_POST['picID']) && $_POST['picID'] > 0)
+		switch ($doAction)
 		{
-			switch ($doAction)
-			{
-				case 'benoten':
-					if (isset($_POST['score']) && !empty($_POST['score']) && $_POST['score'] > 0) {
-						doBenoten($_POST['picID'], $_POST['score']);
-					}
-					break;
+			case 'benoten':
+				$picIDfromPOST = filter_input(INPUT_POST, 'picID', FILTER_VALIDATE_INT) ?? null; // $_POST['picID']
+				$benotenScore = filter_input(INPUT_POST, 'score', FILTER_VALIDATE_INT) ?? null; // $_POST['score']
+				if ($user->typ >= USER_USER && $benotenScore > 0) { // Dürfen alle eingeloggten
+					doBenoten($picIDfromPOST, $benotenScore);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
 
-				case 'mypic':
-					// Ein <input type="image" ...> übergibt die X & Y Positionen via "inputName_x" & "inputName_y"
-					if (isset($_POST['mypic_x']) && isset($_POST['mypic_y']) && $_POST['mypic_x'] > 0 && $_POST['mypic_y'] > 0) {
-						doMyPic($_POST['picID'], $_POST['mypic_x'], $_POST['mypic_y']);
+			case 'mypic':
+				if ($user->typ >= USER_USER) { // Dürfen alle eingeloggten
+					$picIDfromPOST = filter_input(INPUT_POST, 'picID', FILTER_VALIDATE_INT) ?? null; // $_POST['picID']
+
+					/** Ein <input type="image" ...> übergibt die X & Y Positionen via "inputName_x" & "inputName_y" */
+					$mypic_xcoord = filter_input(INPUT_POST, 'mypic_x', FILTER_VALIDATE_INT) ?? null; // $_POST['mypic_x']
+					$mypic_ycoord = filter_input(INPUT_POST, 'mypic_y', FILTER_VALIDATE_INT) ?? null; // $_POST['mypic_y']
+					if ($mypic_xcoord > 0 && $mypic_ycoord > 0) {
+						doMyPic($picIDfromPOST, $mypic_xcoord, $mypic_ycoord);
 					}
-					break;
-			}
-		} elseif (!$user->is_loggedin() && !empty($doAction)) {
-			$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
-		}
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
 
-		/** Ab hier kommt nur noch Zeugs dass Member & Schöne machen dürfen */
-		if ($user->typ >= USER_MEMBER && (!empty($doAction) && $doAction != 'benoten' && $doAction != 'mypic'))
-		{
-			switch ($doAction)
-			{
-				case 'editAlbum':
-					$res = doEditAlbum($album_id, $_POST['frm']);
+			case 'editAlbum':
+				if ($user->typ >= USER_MEMBER) { // Dürfen nur Member+Schöne
+					$frm = filter_input(INPUT_POST, 'frm', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY);
+					$res = doEditAlbum($album_id, $frm);
 					if (!$album_id) $album_id = $res['id'];
-					break;
-				// case 'editAlbumFromEvent': NOT IMPLEMENTED
-				// 	$res = doEditAlbumFromEvent($album_id, $_POST['event']);
-				// 	if (!$album_id) $album_id = $res['id'];
-				// 	break;
-				case 'delAlbum':
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'zensur':
+				if ($user->typ >= USER_MEMBER && $getPicId > 0) { // Dürfen nur Member+Schöne
+					doZensur($getPicId);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+
+			case 'upload':
+				$frm = filter_input(INPUT_POST, 'frm', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY);
+				if ($user->typ >= USER_MEMBER & !empty($frm)) { // Dürfen nur Member+Schöne
+					$res = doUpload($album_id, $frm);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+
+			case 'mkUploadDir':
+				$frm = filter_input(INPUT_POST, 'frm', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY);
+				if ($user->typ >= USER_MEMBER && !empty($frm)) { // Dürfen nur Member+Schöne
+					$res = doMkUploadDir($frm);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'editFotoTitle':
+				$frm = filter_input(INPUT_POST, 'frm', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY);
+				if ($user->typ >= USER_MEMBER && !empty($frm)) { // Dürfen nur Member+Schöne
+					$res = doEditFotoTitle($getPicId, $frm);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'doRotatePic':
+				$rotateLeftOrRight = filter_input(INPUT_POST, 'rotatedir', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['rotatedir']
+				if ($user->typ >= USER_MEMBER && !empty($rotateLeftOrRight)) { // Dürfen nur Member+Schöne
+					$res = doRotatePic($getPicId, $rotateLeftOrRight);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'delAlbum':
+				if ($user->typ >= USER_SPECIAL) { // Dürfen nur Schöne+Admins
 					$res = doDelAlbum($album_id, $_POST['del']);
 					$_GET['show'] = $res['show'];
-					break;
-				case 'zensur':
-					doZensur($getPicId);
-					break;
-				case 'delPic':
-					$res = doDelPic($_POST['picID']);
-					break;
-				case 'upload':
-					$res = doUpload($album_id, $_POST['frm']);
-					break;
-				case 'delUploadDir':
-					$res = doDelUploadDir($_POST['frm']['folder']);
-					break;
-				case 'mkUploadDir':
-					$res = doMkUploadDir($_POST['frm']);
-					break;
-				case 'editFotoTitle':
-					$res = doEditFotoTitle($getPicId, $_POST['frm']);
-					break;
-				case 'doRotatePic':
-					$res = doRotatePic($getPicId, $_POST['rotatedir']);
-					break;
-				/*case 'markieren':
-					doMark($getPicId);
-					break;*/
-			}
-		} elseif ($user->typ < USER_MEMBER && !empty($doAction)) {
-			$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
-		}
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'delPic':
+				$deleteThisPicID = filter_input(INPUT_POST, 'del', FILTER_VALIDATE_INT) ?? null; // $_POST['del']
+				if ($user->typ >= USER_SPECIAL && $deleteThisPicID > 0) { // Dürfen nur Schöne+Admins
+					$res = doDelPic($deleteThisPicID);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
+
+			case 'delUploadDir':
+				$frm = filter_input(INPUT_POST, 'frm', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY);
+				if ($user->typ >= USER_SPECIAL && !empty($frm['folder'])) { // Dürfen nur Schöne+Admins
+					$res = doDelUploadDir($frm['folder']);
+				} else {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$doAction])]);
+				}
+				break;
 
-		unset($_GET['do']);
-		$doAction = null;
+			// case 'markieren': DISABLED
+			// 		doMark($getPicId);
+			// 	break;
+
+			// case 'editAlbumFromEvent': NOT IMPLEMENTED
+			// 		$res = doEditAlbumFromEvent($album_id, $_POST['event']);
+			// 		if (!$album_id) $album_id = $res['id'];
+			// 	break;
+		}
 	} else {
 		$res = array( 'state' => '', 'error' => '' );
 	}
-	$show = (isset($_GET['show']) ? $_GET['show'] : null);
-	$showPage = (isset($_GET['page']) && is_numeric($_GET['page']) ? (int)$_GET['page'] : 0); // Default page: 0
+	unset($_GET['do']);
+	$doAction = null;
+
 	switch ($show)
 	{
 		case 'editAlbum':
 			$model->showAlbumedit($smarty, $album_id);
+			if ($user->typ >= USER_MEMBER && !empty($rotateLeftOrRight)) { // Dürfen nur Member+Schöne
+				editAlbum($album_id, $doAction, (isset($res['state']) ? $res['state'] : ''), (isset($res['error']) ? $res['error'] : ''), (isset($res['frm']) ? $res['frm'] : ''));
+			} else {
+				$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$show])]);
+			}
 			$smarty->display('file:layout/head.tpl');
-			editAlbum($album_id, $doAction, (isset($res['state']) ? $res['state'] : ''), (isset($res['error']) ? $res['error'] : ''), (isset($res['frm']) ? $res['frm'] : ''));
 			break;
+
 		case 'editAlbumV2':
-			header('Location: /gallery_maker.php'.($getAlbId > 0 ? '?album_id='.$getAlbId : ''));
+			if ($user->typ >= USER_USER && !empty($user->vereinsmitglied) || $user->typ >= USER_SPECIAL) { // Dürfen nur Vereinsmitglieder, Schöne+Admins
+				header('Location: /gallery_maker.php'.($getAlbId > 0 ? '?album_id='.$getAlbId : ''));
+			} else {
+				$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$show])]);
+			}
 			exit;
+
 		case 'albumThumbs':
-			$model->showAlbum($smarty, $album_id);
-			albumThumbs($album_id, $showPage);
+			if ($album_id === APOD_GALLERY_ID ||
+				($user->typ >= USER_USER && !empty($user->vereinsmitglied))) { // Dürfen nur eingeloggte + Vereinsmitglieder
+				$model->showAlbum($smarty, $album_id);
+				albumThumbs($album_id, $showPage);
+			} else {
+				$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$show])]);
+			}
 			break;
+
 		case 'pic':
-			$model->showPic($smarty, $user, $getPicId, $album_id);
-			$smarty->display('file:layout/head.tpl');
-			pic($getPicId);
+			if ($album_id === APOD_GALLERY_ID ||
+				($user->typ >= USER_USER && !empty($user->vereinsmitglied))) { // Dürfen nur eingeloggte + Vereinsmitglieder
+				$model->showPic($smarty, $user, $getPicId, $album_id);
+				$smarty->display('file:layout/head.tpl');
+				pic($getPicId);
+			} else {
+				$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('permissions-insufficient', 'gallery', [$show])]);
+			}
 			break;
+
 		default:
 			$model->showOverview($smarty);
 			galleryOverview($res['state'], $res['error']);
diff --git a/www/includes/activities.inc.php b/www/includes/activities.inc.php
index 6e3559c..98c950e 100644
--- a/www/includes/activities.inc.php
+++ b/www/includes/activities.inc.php
@@ -147,7 +147,7 @@ static public function addActivity ($fromUser, $forUser, $activity, $activityAre
 				/** Telegram Notification auslösen */
 				return self::notify($fromUser, $activity, $activityArea);
 			} else {
-				zorgDebugger::me()->debug('SQL INSERT result: %s', [strval($result)]);
+				zorgDebugger::log()->debug('SQL INSERT result: %s', [strval($result)]);
 				return false;
 			}
 		} else {
@@ -504,9 +504,9 @@ static public function notify ($fromUser, $activityText, $activityArea=NULL)
 		}
 		/** For all other Activites */
 		else {
-			zorgDebugger::me()->debug('Attempting to send Telegram Notification');
+			zorgDebugger::log()->debug('Attempting to send Telegram Notification');
 			$success = $telegram->send->message('group', t('telegram-notification', 'activity', [ $user->id2user($fromUser, TRUE), $activityText ]), ['disable_notification' => 'true']);
-			zorgDebugger::me()->debug('Telegram Notification %s', [($success !== false ? 'SENT!' : 'NOT SENT')], ($success !== false ? 'DEBUG' : 'ERROR'));
+			zorgDebugger::log()->debug('Telegram Notification %s', [($success !== false ? 'SENT!' : 'NOT SENT')], ($success !== false ? 'DEBUG' : 'ERROR'));
 			return $success;
 		}
 		return false;
diff --git a/www/includes/comments.fnc.php b/www/includes/comments.fnc.php
index ef7bd63..5d5b5fa 100644
--- a/www/includes/comments.fnc.php
+++ b/www/includes/comments.fnc.php
@@ -9,7 +9,7 @@
  * @include forum.inc.php required
  * @include usersystem.inc.php required
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'smarty.inc.php';
 require_once INCLUDES_DIR.'forum.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
diff --git a/www/includes/config.inc.php b/www/includes/config.inc.php
index 9f58535..e4af839 100644
--- a/www/includes/config.inc.php
+++ b/www/includes/config.inc.php
@@ -347,18 +347,18 @@
  * @const ERRORLOG_FILETYPE sets the file extension used for the error log file
  * @const ERRORLOG_DIR sets the directory for logging the custom user_errors
  * @const ERRORLOG_FILEPATH sets the directory & file path for logging the custom user_errors to
- * @const ERRORLOG_LEVELS sets the verbosity of logging errors, warnings, and notices caused by the application
+ * @const ERRORLOG_LEVEL sets the verbosity of logging errors, warnings, and notices caused by the application. See: https://stackoverflow.com/q/3758418
  * @const ERRORLOG_DEBUG_SCOPE (Optional) sets a focused scope for DEBUG log entries
  * @include errlog.inc.php Errorlogging Class: Load the zorg Error and Debug Handling
  */
 if (!defined('ERRORLOG_FILETYPE')) define('ERRORLOG_FILETYPE', (isset($_ENV['ERRORLOG_FILETYPE']) ? $_ENV['ERRORLOG_FILETYPE'] : '.log'));
 if (!defined('ERRORLOG_DIR')) define('ERRORLOG_DIR', (isset($_ENV['ERRORLOG_DIR']) ? $_ENV['ERRORLOG_DIR'] : null));
 if (!defined('ERRORLOG_FILE')) define('ERRORLOG_FILE', ERRORLOG_DIR.date('Y-m-d').ERRORLOG_FILETYPE);
-if (!defined('ERRORLOG_LEVELS')) define('ERRORLOG_LEVELS', (isset($_ENV['ERROR_REPORTING_LEVELS']) ? $_ENV['ERROR_REPORTING_LEVELS'] : E_ERROR));
+if (!defined('ERRORLOG_LEVEL')) define('ERRORLOG_LEVEL', (isset($_ENV['ERROR_REPORTING_LEVELS']) && is_numeric($_ENV['ERROR_REPORTING_LEVELS']) ? $_ENV['ERROR_REPORTING_LEVELS'] : E_ERROR));
 if (!defined('ERRORLOG_DEBUG_SCOPE')) {
-    define('ERRORLOG_DEBUG_SCOPE', isset($_ENV['DEBUG_SCOPE']) ? explode(',', $_ENV['DEBUG_SCOPE']) : []);
+    define('ERRORLOG_DEBUG_SCOPE', isset($_ENV['DEBUG_SCOPE']) && !empty($_ENV['DEBUG_SCOPE']) ? explode(',', $_ENV['DEBUG_SCOPE']) : []);
 }
-error_reporting(ERRORLOG_LEVELS);
+error_reporting(ERRORLOG_LEVEL);
 require_once INCLUDES_DIR.'errlog.inc.php';
 //set_error_handler('zorgErrorHandler');
 
diff --git a/www/includes/errlog.inc.php b/www/includes/errlog.inc.php
index 1b6f9e9..582b059 100644
--- a/www/includes/errlog.inc.php
+++ b/www/includes/errlog.inc.php
@@ -71,8 +71,8 @@ function zorgErrorHandler ($errno, $errstr, $errfile, $errline)
  * currently are being worked on (and not distract with tons of
  * other messages in the log).
  *
- * @example zorgDebugger::me()->debug('Required SQL-Query update: <%s> in %s:%d', [$funktion, $file, $line], 'DEPRECATED');
- * @example zorgDebugger::me()->error('The provided ID "%d" is invalid!', [$tplID]);
+ * @example zorgDebugger::log()->debug('Required SQL-Query update: <%s> in %s:%d', [$funktion, $file, $line], 'DEPRECATED');
+ * @example zorgDebugger::log()->error('The provided ID "%d" is invalid!', [$tplID]);
  *
  * @version 1.0
  * @since 1.0 `26.12.2024` `IneX` Class added
@@ -80,10 +80,11 @@ function zorgErrorHandler ($errno, $errstr, $errfile, $errline)
 class zorgDebugger
 {
 	/**
-     * @var bool Indicates if the current environment is a development environment.
+     * @var bool $isDevelopmentEnvironment Indicates if the current environment is a development environment.
+     * @var object $instance Stores a Singleton instance of this Class
      */
+    public $isDevelopmentEnvironment;
 	private static $instance = null;
-    private $isDevelopmentEnvironment;
 
 	/**
      * Constructor for Errorlog.
@@ -100,12 +101,12 @@ public function __construct()
 	/**
      * Gets a Singleton instance of the zorgDebugger class.
 	 *
-	 * This allows to call zorgDebugger::me()->... WITHOUT instantiating the Class manually,
+	 * This allows to call zorgDebugger::log()->... WITHOUT instantiating the Class manually,
 	 * and WITHOUT including it or using something like "global $errlog;".
      *
      * @return zorgDebugger The singleton instance of the Errorlog class.
      */
-	public static function me(): zorgDebugger
+	public static function log(): zorgDebugger
     {
         if (self::$instance === null) {
             self::$instance = new zorgDebugger();
@@ -129,11 +130,11 @@ public function debug($message, $params = [], $customLoglevel='DEBUG')
         if ($this->isDevelopmentEnvironment) {
 			$origin = $this->getOrigin();
 
-			if (is_null(ERRORLOG_DEBUG_SCOPE) ||
-				in_array($origin['function'], ERRORLOG_DEBUG_SCOPE) ||
-				in_array(basename($origin['file']), ERRORLOG_DEBUG_SCOPE))
+			if (empty(ERRORLOG_DEBUG_SCOPE) ||
+				(in_array($origin['function'], ERRORLOG_DEBUG_SCOPE) ||
+				in_array(basename($origin['file']), ERRORLOG_DEBUG_SCOPE)))
 				{
-            		$this->log($customLoglevel, $message, $params, $origin);
+            		$this->write($customLoglevel, $message, $params, $origin);
         	}
         }
     }
@@ -146,7 +147,7 @@ public function debug($message, $params = [], $customLoglevel='DEBUG')
      */
     public function info($message, $params = [])
     {
-        $this->log('INFO', $message, $params, $this->getOrigin());
+        $this->write('INFO', $message, $params, $this->getOrigin());
     }
 
 	/**
@@ -157,7 +158,7 @@ public function info($message, $params = [])
      */
     public function error($message, $params = [])
     {
-        $this->log('ERROR', $message, $params, $this->getOrigin());
+        $this->write('ERROR', $message, $params, $this->getOrigin());
     }
 
 	/**
@@ -168,7 +169,7 @@ public function error($message, $params = [])
      */
     public function warn($message, $params = [])
     {
-        $this->log('WARNING', $message, $params, $this->getOrigin());
+        $this->write('WARNING', $message, $params, $this->getOrigin());
     }
 
 	/**
@@ -180,7 +181,7 @@ public function warn($message, $params = [])
 	 * @param array  $params  The parameters to be inserted into the message format string.
      * @param array  $origina (Optional) Origin details from where a log message was triggered from.
      */
-    private function log($level, $message, $params, $origin = [])
+    private function write($level, $message, $params, $origin = [])
     {
 		$logOrigin = (!empty($origin['function']) ? $origin['function'] : (!empty($origin['file']) ? $origin['file'] : ''));
 		$logLine = (!empty($origin['line']) ? ':'.$origin['line'] : '');
@@ -197,24 +198,42 @@ private function log($level, $message, $params, $origin = [])
     private function getOrigin()
     {
         $backtrace = debug_backtrace(DEBUG_BACKTRACE_PROVIDE_OBJECT, 3);
+		// 1=self::getOrigin() | 2=self::debug()/self::warn()/... | 3=self::__construct()
 
         $origin = [
             'function' => '',
             'file' => '',
             'line' => 0
         ];
-
-        if (isset($backtrace[2])) {
-            if (isset($backtrace[2]['function'])) {
-                $origin['function'] = $backtrace[2]['function'];
+		$debuggerMethods = ['debug', 'info', 'warn', 'write'];
+
+        if (isset($backtrace[1])) {
+            if (isset($backtrace[1]['function'])) {
+				/** Only log the Function name, if it's not from this Debugger Class */
+				if (isset($backtrace[1]['function']) && !in_array($backtrace[1]['function'], $debuggerMethods)) {
+					$origin['function'] = $backtrace[1]['function'];
+				}
+				/** When the Function is a Class Constructor, then log its Class Name instead */
+				elseif ($backtrace[1]['function'] === '__construct' && isset($backtrace[1]['class']) ) {
+					/** However, when it's the Debugger's Class Name, then fall back to use the Origin File reference */
+					if ($backtrace[1]['class'] !== __CLASS__) {
+						$origin['function'] = $backtrace[1]['class'];
+					} else {
+						$origin['function'] = basename($backtrace[1]['file']);
+					}
+				}
+            }
+            elseif (isset($backtrace[1]['file'])) {
+                $origin['function'] = basename($backtrace[1]['file']);
             }
-            if (isset($backtrace[2]['file'])) {
-                $origin['file'] = basename($backtrace[2]['file']);
+			if (isset($backtrace[1]['file'])) {
+                $origin['file'] = basename($backtrace[1]['file']);
             }
-            if (isset($backtrace[2]['line'])) {
-                $origin['line'] = $backtrace[2]['line'];
+            if (isset($backtrace[1]['line'])) {
+                $origin['line'] = $backtrace[1]['line'];
             }
         }
+
         return $origin;
     }
 }
diff --git a/www/includes/error.inc.php b/www/includes/error.inc.php
index 2155c30..dd0240e 100644
--- a/www/includes/error.inc.php
+++ b/www/includes/error.inc.php
@@ -1,9 +1,10 @@
 <?php
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'mysql.inc.php';
 
 /** Query errors Table for all open errors (status = 1) */
-$sql = $db->fetch($db->query('SELECT count(*) as num_errors FROM sql_error WHERE status = 1', __FILE__, __LINE__, 'SELECT num_errors'));
-$num_errors = $sql['num_errors'];
+$sql = $db->fetch($db->query('SELECT COUNT(*) as num_errors FROM sql_error WHERE status=1', __FILE__, __LINE__, 'SELECT num_errors'));
+$num_errors = (isset($sql['num_errors']) ? (int)$sql['num_errors'] : 0);
 
 /**
  * Get all SQL-Error Entries from the database
@@ -23,7 +24,7 @@ function get_sql_errors($num=23,$order=3,$oby=0)
 	if (isset($_GET['tpl'])) $tpl_id = (int)strip_tags(filter_var(trim($_GET['tpl']), FILTER_SANITIZE_NUMBER_INT));
 	if (isset($_GET['query'])) $query = (string)strip_tags(filter_var(trim($_GET['query']), FILTER_SANITIZE_STRING));
 
-	if(isset($num_errors) && $num_errors > 0)
+	if($num_errors > 0)
 	{
 		if(!isset($_SESSION['error_order'])) {
 			$_SESSION['error_num'] = $num;
@@ -74,7 +75,7 @@ function get_sql_errors($num=23,$order=3,$oby=0)
 			        LIMIT '.$_SESSION['error_num'].') s
 				LEFT JOIN user u ON u.id = s.s_user_id
 				WHERE 1 = 1';
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$result = $db->query($sql,__FILE__,__LINE__,__FUNCTION__);
 		$html = '';
 		if(isset($error_id) && $error_id>0)
 		{
diff --git a/www/includes/gallery.readpic.php b/www/includes/gallery.readpic.php
index 7d9aaf5..7d4db53 100644
--- a/www/includes/gallery.readpic.php
+++ b/www/includes/gallery.readpic.php
@@ -5,15 +5,17 @@
  * This script reads a gallery-pic (they aren't in a public directory).
  * It uses the standard session of the User.
  *
- * @author [z]biko
- * @author IneX
  * @package zorg\Gallery
- * @version 3.0
- * @since 1.0 file & functions added initially
- * @since 2.0 added check for valid GET-Parameters, refactored Caching & HTTP-Headers, added Movie-File output variations
+ *
+ * @version 3.5
+ * @since 1.0 `[z]biko` File & functions added initially
+ * @since 2.0 `IneX` Added check for valid GET-Parameters, refactored Caching & HTTP-Headers, added Movie-File output variations
  * @since 3.0 `14.11.2019` `IneX` GV Beschluss 2018: added check if User is logged-in & Vereinsmitglied
+ * @since 3.5 `03.01.2024` `IneX` Code hardening and optimizations
  *
  * @param integer $_GET['id'] Passed integer > 0 of an existing Gallery Pic ID
+ * @param string $_GET['token'] Passed token to validate for allowed anonymous access (required for Telegram Bot)
+ * @param string $_GET['type'] Passed type value, to request either Full Pic or Thumbnail of the Pic
  * @return resource Media resource with correct MIME-Type and HTTP Headers
  */
 
@@ -22,25 +24,26 @@
  * @include config.inc.php Include required global site configurations
  * @include mysql.inc.php MySQL-DB Connection and Functions
  * @include usersystem.inc.php Usersystem Functions and User definitions
- * @include util.inc.php Various Helper Functions
  */
 require_once dirname(__FILE__).'/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 include_once INCLUDES_DIR.'usersystem.inc.php';
-include_once INCLUDES_DIR.'util.inc.php';
 
 /** Check if passed $_GET['id'] is valid / integer & not empty */
-if (empty($_GET['id']) || !is_numeric($_GET['id']) || $_GET['id'] <= 0) {
-	/** @TODO instead of just exit(), output a default image showing "broken" or alike? */
+$media_id = filter_input(INPUT_GET, 'id', FILTER_VALIDATE_INT) ?? 0; // $_GET['id']
+if ($media_id <= 0) {
+	// TODO instead of just exit(), output a default image showing "broken" or alike? */
 	header('HTTP/1.1 400 Bad Request');
-	exit( error_log(sprintf('<%s:%d> Invalid Media-ID was requested: %s', __FILE__, __LINE__, $_GET['id'])) );
-} else {
-	$media_id = $_GET['id'];
+	exit( error_log(sprintf('<%s:%d> Invalid Media-ID was requested: %s', __FILE__, __LINE__, $media_id)) );
 }
 
 /** Query image metadata from database */
-$query = $db->query('SELECT * FROM gallery_pics WHERE id='.$media_id, __FILE__, __LINE__, 'SELECT * FROM gallery_pics');
+$query = $db->query('SELECT * FROM gallery_pics WHERE id=?', __FILE__, __LINE__, 'SELECT FROM gallery_pics', [$media_id]);
 $media_data = $db->fetch($query);
+if (!$media_data) {
+	header('HTTP/1.1 400 Bad Request');
+	exit( error_log(sprintf('<%s:%d> No Media data could be obtained', __FILE__, __LINE__)) );
+}
 
 /**
  * User & Vereinsmitglieder-Check: nur Vereinsmitglieder dürfen Pics sehen
@@ -48,12 +51,15 @@
  * - Ausnahme #2: Telegram-Bot (Daily Pic)
  * @link https://github.com/zorgch/zorg-verein-docs/blob/master/GV/GV%202018/2018-12-23%20zorg%20GV%202018%20Protokoll.md
  */
-$auth_granted = (isset($_GET['token']) && md5(TELEGRAM_API_URI) === $_GET['token'] ? true : null); // Validate Telegram-Bot Auth-Token
-if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Auth-Token: %s', __FILE__, __LINE__, ($auth_granted ? $_GET['token'] : 'false')));
-if ((int)$media_data['album'] === APOD_GALLERY_ID || $user->is_loggedin() && (!empty($user->vereinsmitglied) && $user->vereinsmitglied !== '0') || $auth_granted === true)
+$token = filter_input(INPUT_GET, 'token', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['token']
+$token_validation = md5($_ENV['TELEGRAM_BOT_API']);
+$auth_granted = (!empty($token) && $token === $token_validation ? true : null); // Validate Telegram-Bot Auth-Token
+zorgDebugger::log()->debug('Auth-Token Validation: %s (required: %s)', [($auth_granted ? $_GET['token'] : 'false'), (!empty($_GET['token']) ? 'yes' : 'no')]);
+if ((int)$media_data['album'] === APOD_GALLERY_ID || $auth_granted === true || ($user->is_loggedin() && !empty($user->vereinsmitglied) && $user->vereinsmitglied !== '0'))
 {
 	/** Check if passed $_GET['type'] is set to "tn" and valid - in all other cases fallback to "_pic" (default) */
-	$media_type = (!isset($_GET['type']) || empty($_GET['type']) || is_numeric($_GET['type']) || (!empty($_GET['type']) && $_GET['type'] != 'tn') ? 'pic_' : 'tn_' );
+	$type = filter_input(INPUT_GET, 'type', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['type']
+	$media_type = (empty($type) || $type != 'tn' ? 'pic_' : 'tn_' );
 
 	/** Zensur-Check: zensurierte Pics können nur Members sehen */
 	if (!$media_data['zensur'] || ($media_data['zensur'] && $user->typ == USER_MEMBER))
@@ -71,11 +77,11 @@
 		if ($media_data['extension'] === 'youtube' || $media_data['extension'] === 'vimeo') { $media_mime = 'image/jpeg'; $media_extension = '.jpg'; $media_download = false; }
 		if ($media_data['extension'] === 'website') { $media_mime = 'image/png'; $media_extension = '.png'; $media_download = false; }
 		if (empty($media_extension)) { exit( error_log(sprintf('<%s:%d> Unknown Media Extension: %s', __FILE__, __LINE__, $media_data['extension'])) ); }
-	
+
 		/** Build path to the Media Item */
 		$mediafile_name = $media_type.$media_data['id'].$media_extension;
 		$mediafile = GALLERY_DIR . $media_data['album'] . DIRECTORY_SEPARATOR . $mediafile_name;
-	
+
 		/**
 		 * Last file modification date HTTP-Headers, must be valid HTTP-Date (in GMT)
 		 * @link https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/ETag
@@ -85,7 +91,7 @@
 		$mediafile_hash = fileHash($mediafile, true);
 		header('ETag: "'.$mediafile_hash.'"');
 		header('Last-Modified: ' . $mediafile_lastmodified_gmt);
-	
+
 		/**
 		 * Caching directives HTTP-Headers
 		 * Falls die Last_Modified & ETag Werte vom Client mit dem vom Server übereinstimmen
@@ -108,14 +114,14 @@
 			header('Pragma: no-cache');
 			header('Cache-Control: no-store, no-cache, max-age=0, must-revalidate');
 		*/
-	
+
 		/** If not cached or changed: Media content HTTP-Headers */
 		header('Content-Type: '.$media_mime);
 		header('Content-Length: ' . filesize($mediafile)); ;
-	
+
 		/** Tell browser whether to display file (e.g. images) or download it (e.g. ZIP) */
 		header('Content-Disposition: ' . ($media_download ? 'attachment; filename="'.basename($mediafile).'"' : 'inline' ) );
-	
+
 		/** If not cached or changed: return $mediafile */
 		readfile($mediafile);
 
diff --git a/www/includes/geo2ip.inc.php b/www/includes/geo2ip.inc.php
index 63de351..6622d21 100644
--- a/www/includes/geo2ip.inc.php
+++ b/www/includes/geo2ip.inc.php
@@ -80,7 +80,7 @@ public function __construct()
 			$this->storeUserIPToSession($this->UserIPaddress);
 			$this->setMaxmindIPDetails();
 		} else {
-			\zorgDebugger::me()->debug('getDataFromSession(%s): SESSION CACHE HIT!', [$this->UserIPaddress]);
+			\zorgDebugger::log()->debug('getDataFromSession(%s): SESSION CACHE HIT!', [$this->UserIPaddress]);
 		}
 	}
 
@@ -120,7 +120,7 @@ private function getRealIPaddress()
 				foreach(explode(',', $_SERVER[$ServerVar]) as $ip_address)
 				{
 					/** Validate IP-Address from $_SERVER var */
-					\zorgDebugger::me()->debug('%s => %s', [$ServerVar, $ip_address]);
+					\zorgDebugger::log()->debug('%s => %s', [$ServerVar, $ip_address]);
 					$checked_IPaddress = $this->validateIPaddress((string)$ip_address);
 
 					if (!empty($checked_IPaddress) && false !== $checked_IPaddress)
@@ -129,7 +129,7 @@ private function getRealIPaddress()
 						return $checked_IPaddress;
 					}
 				}
-				\zorgDebugger::me()->debug('%s => %s', [$ip_address, (empty($checked_IPaddress) ? 'empty' : ($checked_IPaddress === false ? 'false' : $checked_IPaddress))]);
+				\zorgDebugger::log()->debug('%s => %s', [$ip_address, (empty($checked_IPaddress) ? 'empty' : ($checked_IPaddress === false ? 'false' : $checked_IPaddress))]);
 			}
 		}
 
diff --git a/www/includes/go_game.inc.php b/www/includes/go_game.inc.php
index 465a85a..40244d6 100644
--- a/www/includes/go_game.inc.php
+++ b/www/includes/go_game.inc.php
@@ -790,8 +790,7 @@ function writeGame($game)
 			$notification_text = t('message-your-turn', 'go', [ SITE_URL, $game['id'] ]);
 			$notification_status = $notification->send($game['nextturn'], 'games', ['from_user_id'=>$user->id, 'subject'=>t('message-subject', 'go'), 'text'=>$notification_text, 'message'=>$notification_text]);
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status "%s" for user=%d to user=%d', __FUNCTION__, __LINE__, ($notification_status===true?'true':'false'), $game['nextturn'], $user->id));
-			/** @deprecated
-			Messagesystem::sendMessage(
+			/** @deprecated Messagesystem::sendMessage(
 				 $user->id
 				,$game['nextturn']
 				,t('message-subject', 'go')
diff --git a/www/includes/googleapis.inc.php b/www/includes/googleapis.inc.php
index 5e16641..81b9364 100644
--- a/www/includes/googleapis.inc.php
+++ b/www/includes/googleapis.inc.php
@@ -15,7 +15,7 @@
  */
 require_once __DIR__.'/config.inc.php';
 if (!defined('GOOGLE_API_KEY') && isset($_ENV['GOOGLE_MAPS_API_KEY'])) define('GOOGLE_API_KEY', $_ENV['GOOGLE_MAPS_API_KEY']);
-zorgDebugger::me()->debug('GOOGLE_API_KEY: %s', [(!empty(GOOGLE_API_KEY) ? 'found' : 'MISSING')]);
+zorgDebugger::log()->debug('GOOGLE_API_KEY: %s', [(!empty(GOOGLE_API_KEY) ? 'found' : 'MISSING')]);
 
 /**
  * Google Maps API Class
diff --git a/www/includes/mysql.inc.php b/www/includes/mysql.inc.php
index be0b43a..0e434d4 100644
--- a/www/includes/mysql.inc.php
+++ b/www/includes/mysql.inc.php
@@ -12,7 +12,6 @@
 /**
  * File includes
  * @include config.inc.php REQUIRED for $_ENV vars to be available
- * @include mysql_login.inc.local.php Include MySQL Database login information file
  */
 require_once __DIR__.'/config.inc.php';
 
@@ -78,11 +77,11 @@ public function __construct() {
 	 * @since 2.1 `07.08.2019` `IneX` changed return mysql_insert_id() & mysql_affected_rows() to return row-id or true
 	 * @since 3.0 `02.06.2023` `IneX` added support for mysqli prepared statements, helps mitigating SQL Injection risks (CWE-89)
 	 *
-	 * @param $sql string SQL-Query. Als Prepared Statement wird auch $params benötigt!
-	 * @param $file string (Optional) Dateiname in welcher SQL-Query abgesetzt wurde
-	 * @param $line int (Optional) Linenumber in der Datei welche SQL-Query abgesetzt hat
-	 * @param $funktion string (Optional) Name der Funktion aus welcher SQL-Query abgesetzt wurde
-	 * @param $params array (Optional) Parameter für Prepared SQL Statement
+	 * @param string $sql SQL-Query. Als Prepared Statement wird auch $params benötigt!
+	 * @param string $file (Optional) Dateiname in welcher SQL-Query abgesetzt wurde
+	 * @param int $line (Optional) Linenumber in der Datei welche SQL-Query abgesetzt hat
+	 * @param string $funktion (Optional) Name der Funktion aus welcher SQL-Query abgesetzt wurde
+	 * @param array $params (Optional) Parameter für Prepared SQL Statement
 	 * @global object $user Globales Class-Object mit den User-Methoden & Variablen
 	 * @return object|integer Query-Result-Resource or Primary-Key of INSERT
 	*/
@@ -111,7 +110,7 @@ function query($sql, $file='', $line=0, $funktion='', $params=[]) {
 			if (empty($params)) {
 				$result = mysqli_query($this->conn, $sql);
 				/* Log SQL-Queries not upgraded to Prepared Statements */
-				zorgDebugger::me()->debug('<%s> is no SQL prepared statement, in %s:%d', [$funktion, $file, $line]);
+				zorgDebugger::log()->debug('<%s:%d> may required update to SQL prepared statement, in %s', [$funktion, $line, $file]);
 			} else {
 				$stmt = mysqli_prepare($this->conn, $sql);
 				if ($stmt === false) throw new mysqli_sql_exception(mysqli_error($this->conn));
@@ -161,16 +160,20 @@ function query($sql, $file='', $line=0, $funktion='', $params=[]) {
 				$result = mysqli_stmt_get_result($stmt);
 			}
 
-			/** If the query failed or no rows were returned, display MySQL-Error with some context */
-			if ($result === false && mysqli_num_rows($result) === 0 && mysqli_affected_rows($this->conn) === 0)
-			{
-				if ($this->display_error === 1) {
-					throw new mysqli_sql_exception($this->msg($sql, $file, $line, $funktion));
-				} else {
-					$this->msg($sql, $file, $line, $funktion);
-					throw new mysqli_sql_exception('SQL query error in '.$file.' at line '.$line);
-				}
-			} else {
+			/**
+			 * If the query failed or no rows were returned, display MySQL-Error with some context
+			 * //FIXME I don't know why, but when this is changed, it will break a lot of things (e.g. Smarty->compile(comment:xxxx))
+			 * // INFO 08.07.2024/IneX: disabled this check - doesn't add value & there seems no save way to check for WRONG queries only (no returned rows is no error...)
+			 */
+			// if ($result === false && mysqli_num_rows($result) === 0 && mysqli_affected_rows($this->conn) === 0)
+			// {
+			// 	if (!$this->display_error) {
+			// 		throw new mysqli_sql_exception($this->msg($sql, $file, $line, $funktion));
+			// 	} else {
+			// 		$this->msg($sql, $file, $line, $funktion);
+			// 		throw new mysqli_sql_exception('SQL query error in '.$file.' at line '.$line);
+			// 	}
+			// } else {
 				/** Retrieve and return a more valuable information, depending on the SQL-query type */
 				switch (strtolower(substr($sql, 0, 6)))
 				{
@@ -182,13 +185,15 @@ function query($sql, $file='', $line=0, $funktion='', $params=[]) {
 						return $result;
 					default:
 						/** mysqli_affected_rows() returns the number of affected rows as an integer, or -1 on failure */
-						$sql_affected_rows = (int)mysqli_affected_rows($this->conn);
+						$sql_affected_rows = intval(mysqli_affected_rows($this->conn));
 						return ($sql_affected_rows !== -1 ? $sql_affected_rows : false);
 				}
-			}
+			// }
 		} catch (mysqli_sql_exception $e) {
-			zorgDebugger::me()->debug('%s', [$e->getMessage()]);
-			die($e->getMessage());
+			zorgDebugger::log()->debug('%s', [$e->getMessage()]);
+			$this->msg($sql, $file, $line, $funktion);
+
+			die(($this->display_error ? $e->getMessage() : ''));
 		}
 	}
 
@@ -242,12 +247,10 @@ function saveerror($msg, $sql, $file='', $line=0, $funktion='')
 		$ip = (isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : '');
 		$page = (isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : '');
 		$referer = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : '');
-
-		$insertSql = 'INSERT INTO sql_error (user_id, ip, page, query, msg, date, file, line, referer, status, function)
-						VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, 1, ?)';
+		// FIXME crasht wenn von :193 -> :222 aufgerufen, prepared statement scheint falsch zu sein *shrug*
+		$insertSql = 'INSERT INTO sql_error (user_id, ip, page, query, msg, date, file, line, referer, status, function) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, 1, ?)';
 		$stmt = mysqli_prepare($this->conn, $insertSql);
-		mysqli_stmt_bind_param($stmt, 'isssssiss',
-								$user_id, $ip, $page, $sql, $msg, timestamp(true), $file, $line, $referer, $funktion);
+		mysqli_stmt_bind_param($stmt, 'isssssiss', $user_id, $ip, $page, $sql, $msg, timestamp(true), $file, $line, $referer, $funktion);
 		mysqli_stmt_execute($stmt);
 	}
 
@@ -348,7 +351,7 @@ function insert($table, $values, $file='', $line=0, $funktion=null)
 		$insertKeys = '(`'.implode('`,`', array_keys($values)).'`)';
 		$insertValues = implode(',', array_fill(0, count($values), '?'));
 		$sql = sprintf('INSERT INTO `%s` %s VALUES (%s)', $table, $insertKeys, $insertValues);
-		zorgDebugger::me()->debug('$db->insert() SQL: %s%s', [$sql, print_r($values,true)]);
+		zorgDebugger::log()->debug('$db->insert() SQL: %s%s', [$sql, print_r($values,true)]);
 		foreach ($values as $key => $val) {
 			if (strtolower($val) === 'now()') {
 				$values[$key] = timestamp(true); // Fix "NOW()" => NOW() without quotes
@@ -374,8 +377,8 @@ function insert($table, $values, $file='', $line=0, $funktion=null)
 	 * @since 3.0 `05.11.2018` `IneX` fixed iteration for $id (WHERE x=y) building, depending if array or integer is provided
 	 * @since 3.0 `02.06.2023` `IneX` added compatibility with mysqli prepared statements
 	 *
-	 * @FIXME array($id) soll nicht key,value-Pairs parsen, sondern direkt der Vergleich (z.B. "id>2"), aktuell kann nur auf 1 name & mehrere exakte values geprüft werden: "a=b OR a=c"
-	 * @TODO change all usages of $db->update to pass associative array elements, like 'name'=>'Barbara Harris'.
+	 * // FIXME array($id) soll nicht key,value-Pairs parsen, sondern direkt der Vergleich (z.B. "id>2"), aktuell kann nur auf 1 name & mehrere exakte values geprüft werden: "a=b OR a=c"
+	 * // TODO change all usages of $db->update to pass associative array elements, like 'name'=>'Barbara Harris'.
 	 *
 	 * @param string $table Name der Tabelle, in der geändert werden soll
 	 * @param array|int $id Array: $id[0]: Name des Primärschlüsselfeldes + $id[1+] Rows, die geändert werden sollen | bei Integer: Row, die geändert werden soll, nimmt Primärschlüsselfeld als 'id' an
@@ -384,9 +387,13 @@ function insert($table, $values, $file='', $line=0, $funktion=null)
 	 * @param int $line (optional) Zeile des Aufrufes, für Fehlermeldung
 	 * @param string $funktion (optional) Funktion wo der Aufruf stattfand, für Fehlermeldung
 	 * @return integer|boolean Anzahl der geänderten Table-Rows des Update Queries - oder FALSE bei Fehler
-	*/
+	 */
 	function update($table, $id, $values, $file='', $line='', $funktion='')
 	{
+		if (!is_string($table)) {
+			error_log(sprintf('Invalid "table" for db->update(): %s', $table));
+			return false;
+		}
 		if (empty($values) || !is_array($values)) {
 			error_log(sprintf('Wrong Parameter type "values" in db->update(): %s', print_r($values,true)));
 			return false;
@@ -436,9 +443,8 @@ function update($table, $id, $values, $file='', $line='', $funktion='')
 				if ($field !== key($conditions)) $sql .= ' OR ';  // Add Separator if not last Array-Iteration
 			}
 		}
-		zorgDebugger::me()->debug('$db->update() SQL: %s', [$sql]);
+		zorgDebugger::log()->debug('$db->update() SQL: %s', [$sql]);
 		return $this->query($sql, $file, $line, $funktion, $params);
-		//return mysql_affected_rows();
 	}
 }
 
diff --git a/www/includes/notifications.inc.php b/www/includes/notifications.inc.php
index bf393aa..7f3390f 100644
--- a/www/includes/notifications.inc.php
+++ b/www/includes/notifications.inc.php
@@ -19,7 +19,7 @@
  * File includes
  * @include messagesystem.inc.php Required Messagesystem Class
  */
-require_once INCLUDES_DIR.'messagesystem.inc.php' ;
+require_once __DIR__.'/messagesystem.inc.php' ;
 
 /**
  * Class for Notification handling
@@ -171,7 +171,7 @@ private function get($user_id)
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $user_id VALID', __METHOD__, __LINE__));
 		}
 
-		$query = $db->query('SELECT notifications FROM user WHERE id='.$user_id.' LIMIT 1', __FILE__, __LINE__, __METHOD__);
+		$query = $db->query('SELECT notifications FROM user WHERE id=? LIMIT 1', __FILE__, __LINE__, __METHOD__, [$user_id]);
 		$result = $db->fetch($query);
 		if (!$result || empty($result))
 		{
@@ -180,7 +180,7 @@ private function get($user_id)
 			$userEnabledNotifications = json_decode( $user->default_notifications, true ); // JSON-DECODE to Array
 		} else {
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Use $userEnabledNotifications for $user_id %d: %s', __METHOD__, __LINE__, $user_id, $result['notifications']));
-			$userEnabledNotifications = json_decode( $result['notifications'], true); // JSON-Decode to Array
+			$userEnabledNotifications = json_decode( stripslashes($result['notifications']), true); // JSON-Decode to Array
 		}
 
 		return $userEnabledNotifications;
@@ -211,14 +211,14 @@ private function check($notification_source, $notification_type, $user_id)
 		if (is_numeric($notification_type) || is_array($notification_type)) return false;
 		if (!is_numeric($user_id) || $user_id <= 0 || is_array($user_id)) return false;
 
-		$query = $db->query('SELECT notifications FROM user WHERE id='.$user_id.' LIMIT 1', __FILE__, __LINE__, __METHOD__);
+		$query = $db->query('SELECT notifications FROM user WHERE id=? LIMIT 1', __FILE__, __LINE__, __METHOD__, [$user_id]);
 		$result = $db->fetch($query);
 		if (!$result || empty($result))
 		{
 			/** No query result / empty "notifications"-field */
 			return false;
 		} else {
-			$userEnabledNotifications = json_decode( $result['notifications'], true); // JSON-Decode to Array
+			$userEnabledNotifications = json_decode( stripslashes($result['notifications']), true); // JSON-Decode to Array
 		}
 
 		/** Check if $notification_type is enabled */
diff --git a/www/includes/setistats.inc.php b/www/includes/setistats.inc.php
index 2d534dd..1ed706c 100644
--- a/www/includes/setistats.inc.php
+++ b/www/includes/setistats.inc.php
@@ -1,155 +1,185 @@
 <?php
 
+/**
+ * @deprecated Requires migration to use BOINC Stats...
+ */
 class SetiStats {
-      var $exp = array (
-
-       "UserName"                => "URL)\n</td>\n<td>\n(.*)\n</td>\n</tr>\n<tr>\n<td>\nResults",
-       "Workunits"               => "<TR>\n<TD>\nResults Received\n</TD>\n<TD>\n(.*)</TD>\n</TR>\n<TR>\n<TD>\nTotal CPU Time",
-       "TotalCPUTime"            => "<TR>\n<TD>\nTotal CPU Time\n</TD>\n<TD>\n(.*)\n</TD>\n</TR>\n<TR>\n<TD>\nAverage CPU Time per work unit",
-       "AverageCPUTime"          => "<TR>\n<TD>\nAverage CPU Time per work unit\n</TD>\n<TD>\n(.*)\n</td>\n</tr>\n<tr>\n<td>\nAverage results received per day",
-       "LastResult"              => "<TR><TD>Last result returned:</TD><TD>(.*)</TD>\n<TR><TD>Registered on:</TD>",
-       "RegisteredOn"            => "<TR><TD>Registered on:</TD><TD>(.*)</TD>\n<TR><TD>&nbsp;</TD><TD><a href=",
-       "SetiUserFor"             => "<TR><TD>SETI@home user for:</TD><TD>(.*)</TD></TR>\n<TR BGCOLOR=\"#303080\"><TD COLSPAN=2><b>Your group info",
-       "GroupName"               => ".html\"><b>(.*)</b></a></td>\n</tr>\n<tr>\n<td",
-       "GroupURL"                => "<tr>\n<td>\nYou belong to the group named:\n</td>\n<td>\n<a href=\"(.*)\"><b>",
-       "TotalUsers"              => "<tr><td>\nYour rank out of <b>(.*)</b> total users is:\n</td><td>",
-       "Rank"                    => "</td><td>\n<b>(.*)<sup>",
-       "TotalUsersWithThisRank"  => "The number of users who have this rank:\n</td><td>\n<b>(.*)</b>\n</td></tr>\n<tr><td>\nYou have completed more work units than",
-       "MoreWorkUnitsThan"       => "work units than\n</td><td>\n<b>(.*)</b> of our",
-       "AverageResultsPerDay"    => "Average results received per day\n</td>\n<td>\n(.*)\n</td>\n</tr>\n<TR><TD>Last",
-       "RegistrationClass"       => "</TD>\n<TR><TD>&nbsp;</TD><TD><a href=(.*)>View Registration Class</a></TD>\n<TR><TD>SETI@home user for"
-      );
-
-      var $errors = array(
-       "SiteDown"   => "Seti@Home Server unreachable",
-       "ParseError" => "Parse Error",
-       "Error"      => "Error"
-      );
-
-
-
-      function setEmail($user_email)
-      {
-                $this->email = $user_email;
-                $this->server1 = "http://setiathome.ssl.berkeley.edu/fcgi-bin/fcgi?email=". $this->email. "&cmd=user_stats_new";
-                $this->server2 = "http:///setiathome2.ssl.berkeley.edu/fcgi-bin/fcgi?email=". $this->email. "&cmd=user_stats_new";
-                return true;
-      }
-
-      function Init()
-      {
-      $this->raw = @implode("", @file($this->server1));
-
-                 if (!$this->raw){
-                 $this->raw = @implode("", @file($this->server2));
-                 }
-
-      }
-
-      function viewStats($what)
-      {
-
-                if (!$this->raw) {
-                 $this->$what = $this->errors["SiteDown"];
-                }
-                else
-                {
-                    if (@eregi($this->exp[$what], $this->raw, $output))
-                    {
-                     $this->$what = $output[1];
-                    }
-                     else
-                    {
-                     $this->$what = $this->errors["ParseError"];
-                    }
-                 }
-                 if (!$this->$what)
-                 {
-                  $this->$what = $this->errors["Error"];
-                 }
-                 return $this->$what;
-
-      }
-
-      function Group()
-      {
-          if (@eregi("You do not currently belong to a group", $this->raw))
-          {
-           $this->Groupname = "none";
-           $this->Groupurl  = "";
-          }
-           else
-          {
-           $this->Groupname = $this->viewStats('GroupName');
-           $this->Groupurl  = $this->viewStats('GroupURL');
-          }
-
-           $this->Groupstuff = array (
-           "name"     => $this->Groupname,
-           "url"      => $this->Groupurl
-           );
-
-           return $this->Groupstuff;
-      }
-
-      function ResultInt()
-      {
-          list ($this->null, $this->tmp_month, $this->tmp_null, $this->tmp_day, $this->tmp_time, $this->tmp_year, $this->null) = split ('[ ]', $this->viewStats('RegisteredOn'));
-          list ($this->tmp_hour, $this->tmp_min, $this->tmp_sec) = split ('[:]', $this->tmp_time);
-
-          switch ($this->tmp_month)
-          {
-               case 'Jan'; $this->tmp_month = 1;  break;
-               case 'Feb'; $this->tmp_month = 2;  break;
-               case 'Mar'; $this->tmp_month = 3;  break;
-               case 'Apr'; $this->tmp_month = 4;  break;
-               case 'May'; $this->tmp_month = 5;  break;
-               case 'Jun'; $this->tmp_month = 6;  break;
-               case 'Jul'; $this->tmp_month = 7;  break;
-               case 'Aug'; $this->tmp_month = 8;  break;
-               case 'Sep'; $this->tmp_month = 9;  break;
-               case 'Oct'; $this->tmp_month = 10; break;
-               case 'Nov'; $this->tmp_month = 11; break;
-               case 'Dec'; $this->tmp_month = 12; break;
-          }
-
-          $this->RegDate  = mktime($this->tmp_hour, $this->tmp_min, $this->tmp_sec, $this->tmp_month, $this->tmp_day, $this->tmp_year);
-          $this->ActDate  = time();
-          $this->DiffDate = ($this->ActDate-$this->RegDate);
-          $this->ResInt   = ($this->DiffDate/$this->viewStats('Workunits'));
-
-          $this->days     = floor($this->ResInt / 24 / 60 / 60 );
-
-          $this->ResInt   = $this->ResInt - ($this->days*24*60*60);
-          $this->hours    = floor($this->ResInt / 60 / 60);
-
-          $this->ResInt   = ($this->ResInt - ($this->hours*60*60));
-          $this->minutes  = floor($this->ResInt / 60);
-
-          $this->ResInt   = $this->ResInt - ($this->minutes*60);
-          $this->seconds  = floor($this->ResInt);
-
-          $this->ResultInterval = array (
-           "days"     => $this->days,
-           "hours"    => $this->hours,
-           "minutes"  => $this->minutes,
-           "seconds"  => $this->seconds
-           );
-          return $this->ResultInterval;
-
-      }
-
-      function AverageResultsPerWeek()
-      {
-       return $this->viewStats('AverageResultsPerDay')*7;
-      }
-
-      function AverageResultsPerMonth()
-      {
-       return $this->viewStats('AverageResultsPerDay')*30;
-      }
+      public $exp = [
+		"UserName"                => "URL)\n</td>\n<td>\n(.*)\n</td>\n</tr>\n<tr>\n<td>\nResults",
+		"Workunits"               => "<TR>\n<TD>\nResults Received\n</TD>\n<TD>\n(.*)</TD>\n</TR>\n<TR>\n<TD>\nTotal CPU Time",
+		"TotalCPUTime"            => "<TR>\n<TD>\nTotal CPU Time\n</TD>\n<TD>\n(.*)\n</TD>\n</TR>\n<TR>\n<TD>\nAverage CPU Time per work unit",
+		"AverageCPUTime"          => "<TR>\n<TD>\nAverage CPU Time per work unit\n</TD>\n<TD>\n(.*)\n</td>\n</tr>\n<tr>\n<td>\nAverage results received per day",
+		"LastResult"              => "<TR><TD>Last result returned:</TD><TD>(.*)</TD>\n<TR><TD>Registered on:</TD>",
+		"RegisteredOn"            => "<TR><TD>Registered on:</TD><TD>(.*)</TD>\n<TR><TD>&nbsp;</TD><TD><a href=",
+		"SetiUserFor"             => "<TR><TD>SETI@home user for:</TD><TD>(.*)</TD></TR>\n<TR BGCOLOR=\"#303080\"><TD COLSPAN=2><b>Your group info",
+		"GroupName"               => ".html\"><b>(.*)</b></a></td>\n</tr>\n<tr>\n<td",
+		"GroupURL"                => "<tr>\n<td>\nYou belong to the group named:\n</td>\n<td>\n<a href=\"(.*)\"><b>",
+		"TotalUsers"              => "<tr><td>\nYour rank out of <b>(.*)</b> total users is:\n</td><td>",
+		"Rank"                    => "</td><td>\n<b>(.*)<sup>",
+		"TotalUsersWithThisRank"  => "The number of users who have this rank:\n</td><td>\n<b>(.*)</b>\n</td></tr>\n<tr><td>\nYou have completed more work units than",
+		"MoreWorkUnitsThan"       => "work units than\n</td><td>\n<b>(.*)</b> of our",
+		"AverageResultsPerDay"    => "Average results received per day\n</td>\n<td>\n(.*)\n</td>\n</tr>\n<TR><TD>Last",
+		"RegistrationClass"       => "</TD>\n<TR><TD>&nbsp;</TD><TD><a href=(.*)>View Registration Class</a></TD>\n<TR><TD>SETI@home user for"
+	];
+	public $errors = [
+		"SiteDown"   => "Seti@Home Server unreachable",
+		"ParseError" => "Parse Error",
+		"Error"      => "Error"
+	];
+	public $what;
+	private $email;
+	private $server1;
+	private $server2;
+	private $server3;
+	private $raw;
+	private $Groupname;
+	private $Groupurl;
+	private $Groupstuff;
+	private $null;
+    private $tmp_month;
+    private $tmp_null;
+    private $tmp_day;
+    private $tmp_time;
+    private $tmp_year;
+    private $tmp_hour;
+    private $tmp_min;
+    private $tmp_sec;
+	private $RegDate;
+    private $ActDate;
+    private $DiffDate;
+    private $ResInt;
+    private $days;
+    private $hours;
+    private $minutes;
+    private $seconds;
+    private $ResultInterval;
+
+
+	function __construct($user_email)
+	{
+		self::setEmail($user_email);
+		self::setServer();
+		$this->raw = @implode("", @file($this->server1));
+
+		if (!$this->raw){
+			$this->raw = @implode("", @file($this->server2));
+		}
+	}
+
+	function setEmail($user_email)
+	{
+		$this->email = $user_email;
+		return true;
+	}
+
+	function setServer()
+	{
+		$this->server1 = "https://www.boincstats.com/stats/search/?search=". $this->email;
+		$this->server2 = "https://stats.free-dc.org/stats.php?page=search&proj=&team=&name=". $this->email. "&exact=Y&cross=N";
+		$this->server3 = "http:///setiathome2.ssl.berkeley.edu/fcgi-bin/fcgi?email=". $this->email. "&cmd=user_stats_new";
+		return true;
+	}
+
+	function viewStats($what)
+	{
+
+		if (!$this->raw) {
+			$this->$what = $this->errors["SiteDown"];
+		}
+		else
+		{
+			if (@preg_match('/' . $this->exp[$what] . '/i', $this->raw, $output))
+			{
+				$this->$what = $output[1];
+			}
+				else
+			{
+				$this->$what = $this->errors["ParseError"];
+			}
+		}
+		if (!$this->$what)
+		{
+			$this->$what = $this->errors["Error"];
+		}
+		return $this->$what;
+
+	}
+
+	function Group()
+	{
+		if (@preg_match("/You do not currently belong to a group/i", $this->raw))
+		{
+			$this->Groupname = "none";
+			$this->Groupurl  = "";
+		}
+		else
+		{
+			$this->Groupname = $this->viewStats('GroupName');
+			$this->Groupurl  = $this->viewStats('GroupURL');
+		}
+
+		$this->Groupstuff = array (
+			"name"     => $this->Groupname,
+			"url"      => $this->Groupurl
+		);
+
+		return $this->Groupstuff;
+	}
+
+	function ResultInt()
+	{
+		list($this->null, $this->tmp_month, $this->tmp_null, $this->tmp_day, $this->tmp_time, $this->tmp_year, $this->null) = explode(' ', $this->viewStats('RegisteredOn'));
+		list($this->tmp_hour, $this->tmp_min, $this->tmp_sec) = explode(':', $this->tmp_time);
+
+		switch ($this->tmp_month)
+		{
+			case 'Jan'; $this->tmp_month = 1;  break;
+			case 'Feb'; $this->tmp_month = 2;  break;
+			case 'Mar'; $this->tmp_month = 3;  break;
+			case 'Apr'; $this->tmp_month = 4;  break;
+			case 'May'; $this->tmp_month = 5;  break;
+			case 'Jun'; $this->tmp_month = 6;  break;
+			case 'Jul'; $this->tmp_month = 7;  break;
+			case 'Aug'; $this->tmp_month = 8;  break;
+			case 'Sep'; $this->tmp_month = 9;  break;
+			case 'Oct'; $this->tmp_month = 10; break;
+			case 'Nov'; $this->tmp_month = 11; break;
+			case 'Dec'; $this->tmp_month = 12; break;
+		}
+
+		$this->RegDate  = mktime($this->tmp_hour, $this->tmp_min, $this->tmp_sec, $this->tmp_month, $this->tmp_day, $this->tmp_year);
+		$this->ActDate  = time();
+		$this->DiffDate = ($this->ActDate-$this->RegDate);
+		$this->ResInt   = ($this->DiffDate/$this->viewStats('Workunits'));
+
+		$this->days     = floor($this->ResInt / 24 / 60 / 60 );
+
+		$this->ResInt   = $this->ResInt - ($this->days*24*60*60);
+		$this->hours    = floor($this->ResInt / 60 / 60);
+
+		$this->ResInt   = ($this->ResInt - ($this->hours*60*60));
+		$this->minutes  = floor($this->ResInt / 60);
+
+		$this->ResInt   = $this->ResInt - ($this->minutes*60);
+		$this->seconds  = floor($this->ResInt);
+
+		$this->ResultInterval = array (
+		"days"     => $this->days,
+		"hours"    => $this->hours,
+		"minutes"  => $this->minutes,
+		"seconds"  => $this->seconds
+		);
+		return $this->ResultInterval;
+	}
+
+	function AverageResultsPerWeek()
+	{
+		return $this->viewStats('AverageResultsPerDay')*7;
+	}
+
+	function AverageResultsPerMonth()
+	{
+		return $this->viewStats('AverageResultsPerDay')*30;
+	}
 
 }
-
-
-?>
\ No newline at end of file
diff --git a/www/includes/stl.inc.php b/www/includes/stl.inc.php
index 1fe5cdf..ac8b683 100644
--- a/www/includes/stl.inc.php
+++ b/www/includes/stl.inc.php
@@ -4,62 +4,66 @@
  *
  * Shoot The Lamber ist ein Schiffchen-Versenken-Klon auf Zorg
  *	mySQL Tables:
-
-	Haupttable:
-		stl:
-			game_id (primary key)
-				spiel nummer
-			game_size (max. 23, min. 5)
-				spielfeld grösse Anzahl x Anzahl
-			status int
-				0 = wurde erstellt, spieler werden gesucht
-				1 = läuft
-				2 = beendet
-			winner_team int
-				0 = team red
-				1 = team blue
-			creater_id
-				userID des spielerstellers (spiel-admin)
-			num_players (min. 6, max. 24)
-				anzahl spieler
-			game_title
-				spielname
-
-	Spieler Table:
-		stl_players:
-			user_id
-				user ID aus der user table
-			team_id
-				team id bei dem der spieler mitglied ist.
-			game_id
-				spiel nummer
-			last_shoot
-				datum an dem der spieler zuletzt geschossen hat.
-
-	Schiffs- und treffer positionen
-		stl_positions:
-			pos_id (primary key)
-				positions id
-			game_id
-				spiel nummer
-			grid_x
-				x koordinate
-			grid_y
-				y koordinate
-			hit_user_id
-				spieler id von dem hier ein torpedo gekommen ist, 0 bedeut kein schuss bis jetzt
-			hit_team_id
-				team_id vom topedo ;-)
-			ship_user_id
-				spieler id vom besitzer des schiffs, 0 bedeutet kein schiff
-			ship_team_id
-				team_id vom besitzer des schiffs
-			shoot_date
-				datum an dem der spieler das torpedo geschossen hat.
  *
- * @author [z]milamber
+ * Haupttable:
+ * 	stl:
+ * 		game_id (primary key)
+ * 			spiel nummer
+ * 		game_size (max. 23, min. 5)
+ * 			spielfeld grösse Anzahl x Anzahl
+ * 		status int
+ * 			0 = wurde erstellt, spieler werden gesucht
+ * 			1 = läuft
+ * 			2 = beendet
+ * 		winner_team int
+ * 			0 = team red
+ * 			1 = team blue
+ * 		creater_id
+ * 			userID des spielerstellers (spiel-admin)
+ * 		num_players (min. 6, max. 24)
+ * 			anzahl spieler
+ * 		game_title
+ * 			spielname
+ *
+ * Spieler Table:
+ * 	stl_players:
+ * 		user_id
+ * 			user ID aus der user table
+ * 		team_id
+ * 			team id bei dem der spieler mitglied ist.
+ * 		game_id
+ * 			spiel nummer
+ * 		last_shoot
+ * 			datum an dem der spieler zuletzt geschossen hat.
+ *
+ * Schiffs- und treffer positionen
+ * 	stl_positions:
+ * 		pos_id (primary key)
+ * 			positions id
+ * 		game_id
+ * 			spiel nummer
+ * 		grid_x
+ * 			x koordinate
+ * 		grid_y
+ * 			y koordinate
+ * 		hit_user_id
+ * 			spieler id von dem hier ein torpedo gekommen ist, 0 bedeut kein schuss bis jetzt
+ * 		hit_team_id
+ * 			team_id vom topedo ;-)
+ * 		ship_user_id
+ * 			spieler id vom besitzer des schiffs, 0 bedeutet kein schiff
+ * 		ship_team_id
+ * 			team_id vom besitzer des schiffs
+ * 		shoot_date
+ * 			datum an dem der spieler das torpedo geschossen hat.
+ *
+ * @version 2.0
+ * @since 1.0 `[z]milamber` File added
+ * @since 2.0 `IneX` Code refactorings and Query optimizations
+ *
  * @package zorg\Games\STL
  */
+
 /**
  * File includes
  * @include config.inc.php
@@ -67,7 +71,7 @@
  * @include usersystem.inc.php
  * @include util.inc.php
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 include_once INCLUDES_DIR.'util.inc.php';
diff --git a/www/includes/telegrambot.inc.php b/www/includes/telegrambot.inc.php
index 5886bc8..0be04cc 100644
--- a/www/includes/telegrambot.inc.php
+++ b/www/includes/telegrambot.inc.php
@@ -52,6 +52,7 @@ class Telegram
 	const PARSE_MODE = 'html'; // TODO Replace with $_ENV['TELEGRAM_PARSE_MODE']
 	const DISABLE_WEB_PAGE_PREVIEW = 'false'; // TODO Replace with $_ENV['TELEGRAM_DISABLE_WEBPAGE_PREVIEW']
 	const DISABLE_NOTIFICATION = 'false'; // TODO Replace with $_ENV['TELEGRAM_DISABLE_NOTIFICATION']
+	public $send = null;
 
 	/**
 	 * Send a Message via Telegram Messenger
@@ -79,7 +80,7 @@ public function send($userScope, $messageType, $content)
 
 		/** Parse $_ENV vars into $botconfigs */
 		if (empty($_ENV['TELEGRAM_BOT_API_KEY']) || empty($_ENV['TELEGRAM_BOT'])) {
-			zorgDebugger::me()->warn('Missing Telegram Bot Configs! TELEGRAM_BOT_API_KEY=%s | TELEGRAM_BOT=%s', [$_ENV['TELEGRAM_BOT_API_KEY'],$_ENV['TELEGRAM_BOT']]);
+			zorgDebugger::log()->warn('Missing Telegram Bot Configs! TELEGRAM_BOT_API_KEY=%s | TELEGRAM_BOT=%s', [$_ENV['TELEGRAM_BOT_API_KEY'],$_ENV['TELEGRAM_BOT']]);
 			return false;
 		} else {
 			$botconfigs = [  'api_key' => $_ENV['TELEGRAM_BOT_API_KEY']
@@ -104,13 +105,13 @@ public function send($userScope, $messageType, $content)
 			{
 				/** USER: If $userScope = User-ID: get the Telegram Chat-ID */
 				case is_numeric($userScope) && $userScope > 0:
-					zorgDebugger::me()->debug('Checking for User Telegram Chat-ID...');
+					zorgDebugger::log()->debug('Checking for User Telegram Chat-ID...');
 					$telegramChatId = $user->userHasTelegram($userScope);
 					break;
 
 				/** GROUP: If $userScope = 'group': get the Telegram Groupchat-ID */
 				case 'group':
-					zorgDebugger::me()->debug('Checking for Group Telegram Chat-ID...');
+					zorgDebugger::log()->debug('Checking for Group Telegram Chat-ID...');
 					$telegramChatId = $botconfigs['TELEGRAM_GROUPCHAT_ID'];
 					break;
 
@@ -128,7 +129,7 @@ public function send($userScope, $messageType, $content)
 
 				/** Build API Call */
 				$parameters = array_merge( $content, [ 'chat_id' => $telegramChatId ] );
-				zorgDebugger::me()->debug('Telegram Message $parameters Array: %s', [print_r($parameters, true)]);
+				zorgDebugger::log()->debug('Telegram Message $parameters Array: %s', [print_r($parameters, true)]);
 				if (is_array($parameters) && !empty($parameters))
 				{
 					/** Validate & compose the Parameter-Query for the API Call */
@@ -139,8 +140,8 @@ public function send($userScope, $messageType, $content)
 					/**
 					 * Sending the Telegram message
 					 */
-					zorgDebugger::me()->debug('Using "%s" to Chat "%s"', [$messageType, strval($telegramChatId)]);
-					zorgDebugger::me()->debug('API call: %s', [$telegramAPIcall]);
+					zorgDebugger::log()->debug('Using "%s" to Chat "%s"', [$messageType, strval($telegramChatId)]);
+					zorgDebugger::log()->debug('API call: %s', [$telegramAPIcall]);
 					if (!empty($messageType))
 					{
 						/** Create a stream_context for the file_get_contents HTTP request */
@@ -156,11 +157,11 @@ public function send($userScope, $messageType, $content)
 						 */
 						if (is_array($http_response_header))
 						{
-							zorgDebugger::me()->debug('file_get_contents() $http_response_header: %s | $httpResponseBody: %s', [print_r($http_response_header, true), $httpResponseBody]);
+							zorgDebugger::log()->debug('file_get_contents() $http_response_header: %s | $httpResponseBody: %s', [print_r($http_response_header, true), $httpResponseBody]);
 							preg_match('{HTTP\/\S*\s(\d{3})}', $http_response_header[0], $match);
 							if ($match[1] !== '200')
 							{
-								zorgDebugger::me()->error('Telegram %s failed with HTTP status code %s and response: %s', [$messageType, $match[0], $httpResponseBody]);
+								zorgDebugger::log()->error('Telegram %s failed with HTTP status code %s and response: %s', [$messageType, strval($match[1]), (false !== $httpResponseBody ? $httpResponseBody : 'false')]);
 								return false;
 							} else {
 								return true;
@@ -170,12 +171,12 @@ public function send($userScope, $messageType, $content)
 						}
 					}
 				} else {
-					zorgDebugger::me()->warn('«%s» did not pass validation!', [$messageType]);
+					zorgDebugger::log()->warn('«%s» did not pass validation!', [$messageType]);
 					return false;
 				}
 			}
 		} else {
-			zorgDebugger::me()->warn(t('invalid-telegram-chatid', 'messagesystem'));
+			zorgDebugger::log()->warn(t('invalid-telegram-chatid', 'messagesystem'));
 			return false;
 		}
 	}
@@ -219,13 +220,13 @@ public function mentionUser($userid)
 					LIMIT 1';
 			$telegramUserIds = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
 			$telegramUserId = $telegramUserIds['tui'];
-			zorgDebugger::me()->debug('Found Telegram User ID «%d»', [$telegramUserId]);
+			zorgDebugger::log()->debug('Found Telegram User ID «%d»', [$telegramUserId]);
 
 			if (!empty($telegramUserId))
 			{
 				$username = $user->id2user($telegramUserId);
 				$link = sprintf('<a href="tg://user?id=%d">%s</a>', $telegramUserId, $username);
-				zorgDebugger::me()->debug('Returns HTML-link:', [$link]);
+				zorgDebugger::log()->debug('Returns HTML-link:', [$link]);
 				return $telegramUserIds['tui'];
 			} else {
 				return false;
@@ -256,7 +257,7 @@ public function mentionUser($userid)
 	 */
 	public function formatText($notificationText)
 	{
-		zorgDebugger::me()->debug('Passed raw string: %s', [$notificationText]);
+		zorgDebugger::log()->debug('Passed raw string: %s', [$notificationText]);
 
 		/**
 		 * Strip away all HTML-tags & unix line breaks
@@ -302,7 +303,7 @@ public function formatText($notificationText)
 		 * Decode HTML-Entities
 		 */
 		$notificationText = html_entity_decode($notificationText);
-		zorgDebugger::me()->debug('Processed string: %s', [$notificationText]);
+		zorgDebugger::log()->debug('Processed string: %s', [$notificationText]);
 
 		return ( !empty($notificationText) ? $notificationText : false );
 	}
@@ -412,7 +413,7 @@ private function validateData($messageType, array $parameters)
 		}
 
 		/** Check if $messageType matches any available $_telegramMessageModels */
-		zorgDebugger::me()->debug('Checking array_key_exists in $_telegramMessageModels for "%s"', [$messageType]);
+		zorgDebugger::log()->debug('Checking array_key_exists in $_telegramMessageModels for "%s"', [$messageType]);
 		if (isset($_telegramMessageModels[$messageType]))
 		{
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> SUCCESS: $messageType "%s" found and is OK', __METHOD__, __LINE__, $messageType));
@@ -425,14 +426,14 @@ private function validateData($messageType, array $parameters)
 			 *		if ( !array_key_exists($parameters, $value) ) error_log(sprintf('[WARN] '.__METHOD__.': Value %s is required but was not passed!', $key+1));
 			 *	}
 			 */
-			zorgDebugger::me()->debug('Checking $parameters for presence of required parameter "%s"', [$_telegramMessageModels[$messageType]['required'][0]]);
+			zorgDebugger::log()->debug('Checking $parameters for presence of required parameter "%s"', [$_telegramMessageModels[$messageType]['required'][0]]);
 			if ( !isset($parameters[$_telegramMessageModels[$messageType]['required'][0]]) )
 			{
 				error_log(sprintf('[WARN] <%s:%d> Value %s is required but was not passed!', __METHOD__, __LINE__, $_telegramMessageModels[$messageType]['required'][0]));
 				return false;
 			} else {
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> SUCCESS: required parameter "%s" found and is OK', __METHOD__, __LINE__, $_telegramMessageModels[$messageType]['required'][0]));
-				zorgDebugger::me()->debug('SUCCESS: required parameter "%s" found and is OK', [$_telegramMessageModels[$messageType]['required'][0]]);
+				zorgDebugger::log()->debug('SUCCESS: required parameter "%s" found and is OK', [$_telegramMessageModels[$messageType]['required'][0]]);
 
 				/**
 				 * Build the Data-Array with key:value pairs assigned
@@ -445,7 +446,7 @@ private function validateData($messageType, array $parameters)
 				 *	];
 				 */
 				$data = [];
-				zorgDebugger::me()->debug('Building $data Array for Function return');
+				zorgDebugger::log()->debug('Building $data Array for Function return');
 
 
 				/** Assign key=>value pairs for Global Parameters */
@@ -465,7 +466,7 @@ private function validateData($messageType, array $parameters)
 				/** Assign key=>value pairs for $messageType Required Parameters */
 				foreach ((array) $_telegramMessageModels[$messageType]['required'] as $requiredParameter)
 				{
-					zorgDebugger::me()->debug('array_push to $data Array for key=>value pair "%s"', [$requiredParameter]);
+					zorgDebugger::log()->debug('array_push to $data Array for key=>value pair "%s"', [$requiredParameter]);
 					$data[$requiredParameter] = $this->formatText($parameters[$requiredParameter]);
 				}
 
@@ -474,18 +475,18 @@ private function validateData($messageType, array $parameters)
 				{
 					foreach ((array) $_telegramMessageModels[$messageType]['optional'] as $optionalParameter)
 					{
-						zorgDebugger::me()->debug('array_push to $data Array for key=>value pair "%s"', [$optionalParameter]);
+						zorgDebugger::log()->debug('array_push to $data Array for key=>value pair "%s"', [$optionalParameter]);
 						if (!empty($parameters[$optionalParameter])) $data[$optionalParameter] = $parameters[$optionalParameter];
 					}
 				}
 
 				/** Return Data-Array with key:value pairs assigned */
-				zorgDebugger::me()->debug('Complete $data Array: %s', [print_r($data, true)]);
+				zorgDebugger::log()->debug('Complete $data Array: %s', [print_r($data, true)]);
 				return $data;
 			}
 
 		} else {
-			zorgDebugger::me()->warn('Telegram Message Type "%s" is invalid!', [$messageType]);
+			zorgDebugger::log()->warn('Telegram Message Type "%s" is invalid!', [$messageType]);
 			return false;
 		}
 	}
@@ -579,5 +580,5 @@ public function poll($scope, $question, $options, $is_anonymous=true, $type='reg
  * Instantiating new Telegram Class-Object
  * @TODO Fix this "dirty hack" with instantiated "$telegram->send"-object...
  */
-//$telegram = new Telegram();
+$telegram = new Telegram();
 $telegram->send = new send();
diff --git a/www/includes/util.inc.php b/www/includes/util.inc.php
index 26560d5..8b38ad5 100644
--- a/www/includes/util.inc.php
+++ b/www/includes/util.inc.php
@@ -8,7 +8,7 @@
  * File includes
  * @include config.inc.php
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 
 /**
  * Funktion um ein UNIX_TIMESTAMP schön darzustellen.
@@ -59,10 +59,10 @@ function timename($timestamp)
 	$currTime = time();
 
 	/** Vergangen oder in der Zukunft? */
-	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Comparing timestamps %s vs %s', __FUNCTION__, __LINE__, $timestamp, $currTime));
+	zorgDebugger::log()->debug('Comparing %s : %s', [$timestamp, $currTime]);
 	$prefix = ($timestamp >= $currTime ? 'in ' : 'vor ');
 	$timeDiff = ($timestamp >= $currTime ? $timestamp - $currTime : $currTime - $timestamp);
-	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Timestamps time difference: %s %d', __FUNCTION__, __LINE__, $prefix, $timeDiff));
+	zorgDebugger::log()->debug('Time difference %s -> %d', [$prefix, $timeDiff]);
 
 	/** Zeitperioden */
 	$timeLengths = array('s' => 1, 'm' => 60, 'h' => 3600, 'd' => 86400, 'w' => 604800, 'mt' => 2592000, 'y' => 31536000);
@@ -330,25 +330,24 @@ function changeQueryString($querystring, $changes)
 		}
 	}
 	$str = ltrim($str, '&');
-	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> new query-string: %s', __FUNCTION__, __LINE__, $str));
+	zorgDebugger::log()->debug('new query-string: %s', [$str]);
 	return $str;
 }
 
 /**
  * Return all URL $_GET-Parameters in a String, usable to add to an URL as Query-Parameters
  *
- * @author [z]biko
- * @version 1.0
- * @since 1.0 function added
+ * @version 1.1
+ * @since 1.0 `[z]biko` function added
+ * @since 1.1 `03.01.2024` `IneX` Addresses potential XSS through unsanitized input from an HTTP parameter
  *
- * @param array $parsed An Array created using parse_url (splitting string parts into array elements)
- * @return string Fully glued URL including Path & Query-Parameters, and Hash-Value
+ * @return string Combined string of all URL $_GET-Parameters
  */
 function url_params()
 {
 	$ret = '';
 	foreach ($_GET as $key => $val) {
-		$ret .= $key.'='.$val.'&';
+		$ret .= htmlspecialchars($key, ENT_QUOTES, 'UTF-8') . '=' . htmlspecialchars($val, ENT_QUOTES, 'UTF-8') . '&';
 	}
 	return substr($ret, 0, -1);
 }
@@ -356,9 +355,8 @@ function url_params()
 /**
  * Combine Array parts of an URL back to an URL-String
  *
- * @author [z]biko
  * @version 1.0
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  *
  * @param array $parsed An Array created using parse_url (splitting string parts into array elements)
  * @return string Fully glued URL including Path & Query-Parameters, and Hash-Value
@@ -411,7 +409,9 @@ function base64url_encode($data)
  */
 function base64url_decode($data)
 {
-  return base64_decode(strtr($data, '-_', '+/') . str_repeat('=', 3-(3+strlen($data)) % 4 ));
+	$url_safe_data = strtr($data, '-_', '+/');
+	$padded_data = str_pad($url_safe_data, strlen($url_safe_data) % 4, '=', STR_PAD_RIGHT);
+	return base64_decode($padded_data);
 }
 
 /**
diff --git a/www/kurse.xml b/www/kurse.xml
deleted file mode 100644
index 0393c17..0000000
--- a/www/kurse.xml
+++ /dev/null
@@ -1,43 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<gesmes:Envelope xmlns:gesmes="http://www.gesmes.org/xml/2002-08-01" xmlns="http://www.ecb.int/vocabulary/2002-08-01/eurofxref">
-	<gesmes:subject>Reference rates</gesmes:subject>
-	<gesmes:Sender>
-		<gesmes:name>European Central Bank</gesmes:name>
-	</gesmes:Sender>
-	<Cube>
-		<Cube time='2004-09-30'>
-			<Cube currency='USD' rate='1.2409'/>
-
-			<Cube currency='JPY' rate='137.17'/>
-			<Cube currency='DKK' rate='7.4416'/>
-			<Cube currency='GBP' rate='0.68680'/>
-			<Cube currency='SEK' rate='9.0588'/>
-			<Cube currency='CHF' rate='1.5524'/>
-			<Cube currency='ISK' rate='87.85'/>
-			<Cube currency='NOK' rate='8.3410'/>
-			<Cube currency='BGN' rate='1.9559'/>
-			<Cube currency='CYP' rate='0.57560'/>
-
-			<Cube currency='CZK' rate='31.660'/>
-			<Cube currency='EEK' rate='15.6466'/>
-			<Cube currency='HUF' rate='247.41'/>
-			<Cube currency='LTL' rate='3.4528'/>
-			<Cube currency='LVL' rate='0.6677'/>
-			<Cube currency='MTL' rate='0.4289'/>
-			<Cube currency='PLN' rate='4.3797'/>
-			<Cube currency='ROL' rate='41135'/>
-			<Cube currency='SIT' rate='239.9800'/>
-
-			<Cube currency='SKK' rate='40.055'/>
-			<Cube currency='TRL' rate='1863600'/>
-			<Cube currency='AUD' rate='1.7212'/>
-			<Cube currency='CAD' rate='1.5740'/>
-			<Cube currency='HKD' rate='9.6745'/>
-			<Cube currency='NZD' rate='1.8414'/>
-			<Cube currency='SGD' rate='2.0937'/>
-			<Cube currency='KRW' rate='1429.39'/>
-			<Cube currency='ZAR' rate='7.9792'/>
-
-		</Cube>
-	</Cube>
-</gesmes:Envelope>
\ No newline at end of file
diff --git a/www/models/gallery.php b/www/models/gallery.php
index de21dd9..77e7660 100644
--- a/www/models/gallery.php
+++ b/www/models/gallery.php
@@ -33,12 +33,13 @@ public function __construct()
 	 *
 	 * @param integer $album_id Eine gültige Album-ID
 	 * @param integer $pic_id Einge gültige Pic-ID
+	 * @return integer
 	 */
 	public function setAlbumId($album_id=null, $pic_id=null)
 	{
 		if(!empty($album_id)) $album_id = $album_id;
 		if((!empty($pic_id) && $pic_id > 0) && empty($album_id)) $album_id = pic2album($pic_id);
-		return $album_id;
+		return intval($album_id);
 	}
 
 	/**
diff --git a/www/peter.php b/www/peter.php
index b33bc00..87a9989 100644
--- a/www/peter.php
+++ b/www/peter.php
@@ -12,7 +12,7 @@
 ob_start();
 
 /** File includes */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/main.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
 /**
@@ -61,16 +61,6 @@
 		if ($peterGameId > 0)
 		{
 			/** Infos über das game holen */
-			/*
-			$sql = 'SELECT 
-					*
-				FROM peter_games pg
-				LEFT JOIN user u
-				ON pg.next_player = u.id
-				WHERE pg.game_id = '.$peterGameId;
-			$result = $db->query($sql,__FILE__,__LINE__,__FUNCTION__);
-			$rsg = $db->fetch($result);
-			*/
 			$rsg = $model->getGamedata($peterGameId);
 
 			/** Wenn dem Spiel noch beigetreten werden kann */
diff --git a/www/profil.php b/www/profil.php
index 95247b1..7775cf7 100644
--- a/www/profil.php
+++ b/www/profil.php
@@ -10,18 +10,19 @@
  * @include main.inc.php required
  * @include core.model.php required
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/config.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
 /**
  * Validate GET-Parameters
  */
-$doAction    = null;
-$user_id     = null;
-$userRegcode = null;
-if (!empty($_GET['do']) && !is_numeric($_GET['do'])) $doAction = sanitize_userinput($_GET['do']);
-if (!empty($_GET['regcode'])) $userRegcode = sanitize_userinput($_GET['regcode']);
-if (!empty($_GET['user_id']) && is_numeric($_GET['user_id']) && (int)$_GET['user_id'] > 0) $user_id = sanitize_userinput((int)$_GET['user_id']);
+$doAction = (isset($doAction) ? $doAction : (filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null)); // $_GET['do']
+$postDoAction = filter_input(INPUT_POST, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['do']
+$userRegcode = filter_input(INPUT_GET, 'regcode', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['regcode']
+$user_id = (isset($getUserId) ? intval($getUserId) : (filter_input(INPUT_GET, 'user_id', FILTER_VALIDATE_INT) ?? null)); // $_GET['user_id']
+$view_as_user = filter_input(INPUT_GET, 'viewas', FILTER_VALIDATE_INT) ?? null; // $_GET['viewas']
+$messageToUsers = filter_input(INPUT_GET, 'msgusers', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_GET['msgusers']
+$messageSubject = filter_input(INPUT_GET, 'msgsubject', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_GET['msgsubject']
 
 //=============================================================================
 // Layout & code
@@ -54,7 +55,7 @@
 	/**
 	 * Profil als anderen User anzeigen (DEV only!)
 	 */
-	if (DEVELOPMENT === true && isset($_GET['viewas']) && (int)$_GET['viewas'] > 0)
+	if (zorgDebugger::log()->isDevelopmentEnvironment && $view_as_user > 0)
 	{
 		$model->showOtherprofile($smarty, $user, $_GET['viewas']);
 		$smarty->assign('error', ['type' => 'info', 'dismissable' => 'false', 'title' => 'Userprofil wird angezeigt als <strong>'.$user->id2user((int)$_GET['viewas'], TRUE).'</strong>']);
@@ -81,55 +82,58 @@
 		$model->showProfileupdate($smarty);
 
 		/** Update Userprofile infos & settings */
-		if (isset($_POST['do']))
+		if (!empty($postDoAction))
 		{
-			if(isset($user->id) && $_POST['do'] === 'update' && $_FILES['image']['error'] === 4)
+			if ($user->id > 0)
 			{
-				/** Validate $_POST-request */
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $_POST: %s', __FILE__, __LINE__, print_r($_POST,true)));
-				if (count($_POST) > 1)
+				if($postDoAction === 'update' && $_FILES['image']['error'] === 4)
 				{
-					$changeprofile_result = $user->exec_changeprofile($user->id, $_POST);
+					/** Validate $_POST-request */
+					zorgDebugger::log()->debug('$_POST: %s', [print_r($_POST,true)]);
+					if (count($_POST) > 1)
+					{
+						$changeprofile_result = $user->exec_changeprofile($user->id, $_POST);
+					}
+				}
+				/** Upload and change new Userpic */
+				if($postDoAction === 'update' && $_FILES['image']['error'] === 0)
+				{
+					$uploadimage_result = $user->exec_uploadimage($user->id, $_FILES);
+				}
+				/** Change User Password */
+				if($postDoAction === 'change_password')
+				{
+					$newpassword_result = $user->exec_newpassword($user->id, $_POST['old_pass'], $_POST['new_pass'], $_POST['new_pass2']);
 				}
-			}
-			/** Upload and change new Userpic */
-			if(isset($user->id) && $_POST['do'] === 'update' && $_FILES['image']['error'] === 0)
-			{
-				$uploadimage_result = $user->exec_uploadimage($user->id, $_FILES);
-			}
-			/** Change User Password */
-			if(isset($user->id) && $_POST['do'] === 'change_password')
-			{
-				$newpassword_result = $user->exec_newpassword($user->id, $_POST['old_pass'], $_POST['new_pass'], $_POST['new_pass2']);
 			}
 
 			/**
 			 * Error or Success message handling
-			*/
-				/* Userprofile change */
-				if (isset($changeprofile_result[0])) {
-					if ($changeprofile_result[0] === TRUE) {
-						$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $changeprofile_result[1]]);
-					} else {
-						$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('userprofile-change-ok', 'user')]);
-					}
+			 */
+			/* Userprofile change */
+			if (isset($changeprofile_result[0])) {
+				if ($changeprofile_result[0] === TRUE) {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $changeprofile_result[1]]);
+				} else {
+					$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('userprofile-change-ok', 'user')]);
 				}
-				/** Userpic change */
-				if (isset($uploadimage_result[0])) {
-					if ($uploadimage_result[0] === TRUE) {
-						$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $uploadimage_result[1]]);
-					} else {
-						$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('userpic-change-ok', 'user')]);
-					}
+			}
+			/** Userpic change */
+			if (isset($uploadimage_result[0])) {
+				if ($uploadimage_result[0] === TRUE) {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $uploadimage_result[1]]);
+				} else {
+					$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('userpic-change-ok', 'user')]);
 				}
-				/** New Password */
-				if (isset($newpassword_result[0])) {
-					if ($newpassword_result[0] === TRUE) {
-						$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $newpassword_result[1]]);
-					} else {
-						$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('new-userpw-confirmation', 'user')]);
-					}
+			}
+			/** New Password */
+			if (isset($newpassword_result[0])) {
+				if ($newpassword_result[0] === TRUE) {
+					$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => $newpassword_result[1]]);
+				} else {
+					$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => t('new-userpw-confirmation', 'user')]);
 				}
+			}
 
 			/** Instantiate a new, updated $user-Object (because new data...) */
 			$user = new usersystem();
@@ -147,13 +151,14 @@
 /**
  * Userprofil anzeigen
  */
-if (!empty($user_id))
+if (!empty($user_id) && is_numeric($user_id) && $user_id>0)
 {
 	$htmlOutput = null;
 	$sidebarHtml = null;
+	$username = $user->id2user($user_id, true);
 
-	/** Validate required $_GET parameters */
-	if (!is_numeric($user_id) || $user_id <= 0 || is_array($user_id) || $user->id2user($user_id) === false)
+	/** Check for invalid User ID */
+	if ($username === false)
 	{
 		http_response_code(404); // Set response code 404 (not found)
 		$model->showUnknownuser($smarty, $user_id);
@@ -163,35 +168,34 @@
 		exit;
 	}
 
-	$sql = 'SELECT * FROM user WHERE id = '.$user_id;
-	$result = $db->query($sql, __FILE__, __LINE__, 'Userprofil anzeigen');
-	$rs = $db->fetch($result);
-	if (isset($_geaechtet[$user_id])) $smarty->assign('error', ['type' => 'info', 'dismissable' => 'true', 'title' => t('user-wird-geaechtet', 'user', $user->id2user($user_id, true))]);
+	// $sql = 'SELECT * FROM user WHERE id=?';
+	// $result = $db->query($sql, __FILE__, __LINE__, 'Userprofil anzeigen', [$user_id]);
+	// $rs = $db->fetch($result);
+	if (isset($_geaechtet[$user_id])) $smarty->assign('error', ['type' => 'info', 'dismissable' => 'true', 'title' => t('user-wird-geaechtet', 'user', $username)]);
 
-	$htmlOutput .= '<h1>'.(isset($rs['clan_tag']) && !empty($rs['clan_tag']) ? html_entity_decode($rs['clan_tag']) : '').html_entity_decode($rs['username']).'</h1>';
-	$htmlOutput .= '<img src="'.$user->userImage($user_id, 1).'" style="width: 100%;max-width: 100%;">';
+	$htmlOutput .= '<h1>'.html_entity_decode($username).'</h1>';
+	$htmlOutput .= '<img src="'.$user->userImage($user_id, 1).'">';//style="width: 100%;max-width: 100%;"
 
-	/** User Addle */
-	if (isset($user->id) && $user->id > 0 && $user_id != $user->id && $rs['addle'])
+	/** User Addle (nur wenn Viewer selber eingeloggt ist) */
+	if ($user->is_loggedin() && $user_id !== $user->id && $user->userPlays('addle', $user_id))
 	{
 		$sidebarHtml .= '<h3>Addle</h3>
 		<form action="/addle.php?show=overview&do=new" method="post">
 			<input type="hidden" name="id" value="'.$user_id.'">
-			<input type="submit" class="button" value="'.$rs['username'].' zum Addle herausfordern">
+			<input type="submit" class="button" value="'.$_users['username'].' zum Addle herausfordern">
 		</form>';
 	}
 
-	/** User Messaging */
 	if($user->is_loggedin())
 	{
-		/** Der User das bin ich */
-		if($user_id == $user->id)
+		/** User Messaging: der User das bin ich */
+		if($user_id === $user->id)
 		{
 			/** User will eine neue Message senden */
-			if(isset($_GET['newmsg']))
+			if($doAction === 'newmsg')
 			{
-				if(isset($_GET['msgusers']) && isset($_GET['msgsubject'])) {
-					$htmlOutput .= Messagesystem::getFormSend($_GET['msgusers'],$_GET['msgsubject'],'');
+				if(!empty($messageToUsers) && !empty($messageSubject)) {
+					$htmlOutput .= Messagesystem::getFormSend($messageToUsers, $messageSubject,'');
 				} else {
 					$htmlOutput .= Messagesystem::getFormSend(0,'','');
 				}
@@ -201,17 +205,17 @@
 				$page  = isset( $_GET['page'] ) ? $_GET['page'] : null;
 				$sort  = isset( $_GET['sort'] ) ? $_GET['sort'] : null;
 				$order = isset( $_GET['order'] ) ? $_GET['order'] : null;
-				$htmlOutput .= Messagesystem::getInboxHTML($box, 11,$page, $sort, $order);
+				$htmlOutput .= Messagesystem::getInboxHTML($box, 11, $page, $sort, $order);
 			}
 
 		/** Der User ist jemand anderes */
 		} else {
 			$htmlOutput .= Messagesystem::getFormSend(array($user_id), '', '');
 		}
-	}
 
-	/** User markierte Gallery-Pics */
-	if ($user->is_loggedin()) $htmlOutput .= getUserPics($user_id, 0);
+		/** User markierte Gallery-Pics */
+		if ($user->is_loggedin()) $htmlOutput .= getUserPics($user_id, 0);
+	}
 
 	/** User Events */
 	$sidebarHtml .= $smarty->fetch('tpl:211');
@@ -231,6 +235,15 @@
 
 	exit; // make sure only Userprofile page is processed / displayed
 }
+/** Malformatted User ID */
+else {
+	http_response_code(404); // Set response code 404 (not found)
+	$model->showUnknownuser($smarty, $user_id);
+	$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => t('invalid-id', 'user')]);
+	$smarty->display('file:layout/head.tpl');
+	$smarty->display('file:layout/footer.tpl');
+	exit;
+}
 
 /**
  * Registrationsformular / User activation
@@ -258,6 +271,7 @@
 			require_once INCLUDES_DIR.'g-recaptcha-src/autoload.php';
 			$reCaptchaApiKeys = ['key' => $_ENV['GOOGLE_RECAPTCHA_KEY'],'secret' => $_ENV['GOOGLE_RECAPTCHA_SECRET']];
 			$reCaptchaLang = $_ENV['GOOGLE_RECAPTCHA_LOCALE'];
+			$reCaptchaVerification = filter_input(INPUT_POST, 'g-recaptcha-response', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['g-recaptcha-response']
 			try {
 				$reCaptcha = new \ReCaptcha\ReCaptcha($reCaptchaApiKeys['secret']);
 			} catch(Exception $e) {
@@ -266,26 +280,31 @@
 			}
 
 			/** reCaptcha validieren */
-			if (isset($_POST['g-recaptcha-response']))
+			if (!empty($reCaptchaVerification))
 			{
 				//$reCaptcha = new \ReCaptcha\ReCaptcha($reCaptchaApiKeys['secret']);
-				$resp = $reCaptcha->verify($_POST['g-recaptcha-response'], $_SERVER['REMOTE_ADDR']);
+				$resp = $reCaptcha->verify($reCaptchaVerification, $_SERVER['REMOTE_ADDR']);
 
 				/** reCaptcha VALID */
 				if ($resp->isSuccess())
 				{
-					if (empty($_POST['new_username'])) $registerError = t('invalid-username', 'user');
-					if (empty($_POST['new_email'])) $registerError = t('invalid-email', 'user');
-					if (empty($_POST['new_password']) || empty($_POST['new_password2'])) $registerError = t('invalid-userpw-missing', 'user');
-					if ($_POST['new_password'] != $_POST['new_password2']) $registerError = t('invalid-userpw-match', 'user');
-					if (!check_email($_POST['new_email'])) $registerError = t('invalid-email', 'user');
+					$registerError = null;
+					$newUsername = htmlentities(sanitize_userinput(filter_input(INPUT_POST, 'new_username', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR))) ?? null; // $_POST['new_username']
+					$newEmail = filter_input(INPUT_POST, 'new_email', FILTER_VALIDATE_EMAIL) ?? null; // $_POST['new_email']
+					$newPassword = $user->crypt_pw($_POST['new_password2']);
+					$comparePassword = password_verify($_POST['new_password'], $newPassword);
+					if (empty($newUsername)) $registerError = t('invalid-username', 'user');
+					if (empty($newEmail)) $registerError = t('invalid-email', 'user');
+					if (!check_email($newEmail)) $registerError = t('invalid-email', 'user');
+					if (empty($newPassword)) $registerError = t('invalid-userpw-missing', 'user');
+					if (!$comparePassword) $registerError = t('invalid-userpw-match', 'user');
 
 					/** Userregistrierung schaut gut aus - User anlegen probieren */
-					if (!isset($registerError) || empty($registerError))
+					if (empty($registerError))
 					{
-						$createUserResult = $user->create_newuser(htmlentities($_POST['new_username']), $_POST['new_password'], $_POST['new_password2'], $_POST['new_email']);
-						if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> create_newuser() Result: %s', __FILE__, __LINE__, (is_bool($createUserResult)?'true':$createUserResult)));
-						if (is_bool($createUserResult) && $createUserResult===true) {
+						$createUserResult = $user->create_newuser($newUsername, $newPassword, $newEmail);
+						zorgDebugger::log()->debug('Result: %s', [(is_bool($createUserResult)?'true':$createUserResult)]);
+						if ($createUserResult===true) {
 							$error = t('account-confirmation', 'user');
 							$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => $error]);
 						} else {
@@ -359,9 +378,9 @@
 		/**
 		 * Passwort vergessen Formular
 		 */
-		if (!empty($_POST['email']))
+		$email2check = filter_input(INPUT_POST, 'email', FILTER_VALIDATE_EMAIL) ?? null; // $_POST['email']
+		if (!empty($email2check))
 		{
-			$email2check = sanitize_userinput($_POST['email']);
 			$checkEmail = (!empty($email2check) ? check_email($email2check) : null);
 			if ($checkEmail === false)
 			{
@@ -396,7 +415,7 @@
 	 */
 	elseif (!empty($userRegcode))
 	{
-		if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> $userRegcode: %s', __FILE__, __LINE__, $userRegcode));
+		zorgDebugger::log()->debug('$userRegcode: %s', [$userRegcode]);
 		$user_activation_result = $user->activate_user($userRegcode);
 		$model->showActivation($smarty, $user->error_message);
 		if ($user_activation_result === true) $smarty->assign('error', ['type' => 'success', 'dismissable' => 'false', 'title' => t('account-activated', 'user'), 'message' => t('account-activated-text', 'user')]);
diff --git a/www/scripts/rezepte.php b/www/scripts/rezepte.php
index 3f64877..1bf142d 100644
--- a/www/scripts/rezepte.php
+++ b/www/scripts/rezepte.php
@@ -5,12 +5,8 @@
  */
 global $db, $user, $smarty;
 
+/** Fetch all Rezepte by Title */
+// FIXME move this to rezepte.inc.php
 $f = $db->query('SELECT * FROM rezepte ORDER by title ASC', __FILE__, __LINE__, 'SELECT FROM rezepte');
 
-$list = array();
-while ($f = $db->fetch($g))
-{
-	array_push($list, $g);
-}
-
-$smarty->assign('rezepte', $list);
+$smarty->assign('rezepte', $db->fetch($f));
diff --git a/www/scripts/stockbroker.php b/www/scripts/stockbroker.php
index 799a1de..19118b3 100644
--- a/www/scripts/stockbroker.php
+++ b/www/scripts/stockbroker.php
@@ -5,18 +5,18 @@
  */
 
 /** File includes */
-require_once dirname(__FILE__).'/../includes/stockbroker.inc.php';
+require_once __DIR__.'/../includes/stockbroker.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
-global $smarty, $user;	
+global $smarty, $user;
 
 //$smarty->assign("kurse_aktuell", Stockbroker::getKurseNeuste(10));
-$smarty->assign("kurse_tagesgewinner", Stockbroker::getTodaysWinners());
-$smarty->assign("kurse_tagesverlierer", Stockbroker::getTodaysLosers());
+$smarty->assign("kurse_tagesgewinner", $stockbroker->getTodaysWinners());
+$smarty->assign("kurse_tagesverlierer", $stockbroker->getTodaysLosers());
 
-$smarty->assign("mosttraded", Stockbroker::getYesterdaysMosttraded());
-$smarty->assign("bargeld", Stockbroker::getBargeld($user->id));
-$smarty->assign("currentproperty", Stockbroker::getStocksOwned($user->id));
-$smarty->assign("highscore", Stockbroker::getHighscore());
-$smarty->assign("mytrades", Stockbroker::getTrades($user->id));
-$smarty->assign("stock_warnings", Stockbroker::getWarnings($user->id));
+$smarty->assign("mosttraded", $stockbroker->getYesterdaysMosttraded());
+if ($user->is_loggedin()) $smarty->assign("bargeld", $stockbroker->getBargeld($user->id));
+if ($user->is_loggedin()) $smarty->assign("currentproperty", $stockbroker->getStocksOwned($user->id));
+$smarty->assign("highscore", $stockbroker->getHighscore());
+if ($user->is_loggedin()) $smarty->assign("mytrades", $stockbroker->getTrades($user->id));
+if ($user->is_loggedin()) $smarty->assign("stock_warnings", $stockbroker->getWarnings($user->id));
diff --git a/www/seti_example.php b/www/seti_example.php
index b124742..85ca068 100644
--- a/www/seti_example.php
+++ b/www/seti_example.php
@@ -26,9 +26,9 @@
 	/**
 	 * Initialise SETI Stats Class-Object
 	 */
-	$seti = new SetiStats();
-	$seti->setEmail($_ENV['SETI_EMAIL']);
-	$seti->Init();
+	$seti = new SetiStats($_ENV['SETI_EMAIL']);
+	// $seti->setEmail();
+	// $seti->Init(); REPLACED WITH __construct($user_email)
 
 	print '<html>'
 		 .'<head>'
diff --git a/www/templates/layout/sidebar.tpl b/www/templates/layout/sidebar.tpl
index 9071b31..8e8f1e1 100644
--- a/www/templates/layout/sidebar.tpl
+++ b/www/templates/layout/sidebar.tpl
@@ -1,4 +1,4 @@
-{if $tplroot.sidebar_tpl neq '' || $sidebarHtml neq ''}
+{if $tplroot.sidebar_tpl neq '' || isset($sidebarHtml) && $sidebarHtml neq ''}
 	</main>
 	<aside class="sidebar">
 		{if $tplroot.sidebar_tpl neq ''}
@@ -9,4 +9,4 @@
 	</aside>
 {else}
 	</main>
-{/if}
\ No newline at end of file
+{/if}
diff --git a/www/wetten.php b/www/wetten.php
index 668d0b6..ccff7de 100644
--- a/www/wetten.php
+++ b/www/wetten.php
@@ -9,7 +9,7 @@
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/main.inc.php';
 require_once INCLUDES_DIR.'wetten.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
@@ -19,16 +19,16 @@
 $model = new MVC\Wetten();
 
 /**
- * Validate GET-Parameters
+ * Input validation & sanitization
  */
-if (!empty($_GET['id'])) $wette = (int)$_GET['id'];
-if (!empty($_GET['eintrag'])) $getEintrag = (string)$_GET['eintrag'];
+$wette = filter_input(INPUT_GET, 'id', FILTER_VALIDATE_INT) ?? 0; // $_GET['id']
+$getEintrag = filter_input(INPUT_GET, 'eintrag', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['eintrag']
 
 /** Post actions ausführen/entgegennehmen */
 wetten::exec();
 
 /** Wettbüro Übersicht */
-if (empty($wette) || $wette <= 0)
+if ($wette <= 0)
 {
 	$model->showOverview($smarty);
 	if (isset($getEintrag) && $getEintrag == true)
@@ -46,13 +46,16 @@
 	echo '<h1>zorg Wettbüro</h1>';
 
 	/** offene wetten auflisten */
-	wetten::listopen();
+	//wetten::listopen();
+	wetten::listwetten();
 
 	/** laufende wetten auflisten */
-	wetten::listlaufende();
-	
+	//wetten::listlaufende();
+	wetten::listwetten('laeuft');
+
 	/** geschlossene wetten auflisten */
-	wetten::listclosed();
+	//wetten::listclosed();
+	wetten::listwetten('geschlossen');
 }
 
 /** Wette anzeigen */

From 05c04c0436f186b80f0fc28c725f410064b4d5cd Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Wed, 10 Jan 2024 21:06:33 +0100
Subject: [PATCH 2/8] Mitigates SQL injects through Prepared Statements

---
 www/actions/chess.php                         | 154 +++--
 www/actions/commenting.php                    |  42 +-
 www/actions/error_action.php                  |  51 +-
 www/actions/poll_edit.php                     |   4 +-
 www/actions/poll_state.php                    |  20 +-
 www/actions/poll_unvote.php                   |  13 +-
 www/actions/poll_vote.php                     |  19 +-
 www/actions/tpleditor.php                     |  53 +-
 www/addle.php                                 |  40 +-
 www/aklick.php                                |  83 +--
 www/books.php                                 | 361 +++++-----
 www/forum.php                                 |  40 +-
 www/frets_upload.php                          |  62 +-
 www/includes/anficker.inc.php                 | 153 ++---
 www/includes/chess.inc.php                    | 122 ++--
 www/includes/comments.res.php                 |  93 ++-
 www/includes/events.inc.php                   |  86 +--
 www/includes/forum.inc.php                    | 544 +++++++---------
 www/includes/gallery.inc.php                  |  50 +-
 www/includes/hz_game.inc.php                  | 328 ++++------
 www/includes/messagesystem.inc.php            | 183 ++----
 www/includes/peter.inc.php                    | 614 ++++++------------
 www/includes/poll.inc.php                     |  81 ++-
 www/includes/schach.inc.php                   |  90 +--
 www/includes/setiathome.inc.php               |  77 +--
 www/includes/smarty.fnc.php                   |  33 +-
 www/includes/smarty.inc.php                   | 149 +++--
 www/includes/spaceweather.inc.php             |  18 +-
 www/includes/stockbroker.inc.php              | 470 ++++----------
 www/includes/strings.array.php                |  17 +
 www/includes/tpleditor.inc.php                |  10 +-
 www/includes/usersystem.inc.php               | 227 ++++---
 www/includes/wetten.inc.php                   | 591 +++++++++--------
 www/index.php                                 | 108 +--
 www/scripts/chatlog_bak.php                   |  16 +-
 www/scripts/file_manager.php                  | 132 ++--
 www/scripts/tpleditor.php                     |  12 +-
 www/seti_xml.php                              |  73 +--
 www/stl2.php                                  | 583 ++++-------------
 .../partials/messages/messages_list.tpl       |   2 +-
 40 files changed, 2438 insertions(+), 3366 deletions(-)

diff --git a/www/actions/chess.php b/www/actions/chess.php
index 56250ef..60f213f 100644
--- a/www/actions/chess.php
+++ b/www/actions/chess.php
@@ -1,102 +1,114 @@
 <?php
 /**
  * Chess game actions
+ *
  * @package zorg\Games\Chess
  */
+
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
 include_once INCLUDES_DIR.'chess.inc.php';
 
-/** move */
-if (isset($_GET['game']) && $_GET['game'] > 0 && isset($_GET['from']) && isset($_GET['to']))
+/** Input validation and sanitization */
+$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['do']
+$gameId = filter_input(INPUT_GET, 'game', FILTER_VALIDATE_INT) ?? 0; // $_GET['game']
+$fromField = filter_input(INPUT_GET, 'from', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['from']
+$toField = filter_input(INPUT_GET, 'to', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['to']
+$viewForm = filter_input(INPUT_POST, 'formid', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['formid']
+$userId = filter_input(INPUT_POST, 'user', FILTER_VALIDATE_INT) ?? null; // $_POST['user']
+
+if (isset($gameId) && $gameId > 0)
 {
-	$e = $db->query('SELECT *, IF(white=next_turn, "w", "b") player
-					FROM chess_games 
-					WHERE id='.$_GET['game'].' AND next_turn='.$user->id,
-					__FILE__, __LINE__, 'move');
-	$d = $db->fetch($e);
+	/** move */
+	if (!empty($fromField) && !empty($toField))
+	{
+		$e = $db->query('SELECT *, IF(white=next_turn, "w", "b") player FROM chess_games WHERE id=? AND next_turn=?',
+						__FILE__, __LINE__, 'move', [$gameId, $user->id]);
+		$d = $db->fetch($e);
 
-	
-	if ($d && Chess::is_valid_position($_GET['from']) && Chess::is_valid_position($_GET['to'])
-		&& Chess::do_move($d['id'], $d['player'], $_GET['from'], $_GET['to'])
-	) {
-		unset($_GET['from']);
-		unset($_GET['to']);
-		header('Location: /?'.url_params());
-	}else{
-		echo "Invalid chess move: <br /> game = ".$_GET['game']." <br /> from = ".$_GET['from']." <br /> to = ".$_GET['to'];
+
+		if ($d && $chess->is_valid_position($fromField) && $chess->is_valid_position($toField)
+				&& $chess->do_move($d['id'], $d['player'], $fromField, $toField)
+		) {
+			unset($_GET['from']);
+			unset($_GET['to']);
+			header('Location: /?'.url_params());
+		}else{
+			echo "Invalid chess move: <br /> game = ".$gameId." <br /> from = ".$fromField." <br /> to = ".$toField;
+		}
 		exit;
 	}
-}
 
-/** offer remis */
-if (isset($_GET['game']) && $_GET['game'] > 0 && isset($_GET['do']) && $_GET['do'] == 'offer_remis')
-{
-	$e = $db->query('SELECT * FROM chess_games WHERE id='.$_GET['game'].' AND next_turn='.$user->id, __FILE__, __LINE__, 'offer remis');
-	$d = $db->fetch($e);
-	if ($d) {
-		Chess::do_offer_remis($_GET['game']);
-		unset($_GET['do']);
-		header("Location: /?".url_params());
-	}else{
-		echo "'offer remis' is not allowed.";
+	/** offer remis */
+	if ($doAction === 'offer_remis')
+	{
+		$e = $db->query('SELECT * FROM chess_games WHERE id=? AND next_turn=?', __FILE__, __LINE__, 'offer remis', [$gameId, $user->id]);
+		$d = $db->fetch($e);
+		if ($d) {
+			$chess->do_offer_remis($gameId);
+
+			unset($_GET['do']);
+			header("Location: /?".url_params());
+		}else{
+			echo "'offer remis' is not allowed.";
+		}
 		exit;
 	}
-}
 
-/** accept remis */
-if (isset($_GET['game']) && $_GET['game'] > 0 && isset($_GET['do']) && $_GET['do'] == 'accept_remis')
-{
-	$e = $db->query('SELECT * 
-					FROM chess_games 
-					WHERE id='.$_GET['game'].' AND (white='.$user->id.' OR black='.$user->id.') AND next_turn!='.$user->id.' AND offering_remis="1"',
-					__FILE__, __LINE__, 'accept remis');
-	$d = $db->fetch($e);
-	if ($d) {
-		Chess::do_remis($_GET['game']);
-		unset($_GET['do']);
-		header("Location: /?".url_params());
-	}else{
-		echo "'accept remis' is not allowed.";
+	/** accept remis */
+	if ($doAction === 'accept_remis')
+	{
+		$e = $db->query('SELECT * FROM chess_games WHERE id=? AND (white=? OR black=?) AND next_turn!=? AND offering_remis="1"',
+						__FILE__, __LINE__, 'accept remis', [$gameId, $user->id, $user->id, $user->id]);
+		$d = $db->fetch($e);
+		if ($d) {
+			$chess->do_remis($gameId);
+
+			unset($_GET['do']);
+			header("Location: /?".url_params());
+		}else{
+			echo "'accept remis' is not allowed.";
+		}
 		exit;
 	}
-}
 
-/** deny remis */
-if (isset($_GET['game']) && $_GET['game'] > 0 && isset($_GET['do']) && $_GET['do'] == 'deny_remis')
-{
-	$e = $db->query('SELECT *
-					FROM chess_games
-					WHERE id='.$_GET['game'].' AND (white='.$user->id.' OR black='.$user->id.') AND next_turn!='.$user->id.' AND offering_remis="1"',
-					__FILE__, __LINE__, 'deny remis');
-	$d = $db->fetch($e);
-	if ($d) {
-		Chess::deny_remis($_GET['game']);
-		header("Location: /?".url_params());
-	}else{
-		echo "'deny remis' is not allowed";
+	/** deny remis */
+	if ($doAction === 'deny_remis')
+	{
+		$e = $db->query('SELECT * FROM chess_games WHERE id=? AND (white=? OR black=?) AND next_turn!=? AND offering_remis="1"',
+						__FILE__, __LINE__, 'deny remis', [$gameId, $user->id, $user->id, $user->id]);
+		$d = $db->fetch($e);
+		if ($d) {
+			$chess->deny_remis($gameId);
+
+			unset($_GET['do']);
+			header("Location: /?".url_params());
+		}else{
+			echo "'deny remis' is not allowed";
+		}
+		exit;
+	}
+
+	/** aufgeben */
+	if ($doAction === 'aufgeben')
+	{
+		$chess->aufgabe($gameId);
+
+		unset($_GET['do']);
+		header("Location: /tpl/141?".url_params());
 		exit;
 	}
 }
 
 /** start new game */
-if (isset($_POST['formid']) && $_POST['formid'] == 'chess_start')
+elseif ($viewForm === 'chess_start')
 {
-	if (Chess::new_game($_POST['user'])) {
+	if ($chess->new_game($userId)) {
 		header("Location: /?tpl=139");
 	}else{
-		echo "invalid chess_start: <br /> user = ".$_POST['user'];
-		exit;
+		echo "invalid chess_start: <br /> user = ".$userId;
 	}
-}
-
-/** aufgeben */
-if (isset($_GET['game']) && $_GET['game'] > 0 && isset($_GET['do']) && $_GET['do'] == 'aufgeben')
-{
-	Chess::aufgabe($_GET['game']);
-	
-	unset($_GET['do']);
-	header("Location: /tpl/141?".url_params());
+	exit;
 }
diff --git a/www/actions/commenting.php b/www/actions/commenting.php
index 50f3551..416ecd9 100644
--- a/www/actions/commenting.php
+++ b/www/actions/commenting.php
@@ -1,33 +1,45 @@
 <?php
 /**
  * Commenting Actions
+ *
  * @package zorg\Forum
  */
+
 /**
  * File Includes
  */
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
+/** Input validation & sanitization */
+$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['do']
+$comment = filter_input(INPUT_GET, 'comment_id', FILTER_VALIDATE_INT) ?? 0; // $_GET['comment_id']
+$board = filter_input(INPUT_GET, 'board', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['board']
+$redirect = base64url_decode(filter_input(INPUT_GET, 'url', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR)) ?? null; // $_GET['url']
+
+if (!$user->is_loggedin()) {
+	http_response_code(403); // Set response code 403 (Access denied)
+	user_error('Access denied', E_USER_ERROR);
+}
+if(empty($comment) || $comment <= 0) {
+	http_response_code(404); // Set response code 404 (Not found)
+	user_error('Invalid comment: '.$comment, E_USER_ERROR);
+}
+
 /** Subscribe */
-if(isset($_GET['do']) && $_GET['do'] == 'subscribe')
+if($doAction === 'subscribe')
 {
-	$sql = 'INSERT INTO comments_subscriptions (board, comment_id, user_id)
-			VALUES("'.$_GET['board'].'", '.$_GET['comment_id'].', '.$user->id.')';
-	$db->query($sql, __FILE__, __LINE__, 'Commenting subscribe');
-
-	header("Location: ".base64url_decode($_GET['url']));
-	exit;
+	$sql = 'INSERT INTO comments_subscriptions (board, comment_id, user_id) VALUES(?, ?, ?)';
+	$db->query($sql, __FILE__, __LINE__, 'Commenting subscribe', [$board, $comment, $user->id]);
 }
 
 /** Unsubscribe */
-if(isset($_GET['do']) && $_GET['do'] == 'unsubscribe')
+elseif($doAction === 'unsubscribe' && $user->is_loggedin())
 {
-	$sql = 'DELETE FROM comments_subscriptions
-			WHERE board = "'.$_GET['board'].'" AND comment_id = '.$_GET['comment_id'].' AND user_id = '.$user->id;
-	$db->query($sql, __FILE__, __LINE__, 'Commenting unsubscribe');
-
-	header("Location: ".base64url_decode($_GET['url']));
-	exit;
+	$sql = 'DELETE FROM comments_subscriptions WHERE board=? AND comment_id=? AND user_id=?';
+	$db->query($sql, __FILE__, __LINE__, 'Commenting unsubscribe', [$board, $comment, $user->id]);
 }
+
+header("Location: ".$redirect);
+exit;
diff --git a/www/actions/error_action.php b/www/actions/error_action.php
index 226f5e3..a5298cf 100644
--- a/www/actions/error_action.php
+++ b/www/actions/error_action.php
@@ -1,39 +1,52 @@
 <?php
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
+require_once INCLUDES_DIR.'mysql.inc.php';
+require_once INCLUDES_DIR.'usersystem.inc.php';
 
-if(count($_POST) > 0)
+if($user->is_loggedin() && count($_POST) > 0)
 {
+	/** Input validation & sanitization */
+	$errorId = filter_input(INPUT_GET, 'id', FILTER_VALIDATE_INT) ?? null; // $_GET['id']
+	$tplId = filter_input(INPUT_GET, 'tpl', FILTER_VALIDATE_INT) ?? null; // $_GET['tpl']
+	$doDelete = filter_input(INPUT_POST, 'del', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['del']
+	$showQuery = filter_input(INPUT_POST, 'query', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? 0; // $_POST['query']
+	$del_ids = filter_input(INPUT_POST, 'to_del', FILTER_DEFAULT, FILTER_REQUIRE_ARRAY) ?? []; // $_POST['to_del']
+	$showNum = filter_input(INPUT_POST, 'num', FILTER_VALIDATE_INT) ?? 0; // $_POST['num']
+	$urlParams = '';
+
 	/** Delete SQL-Error */
-	if($_POST['del'] && !empty($_GET['id']))
+	if($doDelete === 'delete' && $errorId>0)
 	{
-		$sql_del = 'DELETE FROM sql_error WHERE id='.$_GET['id'];
-		$db->query($sql_del, __FILE__, __LINE__, 'Delete SQL-Error');
-		header('Location: /tpl/'.$_GET['tpl']);
-		die();
+		$sql_del = 'DELETE FROM sql_error WHERE id=?';
+		$db->query($sql_del, __FILE__, __LINE__, 'Delete SQL-Error', [$errorId]);
 	}
 
 	/** Show Query details */
-	if($_POST['query'])
+	if(!empty($showQuery))
 	{
-		header('Location: /tpl/'.$_GET['tpl'].'&id='.$_GET['id'].'&query='.base64url_encode($_POST['query']));
-		die();
+		$urlParams = '?id='.$errorId.'&query='.base64url_encode($showQuery);
 	}
 
 	/** Delete multiple SQL-Errors */
-	if(count($_POST['to_del']) > 0)
+	if(count($del_ids) > 0 && $user->type >= USER_MEMBER)
 	{
-		$del_ids = implode(',', $_POST['to_del']);
-		$sql = 'DELETE FROM sql_error WHERE id IN ('.$del_ids.')';
-		$db->query($sql, __FILE__, __LINE__, 'Delete multiple SQL-Errors');
-		header('Location: /tpl/'.$_GET['tpl']);
-		die();
+		$placeholders = implode(',', array_fill(0, count($del_ids), '?'));
+		$sql = 'DELETE FROM sql_error WHERE id IN (' . $placeholders . ')';
+		$params = array_map('intval', $del_ids); // $del_ids must be integers
+		$db->query($sql, __FILE__, __LINE__, 'Delete multiple SQL-Errors', $params);
 	}
 
 	/** Change displayed number of SQL-Error */
-	if($_POST['num'])
+	if($showNum > 0)
 	{
 		$_SESSION['error_num'] = $_POST['num'];
-		header('Location: /tpl/'.$_GET['tpl'].'?error_num='.$_POST['num']);
-		die();
+		$urlParams = '?error_num='.$showNum;
 	}
+
+	header('Location: /tpl/'.$tplId.$urlParams);
+	exit;
+}
+else {
+	http_response_code(403); // Set response code 403 (Access denied)
+	user_error('Access denied', E_USER_ERROR);
 }
diff --git a/www/actions/poll_edit.php b/www/actions/poll_edit.php
index a97c80b..a027bc3 100644
--- a/www/actions/poll_edit.php
+++ b/www/actions/poll_edit.php
@@ -8,9 +8,9 @@
  */
 /**
  * File includes.
- * @include main.inc.php
+ * @include poll.inc.php
  */
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/poll.inc.php';
 
 /** User not logged in? Error in his face! */
 if (!$user->is_loggedin()) {
diff --git a/www/actions/poll_state.php b/www/actions/poll_state.php
index 3f336e0..b06b60b 100644
--- a/www/actions/poll_state.php
+++ b/www/actions/poll_state.php
@@ -3,32 +3,36 @@
  * Poll State change (close/open).
  * @package zorg\Polls
  */
-require_once dirname(__FILE__).'/../includes/poll.inc.php';
+require_once __DIR__.'/../includes/poll.inc.php';
+
+/** Input validation and sanitization */
+$pollId = filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null; // $_GET['poll']
+$pollState = filter_input(INPUT_GET, 'state', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['state']
 
 if (!$user->is_loggedin()) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Access denied', E_USER_ERROR);
 }
-if (!in_array($_GET['state'], array('open', 'closed'))) {
+if (!in_array($pollState, array('open', 'closed'))) {
 	http_response_code(400); // Set response code 400 (Bad request)
-	user_error('Invalid state "'.$_GET['state'].'"', E_USER_ERROR);
+	user_error('Invalid state "'.$pollState.'"', E_USER_ERROR);
 }
-if(!isset($_GET['poll']) || !is_numeric($_GET['poll']) || (int)$_GET['poll'] <= 0) {
+if(empty($pollId) || $pollId <= 0) {
 	http_response_code(404); // Set response code 404 (Not found)
-	user_error('Invalid poll-id: '.$_GET['poll'], E_USER_ERROR);
+	user_error('Invalid poll-id: '.$pollId, E_USER_ERROR);
 }
 
 $polls = new Polls();
 
-$e = $db->query('SELECT * FROM polls WHERE user='.$user->id.' AND id='.$_GET['poll'], __FILE__, __LINE__, 'SELECT');
+$e = $db->query('SELECT * FROM polls WHERE user=? AND id=?', __FILE__, __LINE__, 'SELECT', [$user->id, $pollId]);
 $d = $db->fetch($e);
 
 if ($d && $polls->user_has_vote_permission($d['type']))
 {
-	$db->query('UPDATE polls SET state="'.$_GET['state'].'" WHERE id='.$_GET['poll'], __FILE__, __LINE__, 'UPDATE');
+	$db->query('UPDATE polls SET state=? WHERE id=?', __FILE__, __LINE__, 'UPDATE', [$pollState, $pollId]);
 	// @TODO Stop Telegram-Poll on close via chat_id using https://core.telegram.org/bots/api#stoppoll
 }else{
-	user_error('Invalid poll_change_state (poll='.$_GET['poll'].' & state='.$_GET['state'].')', E_USER_ERROR);
+	user_error('Invalid poll_change_state (poll='.$pollId.' & state='.$pollState.')', E_USER_ERROR);
 }
 
 unset($_GET['poll']);
diff --git a/www/actions/poll_unvote.php b/www/actions/poll_unvote.php
index 3c41f4a..d9479d8 100644
--- a/www/actions/poll_unvote.php
+++ b/www/actions/poll_unvote.php
@@ -5,24 +5,27 @@
  */
 require_once dirname(__FILE__).'/../includes/poll.inc.php';
 
+/** Input validation and sanitization */
+$pollId = filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null; // $_GET['poll']
+
 if(!$user->is_loggedin()) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Du bist nicht eingeloggt', E_USER_ERROR);
 }
-if(!isset($_GET['poll']) || !is_numeric($_GET['poll']) || (int)$_GET['poll'] <= 0) {
+if(empty($pollId) || $pollId <= 0) {
 	http_response_code(404); // Set response code 404 (Not found)
-	user_error('Invalid poll-id: '.$_GET['poll'], E_USER_ERROR);
+	user_error('Invalid poll-id: '.$pollId, E_USER_ERROR);
 }
 
 $polls = new Polls();
 
-$e = $db->query('SELECT * FROM polls WHERE id='.$_GET['poll'], __FILE__, __LINE__, 'SELECT');
+$e = $db->query('SELECT * FROM polls WHERE id=?', __FILE__, __LINE__, 'SELECT', [$pollId]);
 $d = $db->fetch($e);
 if ($d['state'] === 'closed' || !$polls->user_has_vote_permission($d['type']))
 {
-	user_error('Poll "'.$_GET['poll'].'" is closed', E_USER_ERROR);
+	user_error('Poll "'.$pollId.'" is closed', E_USER_ERROR);
 } else {
-	$db->query('DELETE FROM poll_votes WHERE poll='.$_GET['poll'].' AND user='.$user->id, __FILE__, __LINE__, 'DELETE');
+	$db->query('DELETE FROM poll_votes WHERE poll=? AND user=?', __FILE__, __LINE__, 'DELETE', [$pollId, $user->id]);
 	unset($_GET['poll']);
 }
 
diff --git a/www/actions/poll_vote.php b/www/actions/poll_vote.php
index 7213624..13da307 100644
--- a/www/actions/poll_vote.php
+++ b/www/actions/poll_vote.php
@@ -3,34 +3,37 @@
  * Poll Voting.
  * @packages zorg\Polls
  */
-require_once dirname(__FILE__).'/../includes/poll.inc.php';
+require_once __DIR__.'/../includes/poll.inc.php';
+
+/** Input validation and sanitization */
+$poll = (filter_input(INPUT_POST, 'poll', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null)); // $_POST['poll'] / $_GET['poll']
+$vote = (filter_input(INPUT_POST, 'vote', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'vote', FILTER_VALIDATE_INT) ?? null)); // $_POST['vote'] / $_GET['vote']
+$redirect = base64url_decode(filter_input(INPUT_GET, 'redirect', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR)) ?? null; // $_GET['redirect']
 
 if (!$user->is_loggedin()) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Access denied', E_USER_ERROR);
 }
-if ((!isset($_POST['poll']) || !isset($_POST['vote'])) && (!isset($_GET['poll']) || !isset($_GET['vote']))) {
+if (empty($poll) || $poll <= 0 || empty($vote) || $vote <= 0) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Nice try', E_USER_ERROR);
 }
 
-$poll = (!empty($_POST['poll']) ? $_POST['poll'] : (!empty($_GET['poll']) ? $_GET['poll'] : null));
-$vote = (!empty($_POST['vote']) ? $_POST['vote'] : (!empty($_GET['vote']) ? $_GET['vote'] : null));
-
 if ($poll !== null && $vote !== null)
 {
 	$polls = new Polls();
 
-	$e = $db->query('SELECT p.* FROM polls p, poll_answers a WHERE a.poll=p.id AND p.id='.$poll.' AND a.id='.$vote, __FILE__, __LINE__, __FILE__);
+	$e = $db->query('SELECT p.* FROM polls p, poll_answers a WHERE a.poll=p.id AND p.id=? AND a.id=?', __FILE__, __LINE__, __FILE__, [$poll, $vote]);
 	$d = $db->fetch($e);
 
 	if ($d && $d['state']=='open' && $polls->user_has_vote_permission($d['type'])) {
-		$db->query('REPLACE INTO poll_votes (poll, user, answer) VALUES ('.$poll.', '.$user->id.', '.$vote.')', __FILE__, __LINE__, 'REPLACE INTO poll_votes');
+		$db->query('REPLACE INTO poll_votes (poll, user, answer) VALUES (?, ?, ?)',
+					__FILE__, __LINE__, 'REPLACE INTO poll_votes', [$poll, $user->id, $vote]);
 	}else{
 		user_error('Invalid Poll/Vote "'.$poll.' / '.$vote.'"', E_USER_ERROR);
 	}
 
-	header('Location: '.base64url_decode($_GET['redirect']));
+	header('Location: '.$redirect);
 	exit;
 
 } else {
diff --git a/www/actions/tpleditor.php b/www/actions/tpleditor.php
index 7d0c4a1..e7c3bdc 100644
--- a/www/actions/tpleditor.php
+++ b/www/actions/tpleditor.php
@@ -8,9 +8,10 @@
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/../includes/tpleditor.inc.php';
+require_once __DIR__.'/../includes/tpleditor.inc.php';
 
 /** Initialize Vars */
+global $notification;
 $error = null;
 $state = null;
 $access_error = null;
@@ -89,7 +90,7 @@
 
 				$updated_tplid = $frm['id'];
 				$return_url = '/?tpl='.$updated_tplid;
-				$return_url .= '&created';
+				$return_url .= '&created=1';
 				$smarty->assign('tplupdnew', 1);
 				$state = t('created', 'tpl', $frm['id']);
 
@@ -119,7 +120,7 @@
 							,'sidebar_tpl' => $frm['sidebar_tpl']
 							,'allow_comments' => $frm['allow_comments']
 							,'error' => null
-							,'owner' => $user->id
+							//,'owner' => $user->id // ähhh nei, Owner söll nöd change?!
 							,'update_user' => $user->id
 							,'last_update' => timestamp(true)
 						];
@@ -136,28 +137,36 @@
 			$db->query('DELETE FROM tpl_menus WHERE tpl_id=?', __FILE__, __LINE__, 'DELETE FROM tpl_menus', [$frm['id']]);
 			if (!empty($_POST['frm']['menus']))
 			{
-				$tplmenusInsertData = null;
+				$tplmenusInsertData = [];
+				$params = [];
 				foreach ($_POST['frm']['menus'] as $menu_id) {
-					/** Note: only works when getting Array directly from $_POST, not via $frm.
-					Don't know why, cost me like 2 hours to figure this out WTF */
-					if (!empty($menu_id)) $tplmenusInsertData[] = sprintf('(%d, %d)', $frm['id'], $menu_id);
+					if ($menu_id > 0) {
+						$tplmenusInsertData[] = '(?, ?)';
+						$params[] = $frm['id'];
+						$params[] = $menu_id;
+					}
 				}
-				$db->query('INSERT INTO tpl_menus (tpl_id, menu_id) VALUES '.implode(',',$tplmenusInsertData), __FILE__, __LINE__, 'Link Template to selected Menus'); // add new
-				if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Template ID #%d linked to Menus: %s', __FILE__, __LINE__, $frm['id'], print_r($tplmenusInsertData, true)));
+				$sql = 'INSERT INTO tpl_menus (tpl_id, menu_id) VALUES '.implode(',', $tplmenusInsertData);
+				zorgDebugger::log()->debug('Template ID #%d linked to Menus: %s%s', [$frm['id'], $sql, print_r($params, true)]);
+				$db->query($sql, __FILE__, __LINE__, 'Link Template to selected Menus', $params);
 			}
 
 			/** Packages: remove all links between Template & Packages, relink selected Packages */
 			$db->query('DELETE FROM tpl_packages WHERE tpl_id=?', __FILE__, __LINE__, 'DELETE FROM tpl_packages', [$frm['id']]);
 			if (!empty($_POST['frm']['packages']))
 			{
-				$tplpackagesInsertData = null;
+				$tplpackagesInsertData = [];
+				$params = [];
 				foreach ($_POST['frm']['packages'] as $package_id) {
-					/** Note: only works when getting Array directly from $_POST, not via $frm.
-					Don't know why, cost me like 2 hours to figure this out WTF */
-					if (!empty($package_id)) $tplpackagesInsertData[] = sprintf('(%d, %d)', $frm['id'], $package_id);
+					if (!empty($package_id)) {
+						$tplpackagesInsertData[] = '(?, ?)';
+						$params[] = $frm['id'];
+						$params[] = $package_id;
+					}
 				}
-				$db->query('INSERT INTO tpl_packages (tpl_id, package_id) VALUES '.implode(',',$tplpackagesInsertData), __FILE__, __LINE__, 'Link Template to selected Packages'); // add new
-				if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Template ID #%d linked to Packages: %s', __FILE__, __LINE__, $frm['id'], print_r($tplpackagesInsertData, true)));
+				$sql = 'INSERT INTO tpl_packages (tpl_id, package_id) VALUES ' . implode(',', $tplpackagesInsertData);
+				zorgDebugger::log()->debug('Template ID #%d linked to Packages: %s%s', [$frm['id'], $sql, print_r($params, true)]);
+				$db->query($sql, __FILE__, __LINE__, 'Link Template to selected Packages', $params);
 			}
 		}
 	}
@@ -208,7 +217,7 @@
 		/** If compile-error, write it to the template in the DB */
 		if (!empty($error))
 		{
-			$db->query('UPDATE templates SET error="'.addslashes($error).'" WHERE id='.$frm['id'], __FILE__, __LINE__, 'UPDATE templates (tplid)');
+			$db->query('UPDATE templates SET error=? WHERE id=?', __FILE__, __LINE__, 'UPDATE templates (tplid)', [$error, $frm['id']]);
 		}
 	}
 
@@ -218,11 +227,21 @@
 		/** Unlock Template for editing - only if no $error occurred */
 		tpleditor_unlock($updated_tplid);
 		if (!isset($return_url) || empty($return_url)) $return_url = '/?tpl='.$updated_tplid;
-		$return_url .= '&updated';
+		$return_url .= '&updated=1';
 
 		$updated_tplid = null;
 		$enable_tpleditor = null;
 
+		/** Notify Template-Owner about change - if done by other User */
+		$notifyOtherTplOwner = tpl_get_associated_user($frm['id']);
+		zorgDebugger::log()->debug('Notify Template-Owner: owner %d <-- edit by %d', [$notifyOtherTplOwner, $user->id]);
+		if ($notifyOtherTplOwner !== $user->id)
+		{
+			$notification_text = t('change-notification-owner', 'tpl', [ $user->id2user($user->id), $frm['id'], $frm['title'] ]);
+			$notification_status = $notification->send($notifyOtherTplOwner, 'messagesystem', ['from_user_id'=>$user->id, 'subject'=>t('change-notification-owner-subject', 'tpl'), 'text'=>$notification_text, 'message'=>$notification_text]);
+			zorgDebugger::log()->debug('$_TPLROOT[owner] Notification: %s', [$notification_status ? 'true' : 'false']);
+		}
+
 		if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> header(Location): %s', __FILE__, __LINE__, $return_url));
 		header('Location: '.$return_url);
 		exit();
diff --git a/www/addle.php b/www/addle.php
index 449feee..95d6f91 100644
--- a/www/addle.php
+++ b/www/addle.php
@@ -177,8 +177,9 @@ function newgame($player) {
 	$row = mt_rand(0,7);
 
 	// db-entry
-	$gameid = $db->query('INSERT INTO addle (date, player1, player2, data, nextrow) VALUES (UNIX_TIMESTAMP(NOW()), '.$player.', '.$user->id.', "'.$board.'", '.$row.')', __FILE__, __LINE__, __FUNCTION__);
-	$db->query('UPDATE user SET addle="1" WHERE id='.$user->id, __FILE__, __LINE__, __FUNCTION__);
+	$gameid = $db->query('INSERT INTO addle (date, player1, player2, data, nextrow) VALUES (UNIX_TIMESTAMP(?), ?, ?, ?, ?)',
+						__FILE__, __LINE__, __FUNCTION__, [timestamp(true), $player, $user->id, $board, $row]);
+	$db->query('UPDATE user SET addle="1" WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$user->id]);
 	/*========================================
 		Addle KI - start
 	========================================*/
@@ -226,7 +227,8 @@ function games()
 	/** Eingeloggte User */
 	if ($user->is_loggedin())
 	{
-		$e = $db->query('SELECT * FROM addle WHERE ((player1='.$user->id.' AND nextturn=1) OR (player2='.$user->id.' AND nextturn=2)) AND finish=0', __FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT * FROM addle WHERE ((player1=? AND nextturn=1) OR (player2=? AND nextturn=2)) AND finish=0',
+						__FILE__, __LINE__, __FUNCTION__, [$user->id, $user->id]);
 		$num = $db->num($e);
 		if (!empty($num) && $num !== false && $num > 0)
 		{
@@ -242,7 +244,8 @@ function games()
 		}
 
 		/** Meine Laufenden Spiele */
-		$s = $db->query('SELECT * FROM addle WHERE ((player1='.$user->id.' AND nextturn=2) OR (player2='.$user->id.' AND nextturn=1)) AND finish=0', __FILE__, __LINE__, __FUNCTION__);
+		$s = $db->query('SELECT * FROM addle WHERE ((player1=? AND nextturn=2) OR (player2=? AND nextturn=1)) AND finish=0',
+						__FILE__, __LINE__, __FUNCTION__, [$user->id, $user->id]);
 		$num = $db->num($s);
 		if (!empty($num) || $num > 0)
 		{
@@ -303,8 +306,8 @@ function overview() {
 			<fieldset>
 				<label>Gegen&nbsp;
 				<?php
-					$sql = 'SELECT username, id FROM user WHERE addle="1" AND id <> '.$user->id.' ORDER BY username ASC';
-					$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+					$sql = 'SELECT username, id FROM user WHERE addle="1" AND id<>? ORDER BY username ASC';
+					$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$user->id]);
 					$numResult = $db->num($result);
 					while($rs = $db->fetch($result)) {
 							$values[] = $rs['id'];
@@ -358,7 +361,7 @@ function doplay($id, $choose) {
 
 	if ($id)
 	{
-		$e = $db->query('SELECT * FROM addle WHERE id='.$id, __FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT * FROM addle WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$id]);
 		$d = $db->fetch($e);
 		if ($d) { //&& $choose>=0 && $choose<=7) { <- wird schon in der parameter validierung abgefragt
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $d: %s', __METHOD__, __LINE__, print_r($d,true)));
@@ -396,18 +399,8 @@ function doplay($id, $choose) {
 						}
 					}
 					/** db entry zug */
-					$sql = 'UPDATE addle
-							SET
-								date=UNIX_TIMESTAMP(NOW()),
-								score'.$d['nextturn'].'='.$score.',
-								data="'.$data.'",
-								nextturn='.$nextturn.',
-								nextrow='.$choose.',
-								finish='.$finish.',
-								last_pick_data = "'.(ord($act)-96).'",
-								last_pick_row = '.$d['nextrow'].'
-							WHERE id='.$id;
-					$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+					$sql = 'UPDATE addle SET date=UNIX_TIMESTAMP(?), score'.$d['nextturn'].'=?, data=?, nextturn=?, nextrow=?, finish=?, last_pick_data=?, last_pick_row=? WHERE id=?';
+					$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [timestamp(true), $score, $data, $nextturn, $choose, $finish, ord($act)-96, $d['nextrow'], $id]);
 					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> db entry zug $sql: %s => %s', __METHOD__, __LINE__, ($result?'SUCCESS':'ERROR'),$sql));
 
 					/** Notification */
@@ -485,12 +478,9 @@ function play($id=0)
 		overview();
 		exit;
 	}
-	$sql = 'SELECT a.*, d1.score dwz1, d1.rank dwzr1, d2.score dwz2, d2.rank dwzr2
-			FROM addle a
-			LEFT JOIN addle_dwz d1 ON d1.user=a.player1
-			LEFT JOIN addle_dwz d2 ON d2.user=a.player2
-			WHERE a.id='.$id;
-	$e = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+	$sql = 'SELECT a.*, d1.score dwz1, d1.rank dwzr1, d2.score dwz2, d2.rank dwzr2 FROM addle a
+			LEFT JOIN addle_dwz d1 ON d1.user=a.player1 LEFT JOIN addle_dwz d2 ON d2.user=a.player2 WHERE a.id=?';
+	$e = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$id]);
 	if ($db->num($e) !== 1) {
 		http_response_code(404); // Set response code 404 (not found)
 		//user_error(t('error-game-invalid', 'global', [ $id ]), E_USER_ERROR);
diff --git a/www/aklick.php b/www/aklick.php
index 2bebaac..2cca765 100644
--- a/www/aklick.php
+++ b/www/aklick.php
@@ -11,7 +11,7 @@
 /**
  * File Includes
  */
-require_once dirname(__FILE__).'/includes/config.inc.php';
+require_once __DIR__.'/includes/config.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
 /**
@@ -23,17 +23,27 @@
 /** Nur für eingeloggte User! */
 if ($user->is_loggedin())
 {
+	$edit_id = filter_input(INPUT_POST, 'edit_id', FILTER_VALIDATE_INT) ?? null; // $_POST['edit_id']
+	$edit_wort = filter_input(INPUT_POST, 'edit_wort', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['edit_wort']
+	$edit_user = filter_input(INPUT_POST, 'edit_user', FILTER_VALIDATE_INT) ?? null;
+	$new_wort = filter_input(INPUT_POST, 'new_wort', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$new_typ = filter_input(INPUT_POST, 'new_typ', FILTER_VALIDATE_INT) ?? null; // 1=adjektiv, or 2=subjektiv
+	$aklick = filter_input(INPUT_POST, 'afick', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['afick']
+	$edit = filter_input(INPUT_GET, 'edit', FILTER_VALIDATE_INT) ?? null; // $_GET['edit']
+	$new = filter_input(INPUT_GET, 'new', FILTER_VALIDATE_BOOLEAN) ?? false; // $_GET['new']
+	$log = filter_input(INPUT_GET, 'log', FILTER_VALIDATE_BOOLEAN) ?? false; // $_GET['log']
+
 	if(count($_POST)>0) {
-		if($_POST['edit_wort'] && ($_POST['edit_user'] == $_SESSION['user_id'] || $user->typ == 2)) {
-			$sql = 'UPDATE aficks set wort = "'.$_POST['edit_wort'].'" WHERE id = '.$_POST['edit_id'];
-			$db->query($sql,__FILE__,__LINE__);
+		if(!empty($edit_wort) && ($edit_user === (int)$_SESSION['user_id'] || $user->typ >= USER_MEMBER)) {
+			$sql = 'UPDATE aficks set wort=? WHERE id=?';
+			$db->query($sql,__FILE__,__LINE__,'Update Aficks', [$edit_wort, $edit_id]);
 			header("Location: ".$_SERVER['PHP_SELF']."?".session_name()."=".session_id());
 			exit;
 		}
-		if($_POST['new_wort'] && $_POST['new_typ']) {
+		if(!empty($new_wort) && ($new_typ === 1 || $new_typ === 2)) {
 			$sql = 'INSERT IGNORE INTO aficks (wort, typ, wort_user_id)
-					VALUES ("'.$_POST['new_wort'].'","'.$_POST['new_typ'].'",'.$_SESSION['user_id'].')';
-			$db->query($sql,__FILE__,__LINE__);
+					VALUES (?,?,?)';
+			$db->query($sql,__FILE__,__LINE__,'Insert Aficks', [$new_wort, $new_typ, $_SESSION['user_id']]);
 			header("Location: ".$_SERVER['PHP_SELF']."?".session_name()."=".session_id());
 			exit;
 		}
@@ -42,13 +52,12 @@
 			$old_query = base64url_decode($_SESSION['query']);
 		}
 
-		$aklick = strip_tags($_POST['afick']);
 		$old_query .= "
 		<tr><td align='left'>
 		<B>".$user->username."</B>
 		</td><td align='left' width='100%'>".$aklick."</td></tr>";
 		$sql = 'SELECT * FROM aficks WHERE typ = 1';
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$result = $db->query($sql,__FILE__,__LINE__,'SQL Query');
 		while($rs = $db->fetch($result)) {
 			$af[] = $rs['wort'];
 			$id[$rs['wort']] = $rs['id'];
@@ -67,7 +76,7 @@
 		}
 
 		$sql = 'SELECT * FROM aficks WHERE typ = 2';
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$result = $db->query($sql,__FILE__,__LINE__,'SQL Query');
 		while($rs = $db->fetch($result)) {
 			$am[] = $rs['wort'];
 			$id[$rs['wort']] = $rs['id'];
@@ -82,13 +91,12 @@
 		$old_query .= $afick_am."</td></tr>";
 		$_SESSION['query'] = base64url_encode($old_query);
 
-		if($_POST['afick'] == "" && !$_POST['edit_wort'] && !$_POST['new_wort']) {
+		if(empty($aklick) && empty($edit_wort) && empty($new_wort)) {
 			$_SESSION['query'] = "";
 		}
 
-		$sql = 'INSERT into aficks_log (user_id, afick_am, afick_user, datum)
-		VALUES ('.$_SESSION['user_id'].',"'.$afick_am.'","'.$aklick.'",now())';
-		$db->query($sql,__FILE__,__LINE__);
+		$sql = 'INSERT into aficks_log (user_id, afick_am, afick_user, datum) VALUES (?,?,?,?)';
+		$db->query($sql,__FILE__,__LINE__,'Insert aficks_log', [$_SESSION['user_id'], $afick_am, $aklick, timestamp(true)]);
 		header("Location: ".getURL(false,false));
 		exit;
 	}
@@ -96,7 +104,7 @@
 	$smarty->display('file:layout/head.tpl');
 	echo '<h2>Aficks Admin</h2>';
 	echo '
-	<form action="'.$_SERVER['PHP_SELF'].'" method="post">
+	<form action="'.htmlspecialchars($_SERVER['PHP_SELF']).'" method="post">
 	<table class="border" style="display: flex;white-space: nowrap;align-items: center;">
 		<tr>
 			<td align="left">
@@ -114,17 +122,17 @@
 			</td>
 		</tr>
 	</table>
-	</from><br />';
+	</from><br>';
 
-	if($_GET['edit'])
+	if($edit>0 && !$new)
 	{
-		$sql = 'SELECT * FROM aficks WHERE id = '.$_GET['edit'];
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT * FROM aficks WHERE id=?';
+		$result = $db->query($sql,__FILE__,__LINE__,'Select aficks by id', [$edit]);
 		$rs = $db->fetch($result);
 		$typ = array("","mittelchind","mueterbai");
 		if($rs['wort_user_id'] == $_SESSION['user_id'] || $user->typ == 2) {
 			echo '
-			<form action="'.$_SERVER['PHP_SELF'].'" method="post">
+			<form action="'.htmlspecialchars($_SERVER['PHP_SELF']).'" method="post">
 			<table cellpadding="2" class="border"><tr><td align="center" colspan="2">EDIT</td>
 			</tr><td align="left" colspan="2">
 			<input type="text" class="text" name="edit_wort" size="40" value="'.$rs['wort'].'">
@@ -133,16 +141,17 @@
 			</td></tr><tr><td align="left">
 			<input type="submit" value="speichern" class="button">
 			</td><td align="right">
-			Typ: ".$typ['.$rs['"typ"'].']."
+			Typ: ".$typ['.$rs['typ'].']."
 			</tr></table>
 			</from>
-			<br />';
+			<br>';
 		}
 	}
-	if($_GET['new'])
+
+	if($new === true)
 	{
 		echo '
-		<form action="'.$_SERVER['PHP_SELF'].'" method="post">
+		<form action="'.htmlspecialchars($_SERVER['PHP_SELF']).'" method="post">
 		<table cellpadding="2" class="border"><tr><td align="center" colspan="2">Neu</td>
 		</tr><td align="left" colspan="2">
 		<input type="text" class="text" name="new_wort" size="40">
@@ -156,20 +165,17 @@
 		</select>
 		</tr></table>
 		</from>
-		<br />';
+		<br>';
 	}
-	if($_GET['log'])
+
+	if($log === true)
 	{
-		$sql = '
-		SELECT
-			a.afick_am,
-			a.afick_user,
-			u.username
-		FROM aficks_log	a
-		INNER JOIN user u
-			ON u.id = a.user_id
-		ORDER by a.datum DESC';
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT a.afick_am, a.afick_user, u.username
+				FROM aficks_log	a
+				INNER JOIN user u
+					ON u.id = a.user_id
+				ORDER by a.datum DESC';
+		$result = $db->query($sql,__FILE__,__LINE__,'SQL Query');
 		echo "<table>";
 		while($rs = $db->fetch($result)) {
 			echo '
@@ -184,10 +190,11 @@
 			</td></tr>';
 
 		}
-		echo "</table><br />";
+		echo "</table><br>";
 	}
 
-	if($_SESSION['query']) {
+	if(!empty($_SESSION['query']))
+	{
 		echo "<table>";
 		echo base64url_decode($_SESSION['query']);
 		echo "</table>";
diff --git a/www/books.php b/www/books.php
index 59c11f2..2bd86ec 100644
--- a/www/books.php
+++ b/www/books.php
@@ -11,7 +11,7 @@
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/config.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
 /**
@@ -22,12 +22,10 @@
 /**
  * Validate Passed Parameters
  */
-/** GET */
-$book_id =  (isset($_GET['book_id']) && is_numeric($_GET['book_id']) && $_GET['book_id'] > 0 ? (int)$_GET['book_id'] : null);
-$action = (isset($_GET['do']) && is_string($_GET['do']) ? (string)$_GET['do'] : null);
-$user_id = (isset($_GET['user']) && is_numeric($_GET['user']) ? (int)$_GET['user'] : ($user->is_loggedin() ? $user->id : null));
-/** POST */
-$postAction = (isset($_POST['do']) && is_string($_POST['do']) ? (string)$_POST['do'] : null);
+$book_id = filter_input(INPUT_GET, 'book_id', FILTER_VALIDATE_INT) ?? null; // $_GET['book_id']
+$user_id = filter_input(INPUT_GET, 'user', FILTER_VALIDATE_INT) ?? ($user->is_loggedin() ? $user->id : null); // $_GET['user']
+$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['do']
+$postAction = filter_input(INPUT_POST, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['do']
 
 /**************/
 /* Funktionen */
@@ -43,8 +41,8 @@
 function get_title($kat_id)
 {
 	global $db;
-	$sql = 'SELECT typ FROM books_title WHERE id = '.$kat_id;
-	$result = $db->query($sql, __FILE__, __LINE__);
+	$sql = 'SELECT typ FROM books_title WHERE id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$kat_id]);
 	$rs = $db->fetch($result);
 
 	return $rs['typ'];
@@ -54,11 +52,24 @@ function get_title($kat_id)
 /* DB Routinen */
 /***************/
 /** Aenderung an Buch in DB speichern */
-if($postAction === 'edit_now' && true === $user->is_loggedin())
+if($postAction === 'edit_now' && $user->is_loggedin())
 {
+	$book_id = filter_input(INPUT_POST, 'book_id', FILTER_VALIDATE_INT) ?? null; // $_POST['book_id']
+	$book_title_id = filter_input(INPUT_POST, 'titel_id', FILTER_VALIDATE_INT) ?? null; // $_POST['titel_id']
+	$title = filter_input(INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$autor = filter_input(INPUT_POST, 'autor', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$verlag = filter_input(INPUT_POST, 'verlag', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$isbn = filter_input(INPUT_POST, 'isbn', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$titel_id = filter_input(INPUT_POST, 'titel_id', FILTER_VALIDATE_INT) ?? null;
+	$parent_id = filter_input(INPUT_POST, 'parent_id', FILTER_VALIDATE_INT) ?? null;
+	$jahrgang = filter_input(INPUT_POST, 'jahrgang', FILTER_VALIDATE_INT) ?? null;
+	$preis = filter_input(INPUT_POST, 'preis', FILTER_VALIDATE_FLOAT) ?? null;
+	$seiten = filter_input(INPUT_POST, 'seiten', FILTER_VALIDATE_INT) ?? null;
+	$text = filter_input(INPUT_POST, 'text', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+
 	/** besitzt der user das buch? */
-	$sql = 'SELECT count(*) as anzahl FROM books_holder WHERE book_id = '.(int)$_POST['book_id'].' AND user_id = '.$user->id;
-	$result = $db->query($sql, __FILE__, __LINE__, 'edit_now');
+	$sql = 'SELECT count(*) as anzahl FROM books_holder WHERE book_id=? AND user_id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'edit_now', [$book_id, $user->id]);
 	$rs = $db->fetch($result);
 
 	if ($rs['anzahl'] != 1)
@@ -66,11 +77,11 @@ function get_title($kat_id)
 		$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => 'au jetzt nonig, tschalphorre']);
 		//exit;
 	} else {
-		$sql = 'SELECT * FROM books_title WHERE id = '.(int)$_POST['titel_id'];
-		$result = $db->query($sql, __FILE__, __LINE__, 'edit_now');
+		$sql = 'SELECT * FROM books_title WHERE id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, 'edit_now', [$book_title_id]);
 		$rs = $db->fetch($result);
 
-		if ($rs['parent_id'] != 0)
+		if (isset($rs['parent_id']) && $rs['parent_id'] > 0)
 		{
 			$titel_id = $rs['parent_id'];
 			$parent_id = $rs['id'];
@@ -79,32 +90,48 @@ function get_title($kat_id)
 			$parent_id = 0;
 		}
 
-		$sql = 'UPDATE books set title = "'.addslashes(strip_tags((string)$_POST['title'])).'",
-				autor = "'.addslashes(strip_tags((string)$_POST['autor'])).'",
-				verlag = "'.addslashes(strip_tags((string)$_POST['verlag'])).'",
-				isbn = "'.addslashes(strip_tags((string)$_POST['isbn'])).'",
-				titel_id = "'.(string)$titel_id.'",
-				parent_id = '.$parent_id.',
-				jahrgang = '.(int)$_POST['jahrgang'].',
-				preis = "'.(float)$_POST['preis'].'",
-				seiten = "'.(int)$_POST['seiten'].'",
-				text = "'.addslashes(strip_tags((string)$_POST['text'])).'"
-				WHERE id = '.(int)$_POST['book_id'];
-		$db->query($sql, __FILE__, __LINE__, 'edit_now');
+		$sql = 'UPDATE books SET title=?, autor=?, verlag=?, isbn=?, titel_id=?, parent_id=?, jahrgang=?, preis=?, seiten=?, text=? WHERE id=?';
+		$params = [
+			$title,
+			$autor,
+			$verlag,
+			$isbn,
+			$titel_id,
+			$parent_id,
+			$jahrgang,
+			$preis,
+			$seiten,
+			$text,
+			$book_id
+		];
+		$db->query($sql, __FILE__, __LINE__, 'edit_now', $params);
 		$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => 'Boook geändert']);
-		$action = "show";
+		$doAction = "show";
 		$book_id = (int)$_POST['book_id'];
 	}
 }
 /** Buch in DB hinzufuegen */
 elseif ($postAction === 'add_now' && $user->is_loggedin())
 {
+	$book_id = filter_input(INPUT_POST, 'book_id', FILTER_VALIDATE_INT) ?? null; // $_POST['book_id']
+	$book_title_id = filter_input(INPUT_POST, 'titel_id', FILTER_VALIDATE_INT) ?? null; // $_POST['titel_id']
+	$title = filter_input(INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$autor = filter_input(INPUT_POST, 'autor', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$verlag = filter_input(INPUT_POST, 'verlag', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$isbn = filter_input(INPUT_POST, 'isbn', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+	$titel_id = filter_input(INPUT_POST, 'titel_id', FILTER_VALIDATE_INT) ?? null;
+	$parent_id = filter_input(INPUT_POST, 'parent_id', FILTER_VALIDATE_INT) ?? null;
+	$jahrgang = filter_input(INPUT_POST, 'jahrgang', FILTER_VALIDATE_INT) ?? null;
+	$preis = filter_input(INPUT_POST, 'preis', FILTER_VALIDATE_FLOAT) ?? null;
+	$seiten = filter_input(INPUT_POST, 'seiten', FILTER_VALIDATE_INT) ?? null;
+	$text = filter_input(INPUT_POST, 'text', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+
 	/** Kategorie und Parent-Kategorie finden */
-	$sql = 'SELECT * FROM books_title WHERE id = '.(int)$_POST['titel_id'];
-	$result = $db->query($sql, __FILE__, __LINE__, 'add_now');
+	$sql = 'SELECT * FROM books_title WHERE id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'add_now', [$book_title_id]);
 	$rs = $db->fetch($result);
 
-	if ($rs['parent_id'] != 0)
+	if (isset($rs['parent_id']) && $rs['parent_id'] > 0)
 	{
 		$titel_id = $rs['parent_id'];
 		$parent_id = $rs['id'];
@@ -114,124 +141,105 @@ function get_title($kat_id)
 	}
 
 	/** Book adden */
-	if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Insert Book $_POST: %s', __FILE__, __LINE__, print_r($_POST, true)));
-	$bookTitle = (isset($_POST['title']) & is_string($_POST['title']) ? addslashes(strip_tags((string)$_POST['title'])) : '');
-	$bookAutor = (isset($_POST['autor']) & is_string($_POST['autor']) ? addslashes(strip_tags((string)$_POST['autor'])) : '');
-	$bookVerlag = (isset($_POST['autor']) & is_string($_POST['autor']) ? addslashes(strip_tags((string)$_POST['autor'])) : '');
-	$bookIsbn = (isset($_POST['isbn']) & is_string($_POST['isbn']) ? addslashes(strip_tags((string)$_POST['isbn'])) : '');
-	$bookJahr = (isset($_POST['jahrgang']) & is_numeric($_POST['jahrgang']) ? (int)$_POST['jahrgang'] : '');
-	$bookPreis = (isset($_POST['preis']) & is_numeric($_POST['preis']) ? (float)$_POST['preis'] : 0);
-	$bookSeiten = (isset($_POST['seiten']) & is_numeric($_POST['seiten']) ? (int)$_POST['seiten'] : '');
-	$bookText = (isset($_POST['text']) & is_string($_POST['text']) ? addslashes(strip_tags((string)$_POST['text'])) : '');
-	$sql = 'INSERT INTO books (
-				title,
-				autor,
-				verlag,
-				isbn,
-				titel_id,
-				parent_id,
-				jahrgang,
-				preis,
-				seiten,
-				text,
-				ersteller
-			) VALUES (
-				 "'.$bookTitle.'"
-				,"'.$bookAutor.'"
-				,"'.$bookVerlag.'"
-				,"'.$bookIsbn.'"
-				,'.$titel_id.'
-				,'.$parent_id.'
-				,'.$bookJahr.'
-				,'.$bookPreis.'
-				,'.$bookSeiten.'
-				,"'.$bookText.'"
-				,'.$user->id.'
-			)';
-			if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Insert Book SQL: %s', __FILE__, __LINE__, $sql));
-	$IdNewBook = $db->query($sql, __FILE__, __LINE__, 'add_now');
-
-	if ($IdNewBook !== false && !is_bool($IdNewBook) && $IdNewBook > 0)
+	zorgDebugger::log()->debug('Insert Book $_POST: %s', [print_r($_POST)]);
+	$sql = 'INSERT INTO books (title, autor, verlag, isbn, titel_id, parent_id, jahrgang, preis, seiten, text, ersteller)
+			VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)';
+	$params = [
+		$title,
+		$autor,
+		$verlag,
+		$isbn,
+		$titel_id,
+		$parent_id,
+		$jahrgang,
+		$preis,
+		$seiten,
+		$text,
+		$user->id
+	];
+	$IdNewBook = $db->query($sql, __FILE__, __LINE__, 'add_now', $params);
+
+	if ($IdNewBook !== false && $IdNewBook > 0)
 	{
-		$sql = 'INSERT INTO books_holder(book_id, user_id)
-				VALUES('.$IdNewBook.','.$user->id.')';
-		$db->query($sql, __FILE__, __LINE__, 'Neuer Buchbesitzer');
-
+		$sql = 'INSERT INTO books_holder(book_id, user_id) VALUES(?, ?)';
+		$db->query($sql, __FILE__, __LINE__, 'Neuer Buchbesitzer', [$IdNewBook, $user->id]);
 		$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => 'Boook #'.$IdNewBook.' hinzugefügt']);
 
-		$action = 'show';
+		$doAction = 'show';
 		$book_id = $IdNewBook;
+
+		/** Activity Eintrag auslösen */
+		Activities::addActivity($user->id, 0, t('activity-new', 'books', [ SITE_URL, $book_id, $title ]), 'bo');
 	} else {
 		$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => 'Fehler beim hinzufügen des Buches "'.(string)$_POST['title'].'"']);
-		$action = null;
+		$doAction = null;
 	}
 }
 /** Neue Kategorie in DB einfügen */
-elseif ($postAction === 'insert_titel' && true === $user->is_loggedin())
+elseif ($postAction === 'insert_titel' && $user->is_loggedin())
 {
 	/** Hauptkategorie */
-	if ($_POST['parent_id'] == "new")
+	if ($parent_id === "new")
 	{
-		$sql = 'INSERT INTO books_title (typ) VALUES ("'.(string)$_POST['titel'].'")';
- 		$db->query($sql, __FILE__, __LINE__, 'insert_titel');
+		$sql = 'INSERT INTO books_title (typ) VALUES (?)';
+ 		$db->query($sql, __FILE__, __LINE__, 'insert_titel', [$title]);
 
  	/** Unterkategorie */
- 	} elseif ($_POST['parent_id'] != ""){
-		$sql = 'INSERT INTO books_title (parent_id, typ) VALUES ('.(int)$_POST['parent_id'].',"'.(string)$_POST['titel'].'")';
- 		$db->query($sql, __FILE__, __LINE__, 'insert_titel');
+ 	} elseif (empty($parent_id) || $parent_id){
+		$sql = 'INSERT INTO books_title (parent_id, typ) VALUES (?, ?)';
+ 		$db->query($sql, __FILE__, __LINE__, 'insert_titel', [$parent_id, $title]);
  	}
 
 	$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => 'Kategorie '.(string)$_POST['titel'].' hinzugefügt']);
-	$action = null;
+	$doAction = null;
 }
 /** Besitzer in DB hinzufuegen */
-elseif ($action === 'add_owner' && $user->id > 0)
+elseif ($doAction === 'add_owner' && $user->id > 0)
 {
 	/** Testen ob bereits besitzer */
-	$sql = 'SELECT user_id FROM books_holder where book_id = '.$book_id.' AND user_id = '.$user->id;
-	if ($db->num($db->query($sql, __FILE__, __LINE__, 'add_owner')) == 0)
+	$sql = 'SELECT user_id FROM books_holder WHERE book_id=? AND user_id=?';
+	if ($db->num($db->query($sql, __FILE__, __LINE__, 'add_owner', [$book_id, $user->id])) == 0)
 	{
 		/** Neuen Benutzer hinzufuegen */
-		$sql = 'INSERT INTO books_holder (book_id, user_id) VALUES ('.$book_id.','.$user->id.')';
-		$db->query($sql, __FILE__, __LINE__, 'add_owner');
+		$sql = 'INSERT INTO books_holder (book_id, user_id) VALUES (?, ?)';
+		$db->query($sql, __FILE__, __LINE__, 'add_owner', [$book_id, $user->id]);
 	}
 
-	$action = 'show';
+	$doAction = 'show';
 }
 /** Besitzer in DB loeschen */
-elseif ($action === 'delete_owner' && $user->id > 0)
+elseif ($doAction === 'delete_owner' && $user->id > 0)
 {
+	$sql = 'DELETE FROM books_holder WHERE book_id=? AND user_id=?';
+	$db->query($sql, __FILE__, __LINE__, 'delete_owner', [$book_id, $user->id]);
 
-	$sql = 'DELETE FROM books_holder WHERE book_id = '.$book_id.' AND user_id = '.$user->id;
-	$db->query($sql, __FILE__, __LINE__, 'delete_owner');
-
-	$action = 'show';
+	$doAction = 'show';
 }
 /** Buch in DB loeschen */
-elseif ($action === 'delete_now' && $user->id > 0)
+elseif ($doAction === 'delete_now' && $user->id > 0)
 {
-	$sql = 'SELECT * FROM books WHERE id = '.$book_id;
-	$result = $db->query($sql, __FILE__, __LINE__, 'delete_now');
+	$sql = 'SELECT * FROM books WHERE id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'delete_now', $book_id);
 	$rs = $db->fetch($result);
 
 	/** darf user buch loeschen? */
 	if ($rs['ersteller'] == $user->id)
 	{
-		$sql = 'SELECT count(*) as anzahl FROM books_holder WHERE book_id = '.$book_id;
-		$result2 = $db->query($sql, __FILE__, __LINE__, 'delete_now');
+		$sql = 'SELECT count(*) as anzahl FROM books_holder WHERE book_id=?';
+		$result2 = $db->query($sql, __FILE__, __LINE__, 'delete_now', [$book_id]);
 		$rs2 = $db->fetch($result2);
 
 		/** wenn andere user dieses buch auch besitzen ist l?schen nicht erlaubt */
 		if ($rs2['anzahl'] == 1)
 		{
-			$sql = 'DELETE FROM books WHERE id = '.$book_id;
-			$db->query($sql, __FILE__, __LINE__, 'delete_now');
+			$sql = 'DELETE FROM books WHERE id=?';
+			$db->query($sql, __FILE__, __LINE__, 'delete_now', [$book_id]);
 			$smarty->assign('error', ['type' => 'info', 'dismissable' => 'true', 'title' => 'Book gelöscht']);
 		} else {
 			$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => 'Noch andere Besitzer',
 			'message' => 'Sorry, dieses Book besitzen auch noch andere Leute und kann darum nicht geloescht werden.']);
 		}
-		$action = null;
+		$doAction = null;
 	} else {
 		$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'true', 'title' => 'ganz eifach: NEI! du schpehone!']);
 	}
@@ -243,7 +251,7 @@ function get_title($kat_id)
 $htmlOutput = null;
 
 /** Buecherliste */
-if (!isset($action) || empty($action))
+if (empty($doAction))
 {
 	$htmlOutput .= '<h1>Bücherliste der zorger</h1>';
 
@@ -254,14 +262,14 @@ function get_title($kat_id)
 		$htmlOutput .= '<h4>'.$rs['typ'].'</h4>';
 
 		$htmlOutput .= '<ul>';
-		$sql = 'SELECT * FROM books_title WHERE parent_id = '.$rs['id'];
-		$result2 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste');
+		$sql = 'SELECT * FROM books_title WHERE parent_id=?';
+		$result2 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste', [$rs['id']]);
 		while ($rs2 = $db->fetch($result2))
 		{
 			$htmlOutput .= '<li>'.$rs2['typ'].'</li><ul>';
 
-	  		$sql = 'SELECT * FROM books WHERE titel_id = '.$rs['id'].' AND parent_id = '.$rs2['id'];
-			$result3 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste');
+	  		$sql = 'SELECT * FROM books WHERE titel_id=? AND parent_id=?';
+			$result3 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste', [$rs['id'], $rs2['id']]);
 
 			while ($rs3 = $db->fetch($result3)) {
 				$htmlOutput .= '<li><a href="?do=show&book_id='.$rs3['id'].'">'.$rs3['title'].'</a></li>';
@@ -269,8 +277,8 @@ function get_title($kat_id)
 			$htmlOutput .= '</ul><br>';
 		}
 
-		$sql = 'SELECT * FROM books WHERE titel_id = '.$rs['id'].' AND parent_id = 0';
-		$result3 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste');
+		$sql = 'SELECT * FROM books WHERE titel_id=? AND parent_id=0';
+		$result3 = $db->query($sql, __FILE__, __LINE__, 'Bücherliste', [$rs['id']]);
 
 		while ($rs3 = $db->fetch($result3)) {
 				$htmlOutput .= '<li><a href="?do=show&book_id='.$rs3['id'].'">'.$rs3['title'].'</a></li>';
@@ -286,7 +294,7 @@ function get_title($kat_id)
 	{
 		/** Eingabe Screen für neue Kategorie */
 		$sidebarHtml .= '<h2>Neue Kategorie</h2>'
-			.'<form action="'.$_SERVER['PHP_SELF'].'" method="post" enctype="multipart/form-data">'
+			.'<form action="'.htmlentities($_SERVER['PHP_SELF']).'" method="post" enctype="multipart/form-data">'
 			.'<input type="hidden" name="do" value="insert_titel">'
 			.'<table cellpadding="1" cellspacing="1" width="400" class="border" align="center">'
 			.'<tr><td align="left" style="font-weight: 600;">'
@@ -322,55 +330,55 @@ function get_title($kat_id)
 
 }
 /** Buch ansehen */
-elseif ($action === 'show' && isset($book_id))
+elseif ($doAction === 'show' && $book_id > 0)
 {
 	/** Get Book Details */
-	$sql = 'SELECT * from books WHERE id = '.$book_id;
-	$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, 'Buch ansehen'));
+	$sql = 'SELECT * from books WHERE id=?';
+	$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, 'Buch ansehen', [$book_id]));
 
 	if ($rs !== false && $rs !== null)
 	{
-		$sql = 'SELECT * from books_title WHERE id = '.$rs['titel_id'];
-		$rs2 = $db->fetch($db->query($sql, __FILE__, __LINE__, 'Buch ansehen'));
+		$sql = 'SELECT * from books_title WHERE id=?';
+		$rs2 = $db->fetch($db->query($sql, __FILE__, __LINE__, 'Buch ansehen', [$rs['titel_id']]));
 
 		$htmlOutput .= '<h1>'.htmlentities($rs['title']).'</h1>';
-		$htmlOutput .= '<table cellpadding="1" cellspacing="1" class="border" align="center" style="max-width: 100%;">'
-			.'<tr><td align="left" style="font-weight: 600;">'
+		$htmlOutput .= '<table cellpadding="1" cellspacing="1" class="shadedcells">'
+			.'<tr><td class="strong">'
 			.'Autor:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
+			.'</td><td>'
 			.htmlentities($rs['autor'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td></tr><tr><td class="strong">'
 			.'Verlag:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
+			.'</td><td>'
 			.htmlentities($rs['verlag'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td></tr><tr><td class="strong">'
 			.'ISBN:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
+			.'</td><td>'
 			.htmlentities($rs['isbn'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td></tr><tr><td class="strong">'
 			.'Thema:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
+			.'</td><td>'
 			.htmlentities($rs2['typ'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td></tr><tr><td class="strong">'
 			.'Druckjahr:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
-			.$rs['jahrgang']
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td><td>'
+			.intval($rs['jahrgang'])
+			.'</td></tr><tr><td class="strong">'
 			.'Preis:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
-			.'CHF '.htmlentities($rs['preis'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td><td>'
+			.'CHF '.number_format(floatval($rs['preis']), 2, '.', '')
+			.'</td></tr><tr><td class="strong">'
 			.'Seiten:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
-			.htmlentities($rs['seiten'])
-			.'</td></tr><tr><td align="left" style="font-weight: 600;">'
+			.'</td><td>'
+			.intval($rs['seiten'])
+			.'</td></tr><tr><td class="strong">'
 			.'Besitzer:'
-			.'</td><td align="left" style="color:#'.FONTCOLOR.'; background-color:#'.BACKGROUNDCOLOR.'; border-bottom-style: solid; border-bottom-color: #'.BORDERCOLOR.'; border-bottom-width: 1px; border-left-style: solid; border-left-color: #'.BORDERCOLOR.'; border-left-width: 1px;">'
+			.'</td><td>'
 			;
 
 		/** besitzer auflisten */
-		$sql = 'SELECT * from books_holder WHERE book_id = '.$rs['id'];
-		$result3 = $db->query($sql, __FILE__, __LINE__, 'Besitzer auflisten');
+		$sql = 'SELECT * from books_holder WHERE book_id=?';
+		$result3 = $db->query($sql, __FILE__, __LINE__, 'Besitzer auflisten', [$rs['id']]);
 		$alleBesitzer = '';
 		while ($rs3 = $db->fetch($result3))
 		{
@@ -383,13 +391,15 @@ function get_title($kat_id)
 		$htmlOutput .= nl2br(htmlentities($rs['text']));
 
 		/** Ists ein angemeldeter User? */
-		if (true === $user->is_loggedin())
+		if ($user->is_loggedin())
 		{
+			$htmlOutput .= '<h3>Rezensionen</h3>'; // CommentingSystem Title
+
 			$sidebarHtml = '<h3>Boook Actions</h3>';
 
 			/** Wer das Buch besitzt kanns loeschen, wer nicht kanns hinzufuegen */
-			$sql = 'SELECT user_id FROM books_holder WHERE book_id = '.$rs['id'].' AND user_id = '.$user->id;
-			if ($db->num($db->query($sql, __FILE__, __LINE__, 'Buchbesitzer')) == 1)
+			$sql = 'SELECT user_id FROM books_holder WHERE book_id=? AND user_id=?';
+			if ($db->num($db->query($sql, __FILE__, __LINE__, 'Buchbesitzer', [$rs['id'], $user->id])) == 1)
 			{
 				$sidebarHtml .= '<a href="?do=edit&book_id='.$rs['id'].'">[edit]</a><br>'
 								.'<a href="?do=delete_owner&book_id='.$rs['id'].'">[delete book from my list]</a><br>';
@@ -411,6 +421,10 @@ function get_title($kat_id)
 		$smarty->assign('sidebarHtml', $sidebarHtml);
 		$smarty->display('file:layout/head.tpl');
 		echo $htmlOutput;
+
+		// Book Commenting ------------------------------------------
+		Forum::printCommentingSystem('k', $rs['id']);
+		// End Commenting -------------------------------------------
 	}
 
 	/** Invalid Book ID / Book not found */
@@ -424,14 +438,14 @@ function get_title($kat_id)
 	}
 }
 /** Buch bearbeiten */
-elseif ($action === 'edit' && true === $user->is_loggedin())
+elseif ($doAction === 'edit' && $user->is_loggedin())
 {
 	$model->showEdit($smarty, $book_id);
 	$smarty->display('file:layout/head.tpl');
 
 	/** besitzt der user das buch? */
-	$sql = 'SELECT count(*) as anzahl FROM books_holder WHERE book_id = '.$book_id.' AND user_id = '.$user->id;
-	$result = $db->query($sql, __FILE__, __LINE__);
+	$sql = 'SELECT COUNT(*) AS anzahl FROM books_holder WHERE book_id=? AND user_id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'SELECT COUNT(*)', [$book_id, $user->id]);
 	$rs = $db->fetch($result);
 
 	if ($rs['anzahl'] != 1)
@@ -441,8 +455,8 @@ function get_title($kat_id)
 		//exit;
 
 	} else {
-		$sql = 'SELECT * from books WHERE id = '.$book_id;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM books WHERE id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM books', [$book_id]);
 		$rs = $db->fetch($result);
 
 		echo "<form action='$_SERVER[PHP_SELF]' method='post' enctype='multipart/form-data'>"
@@ -497,7 +511,7 @@ function get_title($kat_id)
 
 		/** Themen und Unterthemen in Listbox sortieren */
 		$sql = 'SELECT * FROM books_title WHERE parent_id = 0';
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM books_title');
 
 		while ($rs2 = $db->fetch($result))
 		{
@@ -508,8 +522,8 @@ function get_title($kat_id)
 				echo '<option value="'.$rs2['id'].'">'.$rs2['typ'].'</option>';
 			}
 
-			$sql = 'SELECT * FROM books_title WHERE parent_id = '.$rs2['id'];
-			$result2 = $db->query($sql, __FILE__, __LINE__);
+			$sql = 'SELECT * FROM books_title WHERE parent_id=?';
+			$result2 = $db->query($sql, __FILE__, __LINE__, 'SELECT books_title with parent_id', [$rs2['id']]);
 
 			while ($rs3 = $db->fetch($result2))
 			{
@@ -532,10 +546,10 @@ function get_title($kat_id)
 			."<input type='submit' class='button' name='send' value='speichern'>"
 			."</form>";
 	}
-
 }
+
 /** Buch hinzufuegen */
-elseif ($action === 'add' && true === $user->is_loggedin())
+elseif ($doAction === 'add' && $user->is_loggedin())
 {
 	$model->showAddnew($smarty);
 	$smarty->display('file:layout/head.tpl');
@@ -591,14 +605,14 @@ function get_title($kat_id)
 
 	/** Kategorien in Listbox sortieren */
 	$sql = 'SELECT * FROM books_title WHERE parent_id = 0';
-	$result = $db->query($sql, __FILE__, __LINE__);
+	$result = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM books_title');
 
 	while($rs2 = $db->fetch($result))
 	{
 		echo '<option value="'.$rs2['id'].'">'.$rs2['typ'].'</option>';
 
-		$sql = 'SELECT * FROM books_title WHERE parent_id = '.$rs2['id'];
-		$result2 = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM books_title WHERE parent_id=?';
+		$result2 = $db->query($sql, __FILE__, __LINE__, 'SELECT book_title WHERE parent_id', [$rs2['id']]);
 
 		while ($rs3 = $db->fetch($result2))
 		{
@@ -616,7 +630,7 @@ function get_title($kat_id)
 		."<input type='submit' class='button' name='send' value='speichern'>"
 		."</form>";
 
-} elseif ($action === 'admin' && $user->typ == USER_MEMBER) {
+} elseif ($doAction === 'admin' && $user->typ === USER_MEMBER) {
 /*
 	$sql = 'SELECT * FROM books_title WHERE parent_id = 0 ORDER BY typ ASC';
 		$result = $db->query($sql);
@@ -636,10 +650,10 @@ function get_title($kat_id)
 
 }
 /** Buch wirklich löschen? */
-elseif ($action === 'delete' && true === $user->is_loggedin())
+elseif ($doAction === 'delete' && $user->is_loggedin())
 {
-	$sql = 'SELECT * FROM books where id = '.$book_id;
-	$result = $db->query($sql, __FILE__, __LINE__);
+	$sql = 'SELECT * FROM books where id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM books', [$book_id]);
 	$rs = $db->fetch($result);
 
 	$model->showDelete($smarty, $book_id, $rs['title']);
@@ -658,7 +672,7 @@ function get_title($kat_id)
 
 }
 /** Bücherliste von bestimmten User ausgeben */
-elseif ($action === 'my' && isset($user_id))
+elseif ($doAction === 'my' && $user_id>0)
 {
 	//$smarty->display('file:layout/head.tpl');
 	//if ($smarty->get_template_vars('error') != null) $smarty->display('file:layout/elements/block_error.tpl');
@@ -666,12 +680,9 @@ function get_title($kat_id)
 
 	$htmlOutput .= '<h2>Boooks von '.$user->id2user($user_id).'</h2>';
 
-	$sql = 'SELECT DISTINCT titel_id
-			FROM books, books_holder
-			WHERE
-			books.id = books_holder.book_id AND
-			books_holder.user_id = '.$user_id;
-	$result = $db->query($sql, __FILE__, __LINE__);
+	$sql = 'SELECT DISTINCT titel_id FROM books, books_holder
+			WHERE books.id=books_holder.book_id AND books_holder.user_id=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'SELECT DISTING books', [$user_id]);
 	while($rs = $db->fetch($result))
 	{
 		$htmlOutput .= '<h4>'.get_title($rs['titel_id']).'</h4>';
@@ -687,14 +698,9 @@ function get_title($kat_id)
 		while($rs2 = $db->fetch($result2))
 		{
 			$htmlOutput .= "<li>".get_title($rs2['parent_id'])."</li><ul>";
-			$sql = 'SELECT *
-					FROM books, books_holder
-					WHERE
-					books.titel_id = '.$rs['titel_id'].' AND
-					books.parent_id = '.$rs2['parent_id'].' AND
-					books.id = books_holder.book_id AND
-					books_holder.user_id = '.$user_id;
-			$result3 = $db->query($sql, __FILE__, __LINE__);
+			$sql = 'SELECT * FROM books, books_holder
+					WHERE books.titel_id=? AND books.parent_id=? AND books.id = books_holder.book_id AND books_holder.user_id=?';
+			$result3 = $db->query($sql, __FILE__, __LINE__, 'SELECT books_holder', [$rs['titel_id'], $rs2['parent_id'], $user_id]);
 			while($rs3 = $db->fetch($result3))
 			{
 				$htmlOutput .= '<li><a href="?do=show&book_id='.$rs3['book_id'].'">'.$rs3['title'].'</a></li>';
@@ -702,14 +708,9 @@ function get_title($kat_id)
 			$htmlOutput .= '</ul>';
 		}
 
-		$sql = 'SELECT *
-				FROM books, books_holder
-				WHERE
-				books.titel_id = '.$rs['titel_id'].' AND
-				books.parent_id = 0 AND
-				books.id = books_holder.book_id AND
-				books_holder.user_id = '.$user_id;
-		$result4 = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM books, books_holder
+				WHERE books.titel_id=? AND books.parent_id=0 AND books.id=books_holder.book_id AND books_holder.user_id=?';
+		$result4 = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM books_holder', [$rs['titel_id'], $user_id]);
 		while($rs4 = $db->fetch($result4)) {
 			$htmlOutput .= '<li><a href="?do=show&book_id='.$rs4['book_id'].'">'.$rs4['title'].'</a></li>';
 		}
diff --git a/www/forum.php b/www/forum.php
index 119189e..1a6bf45 100644
--- a/www/forum.php
+++ b/www/forum.php
@@ -18,7 +18,8 @@
  * @include main.inc.php required
  * @include core.model.php required
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/config.inc.php';
+require_once INCLUDES_DIR.'main.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
 /**
@@ -29,13 +30,13 @@
 /**
  * Validate passed Parameters
  */
-$doAction = (isset($_GET['layout']) ? filter_var(trim($_GET['layout']), FILTER_SANITIZE_FULL_SPECIAL_CHARS, ['flags' => FILTER_UNSAFE_RAW | FILTER_NULL_ON_FAILURE]) : null);
-$searchKeyword = (isset($_GET['keyword']) ? filter_var(trim($_GET['keyword']), FILTER_SANITIZE_FULL_SPECIAL_CHARS, ['flags' => FILTER_UNSAFE_RAW | FILTER_NULL_ON_FAILURE]) : null);
-$commentId = (isset($_GET['id']) ? filter_var(trim($_GET['id']), FILTER_VALIDATE_INT, ['flags' => FILTER_SANITIZE_NUMBER_INT | FILTER_NULL_ON_FAILURE]) : null);
-$threadId = (isset($_GET['thread_id']) ? filter_var(trim($_GET['thread_id']), FILTER_VALIDATE_INT, ['flags' => FILTER_SANITIZE_NUMBER_INT | FILTER_NULL_ON_FAILURE]) : null);
-$commentParentId = (isset($_GET['parent_id']) ? filter_var(trim($_GET['parent_id']), FILTER_VALIDATE_INT, ['flags' => FILTER_SANITIZE_NUMBER_INT | FILTER_NULL_ON_FAILURE]) : null);
-$sortBy = (isset($_GET['sortby']) ? filter_var(trim($_GET['sortby']), FILTER_SANITIZE_FULL_SPECIAL_CHARS, ['flags' => FILTER_UNSAFE_RAW | FILTER_NULL_ON_FAILURE]) : null);
-$errorMessage = (isset($_GET['error']) ? filter_var(trim($_GET['error']), FILTER_SANITIZE_FULL_SPECIAL_CHARS, ['flags' => FILTER_UNSAFE_RAW | FILTER_NULL_ON_FAILURE]) : null);
+$doAction = filter_input(INPUT_GET, 'layout', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null;
+$searchKeyword = filter_input(INPUT_GET, 'keyword', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+$commentId = filter_input(INPUT_GET, 'id', FILTER_VALIDATE_INT) ?? null;
+$threadId = (isset($getThreadId) ? $getThreadId : (filter_input(INPUT_GET, 'thread_id', FILTER_VALIDATE_INT) ?? null));
+$commentParentId = filter_input(INPUT_GET, 'parent_id', FILTER_VALIDATE_INT) ?? null;
+$sortBy = filter_input(INPUT_GET, 'sortby', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null;
+$errorMessage = filter_input(INPUT_GET, 'error', FILTER_SANITIZE_FULL_SPECIAL_CHARS, ['flags' => FILTER_FLAG_NO_ENCODE_QUOTES]) ?? null;
 
 /**
  * Forum-Übersicht/-Threads ausgeben
@@ -48,7 +49,7 @@
 	/**
 	 * Forumübersicht ausgeben
 	 */
-	if ($showCommentId <= 1)
+	if (empty($showCommentId))
 	{
 		$parent_id = 1;
 
@@ -82,8 +83,8 @@
 		$outputContent = '';
 		$no_form = false; // Commentform is: true=hidden / false=shown
 		$rsparent = Comment::getRecordset($showCommentId);
-		$parent_id = (int)$rsparent['parent_id'];
-		$thread = $db->fetch($db->query('SELECT * FROM comments WHERE id='.$showCommentId, __FILE__, __LINE__, 'SELECT * FROM comments'));
+		$parent_id = intval($rsparent['parent_id']);
+		$thread = $db->fetch($db->query('SELECT * FROM comments WHERE id=?', __FILE__, __LINE__, 'SELECT * FROM comments', [$showCommentId]));
 
 		/** Forum / Commenting Error anzeigen */
 		if (!empty($errorMessage))
@@ -112,21 +113,18 @@
 			{
 				/** Subscribed_Comments Array bauen */
 				$comments_subscribed = []; // Könnte leer bleiben wenn 0=Subscribed...
-				$sql = 'SELECT comment_id
-						FROM comments_subscriptions
-						WHERE board="'.$thread['board'].'" AND user_id='.$user->id;
-				$e = $db->query($sql, __FILE__, __LINE__, 'SELECT comment_id');
+				$sql_subs = 'SELECT comment_id FROM comments_subscriptions WHERE board=? AND user_id=?';
+				$e = $db->query($sql_subs, __FILE__, __LINE__, 'SELECT comment_id', [$thread['board'], $user->id]);
 				while ($d = $db->fetch($e)) $comments_subscribed[] = $d['comment_id'];
 				$smarty->assign('comments_subscribed', $comments_subscribed);
 
 				/** Unread Posts bauen */
 				$comments_unread = []; // Könnte leer bleiben wenn 0=Unreads...
-				$e = $db->query('SELECT u.comment_id
-								 FROM comments c, comments_unread u
-								 WHERE c.id=u.comment_id AND c.thread_id='.$thread['thread_id'].' AND u.user_id ='.$user->id,
-								__FILE__, __LINE__, 'SELECT u.comment_id'
-							);
-				while ($d = $db->fetch($e)) $comments_unread[] = $d['comment_id'];
+				$sql_unreads = 'SELECT u.comment_id FROM comments c, comments_unread u WHERE c.id=u.comment_id AND c.thread_id=? AND u.user_id=?';
+				$e = $db->query($sql_unreads, __FILE__, __LINE__, 'SELECT u.comment_id', [$thread['thread_id'], $user->id]);
+				while ($d = $db->fetch($e)) {
+					$comments_unread[] = $d['comment_id'];
+				}
 				$smarty->assign('comments_unread', $comments_unread);
 			}
 
diff --git a/www/frets_upload.php b/www/frets_upload.php
index 529faa2..eaf07e5 100644
--- a/www/frets_upload.php
+++ b/www/frets_upload.php
@@ -12,9 +12,9 @@
 require_once dirname(__FILE__).'/includes/config.inc.php';
 
 /** fetch GET Data */
-$scores_frets = isset($_GET['scores']) ? htmlspecialchars((preg_match('/^[a-fA-F0-9]+$/', $_GET['scores']) ? $_GET['scores'] : ''), ENT_QUOTES, 'UTF-8') : '';
-$songName = isset($_GET['songName']) ? htmlspecialchars($_GET['songName'], ENT_QUOTES, 'UTF-8') : '';
-$songHash = isset($_GET['songHash']) ? htmlspecialchars($_GET['songHash'], ENT_QUOTES, 'UTF-8') : '';
+$scores_frets = filter_input(INPUT_GET, 'scores', FILTER_VALIDATE_REGEXP, ['options'=>['regexp'=>"/^[a-fA-F0-9]+$/"]]) ?? '';
+$songName = filter_input(INPUT_GET, 'songName', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null;
+$songHash = filter_input(INPUT_GET, 'songHash', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null;
 
 /** test data */
 //$scores_frets = "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";
@@ -31,14 +31,14 @@
 	elseif (!empty($songName)) {
 
 		// einzelne score einträge trennen
-		$scores = split("eof", $output);
+		$scores = explode("eof", $output);
 
 		// überflüssigen score eintrag entfernen
 		unset($scores[count($scores)-1]);
 
-		foreach($scores as $a) {
-
-			list ($score, $stars, $name, $hash, $difficulty) = split(' ', $a);
+		foreach($scores as $a)
+		{
+			list($score, $stars, $name, $hash, $difficulty) = explode(' ', $a);
 			$hash2 = sha1(str_replace("\n","",$difficulty.$score.$stars.$name));
 
 			//echo "Punkte: $score; Sterne: $stars; Nick: $name; Hash: $hash; Hash2: $hash2; Schwierig: $difficulty $hashword<br />\n";
@@ -77,45 +77,47 @@ function insert_score($name, $score, $stars, $difficulty, $song)
 	*/
 
 	// anzahl highscores in diesem song und stufe
-	$sql = "SELECT COUNT(id) AS quantity FROM fretsonzorg WHERE song = '$song' AND difficulty = '$difficulty'";
-	$result = $db->query($sql, __FILE__, __LINE__);
-	$rsq = $db->fetch($result, __FILE__, __LINE__);
+	$sql = 'SELECT COUNT(id) AS quantity FROM fretsonzorg WHERE song=? AND difficulty=?';
+	$result = $db->query($sql, __FILE__, __LINE__, 'Anzahl Highscores des Songs', [$song, $difficulty]);
+	$rsq = $db->fetch($result);
 
 	// sind schon 15 highscores eingetragen?
 	// if ($rsq[quantity]) >= 15) {
 
 	//$sql = "SELECT COUNT(id) AS number, MIN(score) AS minmum_score, song, difficulty FROM fretsonzorg WHERE song = '$song' AND difficulty = '$difficulty' GROUP by song, difficulty"
-	$sql = "SELECT id, MIN(score) FROM fretsonzorg WHERE song = '$song' AND difficulty = '$difficulty' GROUP by id ORDER by score ASC";
-	$result = $db->query($sql, __FILE__, __LINE__);
-	$rs = $db->fetch($result, __FILE__, __LINE__);
+	$sql = 'SELECT id, MIN(score) FROM fretsonzorg WHERE song=? AND difficulty=? GROUP by id ORDER by score ASC';
+	$result = $db->query($sql, __FILE__, __LINE__, 'SELECT MIN(score)', [$song, $difficulty]);
+	$rs = $db->fetch($result);
 
 	// ist highscore würdig
-	if ($rs[score] < $score) {
-
+	if ($rs['score'] < $score)
+	{
 		// hat der user schon eine highscore?
-		$sql = "SELECT id, score FROM fretsonzorg WHERE song = '$song' AND difficulty = '$difficulty' AND name = '$name'";
-		$result = $db->query($sql, __FILE__, __LINE__);
-		$rs2 = $db->fetch($result, __FILE__, __LINE__);
+		$sql = 'SELECT id, score FROM fretsonzorg WHERE song=? AND difficulty=? AND name=?';
+		$result = $db->query($sql, __FILE__, __LINE__, 'User schon eine highscore', [$song, $difficulty, $name]);
+		$rs2 = $db->fetch($result);
 
 
 		// user hat noch keine score zu diesem level
 		if (!$rs2){
 			// schlechtester eintrag wird updatet
-		if ($rsq[quantity] >= 10) {
-				 $sql = "UPDATE fretsonzorg SET name = '$name', score = '$score', stars = '$stars' WHERE id = '$rs[id]'";
-				 $result = $db->query($sql, __FILE__, __LINE__);
-				 echo "2. new score $score set from $name in song $song with difficulty $difficulty on zooomclan.org<br>";
-		// neue score einfügen
-		} else {
-			$sql = "INSERT INTO fretsonzorg (name, score, stars, difficulty, song) VALUES('$name', '$score', '$stars', '$difficulty', '$song')";
-				$result = $db->query($sql, __FILE__, __LINE__);
+			if ($rsq['quantity'] >= 10) {
+				$sql = 'UPDATE fretsonzorg SET name=?, score=?, stars=? WHERE id=?';
+				$result = $db->query($sql, __FILE__, __LINE__, 'UPDATE fretsonzorg', [$name, $score, $stars, $rs['id']]);
+				echo "2. new score $score set from $name in song $song with difficulty $difficulty on zooomclan.org<br>";
+			}
+			// neue score einfügen
+			else {
+				$sql = 'INSERT INTO fretsonzorg (name, score, stars, difficulty, song) VALUES(?, ?, ?, ?, ?)';
+				$result = $db->query($sql, __FILE__, __LINE__, 'INSERT INTO fretsonzorg', [$name, $score, $stars, $difficulty, $song]);
 				echo "3. new score $score set from $name in song $song with difficulty $difficulty on zooomclan.org<br>";
-		}
+			}
 
+		}
 		// vorhandene score ist kleiner, update
-		} elseif ($rs2[score]<$score) {
-			 $sql = "UPDATE fretsonzorg SET name = '$name', score = '$score', stars = '$stars' WHERE id = '$rs2[id]'";
-				$result = $db->query($sql, __FILE__, __LINE__);
+		elseif ($rs2['score']<$score) {
+			$sql = 'UPDATE fretsonzorg SET name=?, score=?, stars=? WHERE id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, 'UPDATE fretsonzorg', [$name, $score, $stars, $rs2['id']]);
 			echo "1. new score $score set from $name in song $song with difficulty $difficulty on zooomclan.org<br>";
 		}
 	}
diff --git a/www/includes/anficker.inc.php b/www/includes/anficker.inc.php
index 1a32aec..e1a4b53 100644
--- a/www/includes/anficker.inc.php
+++ b/www/includes/anficker.inc.php
@@ -7,12 +7,13 @@
  * @author ?
  * @package zorg\Games\Anficker
  */
+
 /**
  * File Includes
  * @include mysql.inc.php
  * @include usersystem.inc.php
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
@@ -56,37 +57,26 @@ class Anficker
 	 */
 	static function addAnfick($user_id, $text, $spresim_trainieren=FALSE) {
 		global $db, $user;
-		
+
 		// nur Anfick speichern, wenn Spresim trainiert werden soll:
 		//if ($spresim_trainieren == TRUE)
 		//{
 			if($text != '' && !empty($user_id))//$user->id2user($user_id)))
 			{
-				$sql = 
-					"INSERT IGNORE
-						INTO anficker_anficks (
-							text,
-							user_id,
-							datum)
-						VALUES (
-							'".$text."',
-							$user_id,
-							now()
-							)
-					";
-				$insert_id = $db->query($sql, __FILE__, __LINE__);
+				$sql = 'INSERT IGNORE INTO anficker_anficks ( text, user_id, datum) VALUES (?, ?, ?)';
+				$insert_id = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$text, $user_id, timestamp(true)]);
 			}
 			//else
 			//{
-				
-				
+
+
 				// Hier sollte was kommen, WENN SPRESIM NICHT TRAINIERT WERDEN SOLL... leider zur Zeit nicht realisierbar, IneX 8.6.09
 				// IDEE: Eine möglich Lösung wäre, ein zusätzliches Flag in der Tabelle "battle_only" oder so... (IneX, 8.6.09)
-				
-				
+
+
 			//}
 		//}
-		
+
 		// DEBUGGING
 		//error_log('[DEBUG] ' . __FILE__ . ':' . __LINE__ . ' mysql_insert_id() = ' . mysql_insert_id());
 		//error_log('[DEBUG] ' . __FILE__ . ':' . __LINE__ . ' Anficker::getId($text) = `' . $text . '`');
@@ -99,7 +89,7 @@ static function addAnfick($user_id, $text, $spresim_trainieren=FALSE) {
 
 	/**
 	 * Anfick im Anfick-Log ergänzen
-	 * 
+	 *
 	 * @author ?
 	 * @author IneX
 	 * @version 2.0
@@ -113,53 +103,30 @@ static function addAnfick($user_id, $text, $spresim_trainieren=FALSE) {
 	 */
 	static function logAnfick($anfick_id, $user_id, $anficker_id) {
 		global $db;
-		$sql = 
-			"
-			INSERT INTO 
-				anficker_log (datum, user_id, anficker_id, anfick_id)
-			VALUES(
-				now(),
-				$user_id,
-				$anficker_id,
-				$anfick_id
-			)";
+		$sql = 'INSERT INTO anficker_log (datum, user_id, anficker_id, anfick_id) VALUES (?, ?, ?, ?)';
 		//return $db->query($sql, __FILE__, __LINE__);
-		$db->query($sql, __FILE__, __LINE__);
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $user_id, $anficker_id, $anfick_id]);
 	}
-	
-	
+
+
 	static function deleteLog($user_id) {
 		global $db;
-		$sql = 
-			"
-			DELETE FROM 
-				anficker_log 
-			WHERE user_id = '".$user_id."'
-			"
-		;
-		return $db->query($sql, __FILE__, __LINE__);
+		$sql = 'DELETE FROM anficker_log WHERE user_id=?';
+		return $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 	}
-	
-	
+
+
 	static function getId($text) {
 		global $db;
-		$sql = 
-			"
-			SELECT 
-				id
-			FROM
-				anficker_anficks
-			WHERE text = '".$text."'
-			"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT id FROM anficker_anficks WHERE text=?';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$text]));
 		return $rs['id'];
 	}
-	
-	
+
+
 	/**
 	 * Anfick-Log ausgeben
-	 * 
+	 *
 	 * @author ?
 	 * @author IneX
 	 * @version 2.0
@@ -172,36 +139,22 @@ static function getId($text) {
 	 */
 	static function getLog($user_id) {
 		global $db;
-		
+
 		//Anficker::addRandomAnfick2Log($user_id, ANFICKER_USER_ID);
 		Anficker::logAnfick(Anficker::anfickenMit(), $user_id, ANFICKER_USER_ID);
-		
-		$sql = 
-			"
-			SELECT 
-				anficker_anficks.note
-				, anficker_anficks.id
-				, anficker_log.datum
-				, anficker_anficks.text
-				, anficker_log.anficker_id
-			FROM
-				anficker_log
-			LEFT JOIN anficker_anficks ON (anficker_anficks.id = anficker_log.anfick_id)
-			WHERE anficker_log.user_id = '".$user_id."'
-			ORDER BY anficker_log.id ASC
-			"
-		;
-		
-		$result = $db->query($sql, __FILE__, __LINE__);
-		
+
+		$sql = 'SELECT anficker_anficks.note, anficker_anficks.id, anficker_log.datum, anficker_anficks.text, anficker_log.anficker_id FROM anficker_log
+				LEFT JOIN anficker_anficks ON (anficker_anficks.id = anficker_log.anfick_id) WHERE anficker_log.user_id=? ORDER BY anficker_log.id ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
+
 		while($rs = $db->fetch($result)) {
 			$dialog[] = $rs;
 		}
-		
+
 		return $dialog;
 	}
-	
-	
+
+
 	/**
 	 * Anzahl existierender Anficks holen
 	 *
@@ -216,8 +169,10 @@ static function getLog($user_id) {
 	static function getNumAnficks($user_id=null)
 	{
 		global $db;
-		$sql =  'SELECT COUNT(*) AS num, AVG(note) AS note, SUM(votes) AS votes FROM anficker_anficks'.(!empty($user_id) ? ' WHERE user_id='.$user_id : '');
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__));
+		$params = [];
+		$sql =  'SELECT COUNT(*) AS num, AVG(note) AS note, SUM(votes) AS votes FROM anficker_anficks'.(!empty($user_id) ? ' WHERE user_id=?' : '');
+		if (!empty($user_id)) $params[] = $user_id;
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$params]));
 		return $rs;
 	}
 
@@ -238,25 +193,17 @@ static function getNumAnficks($user_id=null)
 	 */
 	static function addRandomAnfick2Log($user_id) {
 		/*global $db;
-		$sql = 
-			"
-			SELECT 
-				* 
-			FROM
-				anficker_anficks
-			ORDER BY note ASC
-			"
-		;
+		$sql = "SELECT * FROM anficker_anficks ORDER BY note ASC";
 		$result = $db->query($sql, __FILE__, __LINE__);
-		
-		// zufällige id holen	
+
+		// zufällige id holen
 		$rs = Anficker::getNumAnficks();
 		$id = rand(0, $rs['num']-1); // Zufalls #
 		$id = rand($id, $rs['num']-1); // die besten bevorzugen.
 		mysql_data_seek($result, $id);
-		
+
 		$rs = $db->fetch($result);*/
-		
+
 		//return Anficker::logAnfick($rs['id'], $user_id, ANFICKER_USER_ID);
 		Anficker::logAnfick(Anficker::anfickenMit(), $user_id, ANFICKER_USER_ID);
 	}
@@ -295,7 +242,7 @@ static function anfickenMit()
 
 	/**
 	 * Anfick-Spruch benoten
-	 * 
+	 *
 	 * @author ?
 	 * @author IneX
 	 * @version 1.1
@@ -307,18 +254,10 @@ static function anfickenMit()
 	 */
 	static function vote($anfick_id, $note) {
 		global $db;
-		$sql = 
-			"
-			UPDATE 
-				anficker_anficks
-			SET 
-				note = ((".$note." + note*votes)/(votes+1))
-				, votes = (votes + 1)
-			WHERE id = ".$anfick_id."
-			"
+		$sql = 'UPDATE anficker_anficks SET note=((?+note*votes)/(votes+1)), votes=(votes+1) WHERE id=?'
 		;
 		//return $db->query($sql, __FILE__, __LINE__);
-		$db->query($sql, __FILE__, __LINE__);
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$note, $anfick_id]);
 	}
-	
+
 }
diff --git a/www/includes/chess.inc.php b/www/includes/chess.inc.php
index 7f167fe..2cf8672 100644
--- a/www/includes/chess.inc.php
+++ b/www/includes/chess.inc.php
@@ -1,36 +1,40 @@
 <?php
 /**
  * Chess game class
- * @package zorg\Games\Chess
  *
  * @TODO x open chess games im header anzeigen
  * @TODO Game-Schluss-Meldungen wie "x hat gewonnen", "x hat aufgegeben", remis, patt, matt, usw.
+ *
+ * @package zorg\Games\Chess
  */
 
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/usersystem.inc.php';
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'/usersystem.inc.php';
 
 /** Constants */
 define('CHESS_DWZ_BASE_POINTS', 1600);
 define('CHESS_DWZ_MAX_POINTS_TRANSFERABLE', 32);
 
-class Chess {
+/**
+ * @version 0.1
+ * @since 0.1 `[z]biko` Class added
+ */
+class Chess
+{
 	function new_game ($white, $black=0) {
 		global $db, $user;
 
 		if (!$black) $black = $user->id;
 
-		$e = $db->query("SELECT * FROM user WHERE id='$white'", __FILE__, __LINE__);
+		$e = $db->query('SELECT * FROM user WHERE id=?', __FILE__, __LINE__, __METHOD__, [$white]);
 		$d = $db->fetch($e);
 		if ($d['chess'] && $user->id) {
-			$db->query("UPDATE user SET chess='1' WHERE id='$user->id'", __FILE__, __LINE__);
-			return $db->query(
-				"INSERT INTO chess_games (start_date, white, black, next_turn)
-				VALUES (NOW(), $white, $black, $white)",
-				__FILE__, __LINE__
-			);
+			$db->query('UPDATE user SET chess="1" WHERE id=?', __FILE__, __LINE__, __METHOD__, [$user->id]);
+			return $db->query('INSERT INTO chess_games (start_date, white, black, next_turn) VALUES (?, ?, ?, ?)',
+								__FILE__, __LINE__, __METHOD__, [timestamp(true), $white, $black, $white]);
 		}else{
 			return 0;
 		}
@@ -47,11 +51,11 @@ function do_move ($game, $player, $from, $to) {
 		// standard move
 		else $move = "$from-$to";
 
-		$e = $db->query("SELECT * FROM chess_games WHERE id='$game'", __FILE__, __LINE__);
+		$e = $db->query('SELECT * FROM chess_games WHERE id=?', __FILE__, __LINE__, __METHOD__, [$game]);
 		$g = $db->fetch($e);
 
 		// move
-		$e = $db->query("SELECT * FROM chess_history WHERE game=$game ORDER BY nr DESC LIMIT 0, 1", __FILE__, __LINE__);
+		$e = $db->query('SELECT * FROM chess_history WHERE game=? ORDER BY nr DESC LIMIT 1', __FILE__, __LINE__, __METHOD__, [$game]);
 		$d = $db->fetch($e);
 		$board = $this->get_board($game);
 
@@ -63,23 +67,24 @@ function do_move ($game, $player, $from, $to) {
 
 			// update db
 			if ($player == 'w') {
-				$nr = $db->fetch($db->query("SELECT count(*) anz FROM chess_history WHERE game=$game", __FILE__, __LINE__));
-				$db->query("INSERT INTO chess_history (game, nr, white) VALUES ($game, $nr[anz], '$move')", __FILE__, __LINE__);
+				$nr = $db->fetch($db->query('SELECT COUNT(*) anz FROM chess_history WHERE game=?', __FILE__, __LINE__, __METHOD__, [$game]));
+				$db->query('INSERT INTO chess_history (game, nr, white) VALUES (?, ?, ?)',
+							__FILE__, __LINE__, __METHOD__, [$game, $nr['anz'], $move]);
 			}else{
-				$db->query("UPDATE chess_history SET black='$move' WHERE game=$game AND nr=$d[nr]", __FILE__, __LINE__);
+				$db->query('UPDATE chess_history SET black=? WHERE game=? AND nr=?', __FILE__, __LINE__, __METHOD__, [$move, $game, $d['nr']]);
 			}
 
 			// set lastturn and nextturn
 			$other = $player=='w' ? $g['black'] : $g['white'];
-			$db->query("UPDATE chess_games SET last_turn=NOW(), next_turn=$other WHERE id=$game", __FILE__, __LINE__);
+			$db->query('UPDATE chess_games SET last_turn=?, next_turn=? WHERE id=?', __FILE__, __LINE__, __METHOD__, [timestamp(true), $other, $game]);
 
 			// set state if game finished
 			if ($move[strlen($move)-1] == '#') {
 				$winner = $player=='w' ? $g['white'] : $g['black'];
-				$db->query("UPDATE chess_games SET state='matt', winner=$winner WHERE id=$game", __FILE__, __LINE__);
+				$db->query('UPDATE chess_games SET state="matt", winner=? WHERE id=?', __FILE__, __LINE__, __METHOD__, [$winner, $game]);
 				$this->update_dwz($game);
 			}elseif ($move[strlen($move)-1] == '=') {
-				$db->query("UPDATE chess_games SET state='patt' WHERE id=$game", __FILE__, __LINE__);
+				$db->query('UPDATE chess_games SET state="patt" WHERE id=?', __FILE__, __LINE__, __METHOD__, [$game]);
 				$this->update_dwz($game);
 			}
 
@@ -92,19 +97,19 @@ function do_move ($game, $player, $from, $to) {
 	function do_offer_remis ($game) {
 		global $db;
 
-		$db->query("UPDATE chess_games SET offering_remis='1' WHERE id=$game", __FILE__, __LINE__);
+		$db->query("UPDATE chess_games SET offering_remis='1' WHERE id=?", __FILE__, __LINE__, __METHOD__, [$game]);
 	}
 
 	function do_remis ($game) {
 		global $db;
 
-		$db->query("UPDATE chess_games SET state='remis' WHERE id=$game", __FILE__, __LINE__);
-		$e = $db->query("SELECT * FROM chess_history WHERE game=$game ORDER BY nr DESC LIMIT 0,1", __FILE__, __LINE__);
+		$db->query("UPDATE chess_games SET state='remis' WHERE id=?", __FILE__, __LINE__, __METHOD__, [$game]);
+		$e = $db->query("SELECT * FROM chess_history WHERE game=? ORDER BY nr DESC LIMIT 1", __FILE__, __LINE__, __METHOD__, [$game]);
 		$d = $db->fetch($e);
 		if ($d['black']) {
-			$db->query("UPDATE chess_history SET black='".($d['black'].'=')."' WHERE game=$game AND nr=$d[nr]", __FILE__, __LINE__);
+			$db->query("UPDATE chess_history SET black=? WHERE game=? AND nr=?", __FILE__, __LINE__, __METHOD__, [$d['black'], $game, $d['nr']]);
 		}else{
-			$db->query("UPDATE chess_history SET white='".($d['white'].'=')."' WHERE game=$game AND nr=$d[nr]", __FILE__, __LINE__);
+			$db->query('UPDATE chess_history SET white=? WHERE game=? AND nr=?', __FILE__, __LINE__, __METHOD__, [$d['white'], $game, $d['nr']]);
 		}
 		$this->update_dwz($game);
 	}
@@ -115,21 +120,19 @@ function aufgabe ($game) {
 // TODO: aufgabe testen
 // TODO: aufgabe testen bei 1. zug
 
-		$e = $db->query(
-			"SELECT g.*, count(h.nr) no_turns
-			FROM chess_games g
-			LEFT JOIN chess_history h ON h.game = g.id
-			WHERE g.id='$game' AND g.next_turn='$user->id' AND g.state='running'
-			GROUP BY g.id
-			LIMIT 0, 1",
-			__FILE__, __LINE__
-		);
+		$e = $db->query("SELECT g.*, count(h.nr) no_turns
+						FROM chess_games g
+						LEFT JOIN chess_history h ON h.game = g.id
+						WHERE g.id=? AND g.next_turn=? AND g.state='running'
+						GROUP BY g.id LIMIT 1",
+						__FILE__, __LINE__, __METHOD__, [$game, $user->id]
+			);
 		$g = $db->fetch($e);
 		if ($g) {
 			if ($g['white'] == $user->id) {  // weiss gibt auf
-				$db->query("INSERT INTO chess_history (game, nr, white) VALUES ($game, $g[no_turns], 'Resigns')", __FILE__, __LINE__);
+				$db->query("INSERT INTO chess_history (game, nr, white) VALUES (?, ?, 'Resigns')", __FILE__, __LINE__, __METHOD__, [$game, $g['no_turns']]);
 			}elseif ($g['black'] == $user->id) { // schwarz gibt auf
-				$db->query("UPDATE chess_history SET white='Resigns' WHERE game='$game' AND nr=".($g['no_turns']-1), __FILE__, __LINE__);
+				$db->query("UPDATE chess_history SET white='Resigns' WHERE game=? AND nr=?", __FILE__, __LINE__, __METHOD__, [$game, $g['no_turns']-1]);
 			}
 		}else{
 			user_error("Invalid game '$game'", E_USER_ERROR);
@@ -139,7 +142,7 @@ function aufgabe ($game) {
 	function deny_remis ($game) {
 		global $db;
 
-		$db->query("UPDATE chess_games SET offering_remis='0' WHERE id='$game'", __FILE__, __LINE__);
+		$db->query("UPDATE chess_games SET offering_remis='0' WHERE id=?", __FILE__, __LINE__, __METHOD__, [$game]);
 	}
 
 	function get_board ($game) {
@@ -160,14 +163,14 @@ function get_board ($game) {
 		);
 
 
-		$e = $db->query("SELECT * FROM chess_history WHERE game=$game ORDER BY nr ASC", __FILE__, __LINE__);
+		$e = $db->query("SELECT * FROM chess_history WHERE game=? ORDER BY nr ASC", __FILE__, __LINE__, __METHOD__, [$game]);
 		while ($d = $db->fetch($e)) {
 			$board = $this->move($board, 'w', $d['white'], 1);
 			$figure = substr($this->figure($board, substr($d['white'], 3, 2)), 1, 1);
-			if ($d['white'][0] != 'o' && $figure!='P') $d['white'] = $figure.$d['white'];
+			if (isset($d['white'][0]) && $d['white'][0] != 'o' && $figure!='P') $d['white'] = $figure.$d['white'];
 			$board = $this->move($board, 'b', $d['black'], 1);
 			$figure = substr($this->figure($board, substr($d['black'], 3, 2)), 1, 1);
-			if ($d['black'][0] != 'o' && $figure!='P') $d['black'] = $figure.$d['black'];
+			if (isset($d['black'][0]) && $d['black'][0] != 'o' && $figure!='P') $d['black'] = $figure.$d['black'];
 
 			$d['nr']++;
 			$board['history'][] = $d;
@@ -192,8 +195,8 @@ function move ($board, $player, $move, $no_move_apply=0) {
 			$board['d'][$roch_p] = $player.'R';
 			$board['roch'][$player.'L'] = $board['roch'][$player.'G'] = 0;
 		}else{
-			if ($player=='w' && $move[1]==7 && $move[4]==8
-				|| $player=='b' && $move[1]==2 && $move[4]==1
+			if ($player=='w' && isset($move[1]) && $move[1]==7 && isset($move[4]) && $move[4]==8
+				|| $player=='b' && isset($move[1]) && $move[1]==2 && isset($move[4]) && $move[4]==1
 			) {
 				// Pawn to Queen
 				$board[$move[3]][$move[4]] = $player.'Q';
@@ -207,7 +210,7 @@ function move ($board, $player, $move, $no_move_apply=0) {
 				}
 
 				// standard move
-				$board[$move[3]][$move[4]] = $board[$move[0]][$move[1]];
+				if (isset($move[0]) && isset($move[1])) $board[$move[3]][$move[4]] = $board[$move[0]][$move[1]];
 
 				// verbiete künftige rochade
 				if (in_array(substr($move, 0, 2), array('e1', 'e8')))
@@ -215,7 +218,7 @@ function move ($board, $player, $move, $no_move_apply=0) {
 				if (in_array(substr($move, 0, 2), array('a1', 'a8'))) $board['roch'][$player.'G'] = 0;
 				if (in_array(substr($move, 0, 2), array('h1', 'h8'))) $board['roch'][$player.'L'] = 0;
 			}
-			$board[$move[0]][$move[1]] = '-';
+			if (isset($move[1])) $board[$move[0]][$move[1]] = '-';
 		}
 
 		// apply check or checkmate to move-string
@@ -573,7 +576,7 @@ function dec_y ($pos, $anz=1) {
 	function is_valid_position ($pos) {
 		if (strlen($pos) != 2) return false;
 		if (chr($pos[0]) < chr('a') || chr($pos[0]) > chr('h')) return false;
-		if ($pos[1] < 1 || $pos[1] > 8) return fals;
+		if ($pos[1] < 1 || $pos[1] > 8) return false;
 		return true;
 	}
 
@@ -595,7 +598,7 @@ function update_dwz ($game) {
 
 	   $prev_score_2 = $prev_score_1 = CHESS_DWZ_BASE_POINTS;
 
-	   $e = $db->query("SELECT * FROM chess_games WHERE id=$game AND state!='running'", __FILE__, __LINE__);
+	   $e = $db->query("SELECT * FROM chess_games WHERE id=? AND state!='running'", __FILE__, __LINE__, __METHOD__, [$game]);
 	   $d = $db->fetch($e);
 	   if (!$d) user_error("Invalid Chess Game-ID", E_USER_ERROR);
 
@@ -604,14 +607,14 @@ function update_dwz ($game) {
 	   else $p1 = 0.5;
 	   $p2 = 1 - $p1;
 
-	   $e = $db->query("SELECT * FROM chess_dwz WHERE user=$d[white]", __FILE__, __LINE__);
+	   $e = $db->query("SELECT * FROM chess_dwz WHERE user=?", __FILE__, __LINE__, __METHOD__, [$d['white']]);
 	   $d1 = $db->fetch($e);
 	   if ($d1) {
 	   	$dwz1 = $d1['score'];
 	   	$prev_score_1 = $dwz1;
 	   }
 	   else $dwz1 = CHESS_DWZ_BASE_POINTS;
-	   $e = $db->query("SELECT * FROM chess_dwz WHERE user=$d[black]", __FILE__, __LINE__);
+	   $e = $db->query("SELECT * FROM chess_dwz WHERE user=?", __FILE__, __LINE__, __METHOD__, [$d['black']]);
 	   $d2 = $db->fetch($e);
 	   if ($d2) {
 	   	$dwz2 = $d2['score'];
@@ -628,16 +631,16 @@ function update_dwz ($game) {
 	   $dwz1 += $dif1;
 	   $dwz2 += $dif2;
 
-	   if ($d1) $db->query("UPDATE chess_dwz SET score=$dwz1, prev_score=$prev_score_1 WHERE user=$d[white]", __FILE__, __LINE__);
-	   else $db->query("INSERT INTO chess_dwz (user, score, prev_score) VALUES ($d[white], $dwz1, $prev_score_1)", __FILE__, __LINE__);
-	   if ($d2) $db->query("UPDATE chess_dwz SET score=$dwz2, prev_score=$prev_score_2 WHERE user=$d[black]", __FILE__, __LINE__);
-	   else $db->query("INSERT INTO chess_dwz (user, score, prev_score) VALUES ($d[black], $dwz2, $prev_score_2)", __FILE__, __LINE__);
+	   if ($d1) $db->query("UPDATE chess_dwz SET score=?, prev_score=? WHERE user=?", __FILE__, __LINE__, __METHOD__, [$dwz1, $prev_score_1, $d['white']]);
+	   else $db->query("INSERT INTO chess_dwz (user, score, prev_score) VALUES (?, ?, ?)", __FILE__, __LINE__, __METHOD__, [$d['white'], $dwz1, $prev_score_1]);
+	   if ($d2) $db->query("UPDATE chess_dwz SET score=?, prev_score=? WHERE user=?", __FILE__, __LINE__, __METHOD__, [$dwz2, $prev_score_2, $d['black']]);
+	   else $db->query("INSERT INTO chess_dwz (user, score, prev_score) VALUES (?, ?, ?)", __FILE__, __LINE__, __METHOD__, [$d['black'], $dwz2, $prev_score_2]);
 
 	   // dwz_dif für game
-	   $db->query("UPDATE chess_games SET dwz_dif=".abs($dif1)." WHERE id=$game AND state!='running'", __FILE__, __LINE__);
+	   $db->query("UPDATE chess_games SET dwz_dif=? WHERE id=? AND state!='running'", __FILE__, __LINE__, __METHOD__, [abs($dif1), $game]);
 
 	   // rank update
-	   $e = $db->query("SELECT * FROM chess_dwz ORDER BY score DESC", __FILE__, __LINE__);
+	   $e = $db->query("SELECT * FROM chess_dwz ORDER BY score DESC", __FILE__, __LINE__, __METHOD__);
 	   $i = 1;
 	   $prev_score = 0;
 	   $rank = 0;
@@ -652,9 +655,9 @@ function update_dwz ($game) {
 	   		$prev_rank = "";
 	   	}
 
-	   	$db->query("UPDATE chess_dwz SET rank=$rank $prev_rank WHERE user=$upd[user]", __FILE__, __LINE__);
+	   	$db->query("UPDATE chess_dwz SET rank=?, prev_rank=? WHERE user=?", __FILE__, __LINE__, __METHOD__, [$rank, $prev_rank, $upd['user']]);
 
-	   	$prev_score = $upd[score];
+	   	$prev_score = $upd['score'];
 	   	++$i;
 	   }
 	}
@@ -662,7 +665,7 @@ function update_dwz ($game) {
 	function running_games () {
 		global $db, $user;
 
-		$e = $db->query("SELECT count(*) anz FROM chess_games WHERE next_turn='$user->id'", __FILE__, __LINE__);
+		$e = $db->query("SELECT count(*) anz FROM chess_games WHERE next_turn=?", __FILE__, __LINE__, __METHOD__, [$user->id]);
 		$d = $db->fetch($e);
 		return $d['anz'];
 	}
@@ -673,12 +676,12 @@ function my_games () {
 		if (!$user->id) return array();
 
 		$e = $db->query(
-			"SELECT IF(g.white='$user->id', b.username, w.username) player, IF(g.next_turn='$user->id', 1, 0) my_turn,
+			"SELECT IF(g.white=?, b.username, w.username) player, IF(g.next_turn=?, 1, 0) my_turn,
 			concat('/?tpl=141&game=', g.id) link
 			FROM chess_games g, user b, user w
-			WHERE (g.black='$user->id' OR g.white='$user->id') AND b.id=g.black AND w.id=g.white
+			WHERE (g.black=? OR g.white=?) AND b.id=g.black AND w.id=g.white
 			ORDER BY g.last_turn DESC",
-			__FILE__, __LINE__
+			__FILE__, __LINE__, __METHOD__, [$user->id, $user->id, $user->id, $user->id]
 		);
 		$my_games = array();
 		while ($d = $db->fetch($e)) {
@@ -699,3 +702,6 @@ function positions () {
 		return $ret;
 	}
 }
+
+/** Instantiate Class */
+$chess = new Chess();
diff --git a/www/includes/comments.res.php b/www/includes/comments.res.php
index 4886d21..9c33046 100644
--- a/www/includes/comments.res.php
+++ b/www/includes/comments.res.php
@@ -3,22 +3,22 @@
  * Comments Template-Resources Handling
  * @package zorg\Forum
  */
+
 /**
  * File includes
  * @include smarty.inc.php required
  * @include forum.inc.php required
  * @include usersystem.inc.php required
  */
-require_once INCLUDES_DIR.'/smarty.inc.php';
+require_once __DIR__.'/smarty.inc.php';
 require_once INCLUDES_DIR.'forum.inc.php';
 //require_once INCLUDES_DIR.'usersystem.inc.php'; // DUPLICATE INCLUSION (already in smarty.inc.php)
 
 /**
  * tpl resource - get timestamp
  *
- * @author [z]biko
  * @version 1.0
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  */
 function smartyresource_comments_get_timestamp($tpl_name, &$tpl_timestamp, &$smarty)
 {
@@ -33,9 +33,8 @@ function smartyresource_comments_get_timestamp($tpl_name, &$tpl_timestamp, &$sma
  * tpl resource - get secure
  * sicherheit des templates $tpl_name überprüfen
  *
- * @author [z]biko
  * @version 1.0
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  */
 function smartyresource_comments_get_secure($tpl_name, &$smarty_obj) {
   return true;
@@ -45,9 +44,8 @@ function smartyresource_comments_get_secure($tpl_name, &$smarty_obj) {
  * tpl resource - get trusted
  * nicht verwendet; funktion muss aber existieren
  *
- * @author [z]biko
  * @version 1.0
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  */
 function smartyresource_comments_get_trusted($tpl_name, &$smarty_obj) {
   // elmatrichüd!
@@ -56,13 +54,12 @@ function smartyresource_comments_get_trusted($tpl_name, &$smarty_obj) {
 /**
  * tpl resource - comments get thread
  *
- * @author [z]biko
  * @version 1.0
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  */
 function smartyresource_comments_get_thread ($id, $board) {
 	//if(!is_numeric($id)) echo '$id is not numeric!';
-	if ($board == 'f') {
+	if ($board === 'f') {
 		//if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> smartyresource_comments_get_thread(): %s', __METHOD__, __LINE__, $board));
 		return smartyresource_comments_get_commenttree($id, true);
 	} else {
@@ -82,17 +79,15 @@ function smartyresource_comments_get_thread ($id, $board) {
  * -> holt thread 123 aus dem board b
  * boards können mit dem einzelnen character (aus table) angegeben werden.
  *
- * @author [z]biko
  * @version 2.1
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  * @since 2.0 `26.10.2018` `IneX` various optimizations, structured html (schema.org)
  * @since 2.1 `22.01.2020` `IneX` Fix sizeof() to only be called when variable is an array, and therefore guarantee it's Countable (eliminating parsing warnings)
  *
  * @global object $db Globales Class-Object mit allen MySQL-Methoden um unser Template zu laden, und '$tpl_source' zuzuweisen
  */
-function smartyresource_comments_get_template ($tpl_name, &$tpl_source, &$smarty) {
-	global $db;
-
+function smartyresource_comments_get_template ($tpl_name, &$tpl_source, &$smarty)
+{
 	$tpl_source = '';
 
 	$name = explode('-', $tpl_name);
@@ -115,8 +110,6 @@ function smartyresource_comments_get_template ($tpl_name, &$tpl_source, &$smarty
 /**
  * tpl resource - comments get navigation
  *
- * @author [z]biko
- * @author IneX
  * @version 2.0
  * @since 1.0 `[z]biko` function added
  * @since 2.0 `14.01.2019` `IneX` added schema.org tags
@@ -167,14 +160,12 @@ function smartyresource_comments_get_navigation ($id, $thread_id, $board) {
 	;
 
 	return $html;
-	return $smarty->fetch('file:layout/partials/forum/comments_navigation');
+	// TODO return $smarty->fetch('file:layout/partials/forum/comments_navigation');
 }
 
 /**
  * tpl resource - comments get comment-tree
  *
- * @author [z]biko
- * @author IneX
  * @version 3.2
  * @since 1.0 `[z]biko` function added
  * @since 2.0 `26.10.2018` `IneX` function code cleanup & optimized, added structured data (schema.org) and google-off/-on, added Thread-Switch
@@ -196,25 +187,26 @@ function smartyresource_comments_get_navigation ($id, $thread_id, $board) {
 function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 	global $db, $user, $smarty;
 
+	if(!is_numeric($id) || $id <= 0)
+	{
+		echo sprintf('[ERROR] &lt;%s:%d&gt; $id is not numeric: "%s"', __FILE__, __LINE__, $id);
+		exit;
+		//$html .= '$rs[id] is not numeric! '.__FILE__.' Line: '.__LINE__;
+	}
+
 	$params = [];
-	$sql = 'SELECT
-				comments.*,
-				UNIX_TIMESTAMP(comments.date) date,
-				UNIX_TIMESTAMP(comments.date_edited) date_edited,
-				user.clan_tag, user.username,
-				count(c2.id) as numchildposts'
+	$sql = 'SELECT comments.*, UNIX_TIMESTAMP(comments.date) date, UNIX_TIMESTAMP(comments.date_edited) date_edited, user.clan_tag, user.username, count(c2.id) as numchildposts'
 				.($user->is_loggedin() ? ', IF(ISNULL(cs.comment_id), 0, 1) AS issubscribed' : '').'
-			FROM comments
-				LEFT JOIN user ON (comments.user_id = user.id)
-				LEFT JOIN comments as c2 ON (comments.id = c2.parent_id AND comments.board = c2.board)'
-			.($user->is_loggedin() ? 'LEFT JOIN comments_subscriptions cs ON (comments.id = cs.id AND comments.board = cs.board AND cs.user_id=?)' : '').'
+			FROM comments LEFT JOIN user ON (comments.user_id = user.id) LEFT JOIN comments as c2 ON (comments.id = c2.parent_id AND comments.board = c2.board)'
+				.($user->is_loggedin() ? 'LEFT JOIN comments_subscriptions cs ON (comments.id = cs.id AND comments.board = cs.board AND cs.user_id=?)' : '').'
 			WHERE comments.id=? GROUP BY comments.id';
 	if ($user->is_loggedin()) $params[] = $user->id;
 	$params[] = $id;
 	$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__, $params));
+	$rsID = intval($rs['id']);
 
 	$html = '{if $comments_top_additional == 1}';
-		$html .= smartyresource_comments_get_navigation($rs['id'], $rs['thread_id'], $rs['board']);
+		$html .= smartyresource_comments_get_navigation($rsID, $rs['thread_id'], $rs['board']);
 	$html .= '{else}';
 
 			$html .=
@@ -227,7 +219,7 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 						if($rs['numchildposts'] > 0) {
 					  		$html .=
 					  			'<td class="threading {$it}">'
-						    		.'<a class="threading switch collapse" onClick="showhide('.$rs['id'].', this)"></a>'
+						    		.'<a class="threading switch collapse" onClick="showhide('.$rsID.', this)"></a>'
 						    	.'</td>'
 					    	;
 					  	} else {
@@ -246,9 +238,9 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 
 			$html .=
 			'<td align="left" class="border forum">'
-				.'{if $user->id>0 && in_array('.$rs['id'].', $comments_unread)}'
+				.'{if $user->id>0 && in_array('.$rsID.', $comments_unread)}'
 					.'{assign var=comment_color value=$color.newcomment}'
-					.'{comment_mark_read comment_id="'.$rs['id'].'" user_id=$user->id}'
+					.'{comment_mark_read comment_id="'.$rsID.'" user_id=$user->id}'
 				.'{elseif $user->id == '.$rs['user_id'].'}'
 					.'{assign var=comment_color value=$color.owncomment}'
 				.'{else}'
@@ -259,10 +251,10 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 				.'<tr class="tiny">'
 					.'<td class="forum comment meta left" style="width: {if $user->from_mobile}85%{else}70%{/if};">'
 						.'<div style="display: none;" itemscope itemtype="http://schema.org/Organization" itemprop="publisher"><span style="display: none;" itemprop="name">{$smarty.const.SITE_HOSTNAME}</span></div>'
-						.'<a href="{comment_get_link board='.$rs['board'].' parent_id='.$rs['parent_id'].' id='.$rs['id'].' thread_id='.$rs['thread_id'].'}" name="'.$rs['id'].'"'.($is_thread ? ' itemprop="url"' : '').'>'
-						.'#'.$rs['id']
+						.'<a href="{comment_get_link board='.$rs['board'].' parent_id='.$rs['parent_id'].' id='.$rsID.' thread_id='.$rs['thread_id'].'}" name="'.$rsID.'"'.($is_thread ? ' itemprop="url"' : '').'>'
+						.'#'.$rsID
 						.'</a>'
-						.' by <span itemprop="'.($is_thread ? 'author' : 'contributor').'" itemscope itemtype="http://schema.org/Person">'.$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
+						.' by <span itemprop="'.($is_thread ? 'author' : 'contributor').'" itemscope itemtype="http://schema.org/Person">'.$user->userpagelink(intval($rs['user_id']), $rs['clan_tag'], $rs['username'])
 						.'</span> @ <meta itemprop="datePublished" content="{'.$rs['date'].'|date_format:"%Y-%m-%d"}">{datename date='.$rs['date'].'}'
 			;
 
@@ -276,29 +268,29 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 
 			/** Subscribe / Unsubscribe */
 			$html .= '{if $user->id > 0}'
-						.'{if in_array('.$rs['id'].', $comments_subscribed)}
+						.'{if in_array('.$rsID.', $comments_subscribed)}
 							<a href="/actions/commenting.php'
 							.'?do=unsubscribe'
 							.'&board='.$rs['board']
-							.'&comment_id='.$rs['id']
+							.'&comment_id='.$rsID
 							.'&url={$request.url|base64encodeurl}'
 							.'">[unsubscribe]</a>
 						{else}
-							<a href="/actions/commenting.php?do=subscribe&board='.$rs['board'].'&comment_id='.$rs['id'].'&url={$request.url|base64encodeurl}">[subscribe]</a>
+							<a href="/actions/commenting.php?do=subscribe&board='.$rs['board'].'&comment_id='.$rsID.'&url={$request.url|base64encodeurl}">[subscribe]</a>
 						{/if}
 					{/if}';
 
 			/** Edit Comment */
 			$html .= '{if $user->id == '.$rs['user_id'].'}'
-						.'<a href="/forum.php?layout=edit&parent_id='.$rs['parent_id'].'&id='.$rs['id'].'&url={$request.url|base64encodeurl}">[edit]</a> '
+						.'<a href="/forum.php?layout=edit&parent_id='.$rs['parent_id'].'&id='.$rsID.'&url={$request.url|base64encodeurl}">[edit]</a> '
 					.'{/if}';
 
 			/** Reply-to Comment */
 			$html .= '{if $user->id > 0}'
 						.'</td><td class="forum comment meta right align-right" style="width: 15%;">'
-							.'<label for="replyfor-'.$rs['id'].'" class="dont-wrap" style="margin-right: 2px;">'
-								.'<input type="radio" class="replybutton" name="parent_id" id="replyfor-'.$rs['id'].'" onClick="reply()" value="'.$rs['id'].'"'
-								.'{if $smarty.get.parent_id == '.$rs['id'].'} checked="checked"{/if}'
+							.'<label for="replyfor-'.$rsID.'" class="dont-wrap" style="margin-right: 2px;">'
+								.'<input type="radio" class="replybutton" name="parent_id" id="replyfor-'.$rsID.'" onClick="reply()" value="'.$rsID.'"'
+								.'{if $smarty.get.parent_id == '.$rsID.'} checked="checked"{/if}'
 								.'/><span class="hide-mobile">&nbsp;reply</span>'
 							.'</label>'
 					.'{/if}';
@@ -313,7 +305,7 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 			} else {
 				$html .= '<b><font color="red">{literal}'.$rs['error'].'{/literal}</font></b>';
 			}
-			$replyCount = Comment::getNumChildposts($rs['board'], $rs['id']);
+			$replyCount = Comment::getNumChildposts($rs['board'], $rsID);
 			if ($replyCount > 0) $html .= '<span itemprop="interactionStatistic" itemscope itemtype="http://schema.org/InteractionCounter">
 						<link itemprop="interactionType" href="http://schema.org/CommentAction" />
 						<span itemprop="userInteractionCount" content="'.$replyCount.'"></span>
@@ -322,14 +314,8 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 			$html .= '</td></tr></table></td></tr></table>';
 			$html .= '{/if}';
 
-		if(!is_numeric($rs['id']))
-		{
-			echo sprintf('[ERROR] <%s:%d> $rs[id] is not numeric: "%d"', __FILE__, __LINE__, $rs['id']);
-			exit;
-			//$html .= '$rs[id] is not numeric! '.__FILE__.' Line: '.__LINE__;
-		}
 		$html .= '{if !$comments_no_childposts}';
-			$html .= smartyresource_comments_get_childposts($rs['id'], $rs['board']);
+			$html .= smartyresource_comments_get_childposts($rsID, $rs['board']);
 		$html .= '{/if}';
 
 		return $html;
@@ -338,9 +324,8 @@ function smartyresource_comments_get_commenttree ($id, $is_thread=false) {
 /**
  * tpl resource - comments get child-posts
  *
- * @author [z]biko
  * @version 2.2
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  * @since 2.0 `26.10.2018` `IneX` function code cleanup & optimized
  * @since 2.1 `22.01.2020` `IneX` Fix sizeof() to only be called when variable is an array, and therefore guarantee it's Countable (eliminating parsing warnings)
  * @since 2.2 `04.12.2020` `IneX` Fix error in compiled template "Warning: count(): Parameter must be an array or an object that implements Countable"
diff --git a/www/includes/events.inc.php b/www/includes/events.inc.php
index 7956932..cd73f67 100644
--- a/www/includes/events.inc.php
+++ b/www/includes/events.inc.php
@@ -19,10 +19,8 @@
  * @include util.inc.php Includes the Helper Utilities Class and Methods
  * @include googleapis.inc.php Include the Google API Class and Methods
  */
-require_once dirname(__FILE__).'/config.inc.php';
-//require_once INCLUDES_DIR.'smarty.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
-require_once INCLUDES_DIR.'util.inc.php';
 include_once INCLUDES_DIR.'googleapis.inc.php';
 
 /**
@@ -41,15 +39,9 @@ static function getEvent($event_id)
 	{
 		global $db;
 
-		$sql = 'SELECT *
-				, UNIX_TIMESTAMP(startdate) AS startdate
-				, UNIX_TIMESTAMP(enddate) AS enddate
-				, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date
-				FROM events
-				WHERE id='.$event_id;
-
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-
+		$sql = 'SELECT *, UNIX_TIMESTAMP(startdate) AS startdate, UNIX_TIMESTAMP(enddate) AS enddate, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date
+				FROM events WHERE id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$event_id]);
 		return $db->fetch($result);
 	}
 
@@ -57,16 +49,9 @@ static function getEventNewest()
 	{
 		global $db;
 
-		$sql = 'SELECT *
-				, UNIX_TIMESTAMP(startdate) AS startdate
-				, UNIX_TIMESTAMP(enddate) AS enddate
-				, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date
-				FROM events
-				ORDER BY reportedon_date DESC
-				LIMIT 0,1';
-
+		$sql = 'SELECT *, UNIX_TIMESTAMP(startdate) AS startdate, UNIX_TIMESTAMP(enddate) AS enddate, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date
+				FROM events ORDER BY reportedon_date DESC LIMIT 1';
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-
 		return $db->fetch($result);
 	}
 
@@ -76,12 +61,9 @@ static function getEvents($year)
 
 		$events = array();
 
-		$sql = 'SELECT *, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date
-				FROM events
-				WHERE DATE_FORMAT(startdate, "%Y") = '.$year.'
-				ORDER BY startdate ASC, enddate ASC';
+		$sql = 'SELECT *, UNIX_TIMESTAMP(reportedon_date) AS reportedon_date FROM events WHERE DATE_FORMAT(startdate, "%Y")=? ORDER BY startdate ASC, enddate ASC';
 
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$year]);
 
 		while($rs = $db->fetch($result)) {
 			array_push($events, $rs);
@@ -110,21 +92,12 @@ static function getNext()
 
 		$events = array();
 		$user_id = isset($user->id) ? $user->id : 0;
-		$sql = 'SELECT
-				  e.id,
-				  e.name,
-				  e.startdate,
-				  e.enddate,
-				  COUNT(cu.comment_id) AS numunread
-				FROM events e
+		$sql = 'SELECT e.id, e.name, e.startdate, e.enddate, COUNT(cu.comment_id) AS numunread FROM events e
 					LEFT JOIN comments c ON (c.board = "e" AND c.thread_id = e.id)
-					LEFT JOIN comments_unread cu ON (cu.user_id = '.$user_id.' AND cu.comment_id = c.id)
-				WHERE
-					e.enddate >= NOW() AND (e.startdate BETWEEN (NOW() - INTERVAL 7 DAY) AND NOW())
-					OR e.startdate BETWEEN NOW() AND (NOW() + INTERVAL 5 DAY)
-				GROUP by e.id
-				ORDER BY e.startdate ASC';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+					LEFT JOIN comments_unread cu ON (cu.user_id = ? AND cu.comment_id = c.id)
+				WHERE e.enddate>=? AND (e.startdate BETWEEN (?-INTERVAL 7 DAY) AND ?) OR e.startdate BETWEEN ? AND (?+INTERVAL 5 DAY)
+				GROUP by e.id ORDER BY e.startdate ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id, timestamp(true), timestamp(true), timestamp(true), timestamp(true), timestamp(true)]);
 
 		while($rs = $db->fetch($result)) {
 			$events[] = $rs;
@@ -138,9 +111,8 @@ static function getNumNewEvents()
 
 		if(isset($user->lastlogin) && $user->lastlogin > 0)
 		{
-			$sql = 'SELECT * FROM events WHERE UNIX_TIMESTAMP(reportedon_date) > '.$user->lastlogin;
-
-			return $db->num($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			$sql = 'SELECT * FROM events WHERE UNIX_TIMESTAMP(reportedon_date)>?';
+			return $db->num($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->lastlogin]));
 		} else {
 			return 0;
 		}
@@ -151,12 +123,11 @@ static function getVisitors($event_id)
 		global $db;
 		$visitors = array();
 
-		$sql = 'SELECT * FROM events_to_user WHERE event_id = '.$event_id;
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM events_to_user WHERE event_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$event_id]);
 		while ($rs = $db->fetch($result)) {
 			array_push($visitors, $rs);
 		}
-
 		return $visitors;
 	}
 
@@ -178,8 +149,8 @@ static function hasJoined($user_id, $event_id)
 	{
 		global $db;
 
-		$sql = 'SELECT * FROM events_to_user WHERE user_id = '.$user_id.' AND event_id = '.$event_id;
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM events_to_user WHERE user_id=? AND event_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id, $event_id]);
 
 		return $db->fetch($result);
 	}
@@ -200,8 +171,8 @@ static function getEventName($event_id)
 	{
 		global $db;
 
-		$sql = 'SELECT id, name FROM events WHERE id = '.$event_id;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT id, name FROM events WHERE id=?';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$event_id]));
 
 		return (!empty($rs) && false !== $rs ? remove_html($rs['name']) : '');
 	}
@@ -222,8 +193,8 @@ static function getEventLink($event_id)
 	{
 		global $db;
 
-		$sql = 'SELECT DATE_FORMAT(startdate,"%Y/%m/%d") as date_path, id FROM events WHERE id='.$event_id;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT DATE_FORMAT(startdate,"%Y/%m/%d") as date_path, id FROM events WHERE id=?';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$event_id]));
 		if ($rs) {
 			$eventLink = sprintf('/event/%s/%d', $rs['date_path'], $rs['id']);
 			return $eventLink;
@@ -337,13 +308,10 @@ private function getUpcomingEvent($hours_until_start)
 	{
 		global $db, $googleMapsApi;
 
-		$sql = 'SELECT name, location, UNIX_TIMESTAMP(startdate) time
-				FROM events
-				WHERE startdate >= DATE_ADD(NOW(), INTERVAL '.($hours_until_start-1).' HOUR)
-					AND startdate < DATE_ADD(NOW(), INTERVAL '.($hours_until_start).' HOUR)
-				ORDER BY startdate ASC
-				LIMIT 1';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT name, location, UNIX_TIMESTAMP(startdate) time FROM events
+				WHERE startdate >= DATE_ADD(?, INTERVAL ? HOUR) AND startdate<DATE_ADD(?, INTERVAL ? HOUR)
+				ORDER BY startdate ASC LIMIT 1';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $hours_until_start-1, timestamp(true), ($hours_until_start), ]);
 		$event = $db->fetch($result);
 		if (DEVELOPMENT) error_log("[DEBUG] Event Query Result:\n\r".print_r($event,true));
 
diff --git a/www/includes/forum.inc.php b/www/includes/forum.inc.php
index 1a29215..b20eae8 100644
--- a/www/includes/forum.inc.php
+++ b/www/includes/forum.inc.php
@@ -33,10 +33,10 @@
  * @include	sunrise.inc.php Sunrise, required
  * @include	Messagesystem DEPRECATED
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'smarty.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
-require_once INCLUDES_DIR.'util.inc.php';
+//require_once INCLUDES_DIR.'util.inc.php';
 //require_once INCLUDES_DIR.'sunrise.inc.php';
 //require_once INCLUDES_DIR.'messagesystem.inc.php';
 
@@ -46,15 +46,6 @@
  */
 define('THREAD_TPL_TIMEOUT', 30);  // in tagen
 
-/**
- * Aktivitäten-Array bauen (mit Aktitivätsmeldungen die abgesetzt werden können)
- * @deprecated
-$activities_f =
-	array(
-		 1	=>	"hat einen Comment im <a href=\"forum.php\">Forum</a> geschrieben."
-	);
-*/
-
 /**
  * Comment Class
  *
@@ -149,7 +140,7 @@ static function compile_template($thread_id, $comment_id, $board='f')
 			/** $smarty->comile ERROR */
 			} else {
 				$errortext = '';
-				foreach ($error as $value) $errortext .= $value.'<br />';
+				foreach ($error as $value) $errortext .= $value.'<br>';
 				$comments_update_query = $db->update('comments', ['id', $comment_id], ['error' => $errortext], __FILE__, __LINE__, __METHOD__);
 				$smarty->compile($resource, $error);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $smarty->compile ERROR', __METHOD__, __LINE__));
@@ -195,8 +186,8 @@ static function formatPost($text)
 		}
 
 		/** Newlines zu BRs machen */
-		if(!strstr($text, '<br />')) {
-			$text = str_replace("\n", "<br />", $text); // Newline
+		if(!strstr($text, '<br>')) {
+			$text = str_replace("\n", "<br>", $text); // Newline
 		}
 
 		/* REMOVED BY [z]Duke
@@ -289,9 +280,8 @@ static function getRecordset($id) {
 			return false;
 		}
 
-		$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date
-	  			FROM comments WHERE id = '.$id;
-		return $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date FROM comments WHERE id=?';
+		return $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$id]));
 	}
 
 	/**
@@ -357,7 +347,8 @@ static function getHTMLadditional($rs, $himages)
 	static function getLinkComment ($comment_id) {
 		global $db;
 
-		$e = $db->query('SELECT * FROM comments WHERE id='.$comment_id, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM comments WHERE id=?';
+		$e = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$comment_id]);
 		$d = $db->fetch($e);
 		if ($d) return self::getLink($d['board'], $d['parent_id'], $d['id'], $d['thread_id']);
 		else return '';
@@ -375,8 +366,8 @@ static function getLinkComment ($comment_id) {
 	 */
 	static function getBoardlink($board) {
 		global $db;
-		$sql = 'SELECT * FROM comments_boards WHERE board = "'.$board.'"';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM comments_boards WHERE board=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$board]);
 		$rs = $db->fetch($result);
 		return $rs;
 	}
@@ -384,11 +375,9 @@ static function getBoardlink($board) {
 	/**
 	 * Link to a Comment
 	 *
-	 * @author [z]biko
-	 * @author IneX
 	 * @version 2.0
-	 * @since 1.0 method added
-	 * @since 2.0 `26.10.2018` added $addUrlParameters to make Link work with routes (e.g. /thread/23/?parent_id=5 vs. /gallery.php?show=pic&picID=23)
+	 * @since 1.0 `[z]biko` method added
+	 * @since 2.0 `26.10.2018` `IneX` added $addUrlParameters to make Link work with routes (e.g. /thread/23/?parent_id=5 vs. /gallery.php?show=pic&picID=23)
 	 *
 	 * @link https://github.com/zorgch/zorg-code/blob/master/www/.htaccess Routes defined for Comment links defined in .htaccess
 	 * @param string $board Board-Identifier for Comment to Link
@@ -398,7 +387,7 @@ static function getBoardlink($board) {
 	 * @return string Link-URL to Comment
 	 */
 	static function getLink($board, $parent_id, $comment_id, $thread_id) {
-		global $db, $boardlinks;
+		global $boardlinks;
 
 		if(!isset($boardlinks)) {
 			$boardlinks = array();
@@ -569,8 +558,8 @@ static function getSummary($text, $length=20) {
 	 */
 	static function isThread($board, $id) {
 		global $db;
-		$sql = "SELECT thread_id FROM comments_threads WHERE board = '".$board."' AND comment_id = ".$id;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT thread_id FROM comments_threads WHERE board=? AND comment_id=?';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $id]));
 
 		return $rs;
 	}
@@ -658,7 +647,7 @@ static function highliteKeyword($keyword,$text) {
 	  global $tborderc;
 	  //$keyword = htmlentities($keyword);
 	  $searcher = "/$keyword/i";
-	  $replace = "<b style=\"color: #".FONTC."; background: #".HIGHLITECOLOR."\">".$keyword."</b>";
+	  $replace = "<b style=\"color: #".FONTCOLOR."; background: #".HIGHLITECOLOR."\">".$keyword."</b>";
 	  return preg_replace("$searcher", $replace, $text);
 	}
 
@@ -871,8 +860,7 @@ static function update($comment_id, $comment_data_updated)
 			{
 				$notification_status = $notification->send($msg_recipient_id, 'mentions', ['from_user_id'=>$user->id, 'subject'=>$subject, 'text'=>$text, 'message'=>$text, 'to_users' => $_POST['msg_users']]);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status to user_id %d: %s', __METHOD__, __LINE__, $msg_recipient_id, ($notification_status == 'true' ? 'true' : 'false')));
-				/** @deprecated
-				Messagesystem::sendMessage(
+				/** @deprecated Messagesystem::sendMessage(
 					$user->id
 					, $_POST['msg_users'][$i]
 					, addslashes(
@@ -882,9 +870,9 @@ static function update($comment_id, $comment_data_updated)
 						)
 					, addslashes(
 							stripslashes(
-								$user->id2user($user->id).' hat geschrieben: <br /><i>'
+								$user->id2user($user->id).' hat geschrieben: <br><i>'
 								.$commentText
-								.'</i><br /><br /><a href="'.Comment::getLink($_POST['board'], $_POST['parent_id'], $_POST['id'], $_POST['thread_id'])
+								.'</i><br><br><a href="'.Comment::getLink($_POST['board'], $_POST['parent_id'], $_POST['id'], $_POST['thread_id'])
 								.'">--> zum Post</a>'
 							)
 						)
@@ -1101,8 +1089,8 @@ static function getFormEdit($comment_id) {
 
 	  $rs = Comment::getRecordset($comment_id);
 
-	  $html .= '
-	  	<br />
+	  $html = '
+	  	<br>
 	    <a name="edit"></a><h2>Comment #'.$comment_id.' bearbeiten</h2>
 	    <form name="commentform" action="/actions/comment_edit.php" method="post">
 	    <input type="hidden" name="action" value="update">
@@ -1116,7 +1104,7 @@ static function getFormEdit($comment_id) {
 	  	.htmlentities($rs['text'])
 	  	.'</textarea>'
 	    .'</td>'
-	    .'<td align="left" valign="top">Benachrichtigen:<br />'
+	    .'<td align="left" valign="top">Benachrichtigen:<br>'
 	    .$user->getFormFieldUserlist('msg_users[]', 20).'</td>'
 	  	.'</tr>
 	  	<tr><td align="left" valign="top">
@@ -1146,7 +1134,7 @@ static function getFormEdit($comment_id) {
 		}
 		$html .= '
 	    </td></tr></table>
-	    <br />
+	    <br>
 	  ';
 
 	  return $html;
@@ -1177,7 +1165,7 @@ static function getFormNewPart1of2() {
 	static function getFormNewPart2of2($board, $thread_id, $parent_id) {
 	  return
 	  	"\n"
-	  	.'<br />'
+	  	.'<br>'
 	    .$start_form
 	  	.'<a name="reply"></a>'
 	    .'<input type="hidden" name="action" value="new">'
@@ -1197,20 +1185,20 @@ static function getFormNewPart2of2($board, $thread_id, $parent_id) {
 	    .'<textarea class="text" cols="80" name="text" rows="20" tabindex="1"></textarea>'
 	    .'</td>'
 	    .'<td valign="top" width="100"><small><nobr>'
-	    .'<br />ä = <a href="javascript:addsymbol(\'&amp;auml;\');">&amp;auml;</a>'
-	    .'<br />ö = <a href="javascript:addsymbol(\'&amp;ouml;\');">&amp;ouml;</a>'
-	    .'<br />ü = <a href="javascript:addsymbol(\'&amp;uuml;\');">&amp;uuml;</a>'
-	    .'<br />& = <a href="javascript:addsymbol(\'&amp;amp;\');">&amp;amp;</a>'
-	    .'<br />&lt; = <a href="javascript:addsymbol(\'&amp;lt;\');">&amp;lt;</a>'
-	    .'<br />&gt; = <a href="javascript:addsymbol(\'&amp;gt;\');">&amp;gt;</a>'
+	    .'<br>ä = <a href="javascript:addsymbol(\'&amp;auml;\');">&amp;auml;</a>'
+	    .'<br>ö = <a href="javascript:addsymbol(\'&amp;ouml;\');">&amp;ouml;</a>'
+	    .'<br>ü = <a href="javascript:addsymbol(\'&amp;uuml;\');">&amp;uuml;</a>'
+	    .'<br>& = <a href="javascript:addsymbol(\'&amp;amp;\');">&amp;amp;</a>'
+	    .'<br>&lt; = <a href="javascript:addsymbol(\'&amp;lt;\');">&amp;lt;</a>'
+	    .'<br>&gt; = <a href="javascript:addsymbol(\'&amp;gt;\');">&amp;gt;</a>'
 	    .'</nobr></small></td>'
-	    .'<td align="left" valign="top">Benachrichtigen:<br />'
+	    .'<td align="left" valign="top">Benachrichtigen:<br>'
 	    .usersystem::getFormFieldUserlist('msg_users[]', 20).'</td>'
 	    .'</tr><tr><td align="left" colspan="2">'
 	    .'<input class="button" name="submit" tabindex="2" type="submit" value="Erstellen">'
 	    .'</td></tr></table>'
 	    .'</form>'
-	    .'<br />'
+	    .'<br>'
 	  ;
 	}
 	 */
@@ -1448,34 +1436,32 @@ static function getLatestComments($num=10, $title = '', $board = '')
 		$params[] = $limit;
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, $params);
 
-		$html .=
-			'<table class="border" width="100%"><tr><td align="center" colspan="4"><b>'
-			.($title == '' ? 'neuste Kommentare' : $title)
-			.'</b></td></tr>'
-		;
-		while($rs = $db->fetch($result)) {
-	    $i++;
-			if(defined('USER_USER') && $user->typ >= USER_USER && $rs['isunread'] == true) {
-				$color = NEWCOMMENTCOLOR;
-			} else {
-				$color = ($i % 2 == 0) ? BACKGROUNDCOLOR : TABLEBACKGROUNDCOLOR;
-			}
-
-	    $html .=
-	      '<tr class="small"><td align="left" bgcolor="'.$color.'">'
-		  	.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
-		  	.Comment::getTitle($rs['text'])
-		  	.'</a>'
-	      .'</td><td align="left" bgcolor="'.$color.'" class="small">'
-	      //.usersystem::userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username']) @deprecated
-	      .$user->userprofile_link($rs['user_id'], ['link' => TRUE, 'username' => TRUE, 'clantag' => TRUE])
-	      .'</td><td align="left" bgcolor="'.$color.'" class="small">'
-	      .datename($rs['date'])
-	      .'</td><td align="left" bgcolor="'.$color.'" class="small">'
-	      .Comment::getLinkThread($rs['board'], $rs['thread_id'])
-	      .'</td></tr>'
-	    ;
+		$i=0;
+		$html = '<table class="border" width="100%"><tr><td align="center" colspan="4"><b>'
+				.($title == '' ? 'neuste Kommentare' : $title)
+				.'</b></td></tr>';
+		while($rs = $db->fetch($result))
+		{
+			$i++;
+				if(defined('USER_USER') && $user->typ >= USER_USER && $rs['isunread'] == true) {
+					$color = NEWCOMMENTCOLOR;
+				} else {
+					$color = ($i % 2 == 0) ? BACKGROUNDCOLOR : TABLEBACKGROUNDCOLOR;
+				}
 
+			$html .=
+			'<tr class="small"><td align="left" bgcolor="'.$color.'">'
+				.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
+				.Comment::getTitle($rs['text'])
+				.'</a>'
+			.'</td><td align="left" bgcolor="'.$color.'" class="small">'
+			//.usersystem::userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username']) @deprecated
+			.$user->userprofile_link($rs['user_id'], ['link' => TRUE, 'username' => TRUE, 'clantag' => TRUE])
+			.'</td><td align="left" bgcolor="'.$color.'" class="small">'
+			.datename($rs['date'])
+			.'</td><td align="left" bgcolor="'.$color.'" class="small">'
+			.Comment::getLinkThread($rs['board'], $rs['thread_id'])
+			.'</td></tr>';
 	  }
 	  $html .= '</table>';
 
@@ -1560,42 +1546,35 @@ static function getLatestCommentsbyUser($user_id)
 
 	static function getLatestThreads($num=8) {
 		global $db, $user;
-		$sql =
-			"SELECT"
-			." comments.*"
-			.", comments_unread.user_id as isunread"
-			.", UNIX_TIMESTAMP(date) as date"
-			.", user.clan_tag"
-			.", user.username"
-			." FROM comments"
-			." LEFT JOIN user on comments.user_id = user.id"
-			." LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = comments.user_id)"
-			." WHERE parent_id = 1"
-			." ORDER BY date desc"
-			." LIMIT 0,".$num
-		;
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT comments.*, comments_unread.user_id as isunread, UNIX_TIMESTAMP(date) as date, user.clan_tag, user.username
+				FROM comments
+					LEFT JOIN user ON comments.user_id = user.id
+					LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = comments.user_id)
+				WHERE parent_id = 1 ORDER BY date DESC LIMIT ?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$num]);
+
+		$i=0;
 		$html = '<table class="border" width="100%"><tr><td align="center" colspan="3"><b>neuste Threads</b></td></tr>';
-		while($rs = $db->fetch($result)) {
-	    $i++;
+		while($rs = $db->fetch($result))
+		{
+	    	$i++;
 			if(defined('USER_USER') && $user->typ >= USER_USER && $rs['isunread'] != '') {
 				$color = NEWCOMMENTCOLOR;
 			} else {
 				$color = ($i % 2 == 0) ? BACKGROUNDCOLOR : TABLEBACKGROUNDCOLOR;
 			}
 
-	    $html .=
-	      '<tr><td align="left" bgcolor="'.$color.'" class="small" width="40%">'
-		  	.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
-		  	.Comment::getTitle($rs['text'])
-		  	.'</a>'
-	      .'</td><td align="left" bgcolor="'.$color.'" class="small" width="30%">'
-	      .$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
-	      .'</td><td align="center" bgcolor="'.$color.'" class="small" width="30%">'
-	      .datename($rs['date'])
-	      .'</td></tr>'
-	    ;
-
+			$html .=
+			'<tr><td align="left" bgcolor="'.$color.'" class="small" width="40%">'
+				.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
+				.Comment::getTitle($rs['text'])
+				.'</a>'
+			.'</td><td align="left" bgcolor="'.$color.'" class="small" width="30%">'
+			.$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
+			.'</td><td align="center" bgcolor="'.$color.'" class="small" width="30%">'
+			.datename($rs['date'])
+			.'</td></tr>'
+			;
 	  }
 	  $html .= '</table>';
 
@@ -1610,32 +1589,26 @@ static function getLatestThreads($num=8) {
 	static function getLatestUnreadComments($title="", $board="") {
 		global $db, $user;
 
+		$sqlparams = [];
 		if (!$title) $title = "ungelesene Kommentare";
-		if ($board) $whereboard = "AND comments.board='$board'";
-
-		if(defined('USER_USER') && $user->typ >= USER_USER) {
-			$sql =
-				"
-				SELECT
-				 comments.*
-				, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread
-				, UNIX_TIMESTAMP(comments.date) as date
-				, user.clan_tag
-				, user.username
-				FROM comments
-				LEFT JOIN user on comments.user_id = user.id
-				LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = '".$user->id."')
-				WHERE comments_unread.comment_id IS NOT NULL ".$whereboard."
-				ORDER by date ASC LIMIT 0,5
-				"
-			;
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		if ($board) {
+			$whereboard = 'AND comments.board=?';
+			$sqlparams[] = $board;
+		}
 
-			if($db->num($result) > 0) {
-				$html = '<table class="border small" width="100%"><tr><td align="center" colspan="3"><b>'.$title.'</b></td></tr>';
-				while($rs = $db->fetch($result)) {
+		if(defined('USER_USER') && $user->typ >= USER_USER)
+		{
+			$sqlparams[] = $user->id;
+			$sql = 'SELECT comments.*, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread, UNIX_TIMESTAMP(comments.date) AS date, user.clan_tag, user.username FROM comments LEFT JOIN user ON comments.user_id=user.id LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id=?) WHERE comments_unread.comment_id IS NOT NULL '.$whereboard.' ORDER BY date ASC LIMIT 5';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, $sqlparams);
 
-			    $i++;
+			if($db->num($result) > 0)
+			{
+				$i=0;
+				$html = '<table class="border small" width="100%"><tr><td align="center" colspan="3"><b>'.$title.'</b></td></tr>';
+				while($rs = $db->fetch($result))
+				{
+			   		$i++;
 
 					if(defined('USER_USER') && $user->typ >= USER_USER && $rs['isunread'] != '') {
 						$color = NEWCOMMENTCOLOR;
@@ -1643,18 +1616,15 @@ static function getLatestUnreadComments($title="", $board="") {
 						$color = ($i % 2 == 0) ? BACKGROUNDCOLOR : TABLEBACKGROUNDCOLOR;
 					}
 
-			    $html .=
-			      '<tr><td align="left" bgcolor="'.$color.'" width="40%">'
-						.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
-				  	.Comment::getTitle($rs['text'])
-				  	.'</a>'
-			      .'</td><td align="left" bgcolor="'.$color.'" width="30%">'
-			      .$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
-			      .'</td><td align="center" bgcolor="'.$color.'" width="30%">'
-			      .datename($rs['date'])
-			      .'</td></tr>'
-			    ;
-
+					$html .= '<tr><td align="left" bgcolor="'.$color.'" width="40%">'
+								.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
+								.Comment::getTitle($rs['text'])
+								.'</a>'
+							.'</td><td align="left" bgcolor="'.$color.'" width="30%">'
+								.$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
+							.'</td><td align="center" bgcolor="'.$color.'" width="30%">'
+								.datename($rs['date'])
+							.'</td></tr>';
 			  }
 			  $html .= '</table>';
 			}
@@ -1687,27 +1657,29 @@ static function get3YearOldThreads() {
 
 		;
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+
+		$i=0;
 		$html = '<table class="border" width="100%"><tr><td align="center" colspan="3"><b>Jaja, früher...</b></td></tr>';
-		while($rs = $db->fetch($result)) {
-	    $i++;
+		while($rs = $db->fetch($result))
+		{
+	    	$i++;
 			if(defined('USER_USER') && $user->typ >= USER_USER && $rs['isunread'] != '') {
 				$color = NEWCOMMENTCOLOR;
 			} else {
 				$color = ($i % 2 == 0) ? BACKGROUNDCOLOR : TABLEBACKGROUNDCOLOR;
 			}
 
-	    $html .=
-	      '<tr><td align="left" bgcolor="'.$color.'" class="small" width="40%">'
-		  	.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
-		  	.Comment::getTitle($rs['text'])
-		  	.'</a>'
-	      .'</td><td align="left" bgcolor="'.$color.'" class="small" width="30%">'
-	      .$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
-	      .'</td><td align="center" bgcolor="'.$color.'" class="small" width="30%">'
-	      .datename($rs['date'])
-	      .'</td></tr>'
-	    ;
-
+			$html .=
+			'<tr><td align="left" bgcolor="'.$color.'" class="small" width="40%">'
+				.'<a href="'.Comment::getLink($rs['board'], $rs['parent_id'], $rs['id'], $rs['thread_id']).'" name="'.$rs['id'].'">'
+				.Comment::getTitle($rs['text'])
+				.'</a>'
+			.'</td><td align="left" bgcolor="'.$color.'" class="small" width="30%">'
+			.$user->userpagelink($rs['user_id'], $rs['clan_tag'], $rs['username'])
+			.'</td><td align="center" bgcolor="'.$color.'" class="small" width="30%">'
+			.datename($rs['date'])
+			.'</td></tr>'
+			;
 	  }
 	  $html .= '</table>';
 
@@ -1718,10 +1690,10 @@ static function get3YearOldThreads() {
 	 * gibt den entspr. link zum sortieren des Forums zurück
 	 */
 	static function getSortlink($order) {
-		if($_GET['order'] == $order) {
-			$direction = ($_GET['direction'] == 'asc') ? 'desc' : 'asc';
+		if($_GET['order'] === $order) {
+			$direction = ($_GET['direction'] === 'asc') ? 'desc' : 'asc';
 			return '
-				<a href="'.$_SERVER['PHP_SELF'].'?sortby='.$order.'&direction='.$direction.'">
+				<a href="'.htmlentities($_SERVER['PHP_SELF']).'?sortby='.$order.'&direction='.$direction.'">
 				<img border="0" src="/images/forum/sort'.$direction.'.gif"></a>
 			';
 		} else {
@@ -1980,8 +1952,8 @@ static function getHTML($showboards, $pagesize, $sortby='last_post_date')
 
 	static function hasPostedRecently($user_id, $parent_id) {
 		global $db;
-		$sql = 'SELECT UNIX_TIMESTAMP(date) as date, parent_id FROM comments WHERE user_id='.$user_id.' ORDER BY date DESC LIMIT 0,1';
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT UNIX_TIMESTAMP(date) as date, parent_id FROM comments WHERE user_id=? ORDER BY date DESC LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]));
 		return time() < ($rs['date'] + 10) && $parent_id == $rs['parent_id'];
 	}
 
@@ -2017,51 +1989,51 @@ static function printCommentingSystem($board, $thread_id)
 		global $db, $user, $smarty;
 
 		/** Get and set missing parent_id */
-		$comment_parent_id = ( isset( $_GET['parent_id'] ) && $_GET['parent_id'] != '' ) ? $_GET['parent_id'] : $thread_id;
+		// FIXME it would be better to pass $_GET[parent_id] als Function Param via {smarty_comments}-Parameter...
+		$parent_id = filter_input(INPUT_GET, 'parent_id', FILTER_VALIDATE_INT) ?? intval($thread_id);
 
-		if (true === Thread::hasRights($board, $thread_id, ($user->is_loggedin() ? $user->id : 0)))
+		if (true === Thread::hasRights($board, $thread_id, ($user->is_loggedin() ? $user->id : USER_ALLE)))
 		{
 			/** damit man die älteren kompilierten comments löschen kann (speicherplatz sparen) */
 			Thread::setLastSeen($board, $thread_id);
 
 			/** Subscribed_Comments Array Bauen (nur für eingeloggte User) */
-			if($user->is_loggedin() === true)
+			if($user->is_loggedin())
 			{
 				$comments_subscribed = array();
-				$sql = 'SELECT comment_id
-						FROM comments_subscriptions
-						WHERE board="'.$board.'" AND user_id='.$user->id;
-				$e = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'SELECT comment_id FROM comments_subscriptions WHERE board=? AND user_id=?';
+				$e = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $user->id]);
 				while ($d = $db->fetch($e)) $comments_subscribed[] = $d['comment_id'];
 				$smarty->assign('comments_subscribed', $comments_subscribed);
 
 				/** Unread Comment Array Bauen */
 				$comments_unread = array();
-				$sql = 'SELECT u.*
-						FROM comments_unread u, comments c
-						WHERE c.id=u.comment_id
-							AND c.thread_id='.$thread_id.'
-							AND c.board="'.$board.'"
-							AND u.user_id='.$user->id;
-				$e = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'SELECT u.* FROM comments_unread u, comments c WHERE c.id=u.comment_id AND c.thread_id=? AND c.board=? AND u.user_id=?';
+				$e = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$thread_id, $board, $user->id]);
 				while ($d = $db->fetch($e)) $comments_unread[] = $d['comment_id'];
 				$smarty->assign('comments_unread', $comments_unread);
 			}
 
-			/** Comments aus DB holen */
-			$sql = 'SELECT * FROM comments WHERE board="'.$board.'" AND id='.$comment_parent_id;
-			$d = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			/** Wenn $thread_id = NICHT erster (Thread) Comments, sondern Sub-Thread Comment */
+			$sql = 'SELECT * FROM comments WHERE board=? AND id=? ORDER BY id ASC LIMIT 1';
+			$d = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $parent_id]));
+
+			/** Set Thread/Sub-Thread starting Comment-ID */
+			$comment_parent_id = (isset($d['parent_id']) && $d['parent_id'] > 0 ? intval($d['parent_id']) : $thread_id);
 
 			/** Comments an Smarty übergeben */
-			if ($comment_parent_id == $thread_id || $d['parent_id'] == $thread_id)
+			if ($parent_id === $thread_id || $thread_id === $comment_parent_id)
 			{
-				$smarty->display(sprintf('comments:%s-%d', $board, $thread_id));
+				/** $thread_id ist der erste Comment (Thread) */
+				$fetch_commentthread = sprintf('comments:%s-%d', $board, $thread_id);
+				$smarty->display($fetch_commentthread);
 			} else {
+				/** $thread_id ist ein Sub-Thread (nicht Main Thread) */
 				$smarty->assign('comments_top_additional', 1);
-				$smarty->display('comments:'.$d['parent_id']);
+				$smarty->display('comments:'.$comment_parent_id);
 			}
 
-			/** Wenn User eingeloggt ist, commentform.tpl ausgeben */
+			/** Wenn User eingeloggt ist, Form für neue Comment(Replies) ausgeben */
 	    	if($user->is_loggedin() === true)
 	    	{
 	    		$smarty->assign('board', $board);
@@ -2097,7 +2069,7 @@ static function printRSS($board='f', $user_id=null, $thread_id=null)
 	 	global $db, $user;
 
 	 	/** where-board Bedingung für SQL-Query bilden */
-		$wboard = ( $board ? 'comments.board="'.$board.'"' : '' );
+		$wboard = ( $board ? 'comments.board=?' : '' );
 
 		/** RSS-Feed items configs */
 		$num = 15;		// Anzahl auszugebender Datensätze
@@ -2105,7 +2077,8 @@ static function printRSS($board='f', $user_id=null, $thread_id=null)
 		/**
 		 * Ausgabe evaluieren und entsprechendes SQL holen
 		 */
-		$xmlfeed = array();	// Ausgabestring für XML Feed als Array initialisieren
+		$xmlfeed = [];	// Ausgabestring für XML Feed als Array initialisieren
+		$sqlparams = [];
 
 		/** nicht eingeloggter User... */
 		if (is_null($user_id))
@@ -2116,30 +2089,15 @@ static function printRSS($board='f', $user_id=null, $thread_id=null)
 				/** keine thread_id übergeben */
 				if (is_null($thread_id))
 				{
-					$sql =
-						'SELECT
-						    comments.*
-						 './*, comments_unread.user_id as isunread*/
-						 ', UNIX_TIMESTAMP(date) as date
-						 FROM comments
-						 './*LEFT JOIN user on comments.user_id = user.id
-						 LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = comments.user_id)*/
-						 'WHERE parent_id = 1
-						 ORDER BY date desc
-						 LIMIT 0,'.$num
-					;
+					$sql = 'SELECT comments.*, UNIX_TIMESTAMP(date) as date FROM comments WHERE parent_id=1 ORDER BY date desc LIMIT ?';
+					$sqlparams[] = $num;
 				}
 				/** thread_id vorhanden */
 				else {
-					$sql =
-						'SELECT
-						   comments.*
-						 , UNIX_TIMESTAMP(date) as date
-						 FROM comments
-						 WHERE thread_id = '.$thread_id.' AND board="'.$board.'"
-						 ORDER BY date DESC
-						 LIMIT 0,'.$num
-					;
+					$sql ='SELECT comments.*, UNIX_TIMESTAMP(date) as date FROM comments WHERE thread_id=? AND board=? ORDER BY date DESC LIMIT ?';
+					$sqlparams[] = $thread_id;
+					$sqlparams[] = $board;
+					$sqlparams[] = $num;
 				}
 
 			/**
@@ -2151,20 +2109,10 @@ static function printRSS($board='f', $user_id=null, $thread_id=null)
 			}
 			else {
 				// für den Moment wird hier einfach ein Query über alle neuen Sachen gemacht.... IneX, 16.3.08
-				// @FIXME erm... aber so wies scheint, kommen die richtigen Sachen (weil alles über s board gesteuert wird). IneX, 16.3.08
-				$sql =
-					'SELECT
-					comments.*
-					'./*, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread*/
-					', UNIX_TIMESTAMP(date) as date
-					FROM comments
-					'./*LEFT JOIN user on comments.user_id = user.id
-					LEFT JOIN comments_threads ct ON ct.thread_id = comments.thread_id AND ct.board = comments.board
-					LEFT JOIN comments_threads_rights ctr ON ctr.thread_id = comments.thread_id AND ctr.board = comments.board AND ctr.user_id = '.$user->id.'
-					LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = '.$user->id.')*/
-					( !empty($wboard) ? 'WHERE '.$wboard : '')./*' AND (user.usertype >= ct.rights OR ct.rights='.USER_SPECIAL.' AND ctr.user_id IS NOT NULL)*/
-					'ORDER BY date desc LIMIT 0,'.$num
-				;
+				// FIXME erm... aber so wies scheint, kommen die richtigen Sachen (weil alles über s board gesteuert wird). IneX, 16.3.08
+				$sql = 'SELECT comments.*, UNIX_TIMESTAMP(date) as date FROM comments '.(!empty($wboard) ? 'WHERE '.$wboard : '').' ORDER BY date desc LIMIT ?';
+				if (!empty($wboard)) $sqlparams[] = $board;
+				$sqlparams[] = $num;
 			}
 		}
 		/** User ist eingeloggt */
@@ -2175,48 +2123,29 @@ static function printRSS($board='f', $user_id=null, $thread_id=null)
 				/** keine thread_id übergeben */
 				if (is_null($thread_id))
 				{
-					$sql =
-						'SELECT
-						  comments.*
-						, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread
-						, UNIX_TIMESTAMP(date) as date
-						 FROM comments
-						 LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = comments.user_id)
-						 WHERE parent_id = 1
-						 ORDER BY date desc
-						 LIMIT 0,'.$num
-					;
+					$sql = 'SELECT comments.*, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread, UNIX_TIMESTAMP(date) as date
+							FROM comments LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = comments.user_id)
+							WHERE parent_id = 1 ORDER BY date desc LIMIT ?';
+					$sqlparams[] = $num;
 				}
 				/** thread_id vorhanden */
 				else {
-					$sql =
-						'SELECT
-						   comments.*
-						 , UNIX_TIMESTAMP(date) as date
-						 FROM comments
-						 WHERE thread_id = '.$thread_id.' AND board="'.$board.'"
-						 ORDER BY date DESC
-						 LIMIT 0,'.$num
-					;
+					$sql = 'SELECT comments.*, UNIX_TIMESTAMP(date) as date FROM comments WHERE thread_id=? AND board=? ORDER BY date DESC LIMIT ?';
+					$sqlparams[] = $thread_id;
+					$sqlparams[] = $board;
+					$sqlparams[] = $num;
 				}
 			}
 			/** Feed für ein anderes board */
 			else {
 				// für den Moment wird hier einfach ein Query über alle neuen Sachen gemacht.... IneX, 16.3.08
-				// @FIXME erm... aber so wies scheint, kommen die richtigen Sachen (weil alles über s board gesteuert wird). IneX, 16.3.08
-				$sql =
-					'SELECT
-					  comments.*
-					, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread
-					, UNIX_TIMESTAMP(date) as date
-					FROM comments
-					'./*LEFT JOIN user on comments.user_id = user.id
-					LEFT JOIN comments_threads ct ON ct.thread_id = comments.thread_id AND ct.board = comments.board
-					LEFT JOIN comments_threads_rights ctr ON ctr.thread_id = comments.thread_id AND ctr.board = comments.board AND ctr.user_id = '.$user->id.'*/
-					' LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = '.$user->id.')'.
-					( !empty($wboard) ? 'WHERE '.$wboard : '')./*' AND (user.usertype >= ct.rights OR ct.rights='.USER_SPECIAL.' AND ctr.user_id IS NOT NULL)*/
-					' ORDER BY date desc LIMIT 0,'.$num
-				;
+				// FIXME erm... aber so wies scheint, kommen die richtigen Sachen (weil alles über s board gesteuert wird). IneX, 16.3.08
+				$sql ='SELECT comments.*, IF(ISNULL(comments_unread.comment_id), 0, 1) AS isunread, UNIX_TIMESTAMP(date) as date
+					FROM comments LEFT JOIN comments_unread ON (comments.id=comments_unread.comment_id AND comments_unread.user_id = ?) '.( !empty($wboard) ? 'WHERE '.$wboard : '').
+					' ORDER BY date desc LIMIT ?';
+				$sqlparams[] = $user->id;
+				if (!empty($wboard)) $sqlparams[] = $board;
+				$sqlparams[] = $num;
 			}
 		} // end if is_null($user_id)
 
@@ -2281,28 +2210,36 @@ class Thread {
 	static function setLastSeen ($board, $thread_id) {
 		global $db;
 
-		$db->query("UPDATE comments_threads SET last_seen=now() WHERE board='$board' AND thread_id='$thread_id'", __FILE__, __LINE__, __METHOD__);
+		$db->query('UPDATE comments_threads SET last_seen=? WHERE board=? AND thread_id=?',
+					__FILE__, __LINE__, __METHOD__, [timestamp(true), $board, $thread_id]);
 
 	}
 
 	static function setRights ($board, $thread_id, $rights) {
 		global $db;
 
-		$e = $db->query("SELECT * FROM comments_threads WHERE board='$board' AND thread_id='$thread_id'", __FILE__, __LINE__, __METHOD__);
+		$e = $db->query("SELECT * FROM comments_threads WHERE board=? AND thread_id=?",
+						__FILE__, __LINE__, __METHOD__, [$board, $thread_id]);
 		$d = $db->fetch($e);
-		if (!$d && $rights) $db->query("INSERT INTO comments_threads (board, thread_id) VALUES ('$board', $thread_id)", __FILE__, __LINE__, __METHOD__);
-		elseif (!$d && !$rights) return;
+		if (!$d && $rights) {
+			$db->query("INSERT INTO comments_threads (board, thread_id) VALUES (?, ?)",
+						__FILE__, __LINE__, __METHOD__, [$board, $thread_id]);
+		} elseif (!$d && !$rights) {
+			return;
+		}
 
 		if (!$rights) $rights = '0';
 
 		if (is_array($rights)) $set_right = '3';
 		else $set_right = $rights;
 
-		$db->query("DELETE FROM comments_threads_rights WHERE thread_id='$thread_id'", __FILE__, __LINE__, __METHOD__);
-		$db->query("UPDATE comments_threads SET rights='$set_right' WHERE board='$board' AND thread_id='$thread_id'", __FILE__, __LINE__, __METHOD__);
+		$db->query("DELETE FROM comments_threads_rights WHERE thread_id=?", __FILE__, __LINE__, __METHOD__, [$thread_id]);
+		$db->query("UPDATE comments_threads SET rights=? WHERE board=? AND thread_id=?",
+					__FILE__, __LINE__, __METHOD__, [$set_right, $board, $thread_id]);
 		if (is_array($rights)) {
 			foreach ($rights as $it) {
-				$db->query("INSERT INTO comments_threads_rights (board, thread_id, user_id) VALUES ('$board', $thread_id, $it)", __FILE__, __LINE__, __METHOD__);
+				$db->query("INSERT INTO comments_threads_rights (board, thread_id, user_id) VALUES (?, ?, ?)",
+							__FILE__, __LINE__, __METHOD__, [$board, $thread_id, $it]);
 			}
 		}
 	}
@@ -2324,18 +2261,10 @@ static function hasRights ($board, $thread_id, $user_id=0)
 
 		$check_user_id = (isset($user_id) && !empty($user_id) && (int)$user_id > 0 ? (int)$user_id : 0);
 
-		$sql = 'SELECT
-					user.usertype
-					, ct.rights AS thread_rights
-					, IF(ISNULL(ctr.user_id), 0, 1) AS special_rights
-				FROM comments_threads ct
-				LEFT JOIN comments_threads_rights ctr
-					ON (ct.thread_id = ctr.thread_id
-					AND ctr.user_id = '.$check_user_id.')
-				LEFT JOIN user ON(user.id = '.$check_user_id.')
-				WHERE ct.thread_id = '.$thread_id.'
-				AND ct.board = "'.$board.'"';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT user.usertype, ct.rights AS thread_rights, IF(ISNULL(ctr.user_id), 0, 1) AS special_rights
+				FROM comments_threads ct LEFT JOIN comments_threads_rights ctr ON (ct.thread_id=ctr.thread_id AND ctr.user_id=?)
+				LEFT JOIN user ON(user.id=?) WHERE ct.thread_id=? AND ct.board=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$check_user_id, $check_user_id, $thread_id, $board]);
 		$rs = $db->fetch($result);
 		/*if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Thread::hasRights() empty($rs) => %s', __METHOD__, __LINE__, (empty($rs)?'true':'false')));
 		if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Thread::hasRights() empty($rs[usertype]) => %s', __METHOD__, __LINE__, (empty($rs['usertype'])?'true':'false')));
@@ -2360,43 +2289,27 @@ static function adjustThreadRecord($board, $thread_id) {
 		global $db;
 
 		if(Thread::hasRecords($board, $thread_id)) {
-  		$sql =
-  			"select * from comments"
-  			." where board = "
-  			."'".$board."' and thread_id = ".$thread_id
-  			." ORDER BY date asc"
-  			." LIMIT 0,1"
-  		;
-  		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-  		$rs = $db->fetch($result);
-  		$sql =
-  			"update comments_threads"
-  			." set comment_id = ".$rs['id']
-  			." where board = '".$rs['board']."' and thread_id = ".$rs['thread_id']
-  		;
-  		$db->query($sql, __FILE__, __LINE__, __METHOD__);
-  	} else {
-  		$sql =
-  			"delete from comments_threads"
-  			." where board = "."'".$board."'"
-  			." and thread_id = ".$thread_id
-  		;
-  		$db->query($sql, __FILE__, __LINE__, __METHOD__);
-  	}
+			$sql = 'SELECT * FROM comments WHERE board=? AND thread_id=? ORDER BY date ASC LIMIT 1';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $thread_id]);
+			$rs = $db->fetch($result);
+			$sql = 'UPDATE comments_threads SET comment_id=? WHERE board=? AND thread_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['id'], $rs['board'], $rs['thread_id']]);
+		} else {
+			$sql = 'DELETE FROM comments_threads WHERE board=? AND thread_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $thread_id]);
+		}
 	}
 
 	static function hasRecords($board, $thread_id) {
 		global $db;
-		$sql =
-	  	"SELECT * from comments"
-	  	." WHERE thread_id = ".$thread_id
-	  	." AND board = '".$board."'"
-	  ;
-	  if($db->fetch($db->query($sql, __FILE__, __LINE__))) {
-	  	return true;
-	  } else {
-	  	return false;
-	  }
+		$sql = 'SELECT * FROM comments WHERE thread_id=? AND board=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$thread_id, $board]);
+
+		if($db->fetch($result)) {
+			return true;
+		} else {
+			return false;
+		}
 	}
 
 
@@ -2408,16 +2321,12 @@ static function hasRecords($board, $thread_id) {
 	 * @param int $thread_id
 	 */
 	static function getLastComment($board, $thread_id) {
-	  global $db;
-		$sql =
-			"SELECT user.*, comments.*, UNIX_TIMESTAMP(date) as date"
-	  	." FROM comments"
-	  	." left join user on comments.user_id = user.id"
-	  	." where thread_id = $thread_id AND board='".$board."'"
-	  	." order by date desc Limit 0,1"
-	  ;
-	  $rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
-	  return $rs;
+		global $db;
+		$sql = 'SELECT user.*, comments.*, UNIX_TIMESTAMP(date) as date
+				FROM comments LEFT JOIN user ON comments.user_id = user.id
+				WHERE thread_id=? AND board=? ORDER BY date DESC LIMIT 1';
+	$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$thread_id, $board]));
+		return $rs;
 	}
 
 	/**
@@ -2471,8 +2380,9 @@ static function getNavigation($board, $id, $thread_id)
 			$html .= '</td></tr></table>';
 
 			/** Additional Posts */
+			$color = Forum::colorfade(0, TABLEBACKGROUNDCOLOR);
 			$html .=
-			'<table bgcolor="'.Forum::colorfade(0, TABLEBACKGROUNDCOLOR).'" class="border forum"  style="table-layout:fixed;" width="100%">'
+			'<table bgcolor="'.$color.'" class="border forum"  style="table-layout:fixed;" width="100%">'
 				.'<tr>'
 				.'<td bgcolor="'.$color.'" valign="top"><nobr>'
 				.'<a href="'.getChangedURL('parent_id='.Comment::getParentid($id)).'">'
@@ -2545,8 +2455,7 @@ static function getNumUnread ($board, $thread_id, $user_id=null) {
 		if (is_array($user_id) || !is_numeric($user_id) || $user_id <= 0) return false;
 		if (empty($user_id) || $user_id === null) $user_id = $user->id; // $user_id must always be $user->id (current user!)
 
-		$sql = 'SELECT count(c.id) anz
-				FROM comments c, comments_unread u
+		$sql = 'SELECT count(c.id) anz FROM comments c, comments_unread u
 				WHERE c.board=? AND c.thread_id=? AND u.comment_id=c.id AND u.user_id=?';
 		$d = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $thread_id, $user_id]));
 		return $d['anz'];
@@ -2568,11 +2477,11 @@ static function getRecordset($board, $thread_id) {
 		global $db;
 
 		/** Validate passed parameters */
-		if (empty($board) || is_numeric($board) || is_array($board)) return false;
-		if (empty($thread_id) || !is_numeric($thread_id) || $thread_id <= 0 || is_array($thread_id)) return false;
+		if (!is_string($board) || is_array($board)) return false;
+		if (!is_numeric($thread_id) || $thread_id <= 0) return false;
 
-		$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date FROM comments where thread_id=? and board=?';
-		return $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$thread_id, $board]));
+		$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date FROM comments WHERE board=? AND thread_id=?';
+		return $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$board, $thread_id]));
 	}
 
 	/**
@@ -2608,7 +2517,6 @@ static function printChildPosts($board, $parent_id, $depth=array("space")) {
 				GROUP BY comments.id
 				ORDER BY comments.id
 			';
-
 	  $result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $parent_id, $board]);
 	  $rcount = 0;
 	  $additional = FALSE; // already posted "Additional Posts" ?
@@ -2632,7 +2540,7 @@ static function printChildPosts($board, $parent_id, $depth=array("space")) {
 	  		|| $rs['isunread'] != ''
 	  		|| !$user->is_loggedin() && $hierdepth < 10
 	  	) {
-	  		echo Comment::getHTML($rs, $depth2); // print formatted post => Methode gibts gar nicht (mehr)?!
+	  		// DISABLED echo Comment::getHTML($rs, $depth2); // print formatted post => Methode gibts gar nicht (mehr)?!
 	  		if ($rs['numchildposts'] > 0) {
 		    	echo '<div id="layer'.$rs['id'].'">';
 		    	Thread::printChildPosts($board, $rs['id'], $depth2);
diff --git a/www/includes/gallery.inc.php b/www/includes/gallery.inc.php
index 595f33d..cddb675 100644
--- a/www/includes/gallery.inc.php
+++ b/www/includes/gallery.inc.php
@@ -168,10 +168,9 @@ function albumThumbs ($id, $page=0)
 
 	if (!empty($d) && $d['anz'] > 0)
 	{
-		$e = $db->query(sprintf('SELECT
-									g.id, g.name, IF(e.enddate != "0000-00-00 00:00:00" AND g.created IS NULL, e.enddate, g.created) created, e.id eventid, e.name eventname, GROUP_CONCAT(eu.user_id SEPARATOR ",") beenthere_users
+		$e = $db->query('SELECT g.id, g.name, IF(e.enddate != "0000-00-00 00:00:00" AND g.created IS NULL, e.enddate, g.created) created, e.id eventid, e.name eventname, GROUP_CONCAT(eu.user_id SEPARATOR ",") beenthere_users
 								 FROM gallery_albums g LEFT JOIN events e ON e.gallery_id=g.id LEFT JOIN events_to_user eu ON eu.event_id=e.id
-								 WHERE g.id=%d GROUP BY g.id, e.enddate, e.id, e.name', $id), __FILE__, __LINE__, __FUNCTION__);
+								 WHERE g.id=? GROUP BY g.id, e.enddate, e.id, e.name', __FILE__, __LINE__, __FUNCTION__, [$id]);
 		$d = $db->fetch($e);
 		$htmlOutput .= '<h1 class="bottom_border center">'.($d['eventname'] ? $d['eventname'] : $d['name']).(!empty($d['eventid']) ? ' <a href="/?tpl=158&event_id='.$d['eventid'].'">📅</a>' : '').'</h1>';
 		if ($user->typ == USER_MEMBER) $htmlOutput .= '<p class="small center">[<a href="/gallery.php?albID='.$id.'&show=editAlbum">edit name</a>] [<a href="?show=editAlbumV2&albID='.$id.'">add pics</a>]</p>';
@@ -266,11 +265,11 @@ function pic ($id)
 	$cur = $db->fetch($e);
 	if($cur === false || empty($cur)) user_error('Bild "'.$id.'" existiert nicht!', E_USER_ERROR);
 
-	$e = $db->query('SELECT * FROM gallery_pics p WHERE album='.$cur['album'].' AND id<'.$id.' '.ZENSUR.' ORDER BY id DESC LIMIT 0,1', __FILE__, __LINE__, __FUNCTION__);
-	$last = mysqli_fetch_array($e);
+	$e = $db->query('SELECT id FROM gallery_pics p WHERE album='.$cur['album'].' AND id<'.$id.' '.ZENSUR.' ORDER BY id DESC LIMIT 1', __FILE__, __LINE__, __FUNCTION__);
+	$last = $db->fetch($e);
 
-	$e = $db->query('SELECT * FROM gallery_pics p WHERE album='.$cur['album'].' AND id>'.$id.' '.ZENSUR.' ORDER BY id ASC LIMIT 0,1', __FILE__, __LINE__, __FUNCTION__);
-	$next = mysqli_fetch_array($e);
+	$e = $db->query('SELECT id FROM gallery_pics p WHERE album='.$cur['album'].' AND id>'.$id.' '.ZENSUR.' ORDER BY id ASC LIMIT 1', __FILE__, __LINE__, __FUNCTION__);
+	$next = $db->fetch($e);
 
 	$e = $db->query('SELECT album, a.id, count(p.id) anz, a.name, e.gallery_id, e.name eventname
 					 FROM gallery_pics p, gallery_albums a
@@ -380,7 +379,7 @@ function pic ($id)
 	/** Normale Pic Anzeige (wenn nicht APOD UND Pic-Extension nicht mit '.' anfängt...) */
 	if ($cur['album'] != APOD_GALLERY_ID || mb_substr($cur['extension'],0,1,'UTF-8') === '.')
 	{
-		$pic_downloadname = sprintf('%s.%s', $pic_title, $cur['extension']);
+		$pic_downloadname = htmlspecialchars($pic_title.$cur['extension'], ENT_QUOTES);
 		/** Wenn User eingeloggt & noch nicht auf Bild markiert ist, Formular anzeigen... */
 		if ($user->typ >= USER_USER && !checkUserToPic($user->id, $id))
 		{
@@ -397,7 +396,7 @@ function pic ($id)
 			);
 		/** ...sonst Bild normal ohne Markierungs-Formular ausgeben (auch für Nicht Eingeloggte) */
 		} else {
-			echo '<img id="thatpic" name="'.$pic_downloadname.'" src="'. imgsrcPic($id). '" style="border: none;width: 100%;max-width: 100%;">';
+			echo '<img id="thatpic" name="'.$pic_downloadname.'" src="'.imgsrcPic($id).'" download="'.$pic_downloadname.'" style="border: none;width: 100%;max-width: 100%;">';
 		}
 
 	/** APOD Special: statt Pic ein Video embedden */
@@ -556,9 +555,9 @@ function doBenoten($pic_id, $score) {
 	if (empty($score) || $score <= 0) user_error("Fehlender Parameter <i>score</i>", E_USER_ERROR);
 	if (!hasVoted($user->id, $pic_id))
 	{
-		$sql = 'REPLACE INTO gallery_pics_votes (pic_id, user_id, score) VALUES ('.$pic_id.', '.$user->id.', '.$score.')';
+		$sql = 'REPLACE INTO gallery_pics_votes (pic_id, user_id, score) VALUES (?, ?, ?)';
 
-		$db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+		$db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$pic_id, $user->id, $score]);
 		//header("Location: ".base64url_decode($_POST['url']));
 		//return array('state'=>"Pic $pic_id benotet");
 
@@ -692,15 +691,19 @@ function doUpload($id, $frm)
 	$tnSize = "";
 	while (false !== ($file = readdir ($directory))) {
 		// checks
-		if ($file=="." || $file=="..") continue;
+		if ($file==="." || $file==="..") continue;
 
 		if (!isPic(GALLERY_UPLOAD_DIR.$frm['folder'].$file)) {
-		$notDone .= "- $file (ist kein g&uuml;ltiges Bild)<br>";
-		if ($frm['delFiles']) {
-			if (!@unlink(GALLERY_UPLOAD_DIR.$frm['folder'].$file)) $error .= '- '.$file.' konnte nicht gel&ouml;scht werden<br>';
+			$notDone .= "- $file (ist kein g&uuml;ltiges Bild)<br>";
 		}
-		continue;
+		elseif ($frm['delFiles']) {
+			// strpos() verifies that the resolved file path is within the intended directory
+			if (strpos($file, realpath(GALLERY_UPLOAD_DIR.$frm['folder'])) === 0 &&
+				!@unlink(GALLERY_UPLOAD_DIR.$frm['folder'].$file)) {
+				$error .= '- '.$file.' konnte nicht gel&ouml;scht werden<br>';
+			}
 		}
+		continue;
 
 		// writing DB
 		$picid = $db->insert("gallery_pics", array("album"=>$id, "extension"=>extension($file)), __FILE__, __LINE__, __FUNCTION__);
@@ -1631,9 +1634,8 @@ function setNewDailyPic()
 	global $db, $telegram;
 
 	/** Check if current Daily Pic is still from Today... */
-	$sql = $db->query('SELECT id, TO_DAYS(p.date)-TO_DAYS(?) upd
-						FROM periodic p
-						WHERE p.name=?', __FILE__, __LINE__, __FUNCTION__, [timestamp(true), 'daily_pic']);
+	$sql = $db->query('SELECT id, TO_DAYS(p.date)-TO_DAYS(?) upd FROM periodic p WHERE p.name=?',
+						__FILE__, __LINE__, __FUNCTION__, [timestamp(true), 'daily_pic']);
 	$currdp = $db->fetch($sql);
 
 	/** If current Daily Pic is old - generate a new one: */
@@ -1656,10 +1658,10 @@ function setNewDailyPic()
 			 *     url = URL to the Pic
 			 *     caption = "Daily Pic: {Title - if available} [Gallery-Name]"
 			 */
-			$imgAuthToken = md5(TELEGRAM_API_URI);
+			$imgAuthToken = md5($_ENV['TELEGRAM_BOT_API']);
 			$imgUrl = SITE_URL.imgsrcPic($newdp['id']).'?token='.$imgAuthToken;
-			$picTitle = picHasTitle($newdp['id']);
-			$picGallery = $newdp['galleryname'];
+			$picTitle = html_entity_decode(picHasTitle($newdp['id']));
+			$picGallery = html_entity_decode($newdp['galleryname']);
 			$imgCaption = t('telegram-dailypic-notification', 'gallery', [ (empty($picTitle) ? ' ' : $picTitle), (empty($picGallery) ? ' ' : $picGallery) ]);
 			$telegram->send->photo('group', $imgUrl, $imgCaption, ['disable_notification' => 'true']);
 
@@ -1881,8 +1883,8 @@ function doEditFotoTitle($picID, $frm)
 /**
  * Checks if Pic has a Title - if yes, return it
  *
- * @author IneX
- * @date 21.01.2017
+ * @version 1.0
+ * @since 1.0 `21.01.2017` `IneX` Function added
  *
  * @global object $db Globales Class-Object mit allen MySQL-Methoden
  * @return string|bool If set, returns the Pic's title - otherwise 'false'
diff --git a/www/includes/hz_game.inc.php b/www/includes/hz_game.inc.php
index 066d422..6ce1892 100644
--- a/www/includes/hz_game.inc.php
+++ b/www/includes/hz_game.inc.php
@@ -14,13 +14,15 @@
  * @package zorg
  * @subpackage HuntingZ
  *
- * @TODO Sollte das alles hier nicht in einer Class untergebracht werden?
+ * //TODO Sollte das alles hier nicht in einer Class untergebracht werden?
  */
+
 /**
  * File includes
  * @include main.inc.php 		Main Functions
  */
-require_once dirname(__FILE__).'/main.inc.php';
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'main.inc.php';
 
 /**
  * @const URLPATH_HZ_IMAGES	Pfad zu den Bildern fürs Hunting Z
@@ -51,11 +53,12 @@
 function hz_close_game ($gid) {
 	global $db, $user;
 
-	$e = $db->query('SELECT g.id FROM hz_games AS g, hz_players AS z WHERE g.id='.$gid.' AND g.id=z.game AND g.state="open" AND z.type="z" AND z.user='.$user->id, __FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT g.id FROM hz_games AS g, hz_players AS z WHERE g.id=? AND g.id=z.game AND g.state="open" AND z.type="z" AND z.user=?',
+					__FILE__, __LINE__, __FUNCTION__, [$gid, $user->id]);
 	$d = $db->fetch($e);
 	if ($d) {
-		$db->query('DELETE FROM hz_games WHERE id='.$d['id'], __FILE__, __LINE__, __FUNCTION__);
-		$db->query('DELETE FROM hz_players WHERE game='.$d['id'], __FILE__, __LINE__, __FUNCTION__);
+		$db->query('DELETE FROM hz_games WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$d['id']]);
+		$db->query('DELETE FROM hz_players WHERE game=?', __FILE__, __LINE__, __FUNCTION__, [$d['id']]);
 	}
 }
 
@@ -71,6 +74,7 @@ function hz_close_game ($gid) {
  * @param integer $map ID der Karte auf welcher das neue Spiel stattfindet
  * @global object $db Globales Class-Object mit allen MySQL-Methoden
  * @global object $user Globales Class-Object mit den User-Methoden & Variablen
+ * @return void
  */
 function start_new_game ($map) {
 	global $db, $user;
@@ -78,13 +82,9 @@ function start_new_game ($map) {
 	/** Validate function parameters */
 	if (!$user->is_loggedin()) user_error(t('error-newgame-not-logged-in'), E_USER_ERROR);
 
-	/** get number of games the users has opened (i.e. is mister z) */
-	$own_games = $db->fetch($db->query( // FIXME gibt immer 0 zurück?!
-		'SELECT count(p.user) AS anz
-		 FROM hz_players AS p JOIN hz_games AS g ON p.game=g.id
-		 WHERE g.state!="finished" AND p.type="z" AND p.user='.$user->id,
-		__FILE__, __LINE__
-	));
+	/** get number of games the users has opened (i.e. is mister z or as inspector) */
+	$own_games = $db->fetch($db->query('SELECT count(p.user) AS anz FROM hz_players AS p JOIN hz_games AS g ON p.game=g.id WHERE g.state!="finished" AND p.type="z" AND p.user=?',
+										__FILE__, __LINE__, __FUNCTION__, [$user->id]));
 
 	/** too many games open already */
 	if (isset($own_games['anz']) && $own_games['anz'] >= HZ_MAX_GAMES) {
@@ -92,16 +92,17 @@ function start_new_game ($map) {
 	}
 	/** user can still open new games */
 	else {
-		$e = $db->query('SELECT * FROM hz_maps WHERE id='.$map.' AND state="active"', __FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT * FROM hz_maps WHERE id=? AND state="active"', __FILE__, __LINE__, __FUNCTION__, [$map]);
 		$d = $db->fetch($e);
 		if ($d) {
-			$game = $db->query('INSERT INTO hz_games (date, map, round) VALUES (NOW(), '.$d['id'].', 1)', __FILE__, __LINE__, __FUNCTION__);
-			$db->query('INSERT INTO hz_players (game, user, station) VALUES ('.$game.', '.$user->id.', '.get_start_station($game).')', __FILE__, __LINE__, __FUNCTION__);
+			$game = $db->query('INSERT INTO hz_games (date, map, round) VALUES (?, ?, 1)', __FILE__, __LINE__, __FUNCTION__, [timestamp(true), $d['id']]);
+			$db->query('INSERT INTO hz_players (game, user, station) VALUES (?, ?, ?)',
+						__FILE__, __LINE__, __FUNCTION__, [$game, $user->id, get_start_station($game)]);
 
 			/** Activity Eintrag auslösen */
 			Activities::addActivity($user->id, 0, t('activity-newgame', 'hz', [ $d['name'], SITE_URL, $game ]), 'hz');
 		} else {
-			user_error(t('unknown-map', 'hz', $map), E_USER_ERROR);
+			user_error(t('unknown-map', 'hz', [$map]), E_USER_ERROR);
 		}
 	}
 }
@@ -117,30 +118,27 @@ function start_new_game ($map) {
  *
  * @param integer $game ID des Hunting z Spiels
  * @global object $db Globales Class-Object mit allen MySQL-Methoden
- * @global object $user Globales Class-Object mit den User-Methoden & Variablen
- * @return ID des Hunting z Spiels
+ * @return integer ID des Hunting z Spiels
  */
 function get_start_station ($game) {
-	global $db, $user;
+	global $db;
 
-	$e = $db->query('SELECT * FROM hz_games WHERE id='.$game, __FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT * FROM hz_games WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$game]);
 	$d = $db->fetch($e);
 
 	/** select a random station out of the unoccupied, non-goal stations */
 	if ($d) {
-		$e = $db->query('SELECT s.id
-						FROM hz_games AS g
-						LEFT JOIN hz_stations AS s ON g.map=s.map
-						LEFT JOIN hz_aims AS a ON a.station=s.id and a.map=s.map
-						LEFT JOIN hz_players AS p ON p.game = g.id and p.station=s.id
-						where g.id='.$game.' AND a.map IS NULL AND p.station IS NULL
-						order by rand()',
-						__FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT s.id FROM hz_games AS g
+							LEFT JOIN hz_stations AS s ON g.map=s.map
+							LEFT JOIN hz_aims AS a ON a.station=s.id and a.map=s.map
+							LEFT JOIN hz_players AS p ON p.game = g.id and p.station=s.id
+						WHERE g.id=? AND a.map IS NULL AND p.station IS NULL ORDER BY RAND()',
+						__FILE__, __LINE__, __FUNCTION__, [$game]);
 		$d = $db->fetch($e);
-		if (!$d) user_error(t('unknown-start', 'hz', $game), E_USER_ERROR);
+		if (!$d) user_error(t('unknown-start', 'hz', [$game]), E_USER_ERROR);
 		return $d['id'];
 	} else {
-		user_error(t('error-game-invalid', 'global', $game), E_USER_ERROR);
+		user_error(t('error-game-invalid', 'global', [$game]), E_USER_ERROR);
 	}
 }
 
@@ -164,14 +162,14 @@ function join_game ($game) {
 	if (!$user->id) trigger_error(t('error-play-not-logged-in'), E_USER_ERROR);
 
 	$e = $db->query('SELECT g.*, m.players awaitingplayers, count(numpl.user) numplayers, if(p.user IS NULL, 0, 1) joined
-					FROM hz_players numpl, hz_maps m, hz_games g
-					LEFT JOIN hz_players p ON p.game=g.id AND p.user='.$user->id.'
-					WHERE g.id='.$game.' AND g.state="open" AND numpl.game=g.id AND m.id=g.map
-					GROUP BY numpl.game', __FILE__, __LINE__, __FUNCTION__);
+					FROM hz_players numpl, hz_maps m, hz_games g LEFT JOIN hz_players p ON p.game=g.id AND p.user=?
+					WHERE g.id=? AND g.state="open" AND numpl.game=g.id AND m.id=g.map GROUP BY numpl.game',
+					__FILE__, __LINE__, __FUNCTION__, [$user->id, $game]);
 	$d = $db->fetch($e);
 	if ($d) {
 		if (!$d['joined']) {
-			$db->query('INSERT INTO hz_players (game, user, type, station) VALUES ('.$game.', '.$user->id.', "'.$d['numplayers'].'", '.get_start_station($game).')', __FILE__, __LINE__, __FUNCTION__);
+			$db->query('INSERT INTO hz_players (game, user, type, station) VALUES (?, ?, ?, ?)',
+						__FILE__, __LINE__, __FUNCTION__, [$game, $user->id, $d['numplayers'], get_start_station($game)]);
 
 			// Activity Eintrag auslösen
 			Activities::addActivity($user->id, 0, t('activity-joingame', 'hz', [ SITE_URL, $game ]), 'hz');
@@ -203,10 +201,11 @@ function join_game ($game) {
 function unjoin_game ($game) {
 	global $db, $user;
 
-	$e = $db->query('SELECT * FROM hz_games g, hz_players p WHERE g.id='.$game.' AND p.game=g.id AND p.user='.$user->id.' AND p.type!="z"', __FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT * FROM hz_games g, hz_players p WHERE g.id=? AND p.game=g.id AND p.user=? AND p.type!="z"',
+					__FILE__, __LINE__, __FUNCTION__, [$game, $user->id]);
 	$d = $db->fetch($e);
 	if ($d) {
-		$db->query('DELETE FROM hz_players WHERE user='.$user->id.' AND game='.$game, __FILE__, __LINE__, __FUNCTION__);
+		$db->query('DELETE FROM hz_players WHERE game=? AND user=?', __FILE__, __LINE__, __FUNCTION__, [$game, $user->id]);
 	}
 }
 
@@ -225,17 +224,13 @@ function unjoin_game ($game) {
 function start_game ($game) {
 	global $db;
 
-	$e = $db->query('SELECT count(p.user) numplayers, m.players+1 awaitingplayers
-					 FROM hz_games g, hz_maps m, hz_players p
-					 WHERE g.map=m.id AND g.id=p.game AND g.id='.$game.'
-					 GROUP BY p.user',
-					__FILE__, __LINE__, __FUNCTION__
-		);
+	$e = $db->query('SELECT count(p.user) numplayers, m.players+1 awaitingplayers FROM hz_games g, hz_maps m, hz_players p WHERE g.map=m.id AND g.id=p.game AND g.id=? GROUP BY p.user',
+					__FILE__, __LINE__, __FUNCTION__, [$game]);
 	$d = $db->fetch($e);
 	if ($d) {
-		$db->query('UPDATE hz_games SET state="running", turndate=NOW() WHERE id='.$game, __FILE__, __LINE__, __FUNCTION__);
+		$db->query('UPDATE hz_games SET state="running", turndate=? WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [timestamp(true), $game]);
 		$rights = array();
-		$e = $db->query('SELECT * FROM hz_players WHERE game='.$game.' AND type!="z"', __FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT * FROM hz_players WHERE game=? AND type!="z"', __FILE__, __LINE__, __FUNCTION__, [$game]);
 		while ($d = $db->fetch($e)) $rights[] = $d['user'];
 		Thread::setRights('h', $game, $rights);
 	}else{
@@ -263,36 +258,27 @@ function ticket_map ($game, $ticket='all')
 {
 	global $db, $user;
 
-	if (!in_array($ticket, array('taxi', 'ubahn', 'bus', 'black', 'all'))) user_error(t('invalid-ticket', 'hz', $ticket), E_USER_ERROR);
-	if ($ticket == 'black') $where_ticket = 'p.type="z"';
-	elseif ($ticket == 'all') $where_ticket = '(p.type="z" OR r.type!="black")';
-	else $where_ticket = 'r.type="'.$ticket.'"';
+	if (!in_array($ticket, array('taxi', 'ubahn', 'bus', 'black', 'all'))) user_error(t('invalid-ticket', 'hz', [$ticket]), E_USER_ERROR);
+	if ($ticket === 'black') $where_ticket = 'p.type="z"';
+	elseif ($ticket === 'all') $where_ticket = '(p.type="z" OR r.type!="black")';
+	else $where_ticket = 'r.type=?';
 
 	/** Clickable image <map>-Overlay only for logged in Users */
 	$ret = '';
 	if ($user->is_loggedin()) $ret .= '<map name="moves">';
 
 	/** Select all possible destinations from the current location, excluding taken ones, but including z's station */
-	$sql = 'SELECT
-				s.*,
-				p.type,
-				p.money,
-				r.type routetype
-			 FROM hz_games g
-			 JOIN hz_players p ON p.game = g.id
-			 JOIN hz_routes r ON r.map = g.map
-			   AND (r.end = p.station
-			   OR r.start = p.station)
-			 LEFT JOIN hz_players other ON other.game = g.id
-			   AND IF(r.start = p.station, r.end, r.start) = other.station
-			 LEFT JOIN hz_stations s ON s.map = g.map
-			   AND s.id = IF(r.start = p.station, r.end, r.start)
-			 WHERE g.id = '.$game.'
-			   '.($user->is_loggedin() ? 'AND p.user = '.$user->id : null).'
-			   AND '.$where_ticket.'
-			   AND (other.user IS NULL OR other.type = "z")';
-	$e = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
-	if (empty($db->num($e))) user_error(t('invalid-ticket', 'hz', $ticket), E_USER_ERROR);
+	$sqlparams = [];
+	$sql = 'SELECT s.*, p.type, p.money, r.type routetype FROM hz_games g
+			 JOIN hz_players p ON p.game = g.id JOIN hz_routes r ON r.map = g.map AND (r.end = p.station OR r.start = p.station)
+			 LEFT JOIN hz_players other ON other.game = g.id AND IF(r.start = p.station, r.end, r.start) = other.station
+			 LEFT JOIN hz_stations s ON s.map = g.map AND s.id = IF(r.start = p.station, r.end, r.start)
+			 WHERE g.id=? '.($user->is_loggedin() ? 'AND p.user=?' : '').' AND '.$where_ticket.' AND (other.user IS NULL OR other.type = "z")';
+	$sqlparams[] = $game;
+	if ($user->is_loggedin()) $sqlparams[] = $user->id;
+	if ($ticket !== 'black' && $ticket !== 'all') $sqlparams[] = $ticket;
+	$e = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, $sqlparams);
+	if (empty($db->num($e))) user_error(t('invalid-ticket', 'hz', [$ticket]), E_USER_ERROR);
 
 	while ($d = $db->fetch($e))
 	{
@@ -306,7 +292,7 @@ function ticket_map ($game, $ticket='all')
 				case 'black': $vk = 'dem Black-Ticket'; break;
 			}
 
-			if ($d['type'] != 'z' && $ticket=='black') user_error(t('invalid-ticket', 'hz', $ticket), E_USER_ERROR);
+			if ($d['type'] != 'z' && $ticket=='black') user_error(t('invalid-ticket', 'hz', [$ticket]), E_USER_ERROR);
 			$x = $d['x'];
 			$y = $d['y'];
 			$ret .= '<area shape="rect" coords="'.($x-20).','.($y-15).','.($x+20).','.($y+15).'" '.
@@ -341,7 +327,7 @@ function turn_cost ($type) {
 		case 'ubahn': return 6;
 		case 'black': return 10;
 		case 'sentinel': return 10;
-		default: user_error(t('invalid-turn', 'hz', $type), E_USER_ERROR);
+		default: user_error(t('invalid-turn', 'hz', [$type]), E_USER_ERROR);
 	}
 }
 
@@ -367,12 +353,9 @@ function turn_allowed ($game, $uid=0)
 
 	if (empty($uid) && $user->is_loggedin()) $uid = $user->id;
 
-	$e = $db->query('SELECT if((g.nextturn="z" && me.type="z" || g.nextturn="players" && me.type!="z" && me.turndone="0")
-					  && state="running", "allowed", 0) allowed
-					FROM hz_games g
-					LEFT JOIN hz_players me on me.game=g.id
-					WHERE g.id='.$game.' AND me.user='.$uid.' LIMIT 0,1'
-					,__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT if((g.nextturn="z" && me.type="z" || g.nextturn="players" && me.type!="z" && me.turndone="0") && state="running", "allowed", 0) allowed
+					FROM hz_games g LEFT JOIN hz_players me on me.game=g.id WHERE g.id=? AND me.user=? LIMIT 1',
+					__FILE__, __LINE__, __FUNCTION__, [$game, $uid]);
 	$d = $db->fetch($e);
 
 	return ($d['allowed'] === 'allowed' ? true : false);
@@ -396,15 +379,10 @@ function hz_turn_passing()
 	global $db;
 
 	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Checking hz_turn_passing()', __FUNCTION__, __LINE__));
-	$e = $db->query('SELECT g.id, p.user
-					 FROM hz_games g
-					 JOIN hz_players p
-					  ON p.game=g.id
-					 WHERE g.state="running"
-					  AND UNIX_TIMESTAMP(NOW())-UNIX_TIMESTAMP(g.turndate) > '.HZ_TURN_TIME.'
-					  AND if(g.nextturn="z" && p.type="z"
-						OR g.nextturn="players" && p.type!="z" && p.turndone="0", "1", "0") = "1"',
-					__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT g.id, p.user FROM hz_games g JOIN hz_players p ON p.game=g.id
+					 WHERE g.state="running" AND (UNIX_TIMESTAMP(?)-UNIX_TIMESTAMP(g.turndate))>?
+					 	AND if(g.nextturn="z" && p.type="z" OR g.nextturn="players" && p.type!="z" && p.turndone="0", "1", "0")="1"',
+					__FILE__, __LINE__, __FUNCTION__, [timestamp(true), HZ_TURN_TIME]);
 	while ($game = $db->fetch($e))
 	{
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Go to turn_stay(%d, %d)', __FUNCTION__, __LINE__, $game['id'], $game['user']));
@@ -436,32 +414,26 @@ function turn_finalize ($game, $uid=null)
 {
 	global $db, $user, $notification;
 
+	// FIXME $uid should never be NULL as required in subsequent Queries...
 	if (empty($uid) && $user->is_loggedin()) $uid = $user->id;
 
 	/** Mark Player as "turndone=1" */
 	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Updating turndone=1 on game %d => user %d)', __FUNCTION__, __LINE__, $game, $uid));
-	$db->query('UPDATE hz_players SET turndone="1"
-				WHERE game='.$game.' AND user='.$uid.' AND type!="z"',
-				  __FILE__, __LINE__, 'UPDATE turn_finalize()');
+	$db->query('UPDATE hz_players SET turndone="1" WHERE game=? AND user=? AND type!="z"',
+				__FILE__, __LINE__, 'UPDATE turn_finalize()', [$game, $uid]);
 
 	/** Get updated Game Infos including if Inspector Station = Mr. z Station (Game = finished ;)) */
-	$e = $db->query('SELECT g.*, SUM(a.score)-g.z_score player_score, m.players totalplayers,
-					 IF (pl.user IS NOT NULL || z_score >= (SUM(a.score)-g.z_score), "true", "false") finished
-					 FROM hz_maps m, hz_games g
-					 LEFT JOIN hz_aims a ON a.map = g.map
-					 LEFT JOIN hz_players z ON z.game = g.id AND z.type="z"
-					 LEFT JOIN hz_players pl ON pl.game = g.id AND pl.station = z.station AND pl.type!= "z"
-					 WHERE g.id ='.$game.' AND m.id = g.map
-					 GROUP BY a.map, pl.user',
-					__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT g.*, SUM(a.score)-g.z_score player_score, m.players totalplayers, IF (pl.user IS NOT NULL || z_score >= (SUM(a.score)-g.z_score), "true", "false") finished
+					 FROM hz_maps m, hz_games g LEFT JOIN hz_aims a ON a.map = g.map LEFT JOIN hz_players z ON z.game = g.id AND z.type="z" LEFT JOIN hz_players pl ON pl.game = g.id AND pl.station = z.station AND pl.type!= "z" WHERE g.id=? AND m.id = g.map GROUP BY a.map, pl.user, g.id',
+					__FILE__, __LINE__, __FUNCTION__, [$game]);
 	$d = $db->fetch($e);
 	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> SELECT FROM hz_maps: %s', __FUNCTION__, __LINE__, print_r($d,true)));
 
 	if ($d !== false)
 	{
 		/** Count turns by Inspectors */
-		$sql = 'SELECT count(*) num FROM hz_players WHERE type!="z" AND turndone="1" AND game='.$d['id'];
-		$turndone = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__));
+		$sql = 'SELECT count(*) num FROM hz_players WHERE type!="z" AND turndone="1" AND game=?';
+		$turndone = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$d['id']]));
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Count turns by Inspectors: %s', __FUNCTION__, __LINE__, print_r($turndone,true)));
 
 		/**
@@ -474,13 +446,13 @@ function turn_finalize ($game, $uid=null)
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> UPDATE hz_games: %s', __FUNCTION__, __LINE__, ($query?'OK':'ERR')));
 
 			/** Inspectors benachrichtigen */
-			$i = $db->query('SELECT user FROM hz_players WHERE type!="z" AND game='.$d['id'], __FILE__, __LINE__, __FUNCTION__);
+			$i = $db->query('SELECT user FROM hz_players WHERE type!="z" AND game=?', __FILE__, __LINE__, __FUNCTION__, [$d['id']]);
 			while($inspectors = $db->fetch($i))
 			{
 				/** Notification */
 				$notification_text = t('message-your-turn-inspectors', 'hz', [SITE_URL, $game]);
 				$notification_status = $notification->send($inspectors['user'], 'games', ['from_user_id'=>$uid, 'subject'=>t('message-subject', 'hz'), 'text'=>$notification_text, 'message'=>$notification_text]);
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status "%s" from uid=%s to z=%s for Inspectors=%s', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $uid, $z, print_r($inspectors['user'],true)));
+				zorgDebugger::log()->debug('$notification_status "%s" from z=%d for Inspectors=%s', [($notification_status?'true':'false'), $uid, print_r($inspectors['user'],true)]);
 			}
 		}
 
@@ -489,23 +461,22 @@ function turn_finalize ($game, $uid=null)
 		 */
 		elseif ($d['nextturn'] === 'players' && $d['totalplayers'] === $turndone['num'] && $d['finished'] === 'false')
 		{
-			$query = $db->query('UPDATE hz_games SET
-								 round=(round+1), nextturn="z", turndate=NOW(), turncount=(turncount+1)%'.HZ_TURN_COUNT.'
-								 WHERE id='.$game, __FILE__, __LINE__, __FUNCTION__);
+			$query = $db->query('UPDATE hz_games SET round=(round+1), nextturn="z", turndate=?, turncount=(turncount+1)%? WHERE id=?',
+								__FILE__, __LINE__, __FUNCTION__, [timestamp(true), HZ_TURN_COUNT, $game]);
 			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> update(hz_games(%s)): game=%d | nextturn=z | turndate=%s', __FUNCTION__, __LINE__, $query, $game, timestamp(true)));
 
 			/** add money and reset 'turndone' */
 			if ($d['turncount']+1 == HZ_TURN_COUNT) $add = HZ_TURN_ADD_MONEY;
 			else $add = 0;
 
-			$db->query('UPDATE hz_players SET turndone="0", money=money+'.$add.' WHERE game='.$game, __FILE__, __LINE__, __FUNCTION__);
+			$db->query('UPDATE hz_players SET turndone="0", money=money+? WHERE game=?', __FILE__, __LINE__, __FUNCTION__, [$add, $game]);
 
 			/** Mr. z benachrichtigen */
-			$z = $db->fetch($db->query('SELECT user FROM hz_players WHERE game='.$d['id'].' AND type="z" LIMIT 0,1', __FILE__, __LINE__, __FUNCTION__));
+			$z = $db->fetch($db->query('SELECT user FROM hz_players WHERE game=? AND type="z" LIMIT 1', __FILE__, __LINE__, __FUNCTION__, [$d['id']]));
 			if (!empty($z['user']) && is_numeric($z['user'])) {
 				$notification_text = t('message-your-turn-mrz', 'hz', [SITE_URL, $game]);
 				$notification_status = $notification->send($z['user'], 'games', ['from_user_id'=>$uid, 'subject'=>t('message-subject', 'hz'), 'text'=>$notification_text, 'message'=>$notification_text]);
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_finalize() triggers $notification->send() with status "%s" for Mr.Z from uid=%s to z=%d', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $uid, $z['user']));
+				zorgDebugger::log()->debug('$notification_status "%s" for Mr.Z from uid=%s to z=%d', [($notification_status?'true':'false'), $uid, $z['user']]);
 			} else {
 				error_log('[ERROR] "Mr. z benachrichtigen" failed because db->query() for z returned: '.$z['user']);
 			}
@@ -527,7 +498,7 @@ function turn_finalize ($game, $uid=null)
 			finish_mails($game);
 		}
 	} else {
-		user_error(t('invalid-turn', 'hz', $game), E_USER_ERROR);
+		user_error(t('invalid-turn', 'hz', [$game]), E_USER_ERROR);
 	}
 }
 
@@ -559,30 +530,21 @@ function turn_stay($game, $uid=null)
 	if (!turn_allowed($game, $uid)) user_error(t('error-game-notyourturn'), E_USER_WARNING);
 
 	/** look up the round in the game the player is in */
-	$e = $db->query('SELECT g.round round, p.type playertype
-					 FROM hz_games g
-					 JOIN hz_players p ON p.game=g.id
-					 WHERE p.user='.$uid.' AND g.id='.$game,
-					__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT g.round round, p.type playertype FROM hz_games g JOIN hz_players p ON p.game=g.id WHERE p.user=? AND g.id=?',
+					__FILE__, __LINE__, __FUNCTION__, [$uid, $game]);
 	$d = $db->fetch($e);
 
 	if ($d['playertype'] === 'z') {
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_stay(): playertype === z', __FUNCTION__, __LINE__));
-		$db->query('INSERT INTO hz_tracks
-					 (game, ticket, station, nr, player)
-					 VALUES ('.$game.', "stay", "0", "'.$d['round'].'", "z")',
-					 __FILE__, __LINE__, __FUNCTION__);
+		$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player) VALUES (?, "stay", "0", ?, "z")',
+					 __FILE__, __LINE__, __FUNCTION__, [$game, $d['round']]);
 	} else {
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> turn_stay(): playertype === player', __FUNCTION__, __LINE__));
-		$e = $db->query('SELECT *
-						 FROM hz_players
-						 WHERE game='.$game.' AND user='.$uid,
-						__FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT * FROM hz_players WHERE game=? AND user=?',
+						__FILE__, __LINE__, __FUNCTION__, [$game, $uid]);
 		$s = $db->fetch($e);
-		$db->query('INSERT INTO hz_tracks
-					 (game, ticket, station, nr, player)
-					 VALUES ('.$game.', "stay", "'.$s['station'].'", "'.$d['round'].'", "'.$d['playertype'].'")',
-					 __FILE__, __LINE__, __FUNCTION__);
+		$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player) VALUES (?, "stay", ?, ?, ?)',
+					 __FILE__, __LINE__, __FUNCTION__, [$game, $s['station'], $d['round'], $d['playertype']]);
 	}
 
 	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Go to turn_finalize(%d, %d)', __FUNCTION__, __LINE__, $game, $uid));
@@ -616,28 +578,26 @@ function finish_mails ($game)
 	if (!$user->id) trigger_error(t('error-play-not-logged-in'), E_USER_ERROR);
 
 	/** Andere Players des $game aus der DB abfragen */
-	$e = $db->query('SELECT if(g.z_score >= (sum(a.score)-g.z_score), "z", "players") winner, p.*
-					 FROM hz_games g, hz_players p, hz_aims a
-					 WHERE g.id='.$game.' AND p.game='.$game.' AND p.user!='.$user->id.' AND a.map=g.map
-					 GROUP BY a.map, p.turndone, p.station, p.type, p.user, p.money',
-					__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT if(g.z_score >= (sum(a.score)-g.z_score), "z", "players") winner, p.* FROM hz_games g, hz_players p, hz_aims a
+					 WHERE g.id=? AND p.game=? AND p.user!=? AND a.map=g.map GROUP BY a.map, p.turndone, p.station, p.type, p.user, p.money',
+					__FILE__, __LINE__, __FUNCTION__, [$game, $game, $user->id]);
 	/**
 	 * Aktueller Player ist immer $user->id, hier also andere Players loopen & Notifications schicken
 	 *
 	 * Beispiel DB-Records Ergebnis:
 	 *
 	 *	 Game wo Players gewonnen haben nach Zug von $user->id:
-		 ---
-		 winner		game 	user	type	station		money	turndone
-		 players	375	 	1		2		7			7		0
-		 players	375	 	2		z		5			18		0
-		 players	375	 	11		1		5			12		1
+	 *	 ---
+	 *	 winner		game 	user	type	station		money	turndone
+	 *	 players	375	 	1		2		7			7		0
+	 *	 players	375	 	2		z		5			18		0
+	 *	 players	375	 	11		1		5			12		1
 	 *
 	 *   Game wo Mr z gewonnen hat nach Zug von $user->id:
-		 ---
-		 winner		game 	user	type	station		money	turndone
-		 z			753	 	52		2		14			36		0
-		 z			753	 	351		1		5			12		0
+	 *	 ---
+	 *	 winner		game 	user	type	station		money	turndone
+	 *	 z			753	 	52		2		14			36		0
+	 *	 z			753	 	351		1		5			12		0
 	 *   ===
 	 *
 	 * A) Inspector $user->id hat Zug gemacht, und Inspectors haben Spiel gewonnen (Mr. z hat verloren)
@@ -737,7 +697,7 @@ function turn_move ($game, $ticket, $station)
 
 	if (!$user->is_loggedin()) trigger_error(t('error-play-not-logged-in'), E_USER_ERROR);
 	if (!turn_allowed($game)) user_error(t('error-game-notyourturn'), E_USER_ERROR);
-	if (!in_array($ticket, array('taxi', 'ubahn', 'bus', 'black'))) user_error(t('invalid-ticket', 'hz', $ticket), E_USER_ERROR);
+	if (!in_array($ticket, array('taxi', 'ubahn', 'bus', 'black'))) user_error(t('invalid-ticket', 'hz', [$ticket]), E_USER_ERROR);
 
 	if ($ticket === 'black') $where_ticket = 'p.type="z"';
 	else $where_ticket = 'r.type="'.$ticket.'"';
@@ -781,36 +741,32 @@ function turn_move ($game, $ticket, $station)
 			AND (p.money-'.turn_cost($ticket).') >=0
 			AND other.user IS NULL
 			AND (r.start='.$station.' && r.end=p.station || r.end='.$station.' && r.start=p.station)
-		  GROUP BY t.game, p.type'
+		  GROUP BY t.game, p.type, g.id'
 		,__FILE__, __LINE__, __FUNCTION__);
 	$d = $db->fetch($e);
 	if ($d)
 	{
-		$db->query('UPDATE hz_players SET station='.$station.', money=(money-'.turn_cost($ticket).')
-					WHERE game='.$d['id'].' AND user='.$user->id, __FILE__, __LINE__, __FUNCTION__);
+		$db->query('UPDATE hz_players SET station=?, money=(money-?) WHERE game=? AND user=?', __FILE__, __LINE__, __FUNCTION__, [$station, turn_cost($ticket), $d['id'], $user->id]);
 		if ($d['playertype'] === 'z')
 		{
   			if ($d['seen']) $track_station = $station;
 			else $track_station = 0;
 
-			$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player)
-						VALUES ('.$game.', "'.$ticket.'", '.$track_station.', '.$d['tracks'].', "z")'
-						,__FILE__, __LINE__, __FUNCTION__);
+			$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player) VALUES (?, ?, ?, ?, "z")',
+						__FILE__, __LINE__, __FUNCTION__, [$game, $ticket, $track_station, $d['tracks']]);
 
 			if ($d['aim_catch']) {
-				$db->query('UPDATE hz_games SET z_score=(z_score+'.$d['score'].') WHERE id='.$game, __FILE__, __LINE__, __FUNCTION__);
+				$db->query('UPDATE hz_games SET z_score=(z_score+?) WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$d['score'], $game]);
 			}
 		} else {
-			$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player)
-						VALUES ('.$game.', "'.$ticket.'", '.$station.', '.$d['tracks'].', "'.$d['playertype'].'")'
-						,__FILE__, __LINE__, __FUNCTION__);
+			$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player) VALUES (?, ?, ?, ?, ?)',
+						__FILE__, __LINE__, __FUNCTION__, [$game, $ticket, $station, $d['tracks'], $d['playertype']]);
 		}
-
 	} else {
-		user_error(t('invalid-turn', 'hz', $game), E_USER_ERROR);
+		user_error(t('invalid-turn', 'hz', [$game]), E_USER_ERROR);
 	}
 
-	turn_finalize($game);
+	turn_finalize($game, $user->id);
 }
 
 /**
@@ -835,28 +791,18 @@ function turn_sentinel ($game)
 	if (!turn_allowed($game)) user_error(t('error-game-notyourturn'), E_USER_ERROR);
 
 	/** get the player's station and, in the same run, find out if he's got enough money */
-	$e = $db->query('SELECT g.id, p.money, p.station, p.type playertype, g.round tracknr
-					FROM hz_games g
-					JOIN hz_players p
-					  ON p.game=g.id
-					WHERE g.id='.$game.'
-					  AND p.user='.$user->id.'
-					  AND p.money-'.turn_cost('sentinel').' >= 0
-					  AND p.type!="z"
-					LIMIT 0,1'
-					,__FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT g.id, p.money, p.station, p.type playertype, g.round tracknr FROM hz_games g
+					JOIN hz_players p ON p.game=g.id WHERE g.id=? AND p.user=? AND (p.money-?)>= 0 AND p.type!="z" LIMIT 1',
+					__FILE__, __LINE__, __FUNCTION__, [$game, $user->id, turn_cost('sentinel'), ]);
 	$d = $db->fetch($e);
 	if ($d !== false)
 	{
-		$db->query('INSERT INTO hz_sentinels (game, station)
-					VALUES ('.$game.', '.$d['station'].')', __FILE__, __LINE__, __FUNCTION__);
-		$db->query('UPDATE hz_players SET money=money-'.turn_cost('sentinel').'
-				 	WHERE game='.$game.' AND user='.$user->id, __FILE__, __LINE__, __FUNCTION__);
-		$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player)
-		  			VALUES ('.$game.', "sentinel", '.$d['station'].', '.$d['tracknr'].', '.$d['playertype'].')'
-					,__FILE__, __LINE__, __FUNCTION__);
+		$db->query('INSERT INTO hz_sentinels (game, station) VALUES (?, ?)', __FILE__, __LINE__, __FUNCTION__, [$game, $d['station']]);
+		$db->query('UPDATE hz_players SET money=money-? WHERE game=? AND user=?', __FILE__, __LINE__, __FUNCTION__, [turn_cost('sentinel'), $game, $user->id]);
+		$db->query('INSERT INTO hz_tracks (game, ticket, station, nr, player) VALUES (?, "sentinel", ?, ?, ?)',
+					__FILE__, __LINE__, __FUNCTION__, [$game, $d['station'], $d['tracknr'], $d['playertype']]);
 	} else {
-		user_error(t('invalid-turn', 'hz', $game), E_USER_ERROR);
+		user_error(t('invalid-turn', 'hz', [$game]), E_USER_ERROR);
 	}
 
 	turn_finalize($game);
@@ -879,13 +825,9 @@ function turn_sentinel ($game)
 function hz_running_games () {
 	global $db, $user;
 
-	$e = $db->query(
-		"SELECT count(*) anz
-		FROM hz_games g, hz_players p
-		WHERE p.game=g.id AND p.user='$user->id' AND g.state='running'
-		AND if(g.nextturn='z' && p.type='z' || g.nextturn='players' && p.type!='z' && p.turndone='0', '1', '0') = '1'",
-		__FILE__, __LINE__, __FUNCTION__
-	);
+	$e = $db->query('SELECT count(*) anz FROM hz_games g, hz_players p WHERE p.game=g.id AND p.user=? AND g.state="running"
+					AND if(g.nextturn="z" && p.type="z" || g.nextturn="players" && p.type!="z" && p.turndone="0", 1, 0) = 1',
+					__FILE__, __LINE__, __FUNCTION__, [$user->id]);
 	$d = $db->fetch($e);
 	return $d['anz'];
 }
@@ -906,13 +848,9 @@ function hz_running_games () {
 function hz_open_games () {
 	global $db, $user;
 	// return 0; // workaround by lukas 29.09.05 13:14
-	$e = $db->query(
-		"SELECT count(*) anz
-		FROM hz_players AS z, hz_games AS g
-		LEFT JOIN hz_players p ON p.game=g.id AND p.user='$user->id'
-		WHERE g.state='open' AND z.game=g.id AND z.type='z' AND z.user!='$user->id' AND p.user IS NULL",
-		__FILE__, __LINE__, __FUNCTION__
-	);
+	$e = $db->query("SELECT count(*) anz FROM hz_players AS z, hz_games AS g LEFT JOIN hz_players p ON p.game=g.id AND p.user=?
+					WHERE g.state='open' AND z.game=g.id AND z.type='z' AND z.user!=? AND p.user IS NULL",
+					__FILE__, __LINE__, __FUNCTION__, [$user->id, $user->id]);
 	$d = $db->fetch($e);
 	return $d['anz'];
 }
@@ -940,12 +878,10 @@ function _update_hz_dwz ($gid)
 
 	$players = array();
 
-	$e = $db->query('SELECT g.*, sum(a.score)-g.z_score i_score, z.user z, d.score zdwz
-					 FROM hz_games g, hz_aims a, hz_players z
-					 LEFT JOIN hz_dwz d ON d.user=z.user
-					 WHERE g.id='.$gid.' AND g.state="finished" AND a.map=g.map AND z.game=g.id AND z.type="z"
-					 GROUP BY g.id, z.user',
-					__FILE__, __LINE__, __FUNCTION__
+	$e = $db->query('SELECT g.*, sum(a.score)-g.z_score i_score, z.user z, d.score zdwz FROM hz_games g, hz_aims a, hz_players z
+					 	LEFT JOIN hz_dwz d ON d.user=z.user
+					 WHERE g.id=? AND g.state="finished" AND a.map=g.map AND z.game=g.id AND z.type="z" GROUP BY g.id, z.user',
+					__FILE__, __LINE__, __FUNCTION__, [$gid]
 		);
 	$g = $db->fetch($e);
 
@@ -963,12 +899,8 @@ function _update_hz_dwz ($gid)
 		$prev_score_z = BASE_POINTS;
 	}
 
-	$e = $db->query('SELECT d.score, p.user
-					 FROM hz_games g, hz_players p
-					 LEFT JOIN hz_dwz d ON d.user=p.user
-					 WHERE p.game=g.id AND p.type!="z"
-					 AND g.id='.$gid,
-					__FILE__, __LINE__, __FUNCTION__
+	$e = $db->query('SELECT d.score, p.user FROM hz_games g, hz_players p LEFT JOIN hz_dwz d ON d.user=p.user WHERE p.game=g.id AND p.type!="z" AND g.id=?',
+					__FILE__, __LINE__, __FUNCTION__, [$gid]
 		);
 	$idwz = array();
 	$prev_score_i = array();
diff --git a/www/includes/messagesystem.inc.php b/www/includes/messagesystem.inc.php
index 9060e67..8f5ec78 100644
--- a/www/includes/messagesystem.inc.php
+++ b/www/includes/messagesystem.inc.php
@@ -23,8 +23,7 @@
  * @include util.inc.php		Required Helper Functions
  * @include usersystem.inc.php	Required User Class and Functions
  */
-require_once dirname(__FILE__).'/config.inc.php';
-require_once INCLUDES_DIR.'util.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
 /**
@@ -32,16 +31,14 @@
  *
  * In dieser Klasse befinden sich alle Funktionen zum Senden & Verwalten der Nachrichten
  *
- * @author		[z]milamber
- * @author		IneX
  * @package		zorg
  * @subpackage	Messagesystem
- * @date		25.05.2018
+ *
  * @version		4.0
- * @since		1.0 class added
- * @since		2.0 added e-mail notification
- * @since		3.0 17.03.2018 implemented with telegrambot.inc.php
- * @since		4.0 21.10.2018 implemented with notifications.inc.php
+ * @since		1.0 `[z]milamber` class added
+ * @since		2.0 `17.03.2018` IneX` added e-mail notification
+ * @since		3.0 `25.05.2018` ` `IneX` implemented with telegrambot.inc.php
+ * @since		4.0 `21.10.2018` `IneX` implemented with notifications.inc.php
  */
 class Messagesystem
 {
@@ -50,9 +47,8 @@ class Messagesystem
 	 *
 	 * Controller für diverse Message Actions
 	 *
-	 * @author [z]milamber
 	 * @version 2.1
-	 * @since 1.0 `milamber` method added
+	 * @since 1.0 `[z]milamber` method added
 	 * @since 2.0 `IneX` code optimizations
 	 * @since 2.1 `04.04.2021` `IneX` fixed wrong check if own message, and PHP Deprecated: Non-static method Messagesystem::sendMessage()
 	 *
@@ -60,12 +56,11 @@ class Messagesystem
 	 * @uses Messagesystem::sendMessage()
 	 * @param integer $messageid ID der ausgewählten Nachricht(en)
 	 * @param integer $deleter_userid User-ID welcher die Nachricht(en) löscht
-	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
 	 * @global object $user Globales Class-Object mit den User-Methoden & Variablen
 	 */
 	static function execActions()
 	{
-		global $db, $user;
+		global $user;
 
 		if(isset($_POST['action']) && $_POST['action'] === 'sendmessage')
 		{
@@ -76,8 +71,7 @@ static function execActions()
 				/** Wenn ich mir selber was schicke, dann nimm die Bärbel als Absender */
 				if ($to_users[$i] == $user->id)
 				{
-					//Messagesystem::sendMessage(
-					(new self())->sendMessage(
+					self::sendMessage(
 						BARBARA_HARRIS,
 						$to_users[$i],
 						$_POST['subject'],
@@ -88,8 +82,7 @@ static function execActions()
 
 				/** Nachricht an andere Leute */
 				else {
-					//Messagesystem::sendMessage(
-					(new self())->sendMessage(
+						self::sendMessage(
 						$user->id,
 						$to_users[$i],
 						$_POST['subject'],
@@ -101,7 +94,7 @@ static function execActions()
 			}
 
 			/** Eigene Message für den 'Sent'-Ordner */
-			(new self())->sendMessage(
+			self::sendMessage(
 				$user->id,
 				$user->id,
 				$_POST['subject'],
@@ -110,13 +103,13 @@ static function execActions()
 				1
 			);
 
-			/** @FIXME Wieso wird hier die deleteMessage-Funktion aufgerufen in der "sendmessage"-Aktion? Inex/28.10.2013 */
+			/** When the option "Delete message after sending" was checked... */
 			if (isset($_POST['delete_message_id']) && $_POST['delete_message_id'] > 0) {
 				Messagesystem::deleteMessage($_POST['delete_message_id'], $user->id);
 			}
 
 			$headerLocation = ( !empty($_POST['url']) ? base64url_decode($_POST['url']) . '&sent=successful' : sprintf('%s/profil.php?user_id=%d&box=outbox&sent=successful', SITE_URL, $user->id) );
-			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> header() Location: %s', __METHOD__, __LINE__, $headerLocation));
+			zorgDebugger::log()->debug('header() Location: %s', [$headerLocation]);
 			header('Location: ' . $headerLocation);
 		}
 
@@ -125,12 +118,12 @@ static function execActions()
 			/** Delete all passed message_id's */
 			for ($i=0; $i < count($_POST['message_id']); $i++) {
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Deleting Message ID: %d', __METHOD__, __LINE__, $_POST['message_id']));
-				Messagesystem::deleteMessage($_POST['message_id'][$i], $user->id);
+				self::deleteMessage($_POST['message_id'][$i], $user->id);
 			}
 
 			/** If only singe passed message_id, redirect User to previous Message */
 			if(count($_POST['message_id']) == 1) {
-				$msgid = Messagesystem::getPrevMessageid($_POST['message_id'][0]);
+				$msgid = self::getPrevMessageid($_POST['message_id'][0]);
 				if($msgid > 0) {
 					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Redirecting User to Message ID: %d', __METHOD__, __LINE__, $msgid));
 					header("Location: messagesystem.php?message_id=".$msgid."&".session_name()."=".session_id()."&delete=done");
@@ -151,11 +144,11 @@ static function execActions()
 		{
 			/** Change Message Status to UNREAD */
 			for ($i=0; $i < count($_POST['message_id']); $i++) {
-				Messagesystem::doMessagesUnread($_POST['message_id'][$i], $user->id);
+				self::doMessagesUnread($_POST['message_id'][$i], $user->id);
 			}
 
 			if(count($_POST['message_id']) == 1) {
-				$msgid = Messagesystem::getPrevMessageid($_POST['message_id'][0]);
+				$msgid = self::getPrevMessageid($_POST['message_id'][0]);
 				if($msgid > 0) {
 					header("Location: messagesystem.php?message_id=".$msgid."&".session_name()."=".session_id());
 					//exit;
@@ -172,10 +165,10 @@ static function execActions()
 		if(isset($_POST['do']) && $_POST['do'] === 'mark_all_as_read')
 		{
 			/** Mark all Messages as read */
-			Messagesystem::doMarkAllAsRead($user->id);
+			self::doMarkAllAsRead($user->id);
 
 			if(count($_POST['message_id']) == 1) {
-				$msgid = Messagesystem::getPrevMessageid($_POST['message_id'][0]);
+				$msgid = self::getPrevMessageid($_POST['message_id'][0]);
 				if($msgid > 0) {
 					header("Location: messagesystem.php?message_id=".$msgid."&".session_name()."=".session_id());
 					//exit;
@@ -207,14 +200,12 @@ function deleteMessage($messageid, $deleter_userid)
 	{
 		global $db;
 
-		$sql = "SELECT id, owner FROM messages where id = ".$messageid;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = "SELECT id, owner FROM messages where id=?";
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$messageid]));
 
 		if($rs['owner'] == $deleter_userid) {
-		$sql =
-			"DELETE FROM messages WHERE id = ".$messageid
-		;
-		$db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = "DELETE FROM messages WHERE id=?";
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$messageid]);
 		}
 	}
 
@@ -236,9 +227,8 @@ function doMessagesUnread($messageid, $userid)
 
 		if ($messageid > 0 && $messageid != '' && $userid > 0 && $userid != '') // ok man könnte auch noch auf $user->id checken
 		{
-			$sql =
-				"UPDATE messages SET isread='0' WHERE isread='1' AND id=$messageid AND owner=$userid";
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = "UPDATE messages SET isread='0' WHERE isread='1' AND id=? AND owner=?";
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$messageid, $userid]);
 		}
 	}
 
@@ -261,8 +251,8 @@ static function doMarkMessageAsRead($messageid)
 
 		if (!empty($messageid))
 		{
-			$sql = "UPDATE messages set isread='1' WHERE id=$messageid;";
-			if (false !== $db->query($sql, __FILE__, __LINE__, __METHOD__))
+			$sql = "UPDATE messages set isread='1' WHERE id=?";
+			if (false !== $db->query($sql, __FILE__, __LINE__, __METHOD__, [$messageid]))
 			{
 				return true;
 			} else {
@@ -289,8 +279,8 @@ static function doMarkAllAsRead($userid)
 
 		if (!empty($userid) && is_numeric($userid) && $userid > 0) // man könnte auch noch auf $user->id checken
 		{
-			$sql = 'UPDATE messages SET isread="1" WHERE isread="0" AND owner='.$userid;
-				$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'UPDATE messages SET isread="1" WHERE isread="0" AND owner=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$userid]);
 		}
 	}
 
@@ -404,11 +394,11 @@ static function getInboxHTML($box='inbox', $pagesize=11, $page=1, $orderby='date
 		/** Query messages - Neuste (!isread) immer zuoberst */
 		$messages = [];
 		$sql = "SELECT *, UNIX_TIMESTAMP(date) as date
-				FROM messages where owner = ".$user->id ."
-				AND from_user_id ".($box == "inbox" ? "<>" : "=").$user->id ."
+				FROM messages WHERE owner=?
+				AND from_user_id ".($box == "inbox" ? "<>?" : "=?")."
 				ORDER BY isread ASC, ".$orderby." ".$sortby."
-				LIMIT ".($page-1) * $pagesize.",".$pagesize;
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				LIMIT ?,?";
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $user->id, ($page-1)*$pagesize, $pagesize]);
 
 		while($rs = $db->fetch($result)) {
 			$messages[] = $rs;
@@ -416,7 +406,7 @@ static function getInboxHTML($box='inbox', $pagesize=11, $page=1, $orderby='date
 		$smarty->assign('messages', $messages);
 
 		/** Calculate number of pages */
-		$numMessages = Messagesystem::getNumUserMessages($user->id);
+		$numMessages = self::getNumUserMessages($user->id);
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $numMessages: %s', __METHOD__, __LINE__, print_r($numMessages,true)));
 		$numPages = (!empty($numMessages) ? ceil($numMessages[$box] / $pagesize) : $page);
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $numPages: %s', __METHOD__, __LINE__, $numPages));
@@ -445,8 +435,8 @@ static function getNumNewMessages()
 
 		if ($user->is_loggedin())
 		{
-			$sql = 'SELECT count(*) AS num FROM messages WHERE owner='.$user->id.' AND isread = "0"'; // isread = ENUM(0;1)
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT count(*) AS num FROM messages WHERE owner=? AND isread="0"'; // isread = ENUM(0;1)
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id]);
 			$rs = $db->fetch($result);
 
 			return intval($rs['num']);
@@ -460,10 +450,9 @@ static function getNumNewMessages()
 	 * Berechnet die Anzahl aller Nachrichten eines Users.
 	 * Wird benötigt für das Paginating in Messagesystem::getInboxHTML()
 	 *
-	 * @author IneX
-	 * @date 24.06.2018
 	 * @version 1.0
-	 * @since 1.0 initial method release
+	 * @since 1.0 `24.06.2018` `IneX` initial method release
+	 * @since 1.1 `03.01.2024` `IneX` removed my own user's static ID from the sql query... Dafuq ^^
 	 *
 	 * @see Messagesystem::getInboxHTML()
 	 * @param integer $userid User-ID welcher alle Nachricht(en) als gelesen markieren möchte
@@ -476,11 +465,10 @@ static function getNumUserMessages($userid)
 
 		/** A MySQL Sub-Query retrieving user's total messages for the inbox & outbox at the same time */
 		$sql = "SELECT
-					(SELECT count(id) as num FROM messages where owner = 117 AND from_user_id <> 117) num_inbox,
-					(SELECT count(id) as num FROM messages where owner = 117 AND from_user_id = 117) num_outbox
-				FROM messages
-				LIMIT 1";
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+					(SELECT count(id) as num FROM messages where owner=? AND from_user_id<>?) num_inbox,
+					(SELECT count(id) as num FROM messages where owner=? AND from_user_id=?) num_outbox
+				FROM messages LIMIT 1";
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$userid, $userid, $userid, $userid]);
 		$rs = $db->fetch($result);
 
 		if ($db->num($result) > 0 && false !== $rs)
@@ -497,12 +485,9 @@ static function getNumUserMessages($userid)
 	 *
 	 * Zeigt eine Message an
 	 *
-	 * @author [z]milamber
-	 * @author IneX
-	 * @date 24.06.2018
 	 * @version 2.0
-	 * @since 1.0 initial method release
-	 * @since 2.0 frontend is now a template - as it should be
+	 * @since 1.0 `[z]milamber` initial method release
+	 * @since 2.0 `24.06.2018` `IneX` frontend is now a template - as it should be
 	 *
 	 * @see Messagesystem::getMessageDetails()
 	 * @see Messagesystem::doMarkMessageAsRead()
@@ -515,17 +500,17 @@ static function displayMessage($messageid)
 	{
 		global $user, $smarty;
 
-		$messageDetails = Messagesystem::getMessageDetails($messageid);
+		$messageDetails = self::getMessageDetails($messageid);
 
 		if (false !== $messageDetails && !empty($messageDetails) && intval($messageDetails['owner']) === $user->id)
 		{
-			$smarty->assign('prevmessage_url', (Messagesystem::getNextMessageid($messageid) > 0 ? '<a href="/messagesystem.php?message_id='.Messagesystem::getNextMessageid($messageid).'"><-- </a> | ' : ''));
-			$smarty->assign('nextmessage_url', (Messagesystem::getPrevMessageid($messageid) > 0 ? '<a href="/messagesystem.php?message_id='.Messagesystem::getPrevMessageid($messageid).'"> --></a>' : ''));
-			$smarty->assign('deletemessage_html', Messagesystem::getFormDelete($messageid));
+			$smarty->assign('prevmessage_url', (self::getNextMessageid($messageid) > 0 ? '<a href="/messagesystem.php?message_id='.self::getNextMessageid($messageid).'"><-- </a> | ' : ''));
+			$smarty->assign('nextmessage_url', (self::getPrevMessageid($messageid) > 0 ? '<a href="/messagesystem.php?message_id='.self::getPrevMessageid($messageid).'"> --></a>' : ''));
+			$smarty->assign('deletemessage_html', self::getFormDelete($messageid));
 			$smarty->assign('messagedetails', $messageDetails);
 			$smarty->assign('recipientslist', explode(',', $messageDetails['to_users']));
 
-			Messagesystem::doMarkMessageAsRead($messageid);
+			self::doMarkMessageAsRead($messageid);
 
 		} else {
 			$smarty->assign('error', t('invalid-permissions', 'messagesystem'));
@@ -553,11 +538,8 @@ static function getMessageDetails($messageid)
 
 		if (!empty($messageid) && $messageid > 0)
 		{
-			$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date
-					FROM messages
-					WHERE id = '.$messageid.'
-					LIMIT 0,1';
-			$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			$sql = 'SELECT *, UNIX_TIMESTAMP(date) as date FROM messages WHERE id=? LIMIT 1';
+			$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$messageid]));
 			if (false !== $rs && !empty($rs)) return $rs;
 			else return false;
 		} else {
@@ -571,9 +553,8 @@ static function getMessageDetails($messageid)
 	 *
 	 * Holt die ID der jeweils älteren Nachricht gegenüber der aktuell geöffneten
 	 *
-	 * @author [z]milamber
-	 * @date
 	 * @version 1.0
+	 * @since 1.0 `[z]milamber` Function added
 	 *
 	 * @param integer $id ID der aktuell angezeigten Nachricht
 	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
@@ -584,16 +565,9 @@ static function getNextMessageid($id)
 	{
 		global $db, $user;
 
-		$sql =
-			"SELECT *, UNIX_TIMESTAMP(date) as date"
-			." FROM messages"
-			." WHERE owner = ".$user->id
-			." AND from_user_id !=".$user->id
-			." AND id > ".$id
-			." ORDER BY id ASC"
-			." LIMIT 0,1"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = "SELECT *, UNIX_TIMESTAMP(date) as date FROM messages
+				WHERE owner=? AND from_user_id!=? AND id>? ORDER BY id ASC LIMIT 1";
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $user->id, $id]));
 		if (false !== $rs && !empty($rs)) return intval($rs['id']);
 		else return false;
 	}
@@ -604,12 +578,9 @@ static function getNextMessageid($id)
 	 *
 	 * Holt die ID der jeweils jüngeren Nachricht gegenüber der aktuell geöffneten
 	 *
-	 * @author [z]milamber
-	 * @author IneX
-	 * @date 24.06.2018
 	 * @version 2.0
-	 * @since 1.0 initial method release
-	 * @since 2.0 prev was always getting newewst message - fixed it
+	 * @since 1.0 `[z]milamber` initial method release
+	 * @since 2.0 `24.06.2018` `IneX` prev was always getting newewst message - fixed it
 	 *
 	 * @param integer $id ID der aktuell angezeigten Nachricht
 	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
@@ -620,16 +591,9 @@ static function getPrevMessageid($id)
 	{
 		global $db, $user;
 
-		$sql =
-			"SELECT *, UNIX_TIMESTAMP(date) as date"
-			." FROM messages"
-			." WHERE owner = ".$user->id
-			." AND from_user_id !=".$user->id
-			." AND id < ".$id
-			." ORDER BY id DESC"
-			." LIMIT 0,1"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = "SELECT *, UNIX_TIMESTAMP(date) as date FROM messages
+				WHERE owner=? AND from_user_id!=? AND id<? ORDER BY id DESC LIMIT 1";
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $user->id, $id]));
 		if (false !== $rs && !empty($rs)) return intval($rs['id']);
 		else return false;
 	}
@@ -640,16 +604,13 @@ static function getPrevMessageid($id)
 	 *
 	 * Speichert die gesendete Nachricht im Postfach des Empfängers und meinem Postausgang
 	 *
-	 * @author [z]milamber
-	 * @author IneX
-	 * @date 17.03.2018
 	 * @version 4.0
-	 * @since 1.0 method added
-	 * @since 2.0 verschickt eine Notification über die neue Nachricht per E-Mail
-	 * @since 3.0 verschickt eine Notification per Telegram Messenger
-	 * @since 3.1 `17.03.2018` changed to new Telegram Send-Method
-	 * @since 3.2 `15.10.2018` added array-implode for passed $to_users parameter
-	 * @since 4.0 `21.10.2018` connected to new Notification() Class
+	 * @since 1.0 `[z]milamber` method added
+	 * @since 2.0 `IneX` verschickt eine Notification über die neue Nachricht per E-Mail
+	 * @since 3.0 `IneX` verschickt eine Notification per Telegram Messenger
+	 * @since 3.1 `17.03.2018` `IneX` changed to new Telegram Send-Method
+	 * @since 3.2 `15.10.2018` `IneX` added array-implode for passed $to_users parameter
+	 * @since 4.0 `21.10.2018` `IneX` connected to new Notification() Class
 	 *
 	 * @see Notification::send()
 	 * @param integer	$from_user_id User-ID des Senders
@@ -659,12 +620,11 @@ static function getPrevMessageid($id)
 	 * @param string	$to_users (Optional) Liste aller Empfänger der Nachricht
 	 * @param string	$isread (Optional) Lesestatus der Nachricht - ENUM('0','1'), Default: Ungelesen ('0')
 	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
-	 * @global object $user Globales Class-Object mit den User-Methoden & Variablen
 	 * @return boolean	Returns true or false, depening on the susccessful execution
 	 */
 	function sendMessage($from_user_id, $owner, $subject, $text='', $to_users='', $isread='0')
 	{
-		global $db, $user, $notification;
+		global $db, $notification;
 
 		/** Validate function parameters */
 		if (!isset($owner) || empty($owner) || $owner <= 0) {
@@ -678,11 +638,10 @@ function sendMessage($from_user_id, $owner, $subject, $text='', $to_users='', $i
 		/**
 		 * Send zorg Message to recipient
 		 */
-		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Sending SINGLE Zorg Message "%s" to $owner %d', __METHOD__, __LINE__, $subject, $owner));
-		$sql = sprintf('INSERT INTO messages (from_user_id, owner, subject, text, date, isread, to_users)
-						VALUES (%d, %d, "%s", "%s", "%s", "%s", "%s")',
-						$from_user_id, $owner, escape_text($subject), escape_text($text), timestamp(true), $isread, $to_users);
-		$db->query($sql, __FILE__, __LINE__, __METHOD__);
+		zorgDebugger::log()->debug('Type SINGLE to $owner %d: %s', [$owner, $subject]);
+		$sql = 'INSERT INTO messages (from_user_id, owner, subject, text, date, isread, to_users)
+				VALUES (?, ?, ?, ?, ?, ?, ?)';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$from_user_id, $owner, $subject, $text, timestamp(true), strval($isread), $to_users]);
 
 		/**
 		 * Notify $owner about new zorg Message
diff --git a/www/includes/peter.inc.php b/www/includes/peter.inc.php
index b30aecf..d7af421 100644
--- a/www/includes/peter.inc.php
+++ b/www/includes/peter.inc.php
@@ -5,17 +5,16 @@
  * Hier ist die Hauptklasse zum Peter Spiel zu finden,
  * sowie all seine Funktionen.
  *
- * @author [z]Duke
- * @author [z]domi
  * @package zorg\Games\Peter
  */
+
 /**
  * File includes
  * @include config.inc.php required
  * @include forum.inc.php
  * @include usersystem.inc.php required
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 include_once INCLUDES_DIR.'forum.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
@@ -24,24 +23,25 @@
  *
  * Dies ist die Hauptklasse zum Peter Spiel
  *
- * @author [z]Duke
- * @author [z]domi
- * @author IneX
  * @package zorg\Games\Peter
  * @version 3.0
- * @since 1.0 Class added
- * @since 2.0 ?
+ * @since 1.0 `[z]Duke` Class added
+ * @since 2.0 `[z]domi`
  * @since 3.0 `18.08.2018` `IneX` Moved function for pending Peter-Games of a User as part of the Class
  */
 class peter
 {
 	/**
-	 * Class Constants
+	 * Class Vars
 	 *
-	 * @var array $next_zug_messagesubjects
+	 * @var int $game_id
+	 * @var object $lc Last Card
 	 * @var int $playersNum
 	 * @var string $wunschFarbe
+	 * @var array $next_zug_messagesubjects
 	 */
+	public $game_id = 0;
+	public $lc = null;
 	public $playersNum;
 	public $wunschFarbe;
 	private static $next_zug_messagesubjects = [
@@ -94,20 +94,14 @@ static function rosenverkaufer($mode='login')
 			if($rand === 23)
 			{
 				/** ...und Rosenverkäufer heute noch nicht online war */
-				$sql = 'SELECT UNIX_TIMESTAMP(lastlogin) as lastlogin
-						FROM user
-						WHERE id=?
-							AND UNIX_TIMESTAMP(lastlogin) < UNIX_TIMESTAMP(CAST(?-INTERVAL 7 DAY AS DATE))';
+				$sql = 'SELECT UNIX_TIMESTAMP(lastlogin) as lastlogin FROM user
+						WHERE id=? AND UNIX_TIMESTAMP(lastlogin) < UNIX_TIMESTAMP(CAST(?-INTERVAL 7 DAY AS DATE))';
 				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [ROSENVERKAEUFER, timestamp(true)]);
 
 				if ($db->num($result) !== FALSE)
 				{
 					/** ...Rosenverkäufer einloggen */
-					$sql = 'UPDATE user SET
-								currentlogin=?
-								,activity=?
-								,lastlogin=currentlogin
-							WHERE id=?';
+					$sql = 'UPDATE user SET currentlogin=?, activity=?, lastlogin=currentlogin WHERE id=?';
 					$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), timestamp(true), ROSENVERKAEUFER]);
 				} else {
 					/** Return 0 so nothing will happen... */
@@ -117,12 +111,9 @@ static function rosenverkaufer($mode='login')
 		}
 		/** Sonst prüfen ob der Rosenverkäufer eingeloggt ist */
 		else {
-			$sql = 'SELECT UNIX_TIMESTAMP(activity) as act
-					FROM user
-					WHERE id=?
-						AND (UNIX_TIMESTAMP(activity) + ?) > UNIX_TIMESTAMP(?)';
+			$sql = 'SELECT UNIX_TIMESTAMP(activity) as act FROM user WHERE id=? AND (UNIX_TIMESTAMP(activity)+?) > UNIX_TIMESTAMP(?)';
 			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [ROSENVERKAEUFER, USER_TIMEOUT, timestamp(true)]);
-			$rosen = $db->num($result);
+			$rosen = intval($db->num($result));
 
 			return $rosen;
 		}
@@ -155,12 +146,12 @@ function ausgeben($gameId, $numPlayers)
 		if((36 % $numPlayers) === 0)
 		{
 			/** Alle Karten selektieren */
-			$sql = 'SELECT  * FROM peter';
+			$sql = 'SELECT * FROM peter';
 		}
 		/** Wenn die Karten nicht aufgehen */
 		else {
 			/** Alle Karten selektieren ausser Eichel 6 (id 11) */
-			$sql = 'SELECT * FROM peter WHERE card_id <> 11';
+			$sql = 'SELECT * FROM peter WHERE card_id<>11';
 		}
 
 		/** karten selektieren */
@@ -174,10 +165,8 @@ function ausgeben($gameId, $numPlayers)
 		shuffle($karten);
 
 		/** spieler selektieren */
-		$sql = 'SELECT *
-				FROM peter_players
-				WHERE game_id = '.$this->game_id;
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM peter_players WHERE game_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 		while($rs = $db->fetch($result)) {
 			$in = ($rs['join_id'] - 1);
 			$pp[$in] = $rs['user_id'];
@@ -188,15 +177,13 @@ function ausgeben($gameId, $numPlayers)
 		{
 			$in = ($i % $numPlayers);
 			$uu = $pp[$in];
-			$sql = 'INSERT into peter_cardsets
-					(game_id, card_id, user_id, status, datum)
-					VALUES ('.$this->game_id.','.$karten[$i].','.$uu.',"nicht gelegt", NOW())';
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'INSERT INTO peter_cardsets (game_id, card_id, user_id, status, datum) VALUES (?, ?, ?, "nicht gelegt", ?)';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $karten[$i], $uu, timestamp(true)]);
 			$card[$uu][] = $karten[$i];
 		}
 		/** game status updaten */
-		$sql = 'UPDATE peter_games set status = "lauft" WHERE game_id = '.$this->game_id;
-		$db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'UPDATE peter_games set status="lauft" WHERE game_id=?';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 	}
 
 	/**
@@ -222,26 +209,15 @@ function next_player($act_player, $players)
 		global $db, $notification;
 
 		/** Join ID des aktuellen Spielers ermitteln */
-		$sql = 'SELECT join_id
-				FROM peter_players pp
-				WHERE
-					pp.user_id = '.$act_player.'
-					AND pp.game_id = '.$this->game_id;
-		$rq = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT join_id FROM peter_players pp WHERE pp.user_id=? AND pp.game_id=?';
+		$rq = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$act_player, $this->game_id]);
 		$rr = $db->fetch($rq);
 
 		/** Join ID inkrementieren oder wenn max players erreicht wurde wieder bei 1 anfangen */
 		$next_join_id = ($rr['join_id'] == $players) ? 1 : $rr['join_id'] + 1;
 
-		$sql = 'SELECT
-					user_id,
-					make
-				FROM peter_players pp
-				WHERE
-					pp.game_id = '.$this->game_id.'
-					AND
-					pp.join_id = '.$next_join_id;
-		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT user_id, make FROM peter_players pp WHERE pp.game_id=? AND pp.join_id=?';
+		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $next_join_id]);
 		$rr = $db->fetch($rr);
 
 		/** Prüfen ob der Spieler nicht bereits fertig ist */
@@ -250,8 +226,8 @@ function next_player($act_player, $players)
 		}
 
 		/** Nächster Spieler freischalten */
-		$sql = 'UPDATE peter_games set next_player = '.$rr['user_id'].', last_activity = now() WHERE game_id = '.$this->game_id;
-		$db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'UPDATE peter_games set next_player=?, last_activity=? WHERE game_id=?';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$rr['user_id'], timestamp(true), $this->game_id]);
 
 		/** Sendet dem nächsten Spieler eine (random) Message, damit er weiss, dass er dran ist */
 		$text = 'I ha min Zug gmacht i &uuml;sem Peter Spiel, etz bisch du wieder dra!<br/><br/>&#8594; <a href="'.SITE_URL.'/peter.php?game_id='.$this->game_id.'">Mach doooo!</a>';
@@ -302,12 +278,9 @@ function exec_peter()
 			if (isset($this->lc['value']) && is_numeric($this->lc['value']) && $this->lc['value'] > 0) $this->auto_nextplayer();
 
 			/** Inaktive Spieler übergehen */
-			$sql = 'SELECT game_id, players, next_player, last_activity
-					FROM peter_games
-					WHERE
-						(UNIX_TIMESTAMP(NOW()) - (86400*2)) > UNIX_TIMESTAMP(last_activity)
-						AND status = "lauft"';
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT game_id, players, next_player, last_activity FROM peter_games
+					WHERE (UNIX_TIMESTAMP(?)-(86400*2)) > UNIX_TIMESTAMP(last_activity) AND status="lauft"';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true)]);
 			$old_game_id = $this->game_id;
 
 			/** Nächster Spieler freischalten */
@@ -337,17 +310,12 @@ function set_wunsch($wunsch)
 		{
 			/** Wunsch setzten */
 			// TODO change to $db->insert()
-			$sql = "INSERT into peter_wunsche
-					(game_id, card_id, user_id, wunsch, datum)
-					VALUES
-					(".$this->game_id.", ".$this->lc['card_id'].", ".$user->id.",'".$wunsch."', now())";
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'INSERT into peter_wunsche (game_id, card_id, user_id, wunsch, datum) VALUES (?, ?, ?, ?, ?)';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $this->lc['card_id'], $user->id, $wunsch, timestamp(true)]);
 
 			/** Anzahl Players ermitteln */
-			$sql = 'SELECT players
-					FROM peter_games
-					WHERE game_id = '.$this->game_id;
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT players FROM peter_games WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 			$rs = $db->fetch($result);
 
 			/** Nächster Spieler freischalten */
@@ -367,15 +335,16 @@ function peteruuf($players)
 	{
 		global $db, $user;
 
-		/** spiel erstellen */
-		$sql = 'INSERT INTO peter_games (players, next_player, status, last_activity)
-				VALUES ('.$players.', '.$user->id.', "offen", NOW())';
-		$game_id = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		/** Neues Spiel erstellen */
+		$sql = 'INSERT INTO peter_games (players, next_player, status, last_activity) VALUES (?, ?, "offen", ?)';
+		$game_id = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$players, $user->id, timestamp(true)]);
 
 		/** ...und user grad joinen */
-		$sql = 'INSERT INTO peter_players (game_id, join_id, user_id)
-				VALUES ('.$game_id.', 1, '.$user->id.')';
-		$db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'INSERT INTO peter_players (game_id, join_id, user_id) VALUES (?, 1, ?)';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$game_id, $user->id]);
+
+		/** Activity Eintrag auslösen */
+		Activities::addActivity($user->id, 0, t('activity-newgame', 'peter', [ SITE_URL, $game_id ]), 'pt');
 	}
 
 	/**
@@ -403,16 +372,8 @@ public static function peter_zuege()
 		if($user->is_loggedin())
 		{
 			/** Anzahl offener Peter Züge des Users holen */
-			$sql = 'SELECT
-						count(*) num_open,
-						game_id
-					FROM peter_games
-					WHERE
-						next_player = '.$user->id.'
-						AND status = "lauft"
-					GROUP BY
-						game_id';
-			$peter_games = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			$sql = 'SELECT COUNT(*) num_open, game_id FROM peter_games WHERE next_player=? AND status = "lauft" GROUP BY game_id';
+			$peter_games = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id]));
 			return (!empty($peter_games) && $peter_games['num_open'] > 0 ? $peter_games : 0);
 		} else {
 			return false;
@@ -436,7 +397,7 @@ function offene_spiele()
 		global $db, $user;
 
 		$html = '<h3>Offene Spiele</h3>';
-		$sql = 'SELECT * FROM peter_games WHERE status = "offen"';
+		$sql = 'SELECT * FROM peter_games WHERE status="offen"';
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		if ($db->num($result) > 0)
@@ -453,34 +414,26 @@ function offene_spiele()
 
 			while($rs = $db->fetch($result))
 			{
-				$html .= "
-				<tr>
-					<td>
-					".$rs['game_id']."
-					</td><td>";
-
-				$sql = 'SELECT *
-						FROM peter_players pp
-						WHERE pp.game_id = '.$rs['game_id'].'
-						ORDER by pp.join_id ASC';
-				$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$html .= "<tr><td>".$rs['game_id']."</td><td>";
+
+				$sql = 'SELECT * FROM peter_players pp WHERE pp.game_id=? ORDER by pp.join_id ASC';
+				$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['game_id']]);
 
 				$gejoint = FALSE;
-				$playerListe = '';
-				while($rsi = $db->fetch($resulti))
-				{
-					$playerListe .= $user->userprofile_link($rsi['user_id'], ['pic' => false, 'link' => TRUE, 'username' => true, 'clantag' => true]).', ';
-					if($rsi['user_id'] == $user->id) $gejoint = TRUE;
+				$players = [];
+				while ($rsi = $db->fetch($resulti)) {
+					$players[] = $user->userprofile_link($rsi['user_id'], ['pic' => false, 'link' => TRUE, 'username' => true, 'clantag' => true]);
+					if (intval($rsi['user_id']) === $user->id) $gejoint = TRUE;
 				}
-				$playerListe = substr($playerListe, 0, -2); // substr() entfernt das allerletzte Komma
-				$html .= '['.count(explode(',',$playerListe)).'/'.$rs['players'].'] '.$playerListe; // substr() entfernt das allerletzte Komma
+				$playerListe = implode(', ', $players);
+				$html .= '[' . count($players) . '/' . $rs['players'] . '] ' . $playerListe;
 				$html .= '</td>';
 
 				if ($gejoint == FALSE)
 				{
 					$html .= '<td><a href="?game_id='.$rs['game_id'].'" class="button"><b>'.t('game-join').'</b></a></td></tr>';
 				} else {
-					$numWaitingFor = $rs['players']-count(explode(',',$playerListe));
+					$numWaitingFor = $rs['players']-count($players);
 					$html .= sprintf('<td><i>%s %s</i></td></tr>', t('game-your-game'), ($numWaitingFor > 0 ? t('waiting-for-num-players', 'peter', [$numWaitingFor]) : ''));
 				}
 			}
@@ -513,17 +466,9 @@ function laufende_spiele($return_html=true)
 	{
 		global $db, $user;
 
-		$sql = 'SELECT
-					pg.game_id,
-					pg.next_player,
-					(SELECT join_id FROM peter_players WHERE game_id=pp.game_id AND user_id=pg.next_player) join_id,
-					pg.players
-				FROM peter_players pp
-				LEFT JOIN peter_games pg
-					ON pg.game_id = pp.game_id
-				WHERE
-					pg.status = "lauft"
-				GROUP BY pg.game_id';
+		$sql = 'SELECT pg.game_id, pg.next_player, pg.players,
+					(SELECT join_id FROM peter_players WHERE game_id=pp.game_id AND user_id=pg.next_player) join_id
+				FROM peter_players pp LEFT JOIN peter_games pg ON pg.game_id=pp.game_id WHERE pg.status = "lauft" GROUP BY pg.game_id';
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		if ($return_html)
@@ -543,29 +488,22 @@ function laufende_spiele($return_html=true)
 
 				while($rs = $db->fetch($result))
 				{
-					$spieler = "";
-					$sql = "
-					SELECT
-						pp.user_id
-					FROM peter_players pp
-					WHERE
-						pp.game_id = $rs[game_id]
-					ORDER by pp.join_id ASC";
-					$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+					$spieler = '';
+					$sql = 'SELECT pp.user_id FROM peter_players pp WHERE pp.game_id=? ORDER by pp.join_id ASC';
+					$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['game_id']]);
 					while($rsi = $db->fetch($resulti)) {
 						$spieler .= $user->link_userpage($rsi['user_id']).", ";
 					}
 
-					$html .= "
-					<tr align='left' bgcolor='".BACKGROUNDCOLOR."'>
-						<td>
-							<a href='$_SERVER[PHP_SELF]?game_id=$rs[game_id]'>$rs[game_id]</a>
-						</td>
-						<td>$spieler</td>
-						<td bgcolor='".BACKGROUNDCOLOR."'>
-							".$user->link_userpage($rs['next_player'])."
-						</td>
-					</tr>";
+					$html .= "<tr align='left' bgcolor='".BACKGROUNDCOLOR."'>
+								<td>
+									<a href='".htmlentities($_SERVER['PHP_SELF'])."?game_id=".$rs['game_id']."'>".$rs['game_id']."</a>
+								</td>
+								<td>".$spieler."</td>
+								<td bgcolor='".BACKGROUNDCOLOR."'>
+									".$user->link_userpage($rs['next_player'])."
+								</td>
+							</tr>";
 				}
 				$html .= "</table>";
 			} else {
@@ -600,17 +538,10 @@ function meine_laufende_spiele($user_id)
 
 		if (!empty($user_id) && $user_id > 0)
 		{
-			$sql = 'SELECT
-						pg.game_id,
-						pg.next_player
-					FROM peter_players pp
-					LEFT JOIN peter_games pg
-						ON pg.game_id = pp.game_id
-					WHERE
-						pg.status = "lauft"
-						AND
-						pp.user_id = '.$user_id;
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT pg.game_id, pg.next_player FROM peter_players pp
+					LEFT JOIN peter_games pg ON pg.game_id = pp.game_id
+					WHERE pg.status = "lauft" AND pp.user_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 
 			$html = '<h3>Meine Spiele</h3>';
 			if ($db->num($result) > 0)
@@ -625,32 +556,23 @@ function meine_laufende_spiele($user_id)
 				</td></tr>";
 
 				while($rs = $db->fetch($result)) {
-					$spieler = "";
-					$sql = "
-					SELECT
-						pp.user_id
-					FROM peter_players pp
-					WHERE
-						pp.game_id = $rs[game_id]
-					ORDER by pp.join_id ASC";
-					$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+					$spieler = '';
+					$sql = 'SELECT pp.user_id FROM peter_players pp WHERE pp.game_id=? ORDER by pp.join_id ASC';
+					$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['game_id']]);
 					while($rsi = $db->fetch($resulti)) {
 						$spieler .= $user->link_userpage($rsi['user_id']).", ";
 					}
 					$col = ($rs['next_player'] == $user_id) ? '#FF0000' : '#'.BACKGROUNDCOLOR;
 
-					$html .= "
-					<tr align='left' bgcolor='$col'>
-						<td>
-							<strong><a href='$_SERVER[PHP_SELF]?game_id=$rs[game_id]'>$rs[game_id]</a></strong>
-						</td>
-						<td>
-							$spieler
-						</td>
-						<td bgcolor='".BACKGROUNDCOLOR."'>
-							".$user->link_userpage($rs['next_player'])."
-						</td>
-					</tr>";
+					$html .= "<tr align='left' bgcolor='".$col."'>
+								<td>
+									<strong><a href='".htmlentities($_SERVER['PHP_SELF'])."?game_id=".$rs['game_id']."'>".$rs['game_id']."</a></strong>
+								</td>
+								<td>".$spieler."</td>
+								<td bgcolor='".BACKGROUNDCOLOR."'>
+									".$user->link_userpage($rs['next_player'])."
+								</td>
+							</tr>";
 				}
 				$html .= "</table>";
 			} else {
@@ -677,9 +599,8 @@ function peter_join($players)
 
 		/** Anzahl bisher gejointe ermitteln */
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Peter Game #%d - Players: %d', __METHOD__, __LINE__, $this->game_id, $players));
-		$sql = 'SELECT COUNT(*) as num_players FROM peter_players
-				WHERE game_id = '.$this->game_id;
-		$result = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT COUNT(*) as num_players FROM peter_players WHERE game_id=?';
+		$result = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]));
 		//$num = $db->num($result) + 1;
 		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Peter Game #%d - Num Players: %d', __METHOD__, __LINE__, $this->game_id, $result['num_players']));
 		$numJoin = $result['num_players'] + 1;
@@ -688,9 +609,8 @@ function peter_join($players)
 		/** player eintragen */
 		if ($numJoin <= $players)
 		{
-			$sql = 'REPLACE INTO peter_players (game_id, join_id, user_id)
-					VALUES ('.$this->game_id.', '.$numJoin.', '.$user->id.')';
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'REPLACE INTO peter_players (game_id, join_id, user_id) VALUES (?, ?, ?)';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $numJoin, $user->id]);
 
 			/** prüfen ob game gestartet werden soll */
 			if ($numJoin === $players)
@@ -720,42 +640,17 @@ function peter_join($players)
 	function lastcard()
 	{
 		global $db;
-		$sql = 'SELECT
-					p.description,
-					p.value,
-					p.col,
-					pc.card_id,
-					pc.spezial,
-					pc.user_id
-				FROM peter_cardsets pc
-				LEFT JOIN peter p
-					ON p.card_id = pc.card_id
-				WHERE
-					pc.game_id = '.$this->game_id.'
-					AND pc.status = "gelegt"
-				ORDER by pc.datum DESC
-				LIMIT 0,1';
-		$res = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT p.description, p.value, p.col, pc.card_id, pc.spezial, pc.user_id
+				FROM peter_cardsets pc LEFT JOIN peter p ON p.card_id = pc.card_id
+				WHERE pc.game_id=? AND pc.status="gelegt" ORDER by pc.datum DESC LIMIT 1';
+		$res = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]));
 
 		if(!empty($res['spezial']) && $res['spezial'] === 'rosen')
 		{
-			$sql = 'SELECT
-						p.description,
-						p.value,
-						p.col,
-						pc.card_id,
-						pc.spezial,
-						pc.user_id
-					FROM peter_cardsets pc
-					LEFT JOIN peter_spezialregeln p
-						ON p.card_id = pc.card_id
-					WHERE
-						pc.game_id = '.$this->game_id.'
-						AND pc.status = "gelegt"
-						AND p.typ = "rosen"
-					ORDER by pc.datum DESC
-					LIMIT 0,1';
-			$res = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			$sql = 'SELECT p.description, p.value, p.col, pc.card_id, pc.spezial, pc.user_id
+					FROM peter_cardsets pc LEFT JOIN peter_spezialregeln p ON p.card_id = pc.card_id
+					WHERE pc.game_id=? AND pc.status="gelegt" AND p.typ="rosen" ORDER by pc.datum DESC LIMIT 1';
+			$res = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]));
 		}
 
 		return $res;
@@ -774,30 +669,12 @@ function spielerstatus()
 	{
 		global $db, $user;
 
-		$sql = 'SELECT
-					pp.join_id,
-					pp.user_id,
-					tt.num_cards
-				FROM
-				(
-					SELECT
-						count(pc.card_id) as num_cards,
-						pc.user_id as user_id
-					FROM peter_cardsets pc
-					WHERE
-						pc.game_id = '.$this->game_id.'
-						AND pc.status = "nicht gelegt"
-					GROUP by pc.user_id
-				) as tt
-				LEFT JOIN peter_players pp
-					ON pp.user_id = tt.user_id
-				WHERE
-					pp.game_id = '.$this->game_id.'
-				ORDER by join_id ASC';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT pp.join_id, pp.user_id, tt.num_cards
+				FROM (SELECT COUNT(pc.card_id) as num_cards, pc.user_id as user_id FROM peter_cardsets pc WHERE pc.game_id=? AND pc.status = "nicht gelegt" GROUP by pc.user_id) as tt LEFT JOIN peter_players pp ON pp.user_id = tt.user_id
+				WHERE pp.game_id=? ORDER by join_id ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $this->game_id]);
 
-		$html = "
-		<table cellpadding='2' cellspacing='1' bgcolor='".BORDERCOLOR."'><tr>";
+		$html = "<table cellpadding='2' cellspacing='1' bgcolor='".BORDERCOLOR."'><tr>";
 		while($rs = $db->fetch($result)) {
 			$html .= "<td bgcolor='".TABLEBACKGROUNDCOLOR."'>".$user->id2user($rs['user_id'])." : <b>".$rs['num_cards']."</b> Karten</td>";
 		}
@@ -826,23 +703,20 @@ function spielerstatus()
 	 */
 	function auto_nextplayer($force_next_player=false)
 	{
-		global $db, $notifcation;
+		global $db, $notification;
 		if ($force_next_player === false)
 		{
 			/** Prüfen ob der Rosenverkäufer da ist */
 			$rosen = $this->rosenverkaufer('check');
 
 			/** Rosenverkäufer ist da */
+			$params = [];
 			if($rosen === 1 && isset($this->lc['user_id']))
 			{
-				$sql = 'SELECT *
-						FROM peter_cardsets pc
-						LEFT JOIN peter p
-							ON p.card_id = pc.card_id
-						WHERE game_id = '.$this->game_id.'
-						AND status = "nicht gelegt"
-						AND col = 2
-						AND user_id <> '.$this->lc['user_id'];
+				$sql = 'SELECT * FROM peter_cardsets pc LEFT JOIN peter p ON p.card_id = pc.card_id
+						WHERE game_id=? AND status = "nicht gelegt" AND col=2 AND user_id<>?';
+				$params[] = $this->game_id;
+				$params[] = $this->lc['user_id'];
 				/** SQL-Query erklärt:
 				 * - game_id 	= aktuelles Spiel
 				 * - status		= nur nicht gelegte Karten der Spieler
@@ -852,20 +726,17 @@ function auto_nextplayer($force_next_player=false)
 
 			/** Der Rosenverkäufer ist NICHT da */
 			} elseif (isset($this->lc['value'])) {
-				$sql = 'SELECT *
-						FROM peter_cardsets pc
-						LEFT JOIN peter p
-							ON p.card_id = pc.card_id
-						WHERE game_id = '.$this->game_id.'
-							AND status = "nicht gelegt"
-							AND value > '.$this->lc['value'];
+				$sql = 'SELECT * FROM peter_cardsets pc LEFT JOIN peter p ON p.card_id = pc.card_id
+						WHERE game_id=? AND status = "nicht gelegt" AND value>?';
+				$params[] = $this->game_id;
+				$params[] = $this->lc['value'];
 				/** SQL-Query erklärt:
 				 * - game_id = aktuelles Spiel
 				 * - status	= nur nicht gelegte Karten der Spieler
 				 * - value	= nur wer eine Karte mit GRÖSSEREM Wert als der letzte Spieler hat
 				 */
 			}
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, $params);
 
 			/**
 			 * Wenn niemand eine höhere Karte hat
@@ -874,10 +745,8 @@ function auto_nextplayer($force_next_player=false)
 			if($db->num($result) == FALSE)
 			{
 				/** Letzten Spieler nochmals aktivieren */
-				$sql = 'UPDATE peter_games
-						SET next_player = '.$this->lc['user_id'].', last_activity = NOW()
-						WHERE game_id = '.$this->game_id;
-				$db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'UPDATE peter_games SET next_player=?, last_activity=? WHERE game_id=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->lc['user_id'], timestamp(true), $this->game_id]);
 			}
 
 			/** Karten Daten für die "Letzte gelegte Karte" neu laden */
@@ -895,23 +764,18 @@ function auto_nextplayer($force_next_player=false)
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $next_join_id: %d', __METHOD__, __LINE__, $next_join_id));
 				if (!empty($next_join_id) && $next_join_id != $force_next_player['join_id'])
 				{
-					$sql = 'SELECT
-								user_id,
-								make
-							FROM peter_players
-							WHERE
-								game_id = '.$force_next_player['game_id'].'
-								AND join_id = '.$next_join_id.'
-								AND DATE((SELECT last_activity FROM peter_games WHERE game_id = 301)) < (NOW() - INTERVAL 7 DAY)'; // Check if last_activity is older than 7 days
-					$next_player = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+					/** Check if last_activity is older than 7 days */
+					$sql = 'SELECT user_id, make FROM peter_players
+							WHERE game_id=? AND join_id=? AND DATE((SELECT last_activity FROM peter_games WHERE game_id=?))<(?-INTERVAL 7 DAY';
+					$next_player = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$force_next_player['game_id'], $next_join_id, $force_next_player['game_id'], timestamp(true)]));
 					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $next_player: %s', __METHOD__, __LINE__, print_r($next_player,true)));
 
 					/** Prüfen ob der Spieler nicht bereits fertig ist */
 					if(!empty($next_player) && count($next_player) > 0 && $next_player['make'] != 'fertig')
 					{
 						/** Nächster Spieler freischalten */
-						$sql = 'UPDATE peter_games SET next_player='.$next_player['user_id'].', last_activity=NOW() WHERE game_id='.$force_next_player['game_id'];
-						if ($db->query($sql, __FILE__, __LINE__, __METHOD__))
+						$sql = 'UPDATE peter_games SET next_player=?, last_activity=? WHERE game_id=?';
+						if ($db->query($sql, __FILE__, __LINE__, __METHOD__, [$next_player['user_id'], timestamp(true), $force_next_player['game_id']]))
 						{
 							if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Nächster Spieler freischalten: OK', __METHOD__, __LINE__));
 							/** Sendet dem nächsten Spieler eine (random) Message, damit er weiss, dass er dran ist */
@@ -957,36 +821,23 @@ function regelcheck($card_id)
 
 		/** Rosenverkäuferanpassungen */
 		$regel_table = ($rosen == 1) ? "peter_spezialregeln" : "peter";
-		$regel_add = ($rosen == 1) ? "AND typ = 'rosen'" : " ";
+		$regel_add = ($rosen == 1) ? "AND typ='rosen'" : " ";
 
 		/** Prüfen ob bereits eine Karte gelegt wurde */
-		$sql = 'SELECT *
-				FROM peter_cardsets pc
-				WHERE
-					pc.game_id = '.$this->game_id.'
-					AND pc.status = "gelegt"';
-		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM peter_cardsets pc WHERE pc.game_id=? AND pc.status = "gelegt"';
+		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 
 		/** Bei Spiel Anfang kann alles gelegt werden */
 		if (!$db->num($rr)) $set = 1;
 
 		/** Prüfen ob der User die Karte noch hat */
-		$sql = 'SELECT *
-				FROM peter_cardsets pc
-				WHERE
-					pc.game_id = '.$this->game_id.'
-					AND pc.user_id = '.$user->id.'
-					AND pc.card_id = '.$card_id.'
-					AND pc.status = "nicht gelegt"';
-		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM peter_cardsets pc WHERE pc.game_id=? AND pc.user_id=? AND pc.card_id=? AND pc.status="nicht gelegt"';
+		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $user->id, $card_id]);
 		if($db->num($rr))
 		{
 			/** Prüfen ob Karte gesetzt werden darf */
-			$sql = 'SELECT *
-					FROM '.$regel_table.'
-					WHERE card_id = '.$card_id.'
-					'.$regel_add;
-			$ac = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+			$sql = 'SELECT * FROM '.$regel_table.' WHERE card_id=? '.$regel_add;
+			$ac = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$card_id]));
 
 			/** Wenn die zulegende Karte ein Zahl ist */
 			if($ac['value'] <= 5 && $this->lc['value'] != 0)
@@ -1038,14 +889,8 @@ function checkwunsch()
 		if(isset($this->lc['value']) && isset($this->lc['card_id']) && $this->lc['value'] === 0 && $this->lc['card_id'])
 		{
 			/** Prüfen ob bereits ein Wunsch zu dieser Karte vorliegt */
-			$sql = 'SELECT
-						pw.wunsch,
-						pw.user_id
-					FROM peter_wunsche pw
-					WHERE
-						pw.game_id = '.$this->game_id.'
-						AND pw.card_id = '.$this->lc[card_id];
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT pw.wunsch, pw.user_id FROM peter_wunsche pw WHERE pw.game_id=? AND pw.card_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $this->lc['card_id']]);
 
 			/** Wenn bereits ein Wunschvorliegt */
 			if($db->num($result)) {
@@ -1070,12 +915,8 @@ function get_wunsch()
 		global $db, $user;
 
 		/** Ermittelt den Letzten Wunsch zu einem game */
-		$sql = 'SELECT pw.wunsch, pw.user_id
-				FROM peter_wunsche pw
-				WHERE pw.game_id = '.$this->game_id.'
-				ORDER by datum DESC
-				LIMIT 0,1';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT pw.wunsch, pw.user_id FROM peter_wunsche pw WHERE pw.game_id=? ORDER by datum DESC LIMIT 1';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 		$rs = $db->fetch($result);
 
 		if (false !== $rs)
@@ -1115,31 +956,20 @@ function zug($card_id=null, $make, $players)
 			/** prüfen ob der zug zulässig ist */
 			if($this->regelcheck($card_id)) {
 				/** Zug ausführen */
-				$sql = 'UPDATE peter_cardsets
-						SET datum = NOW(), status = "gelegt", spezial = "'.$spezial.'"
-						WHERE
-							game_id = '.$this->game_id.'
-							AND card_id = '.$card_id;
-				$db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'UPDATE peter_cardsets SET datum=?, status="gelegt", spezial=? WHERE game_id=? AND card_id=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $spezial, $this->game_id, $card_id]);
 
-				/**
-				### Zug als Comment eintragen, damit man darüber diskutieren kann ###
-				/*$sql = "
-					SELECT *
-					FROM peter_cardsets
-					WHERE card_id = '".$card_id."'
-					";
-
-				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				/** Zug als Comment eintragen, damit man darüber diskutieren kann
+				$sql = "SELECT * FROM peter_cardsets WHERE card_id =?";
+				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$card_id]);
 				$rs = $db->fetch($result);
 				$text = "Ich habe die Karte '".$rs[description]."' gelegt.";
 				Forum::post($this->game_id, 'p', $user->id, $text, $msg_users='');
-				 */
+				*/
 
 				/** Spieler Table updaten */
-				$sql = 'UPDATE peter_players SET make = "'.$make.'"
-						WHERE user_id = '.$user->id.' AND game_id = '.$this->game_id;
-				$db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'UPDATE peter_players SET make=? WHERE user_id=? AND game_id=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$make, $user->id, $this->game_id]);
 
 				/** Prüfen ob nicht noch ein Wunsch nötig ist bevor der nächste am zug ist */
 				if($this->checkwunsch())
@@ -1158,9 +988,8 @@ function zug($card_id=null, $make, $players)
 			 */
 
 			/** Spieler Table updaten */
-			$sql = 'UPDATE peter_players set make = "'.$make.'"
-					WHERE user_id = '.$user->id.' AND game_id = '.$this->game_id;
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'UPDATE peter_players set make=? WHERE user_id=? AND game_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$make, $user->id, $this->game_id]);
 
 			$this->next_player($user->id, $players);
 
@@ -1168,37 +997,29 @@ function zug($card_id=null, $make, $players)
 			 * Wenn der User noch weitere offen Züge hat, direkt weiterleiten
 			 * Prüfen, ob noch Züge offen sind
 			 */
-			$sqli = 'SELECT game_id
-					FROM peter_games
-					WHERE
-						next_player = '.$user->id.'
-						AND status = "lauft"';
-			$resulti = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sqli = 'SELECT game_id FROM peter_games WHERE next_player=? AND status="lauft"';
+			$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__, [$user->id]);
 			$rsi = $db->fetch($resulti);
 
 			/** Wenn noch offene Züge, dann direkt ins nächste Spiel weiterleiten */
 			//$locationHeader = 'Location: '.SITE_URL.'/peter.php?game_id='.$rs[game_id];
-			if ($db->num($result)) header('Location: '.getChangedURL('game_id='.$rs['game_id']));
+			if ($db->num($resulti) > 0) header('Location: '.getChangedURL('game_id='.$rsi['game_id']));
 			exit();
 		}
 
 		/** Prüfen ob Spiel beendet werden soll */
-		$sql = 'SELECT *
-				FROM peter_cardsets pc
-				WHERE
-					pc.game_id = '.$this->game_id.'
-					AND pc.user_id = '.$user->id.'
-					AND pc.status = "nicht gelegt"';
-		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT * FROM peter_cardsets pc WHERE pc.game_id=? AND pc.user_id=? AND pc.status="nicht gelegt"';
+		$rr = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id, $user->id]);
 
 		/** Wenn das Spiel beendet werden kann */
 		if(!$db->num($rr))
 		{
 			/** Spiel beenden */
-			$sql = 'UPDATE peter_games
-					SET status = "geschlossen", winner_id = '.$user->id.'
-					WHERE game_id = '.$this->game_id;
-			$db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'UPDATE peter_games SET status = "geschlossen", winner_id=? WHERE game_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $this->game_id]);
+
+			/** Activity Eintrag auslösen */
+			Activities::addActivity($user->id, 0, t('activity-won', 'peter', [ SITE_URL, $this->game_id ]), 'pt');
 		}
 	}
 
@@ -1236,32 +1057,23 @@ function player_cardset($user_id)
 		$rosen = $this->rosenverkaufer('check');
 
 		/** Rosenverkäufer ist da */
+		$params = [];
 		if($rosen === 1 )
 		{
 			/** cardset für den betreffenden user im game selektieren und auf rosen regeln achten */
-			$sql = 'SELECT *
-					FROM peter_cardsets pc
-					LEFT JOIN peter_spezialregeln p
-						ON pc.card_id = p.card_id
-					WHERE
-						pc.user_id = '.$user_id.'
-						AND pc.game_id = '.$this->game_id.'
-						AND pc.status = "nicht gelegt"
-						AND p.typ = "rosen"
-					ORDER by p.value DESC';
-		} else {
+			$sql = 'SELECT * FROM peter_cardsets pc LEFT JOIN peter_spezialregeln p ON pc.card_id = p.card_id
+					WHERE pc.user_id=? AND pc.game_id=? AND pc.status="nicht gelegt" AND p.typ="rosen" ORDER by p.value DESC';
+			$params[] = $user_id;
+			$params[] = $this->game_id;
+		}
+		else {
 			/** Cardset für den User selektieren (normale regeln) */
-			$sql = 'SELECT *
-					FROM peter_cardsets pc
-					LEFT JOIN peter p
-						ON pc.card_id = p.card_id
-					WHERE
-						pc.user_id = '.$user_id.'
-						AND pc.game_id = '.$this->game_id.'
-						AND pc.status = "nicht gelegt"
-					ORDER by p.value DESC';
+			$sql = 'SELECT * FROM peter_cardsets pc LEFT JOIN peter p ON pc.card_id = p.card_id
+					WHERE pc.user_id=? AND pc.game_id=? AND pc.status="nicht gelegt" ORDER by p.value DESC';
+			$params[] = $user_id;
+			$params[] = $this->game_id;
 		}
-		return $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		return $db->query($sql, __FILE__, __LINE__, __METHOD__, $params);
 	}
 
 	/**
@@ -1285,33 +1097,10 @@ function peterscore()
 					<tbody>';
 
 		/** Score Query */
-		$sql = "SELECT
-					gp.user_id,
-					gp.num_games_played,
-					COALESCE(gw.num_games, '0') as num_games
-				FROM
-				(
-					SELECT
-						pp.user_id,
-						COUNT(pp.game_id) AS num_games_played
-					FROM peter_players pp
-					LEFT JOIN peter_games pg
-						ON pg.game_id = pp.game_id
-					WHERE
-						pg.status = 'geschlossen'
-					GROUP BY pp.user_id
-				) AS gp
-				LEFT JOIN (
-					SELECT
-						pg.winner_id,
-						COUNT(pg.game_id) AS num_games
-					FROM peter_games pg
-					WHERE
-						pg.status = 'geschlossen'
-					GROUP BY pg.winner_id
-					) AS gw
-					ON gp.user_id = gw.winner_id
-				ORDER BY num_games DESC";
+		$sql = "SELECT gp.user_id, gp.num_games_played, COALESCE(gw.num_games, '0') as num_games
+				FROM (SELECT pp.user_id, COUNT(pp.game_id) AS num_games_played FROM peter_players pp
+					LEFT JOIN peter_games pg ON pg.game_id = pp.game_id WHERE pg.status = 'geschlossen' GROUP BY pp.user_id) AS gp
+				LEFT JOIN (SELECT pg.winner_id, COUNT(pg.game_id) AS num_games FROM peter_games pg WHERE pg.status = 'geschlossen' GROUP BY pg.winner_id) AS gw ON gp.user_id = gw.winner_id ORDER BY num_games DESC";
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result))
@@ -1423,24 +1212,21 @@ function game($gd, $card_id=null, $make=null)
 				if ($gd['next_player'] === $user->id) $myTurnHtml = '<h4 class="blink">'.t('game-your-turn').'</h4>';
 
 				// @TODO das könnte in $smarty->assign('sidebarHtml', $sidebarHtml) gehen! (IneX)
-				$html .= "
-				<br />
-				<hr size='1' width='100%'>"
-				.$this->spielerstatus()
-				."<br>"
-				.(isset($myTurnHtml) ? $myTurnHtml : '')
-				."<hr size='1' width='100%'>
-				<h3>Meine Karten</h3>
-				<br>";
+				$html .= "<br><hr size='1' width='100%'>"
+					.$this->spielerstatus()
+					."<br>"
+					.(isset($myTurnHtml) ? $myTurnHtml : '')
+					."<hr size='1' width='100%'>
+					<h3>Meine Karten</h3>
+					<br>";
 				// END TODO
 
 				/** Aussetzen Button anzeigen wenn der spieler am zug ist */
 				if ($gd['next_player'] == $user->id)
 				{
-					$html .= "
-					<form action='?game_id=".$this->game_id."&make=aus' method='post'>
-					<input type='submit' value='aussetzen' class='button'>
-					</form><br /><br />";
+					$html .= "<form action='?game_id=".$this->game_id."&make=aus' method='post'>
+								<input type='submit' value='aussetzen' class='button'>
+							</form><br><br>";
 				}
 
 				/** Ausgabe der restlichen karten des Spielers */
@@ -1448,14 +1234,11 @@ function game($gd, $card_id=null, $make=null)
 				{
 					if($gd['next_player'] == $user->id && $zug)
 					{
-						$html .= "
-						<a href='?game_id=".$this->game_id."&card_id=$rs[card_id]&make=karte'>
-						<img border='0' src='/images/peter/".$rs['card_id'].".gif' alt='$rs[description]' title='$rs[description]'>
-						</a>";
+						$html .= "<a href='?game_id=".$this->game_id."&card_id=$rs[card_id]&make=karte'>
+								<img border='0' src='/images/peter/".$rs['card_id'].".gif' alt='$rs[description]' title='$rs[description]'>
+								</a>";
 					} else {
-						$html .= "
-						<img border='0' src='/images/peter/".$rs['card_id'].".gif' alt='$rs[description]' title='$rs[description]'>
-						";
+						$html .= "<img border='0' src='/images/peter/".$rs['card_id'].".gif' alt='$rs[description]' title='$rs[description]'>";
 					}
 				}
 
@@ -1464,8 +1247,8 @@ function game($gd, $card_id=null, $make=null)
 		/** Wenn Spiel beendet wurde */
 		elseif($gd['status'] === 'geschlossen')
 		{
-			$sql = 'SELECT username FROM user WHERE id = '.$gd['winner_id'];
-			$res = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = 'SELECT username FROM user WHERE id=?';
+			$res = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$gd['winner_id']]);
 			$rs = $db->fetch($res);
 
 			/** Gewinner anzeigen */
@@ -1503,18 +1286,9 @@ function kartenberg()
 	{
 		global $db, $user;
 
-		$sql = 'SELECT
-					pc.card_id,
-					pc.user_id,
-					p.description
-				FROM peter_cardsets pc
-				LEFT JOIN peter p
-					ON p.card_id = pc.card_id
-				WHERE
-					pc.game_id = '.$this->game_id.'
-					AND pc.status = "gelegt"
-				ORDER by datum ASC';
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$sql = 'SELECT pc.card_id, pc.user_id, p.description FROM peter_cardsets pc LEFT JOIN peter p ON p.card_id = pc.card_id
+				WHERE pc.game_id=? AND pc.status = "gelegt" ORDER by datum ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->game_id]);
 		$i = 0;
 
 		if ($db->num($result) > 0)
@@ -1541,7 +1315,7 @@ function kartenberg()
 				$i++;
 			}
 		} else {
-			$img = imagecreatefromgif(dirname(__FILE__).'/../images/peter/jassteppich.gif');
+			$img = imagecreatefromgif(PHP_IMAGES_DIR.'peter/jassteppich.gif');
 		}
 		return $img;
 	}
@@ -1577,7 +1351,7 @@ function img_kartenberg($textToPlot, $card_id, $mode='add', $depth=0, $img_input
 		if ($mode === 'create')
 		{
 			/** start image erstellen */
-			$first_img = imagecreatefromgif(dirname(__FILE__).'/../images/peter/'.$card_id.'.gif');
+			$first_img = imagecreatefromgif(PHP_IMAGES_DIR.'peter/'.$card_id.'.gif');
 
 			/** Font color für Namen bestimmen */
 			$fontc = imagecolorallocate($first_img, 0, 0, 0);
@@ -1599,7 +1373,7 @@ function img_kartenberg($textToPlot, $card_id, $mode='add', $depth=0, $img_input
 			$y_verschiebung = rand(20,45);
 
 			/** hinzuzufügende karte in ein image handle laden */
-			$add_img = imagecreatefromgif(dirname(__FILE__).'/../images/peter/'.$card_id.'.gif');
+			$add_img = imagecreatefromgif(PHP_IMAGES_DIR.'peter/'.$card_id.'.gif');
 
 			/** Schriftfarbe anlegen */
 			$fontc = imagecolorallocate($add_img,0,0,0);
diff --git a/www/includes/poll.inc.php b/www/includes/poll.inc.php
index 44952f2..4959e64 100644
--- a/www/includes/poll.inc.php
+++ b/www/includes/poll.inc.php
@@ -3,13 +3,18 @@
  * Poll Klasse und Funktionen.
  * @package zorg\Polls
  */
+
 /**
  * File includes
  * @include config.inc.php
+ * @include mysql.inc.php
  * @include usersystem.inc.php
+ * @include smarty.inc.php
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
+require_once INCLUDES_DIR.'smarty.inc.php';
 
 /**
  * zorg Polls
@@ -27,6 +32,7 @@ class Polls
 	 * @since 2.0 `11.09.2018` fixed SQL-Query (Polls were broken for not-loggedin users)
 	 * @since 3.0 `11.09.2018` fixed @TODO Extract HTML-View into Template-File and use $smarty->display()
 	 * @since 3.1 `19.02.2019` code optimizations, moved function inside class
+	 * @since 3.2 `03.01.2024` changed SQL queries to mysqli prepared statements
 	 *
 	 * @uses self::user_has_vote_permission()
 	 * @param $id Poll-ID to display
@@ -38,15 +44,17 @@ function show($id)
 	{
 		global $db, $user, $smarty;
 
-		$sql = 'SELECT
-					 p.*
-					,UNIX_TIMESTAMP(p.date) date
-					,(SELECT count(*) FROM poll_votes WHERE poll='.$id.') total_votes
-					'.($user->is_loggedin() ? ',(SELECT answer FROM poll_votes WHERE poll='.$id.' AND user='.$user->id.') myvote' : '').'
-				FROM polls p
-				WHERE id='.$id.'
-				GROUP BY p.id';
-		$poll = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__));
+		$params = [];
+		$sql = 'SELECT p.* ,UNIX_TIMESTAMP(p.date) date ,(SELECT count(*) FROM poll_votes WHERE poll=?) total_votes
+					'.($user->is_loggedin() ? ',(SELECT answer FROM poll_votes WHERE poll=? AND user=?) myvote' : '').'
+				FROM polls p WHERE id=? GROUP BY p.id';
+		$params[] = $id;
+		if ($user->is_loggedin()) {
+			$params[] = $id;
+			$params[] = $user->id;
+		}
+		$params = $id;
+		$poll = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__, $params));
 		//if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $poll: %s', __FUNCTION__, __LINE__, print_r($poll,true)));
 
 		if (!empty($poll) && $poll !== false)
@@ -59,20 +67,17 @@ function show($id)
 			//if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $user_has_vote_permission: %s', __FUNCTION__, __LINE__, ($user_has_vote_permission?'true':'false')));
 
 			/** Query Poll answers and return each answer with votes count */
-			$pollMaxvotes = 0;
-			if($pollMaxvotes < $poll['total_votes']) $pollMaxvotes = $poll['total_votes'];
+			$pollMaxvotes = ($poll['total_votes'] > 0 ? $poll['total_votes'] : 0);
 			$pollbarMaxwidth = 200;
 			$pollbarSize = 0;
 
 			//$e = $db->query('SELECT count(*) anz FROM poll_votes WHERE poll='.$id.' GROUP BY answer', __FILE__, __LINE__, __FUNCTION__);
-			$sql = 'SELECT a.*, count(v.user) votes
-					FROM poll_answers a
-					LEFT JOIN poll_votes v ON v.answer=a.id
-					WHERE a.poll='.$id.'
-					GROUP BY a.id
-					ORDER BY a.id';
-			$pollAnswers = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
-			while ($pollAnswer = $db->fetch($pollAnswers)) {
+			$sql = 'SELECT a.*, count(v.user) votes FROM poll_answers a
+						LEFT JOIN poll_votes v ON v.answer=a.id
+					WHERE a.poll=? GROUP BY a.id ORDER BY a.id';
+			$pollAnswers = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$id]);
+			while ($pollAnswer = $db->fetch($pollAnswers))
+			{
 				$pollAnswersArray[$pollAnswer['id']] = $pollAnswer;
 
 				/** Poll votes result-bar calculations */
@@ -103,8 +108,8 @@ function show($id)
 			/** Get Poll voters */
 			if ($poll['type'] == 'member')
 			{
-				$sql = 'SELECT * FROM poll_votes WHERE poll='.$id.' ORDER BY answer ASC';
-				$pollVoters = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+				$sql = 'SELECT * FROM poll_votes WHERE poll=? ORDER BY answer ASC';
+				$pollVoters = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$id]);
 				while ($pollVoter = $db->fetch($pollVoters)) {
 					$pollVotersArray[$pollVoter['answer']][] = $pollVoter;
 				}
@@ -136,4 +141,36 @@ function user_has_vote_permission($poll_type)
 		global $user;
 		return (($poll_type == 'standard' && $user->id > 0) || ($poll_type == 'member' && $user->typ >= USER_MEMBER) ? true : false);
 	}
+
+	/**
+	 * Updates the title and options of a poll.
+	 * @link https://zorg.ch/bug/765 [Bug #765] Edit-Link bei bestehenden My Polls fehlt
+	 *
+	 * @version 1.0
+	 * @since 1.0 `03.03.2023` `IneX` Generated using ChatGPT. Fixes #765
+	 *
+	 * @param int $poll_id The ID of the poll to update.
+	 * @param string $title The new title of the poll.
+	 * @param array $options An associative array of option IDs and their corresponding new text.
+	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
+	 * @return bool Returns true if the update was successful, or false otherwise.
+	 */
+	public function update($poll_id, $title, $type, $answers) {
+		global $db;
+
+		$updateTitle = $db->update('polls', $poll_id, ['title' => $title], __FILE__, __LINE__, __METHOD__);
+		if (!$updateTitle) {
+			return false;
+		}
+
+		// foreach ($options as $option_id => $option_text) {
+		// 	$updateOption = $db->update('poll_options', $poll_id, ['title' => $title], __FILE__, __LINE__, __METHOD__);
+
+		// 	if (!$updateOption) {
+		// 		return false;
+		// 	}
+		// }
+
+		return true;
+	}
 }
diff --git a/www/includes/schach.inc.php b/www/includes/schach.inc.php
index d77f1d2..eb83764 100644
--- a/www/includes/schach.inc.php
+++ b/www/includes/schach.inc.php
@@ -73,10 +73,10 @@ function createGame()
 function xy2htmlXY($position)
 {
 	list($x, $y) = split("_", $position);
-	
+
 	$x = ($x - 1) * 64 + 2;
 	$y = (8 - $y) * 64 + 45 + 2;
-	
+
 	return array($x, $y);
 }
 
@@ -133,7 +133,7 @@ function setStartingplayer($game_id)
 	 * register user as opponent unless he's white or the opponent is already choosen
 	 * @FIXME müsste statt "game" wohl der table "chess_game_OLD" sein... ev. DEPRECATED?
 	 */
-	$sql = "select (case when user1!=" . $_SESSION['user_id'] . " and user2 is null then 1 " . 
+	$sql = "select (case when user1!=" . $_SESSION['user_id'] . " and user2 is null then 1 " .
 	         "        else 0 end) as register from game where ID=$game_id";
 	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
 	$rs = $db->fetch($result);
@@ -153,16 +153,11 @@ function setStartingplayer($game_id)
  */
 function buildTitle($game_id)
 {
-	global $db;
+	global $db, $user;
 	/** @FIXME müsste statt "game" wohl der table "chess_game_OLD" sein... ev. DEPRECATED? */
-	$sql = 
-		"select (case when user2 is null then 'noch kein Gegner'"
-		." when user1=$_SESSION[user_id] then concat('Spiel $game_id gegen <a href=\"mailto:', u2.email, '\">', u2.username, '</a>')"
-		." when user2=$_SESSION[user_id] then concat('Spiel $game_id gegen <a href=\"mailto:', u1.email, '\">', u1.username, '</a>') end) as opponent"
-		." from (chess_game g left outer join user u1 on user1=u1.ID) left outer join user u2 on user2=u2.ID " .
-	  "where g.ID=$game_id";
-	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
-	$rs = $db->fetch($result, __FILE__, __LINE__, __FUNCTION__);
+	$sql = 'SELECT (CASE WHEN user2 IS NULL THEN \'noch kein Gegner\' WHEN user1=? THEN concat(\'Spiel \', ?, \' gegen <a href="mailto:\', u2.email, \'">\'. u2.username, \'</a>\') WHEN user2=? then concat(\'Spiel \', ?, \' gegen <a href="mailto:\', u1.email, \'">\'. u1.username, \'</a>\') end) as opponent from (chess_game g left outer join user u1 on user1=u1.ID) left outer join user u2 on user2=u2.ID WHERE g.ID=?';
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$user->id, $game_id, $user->id, $game_id, $game_id]);
+	$rs = $db->fetch($result);
 
 	return $rs['opponent'];
 }
@@ -199,36 +194,36 @@ function buildInit($currentPlayer, $myColor, $wBoard, $bBoard) {
  * @TODO Eventuell DEPRECATED? In der DB gibt es kein Table "chess_game", nur "chess_game_OLD" / IneX, 18.04.2020
  */
 function getMyFigureColor($game_id)
-{	
-	global $db;
+{
+	global $db, $user;
 	/** @FIXME müsste statt "game" wohl der table "chess_game_OLD" sein... ev. DEPRECATED? */
-	$sql = "select (case when user1=" . $_SESSION['user_id'] . " then 'Weiss' else 'Schwarz' end) as color from chess_game where ID=$game_id";
-	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+	$sql = "SELECT (CASE WHEN user1=? THEN 'Weiss' ELSE 'Schwarz' END) as color FROM chess_game WHERE id=?";
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$user->id, $game_id]);
 	$rs = $db->fetch($result);
 
 	return $rs['color'];
 }
 
 function getCurrentPlayer($game_id) {
-	
+
 	global $db;
 
-	$sql = "select count(ID) as noEntries from chess_history where gameID=$game_id";
-	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+	$sql = "SELECT count(ID) AS noEntries FROM chess_history WHERE gameID=?";
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$game_id]);
 	$rs = $db->fetch($result);
-	
+
 	return ($rs['noEntries'] % 2 == 0) ? "Weiss" : "Schwarz";
 }
 
 function turnBoard() {
 	global $wBoard, $bBoard;
-	
+
 	foreach($wBoard as $position => $figure) {// $wBoard['1_2'] -> 'Bauer'
 		list($x, $y) = split("_", $position);
 		$wBoard2[(9-$x) . "_" . (9-$y)] = $figure;
 	}
 	$wBoard = $wBoard2;
-	
+
 	foreach($bBoard as $position => $figure) { // $wBoard['1_2'] -> 'Bauer'
 		list($x, $y) = split("_", $position);
 		$bBoard2[(9-$x) . "_" . (9-$y)] = $figure;
@@ -253,19 +248,8 @@ function buildHistory($game_id)
 	$html .= '<div class="history">
 				<span class="big">History</span><br>
 					<table border="0">';
-	$sql = "select yFrom,yTo,
-	                (case when xFrom=1 then 'a' when xFrom=2 then 'b' when xFrom=3 then 'c' when xFrom=4 then 'd' 
-	                      when xFrom=5 then 'e' when xFrom=6 then 'f' when xFrom=7 then 'g' when xFrom=8 then 'h' end) as xFrom,
-	                (case when xTo=1 then 'a' when xTo=2 then 'b' when xTo=3 then 'c' when xTo=4 then 'd' 
-	                      when xTo=5 then 'e' when xTo=6 then 'f' when xTo=7 then 'g' when xTo=8 then 'h' end) as xTo,
-	                (case when figure='Laeufer' then 'Läufer'
-	                      when figure='Koenig' then 'König'
-	                      else figure end) as figure,
-	                (case when info='Laeufer' then 'Läufer'
-	                      when info='Koenig' then 'König'
-	                      else info end) as info
-	         FROM chess_history where gameID=$game_id order by ID asc";
-	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+	$sql = 'select yFrom, yTo, (case when xFrom=1 then \'a\' when xFrom=2 then \'b\' when xFrom=3 then \'c\' when xFrom=4 then \'d\' when xFrom=5 then \'e\' when xFrom=6 then \'f\' when xFrom=7 then \'g\' when xFrom=8 then \'h\' end) as xFrom, (case when xTo=1 then \'a\' when xTo=2 then \'b\' when xTo=3 then \'c\' when xTo=4 then \'d\' when xTo=5 then \'e\' when xTo=6 then \'f\' when xTo=7 then \'g\' when xTo=8 then \'h\' end) as xTo, (case when figure=\'Laeufer\' then \'Läufer\' when figure=\'Koenig\' then \'König\' else figure end) as figure, (case when info=\'Laeufer\' then \'Läufer\' when info=\'Koenig\' then \'König\' else info end) as info FROM chess_history where gameID=? order by ID asc';
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [[$game_id]]);
 
 	$i = 1;
 	while($rs = $db->fetch($result))
@@ -310,12 +294,12 @@ function buildHistory($game_id)
 function doMove($xFrom, $yFrom, $xTo, $yTo, $game_id, $currentPlayer)
 {
 	global $db;
-		
+
 	if(!figurePlacedOnBoard($xFrom, $yFrom, $xTo, $yTo)) { return 1; }
 	if(!moveWasMade($xFrom, $yFrom, $xTo, $yTo)) { return 2; }
 
 	$figure = getFigure($xFrom, $yFrom, $game_id);
-	
+
 	if(!$figure) { return 3; }
 
 	// Standartregeln der Figuren eingehalten?
@@ -358,15 +342,15 @@ function getFigure($x, $y, $game_id)
 {
 	global $db;
 	/** @FIXME müsste statt "chess_board" wohl der table "chess_board_OLD" sein... ev. DEPRECATED? */
-	$sql = "select figur from chess_board where x=$x and y=$y and ID=$game_id";
-	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
+	$sql = "SELECT figur FROM chess_board WHERE x=? and y=? AND id=?";
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$x, $y, $game_id]);
 	$rs = $db->fetch($result);
 
 	return $rs['figur'];
 }
 
 function isPawnMoveValid($xFrom, $yFrom, $xTo, $yTo, $currentPlayer, $game_id) {
-	
+
 	if($currentPlayer == "Weiss") {
 		// Einen Schritt nach vorne. Nur wenn keine Figur auf dem Zielfeld.
 		if($yTo-$yFrom == 1 && $xTo == $xFrom && !isFieldTaken($xTo, $yTo, $game_id)) { return 1; }
@@ -391,7 +375,7 @@ function isPawnMoveValid($xFrom, $yFrom, $xTo, $yTo, $currentPlayer, $game_id) {
 }
 
 function isRookMoveValid($xFrom, $yFrom, $xTo, $yTo, $currentPlayer, $game_id) {
-	
+
 	if($xTo == $xFrom || $yTo == $yFrom) {
 		if($xTo == $xFrom) {
 			if($yTo > $yFrom) { $bigger = $yTo; $smaller = $yFrom; }
@@ -404,8 +388,8 @@ function isRookMoveValid($xFrom, $yFrom, $xTo, $yTo, $currentPlayer, $game_id) {
 			else              { $bigger = $xFrom; $smaller = $xTo; }
 
 			// Zwischen Start- und Endfeld darf sich keine Figur befinden.
-			for($i=($smaller+1); $i<$bigger; $i++) { 
-				if(isFieldTaken($i, $yTo, $game_id)) return 0; 
+			for($i=($smaller+1); $i<$bigger; $i++) {
+				if(isFieldTaken($i, $yTo, $game_id)) return 0;
 			}
 		}
 
@@ -500,7 +484,7 @@ function isKingMoveValid($xFrom, $yFrom, $xTo, $yTo, $currentPlayer, $game_id)
  * @TODO Eventuell DEPRECATED? In der DB gibt es kein Table "chess_board", nur "chess_board_old" / IneX, 18.04.2020
  */
 function isFieldTaken($x, $y, $game_id)
-{	
+{
 	global $db;
 
 	/** @FIXME müsste statt "chess_board" wohl der table "chess_board_OLD" sein... ev. DEPRECATED? */
@@ -520,7 +504,7 @@ function isFieldTaken($x, $y, $game_id)
 function isPlayerOnField($x, $y, $currentPlayer, $isOpponentAsked, $game_id)
 {
 	global $db;
-	
+
 	$player = ($currentPlayer == "Weiss") ? "w" : "b";
 	if($isOpponentAsked) { $player = ($player == "w") ? "b" : "w"; }
 
@@ -638,15 +622,13 @@ function writeHistory($xFrom, $yFrom, $xTo, $yTo, $figure, $game_id)
 		{
 			$rs = $db->fetch($result);
 			/** @FIXME müsste statt "chess_history" wohl der table "chass_history_OLD" sein... ev. DEPRECATED? */
-			$sql = 
-				"insert into chess_history (gameID, figure, xFrom, yFrom, xTo, yTo, info) "
-				."values ($game_id, '$figure', $xFrom, $yFrom, $xTo, $yTo, '".$rs['figur']."')";	
+			$sql = "INSERT INTO chess_history (gameID, figure, xFrom, yFrom, xTo, yTo, info) VALUES (?, ?, ?, ?, ?, ?, ?)";
 			/**
 			 * delete the eaten figure
 			 * @FIXME müsste statt "chess_board" wohl der table "chess_board_OLD" sein... ev. DEPRECATED?
 			 */
 			$delQuery = "delete from chess_board where x=$xTo and y=$yTo and ID=$game_id";
-			$db->query($delQuery, __FILE__, __LINE__, __FUNCTION__);
+			$db->query($delQuery, __FILE__, __LINE__, __FUNCTION__, [$game_id, $figure, $xFrom, $yFrom, $xTo, $yTo, $rs['figur']]);
 		}
 	}
 
@@ -663,9 +645,9 @@ function writeHistory($xFrom, $yFrom, $xTo, $yTo, $figure, $game_id)
 function writeMoveToDB($xFrom, $yFrom, $xTo, $yTo, $figure, $game_id)
 {
 	global $db;
-	
+
 	// Rochade
-	if($figure == "Koenig" && abs($xTo-$xFrom) > 1) 
+	if($figure == "Koenig" && abs($xTo-$xFrom) > 1)
 	{
 		if($xTo-$xFrom == 2)
 		{
@@ -690,18 +672,18 @@ function writeMoveToDB($xFrom, $yFrom, $xTo, $yTo, $figure, $game_id)
 function getOpenChessGames($userID) {
 /*
 	global $db;
-	
+
 	$openGames = 0;
 	if (isset($userID)) {
 		$sql = "select g.ID, (case when user1=$userID then 'Weiss' " .
-			 "                   when user2=$userID then 'Schwarz' end) as color ". 
+			 "                   when user2=$userID then 'Schwarz' end) as color ".
 			 "from (chess_game g left outer join user u1 on user1=u1.ID) left outer join user u2 on user2=u2.ID " .
 		       " where user1=$userID or user2=$userID";
 		$result = $db->query($sql);
 		while ( $rs = $db->fetch($result) ){
 			if (getCurrentPlayer($rs[ID]) == $rs[color]) $openGames++;
 		}
-				
+
 		return $openGames;
 	}*/
 
diff --git a/www/includes/setiathome.inc.php b/www/includes/setiathome.inc.php
index f501109..f228adb 100644
--- a/www/includes/setiathome.inc.php
+++ b/www/includes/setiathome.inc.php
@@ -1,6 +1,21 @@
 <?php
-class setiathome {
+/**
+ * SETI@Home Stats for zooomclan
+ *
+ * @author [z]keep3r
+ * @package zorg\SETI
+ */
 
+/**
+ * File Includes
+ * @include config.inc.php required
+ * @include	mysql.inc.php Smarty, required
+ */
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'mysql.inc.php';
+
+class setiathome
+{
 	function seti_time($time_in) {
 		$years = $time_in / 60 / 24 / 365;
 		if($years < 1) {
@@ -57,30 +72,16 @@ function update_group() {
 						$mins = substr($values[$i]['TOTALCPU'],strpos($values[$i]['TOTALCPU']," hr")+3,strpos($values[$i]['TOTALCPU']," min")-7) + ($hours * 60);
 					}
 
-					$sql = "
-					SELECT name FROM seti WHERE name = '".$values[$i]['NAME']."'";
-					$result = $db->query($sql);
+					$sql = 'SELECT name FROM seti WHERE name=?';
+					$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$values[$i]['NAME']]);
 					if($db->num($result)) {
-						$sql = "
-						UPDATE seti set num_results = ".$values[$i]['NUMRESULTS'].",
-						total_cpu = ".$mins." ,
-						avg_cpu = '".$values[$i]['AVECPU']."',
-						date_last_result = '".$date."'
-						WHERE name = '".$values[$i]['NAME']."'";
-
-
+						$sql = 'UPDATE seti set num_results=?, total_cpu=?, avg_cpu=?, date_last_result=? WHERE name=?';
+						$params = [$values[$i]['NUMRESULTS'], $mins, $values[$i]['AVECPU'], $date, $values[$i]['NAME']];
 					} else {
-						$sql = "
-						INSERT into seti
-						(name, num_results, total_cpu, avg_cpu, date_last_result)
-						VALUES
-						('".$values[$i]['NAME']."',
-						".$values[$i]['NUMRESULTS'].",
-						".$mins.",
-						'".$values[$i]['AVECPU']."',
-						'".$date."')";
+						$sql = 'INSERT INTO seti (name, num_results, total_cpu, avg_cpu, date_last_result) VALUES (?, ?, ?, ?, ?)';
+						$params = [$values[$i]['NAME'], $values[$i]['NUMRESULTS'], $mins, $values[$i]['AVECPU'], $date];
 					}
-					$db->query($sql);
+					$db->query($sql, __FILE__, __LINE__, __FUNCTION__, $params);
 				}
 			} else
 			if(!$page) { sleep(1); }
@@ -88,33 +89,13 @@ function update_group() {
 		}  while (!$page);
 	}
 
-	function tagesabschluss() {
+	function tagesabschluss()
+	{
 		global $db;
-
-		setiathome::update_group();
-		$sql = "
-		REPLACE into seti_tage
-			(
-			datum,
-			name,
-			num_results,
-			total_cpu, avg_cpu,
-			date_last_result,
-			account,
-			user_id
-			)
-		SELECT
-			now() as datum,
-			name,
-			num_results,
-			total_cpu,
-			avg_cpu,
-			date_last_result,
-			account,
-			user_id
-		FROM seti";
-		$db->query($sql, __FILE__, __LINE__);
+		self::update_group();
+		$sql = 'REPLACE into seti_tage (datum, name, num_results, total_cpu, avg_cpu, date_last_result, account, user_id)
+				SELECT now() as datum, name, num_results, total_cpu, avg_cpu, date_last_result, account, user_id FROM seti';
+		$db->query($sql, __FILE__, __LINE__, __FUNCTION__);
 	}
 
 }
-?>
diff --git a/www/includes/smarty.fnc.php b/www/includes/smarty.fnc.php
index 2c5c868..e1c6c8b 100644
--- a/www/includes/smarty.fnc.php
+++ b/www/includes/smarty.fnc.php
@@ -31,7 +31,7 @@
  * Define and include the MCV Controllers and initialise Layout related settings.
  */
 require_once CONTROLLERS_DIR.'layout.controller.php';
-zorgDebugger::me()->debug('New MVC\Controller\Layout()');
+zorgDebugger::log()->debug('New MVC\Controller\Layout()');
 $zorgLayout = new MVC\Controller\Layout();
 
 /**
@@ -685,10 +685,8 @@ function var_online_users ()
 		global $db;
 
 		$online_users = array();
-		$sql = 'SELECT id FROM user
-				WHERE UNIX_TIMESTAMP(activity) > (UNIX_TIMESTAMP(now()) - '.USER_TIMEOUT.')
-				ORDER by activity DESC';
-		$e = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT id FROM user WHERE UNIX_TIMESTAMP(activity) > (UNIX_TIMESTAMP(?) - ?) ORDER by activity DESC';
+		$e = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [timestamp(true), USER_TIMEOUT]);
 
 		while ($d = mysqli_fetch_row($e)) {
 			array_push($online_users, $d[0]);
@@ -806,8 +804,9 @@ function smarty_sql_errors($params) {
 	 */
 	function smarty_link ($params)
 	{
-	 	global $smarty;
+	 	global $smarty, $user;
 	 	$vars = $smarty->get_template_vars();
+		$ret = '';
 
 	 	if (isset($params['url'])) {
 	 		$ret = $params['url'];
@@ -819,7 +818,7 @@ function smarty_link ($params)
 	 		$ret = Comment::getLinkComment($params['comment']);
 	 	}elseif (isset($params['user'])) {
 	 		if (is_numeric($params['user'])) $ret = '/user/'.$params['user'];
-	 		else $ret = '/user/'.usersystem::user2id($params['user']);
+	 		else $ret = '/user/'.$user->user2id($params['user']);
 	 	}elseif (isset($params['action'])) {
 	 		$ret .= '/actions/'.$params['action'].'?'.url_params();
 	 	}else{
@@ -1083,9 +1082,7 @@ function getLatestUpdates($params = array()) {
 
 		if (!$params['anzahl']) $params['anzahl'] = 5;
 
-		$sql = 'SELECT *, UNIX_TIMESTAMP(last_update) as date
-				FROM templates ORDER BY last_update desc
-				LIMIT ?';
+		$sql = 'SELECT *, UNIX_TIMESTAMP(last_update) as date FROM templates ORDER BY last_update DESC LIMIT ?';
 		$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$params['anzahl']]);
 
 		$i=0;
@@ -1181,23 +1178,21 @@ function smarty_menuname_exec ($name)
 		}*/
 		foreach ($nameArray as $it)
 		{
-			zorgDebugger::me()->debug('«%s» on tpl_id %s', [$it, strval($tpl_id)]);
+			zorgDebugger::log()->debug('«%s» on tpl_id %s', [$it, strval($tpl_id)]);
 			if (!empty($it)) {
 				/** Check if menu with same name already exists... */
-				$menuExists = $db->fetch($db->query('SELECT * FROM menus WHERE name=?',
-								__FILE__, __LINE__, __FUNCTION__, [$it]));
+				$menuExists = $db->fetch($db->query('SELECT * FROM menus WHERE name=?', __FILE__, __LINE__, __FUNCTION__, [$it]));
 				//if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> $menuExists Query: %s', __FUNCTION__, __LINE__, print_r($menuExists,true)));
 				if ($menuExists !== false && $menuExists['tpl_id'] === $tpl_id)
 				{
-					zorgDebugger::me()->debug('$menuExists: TRUE (tpl_id: %d)', [strval($tpl_id)]);
+					zorgDebugger::log()->debug('$menuExists: TRUE (tpl_id: %d)', [strval($tpl_id)]);
 					//return sprintf('Menuname "%s" existiert schon mit der id#%d und wurde deshalb nicht gespeichert!<br>Bitte anderen Namen verwenden.', $it, $tpl_id);
 				}
 
 				/** Menu mit $name gibt es noch nicht, deshlab erstellen wir es neu */
 				else {
-					zorgDebugger::me()->debug('$menuExists: FALSE (adding new)');
-					$db->query('INSERT INTO menus (tpl_id, name) VALUES (?, ?)',
-								__FILE__, __LINE__, __FUNCTION__, [$tpl_id, $it]);
+					zorgDebugger::log()->debug('$menuExists: FALSE (adding new)');
+					$db->query('INSERT INTO menus (tpl_id, name) VALUES (?, ?)', __FILE__, __LINE__, __FUNCTION__, [$tpl_id, $it]);
 					//$smarty->assign('error', ['type' => 'success', 'dismissable' => 'true', 'title' => sprintf('Neues Menu "%s" erfolgreich gespeichert', $it), 'message' => 'Du kannst es jetzt im Template-Editor einer Page auswählen.']);
 				}
 			}
@@ -1480,14 +1475,14 @@ function smarty_modifier_rendertime($mode='begin')
 		global $_timer_blocks, $_timer_history;
 		switch ($mode) {
 			case 'begin':
-				$_timer_blocks[] =array(microtime(true));
+				$_timer_blocks[] =array(microtime());
 				break;
 
 			case 'end':
 				$last = array_pop($_timer_blocks);
 				$_start = $last[0];
 				list($a_micro, $a_int) = explode(' ', $_start);
-				list($b_micro, $b_int) = explode(' ', microtime(true));
+				list($b_micro, $b_int) = explode(' ', microtime());
 				$elapsed = ($b_int - $a_int) + ($b_micro - $a_micro);
 				$_timer_history[] = [ $elapsed ];
 				return $elapsed;
diff --git a/www/includes/smarty.inc.php b/www/includes/smarty.inc.php
index ac9436c..8b77f16 100644
--- a/www/includes/smarty.inc.php
+++ b/www/includes/smarty.inc.php
@@ -5,9 +5,9 @@
  * Instanziert und konfiguriert ein neues Smarty-Object. Dieses wird in
  * der globalen Variable $smarty gespeichert.
  *
- * @author [z]biko
- * @date 5.6.2004
  * @package zorg\Smarty
+ * @version 1.0
+ * @since 1.0 `5.6.2004` `[z]biko` File added
  */
 
 /**
@@ -35,7 +35,7 @@
 
 function tpl_comment_permission ($thread_id) {
 	global $db;
-	$e = $db->query('SELECT * FROM templates WHERE id='.$thread_id, __FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT * FROM templates WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$thread_id]);
 	$d = $db->fetch($e);
 	return tpl_permission($d['read_rights'], $d['owner']);
 }
@@ -43,13 +43,12 @@ function tpl_comment_permission ($thread_id) {
 /**
  * Check permission to access template
  *
- * @author [z]biko
  * @version 2.1
  * @since 1.0 `[z]biko` function added
  * @since 2.0 `20.06.2019` `IneX` Failsafe hinzugefügt
  * @since 2.1 `04.11.2019` `kassiopaia` fixes undefined indexes errors
  *
- * @FIXME ACHTUNG: template read_rights sind != der USER_xxx Level! z.B. read_rights=3 bedeutet "Template Owner only"...
+ * // TODO ACHTUNG: template read_rights sind != der USER_xxx Level! z.B. read_rights=3 bedeutet "Template Owner only"...
  *
  * @see self::hasTplAccess()
  * @param integer $group Gruppe Level-Nummer to check
@@ -72,7 +71,6 @@ function tpl_permission ($group, $owner)
 /**
  * Check ob Group / Usertyp Kombination Zugriff zum Lesen des Templates hat
  *
- * @author [z]biko
  * @version 1.0
  * @since 1.0 `[z]biko` function added
  */
@@ -123,7 +121,7 @@ function hasTplAccess ($group, $owner, $userid, $usertyp)
 function _tpl_assigns ($params, $content, &$smarty, &$repeat) {
 	global $_tpl_stack;
 
-  	if ($repeat == true) { // öffnendes tag
+  	if ($repeat) { // öffnendes tag
   		// push wird in get_timestamp gemacht.
 
   		$smarty->assign('tpl', $_tpl_stack[sizeof($_tpl_stack)-1]);
@@ -147,11 +145,9 @@ function _tpl_assigns ($params, $content, &$smarty, &$repeat) {
  *
  * Datenbankabfrage um unser Template zu laden, und '$tpl_source' zuzuweisen
  *
- * @author [z]biko
- * @author IneX
  * @version 3.2
- * @since 1.0 function added
- * @since 2.0 `26.09.2018` [Bug #761] enhanced $output with nl2br()
+ * @since 1.0 `[z]biko` function added
+ * @since 2.0 `26.09.2018` `IneX` [Bug #761] enhanced $output with nl2br()
  * @since 3.0 `20.06.2019` `IneX` Updated to fetch and process new layout options such as "sidebar_tpl"
  * @since 3.1 `21.06.2019` `IneX` Fixed FIXME "Funktion so überarbeiten, dass 'border == 1' schönen Output" und TODO "Views aus dem Code entfernen"
  * @since 3.2 `02.11.2019` `IneX` Added output of {comments} if `allow_comments` on tpl=true.
@@ -172,7 +168,7 @@ function smartyresource_tpl_get_template($tpl_name, &$tpl_source, &$smarty)
 
 	if (!empty($tpl_name) && is_numeric($tpl_name))
 	{
-		$templateDataQuery = $db->query('SELECT * FROM templates tpl WHERE id='.$tpl_name, __FILE__, __LINE__, __FUNCTION__);
+		$templateDataQuery = $db->query('SELECT * FROM templates tpl WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$tpl_name]);
 		$templateData = $db->fetch($templateDataQuery);
 	} else {
 		$templateData = false;
@@ -235,10 +231,8 @@ function smartyresource_tpl_get_template($tpl_name, &$tpl_source, &$smarty)
  * Datenbankabfrage um '$tpl_timestamp' zuzuweisen
  * zusätzlich lokale tpl-infos setzen (smarty-variable $tpl)
  *
- * @author [z]biko
- * @author IneX
  * @version 2.1
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  * @since 2.0 `19.06.2019` `IneX` Updated to fetch Packages new via tpl_packages > packages relationship and Comments from Tpl-Setting
  * @since 2.1 `14.06.2023` `IneX` SQL-Query optimizations
  *
@@ -258,8 +252,8 @@ function smartyresource_tpl_get_timestamp($tpl_name, &$tpl_timestamp, &$smarty)
 	{
 		$e = $db->query('SELECT id, title, word, LENGTH(tpl) size, owner, update_user,
 						 UNIX_TIMESTAMP(last_update) last_update, UNIX_TIMESTAMP(created) created, read_rights,
-						 write_rights, force_compile, border, sidebar_tpl, allow_comments FROM templates WHERE id=?'
-						 , __FILE__, __LINE__, __FUNCTION__, [$tpl_name]);
+						 write_rights, force_compile, border, sidebar_tpl, allow_comments FROM templates WHERE id=?',
+						 __FILE__, __LINE__, __FUNCTION__, [$tpl_name]);
 		$d = $db->fetch($e);
 	} else {
 		return false;
@@ -307,10 +301,8 @@ function smartyresource_tpl_get_trusted($tpl_name, &$smarty_obj)
 /**
  * Load PHP-Package files required for a Smarty-Template
  *
- * @author [z]biko
- * @author IneX
  * @version 2.2
- * @since 1.0 function added
+ * @since 1.0 `[z]biko` function added
  * @since 2.0 `19.06.2019` `IneX` Updated to process Packages from tpl_packages > packages relationship instead of a Field-String
  * @since 2.1 `18.04.2020` `IneX` replaced 'stream_resolve_include_path' with more performant 'is_file' (https://stackoverflow.com/a/19589043/5750030)
  * @since 2.2 `10.06.2023` `IneX` fixes risk of malicious code execution through File Inclusion (CWE-98)
@@ -337,7 +329,7 @@ function load_packages($tpl_id, &$smarty)
 		$packagesQuery = 'SELECT pkg.name as name FROM packages pkg INNER JOIN tpl_packages tplp ON pkg.id = tplp.package_id WHERE tplp.tpl_id=?';
 		$packagesFound = $db->query($packagesQuery, __FILE__, __LINE__, __FUNCTION__, [$tpl]);
 		$numPackagesFound = (int)$db->num($packagesFound);
-		zorgDebugger::me()->debug('Found %d packages for template «%s»', [$numPackagesFound, strval($tpl)]);
+		zorgDebugger::log()->debug('Found %d packages for template «%s»', [$numPackagesFound, strval($tpl)]);
 
 		/** 1 or more Packages found */
 		if ($numPackagesFound > 0)
@@ -347,7 +339,7 @@ function load_packages($tpl_id, &$smarty)
 				/** Check if $package matches a PHP-File (Package) */
 				$package_file = basename($packages['name']); // Remove any directory traversal characters
 				$package_filepath = SMARTY_PACKAGES_DIR.$package_file.SMARTY_PACKAGES_EXTENSION;
-				zorgDebugger::me()->debug('Loading package «%s» from %s', [$package_file, $package_filepath]);
+				zorgDebugger::log()->debug('Loading package «%s» from %s', [$package_file, $package_filepath]);
 				if (is_file($package_filepath) !== false)
 				{
 					require_once $package_filepath;
@@ -364,7 +356,7 @@ function load_packages($tpl_id, &$smarty)
 		/** 0 Packages found (but this is no error) */
 		elseif ($numPackagesFound === 0)
 		{
-			zorgDebugger::me()->debug('Template «%s» has no packages associated', [strval($tpl)]);
+			zorgDebugger::log()->debug('Template «%s» has no packages associated', [strval($tpl)]);
 			return true;
 		}
 	} else {
@@ -378,7 +370,6 @@ function load_packages($tpl_id, &$smarty)
  *
  * Load Menus from templates > tpl_menus > menus relationship instead of Smarty inline markup {menu}
  *
- * @author IneX
  * @version 1.0
  * @since 1.0 `02.07.2019` `IneX` function added
  *
@@ -396,8 +387,9 @@ function load_navigation($tpl_id, &$smarty)
 	if (empty($tpl_id) || is_array($tpl_id) || !is_numeric($tpl_id)) return false;
 
 	/** Retrieve Menus to $tpl_id from database */
-	$menusQuery = 'SELECT m.tpl_id as tpl_id, m.name as name, (SELECT read_rights FROM templates WHERE id=m.tpl_id) as read_rights, (SELECT owner FROM templates WHERE id=m.tpl_id) as owner FROM menus m INNER JOIN tpl_menus tplm ON m.id = tplm.menu_id WHERE tplm.tpl_id='.$tpl_id.' ORDER BY name ASC';
-	$menusFound = $db->query($menusQuery, __FILE__, __LINE__, __FUNCTION__);
+	$menusQuery = 'SELECT m.tpl_id as tpl_id, m.name as name, (SELECT read_rights FROM templates WHERE id=m.tpl_id) as read_rights, (SELECT owner FROM templates WHERE id=m.tpl_id) as owner
+					FROM menus m INNER JOIN tpl_menus tplm ON m.id = tplm.menu_id WHERE tplm.tpl_id=? ORDER BY name ASC';
+	$menusFound = $db->query($menusQuery, __FILE__, __LINE__, __FUNCTION__, [$tpl_id]);
 	$numMenusFound = $db->num($menusFound);
 	if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Found %d Menus for template #%d', __FUNCTION__, __LINE__, $numMenusFound, $tpl_id));
 
@@ -417,7 +409,7 @@ function load_navigation($tpl_id, &$smarty)
 	/** 0 Packages found (but this is no error) */
 	elseif ($numMenusFound === 0)
 	{
-		if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Template %s (#%d) has no menus associated', __FUNCTION__, __LINE__, $package['name'], $tpl_id));
+		if (DEVELOPMENT === true) error_log(sprintf('[DEBUG] <%s:%d> Template #%d has no menus associated', __FUNCTION__, __LINE__, $tpl_id));
 		return null;
 	}
 	/** for anything else... */
@@ -430,10 +422,10 @@ function load_navigation($tpl_id, &$smarty)
  * Return a Smarty Menu Template
  * based on a name => tpl-id lookup from the database
  *
- * @author [z]biko
  * @version 1.1
- * @since 1.0 function added
- * @since 1.1 changed global $smarty to persistent function param &$smarty
+ * @since 1.0 `[z]biko` function added
+ * @since 1.1 `IneX` Changed global $smarty to persistent function param &$smarty
+ *
  * @return array
  */
 function menu ($name, &$smarty)
@@ -448,7 +440,9 @@ function menu ($name, &$smarty)
  * Datenbankabfrage um Word-Template zu laden und '$tpl_source' zuzuweisen
  * based on a word => tpl-id lookup from the database
  *
- * @author [z]biko
+ * @version 1.0
+ * @since 1.0 `[z]biko`
+ *
  * @global object $db Globales Class-Object mit allen MySQL-Methoden
  * @return boolean
  */
@@ -456,7 +450,7 @@ function smartyresource_word_get_template($tpl_name, &$tpl_source, &$smarty)
 {
   global $db;
 
-  $e = $db->query('SELECT id FROM templates WHERE word="'.$tpl_name.'"');
+  $e = $db->query('SELECT id FROM templates WHERE word=?', __FILE__, __LINE__, __FUNCtiON__, [$tpl_name]);
   $d = $db->fetch($e);
 
   if ($d) {
@@ -475,7 +469,9 @@ function smartyresource_word_get_template($tpl_name, &$tpl_source, &$smarty)
  * zusätzlich lokale tpl-infos setzen (smarty-variable $tpl)
  * based on a word => tpl-id lookup from the database
  *
- * @author [z]biko
+ * @version 1.0
+ * @since 1.0 `[z]biko`
+ *
  * @global object $db Globales Class-Object mit allen MySQL-Methoden
  * @return boolean
  */
@@ -483,7 +479,7 @@ function smartyresource_word_get_timestamp($tpl_name, &$tpl_timestamp, &$smarty)
 {
   global $db;
 
-  $e = $db->query('SELECT id FROM templates WHERE word="'.$tpl_name.'"', __FILE__, __LINE__, __FUNCTION__);
+  $e = $db->query('SELECT id FROM templates WHERE word=?', __FILE__, __LINE__, __FUNCTION__, [$tpl_name]);
   $d = mysqli_fetch_array($e);
 
   smartyresource_tpl_get_timestamp($d['id'], $ts, $smarty);
@@ -508,8 +504,11 @@ function smartyresource_word_get_trusted($tpl_name, &$smarty_obj)
 /**
  * Remove invalid HTML from Smarty template.
  * @TODO deaktiviert bis ein besserer syntax checker gebaut ist (biko)
- * @author [z]biko
+ *
  * @link https://github.com/zorgch/zorg-code/blob/master/www/actions/tpleditor.php TPLeditor Save Action
+ *
+ * @version 1.0
+ * @since 1.0 `[z]biko`
  */
 function smarty_remove_invalid_html ($tpl, &$smarty)
 {
@@ -534,19 +533,12 @@ function package_path ($package)
  *
  * @link https://www.smarty.net/docs/en/api.register.resource.tpl
  *
- * @author [z]biko
- * @author IneX
- * @date 03.01.2016
  * @version 3.0
- * @since 1.0 function added
- * @since 2.0 `IneX` Moved Smarty directory paths to global configs
+ * @since 1.0 `[z]biko` function added
+ * @since 2.0 `03.01.2016` `IneX` Moved Smarty directory paths to global configs
  * @since 3.0 `21.06.2019` `IneX` Added registration of Smarty prefilter and postfilter functions
  *
- * @uses SMARTY_TEMPLATES_HTML
- * @uses SMARTY_COMPILE
- * @uses SMARTY_CACHE
- * @uses SMARTY_TRUSTED_DIRS
- * @uses SMARTY_TEMPLATES_HTML
+ * @uses SMARTY_TEMPLATES_HTML, SMARTY_COMPILE, SMARTY_CACHE, SMARTY_TRUSTED_DIRS, SMARTY_TEMPLATES_HTML
  * @return Smarty Class-object
  */
 function startSmarty()
@@ -614,34 +606,53 @@ function startSmarty()
 	return $smarty;
 }
 
+/*
+ * Get a relevant User ID associated with a Template
+ *
+ * Get the Owner or last Editor of a Template.
+ *
+ * @version 1.0
+ * @since 1.0 `10.01.2024` `IneX` Function added
+ *
+ * @see tpleditor.php
+ * @param integer $tpl_id Template ID
+ * @param string $role User ID to fetch: either 'owner' (default) - or 'update_user'
+ * @global object $db Globales Class-Object mit allen MySQL-Methoden
+ * @return int|bool Returns User ID - or false on failure
+ */
+function tpl_get_associated_user($tpl_id, $role='owner')
+{
+	global $db;
+
+	$supportedRoles = ['owner', 'update_user'];
+	if (is_numeric($tpl_id) && $tpl_id>0 && in_array($role, $supportedRoles))
+	{
+		$d = $db->fetch($db->query('SELECT '.$role.' FROM templates WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$tpl_id]));
+		return intval($d[$role]);
+	}
+	return false;
+}
+
 
 /**
  * Erweiterungen der Smarty Klasse für Zorg
  *
- * @author IneX
- * @date 03.01.2016
- * @version 1.0
  * @package zorg\Smarty
+ *
+ * @version 1.0
+ * @since 1.0 `03.01.2016` `IneX`
  */
 class ZorgSmarty extends Smarty
 {
 	/**
-	 * OWN BY BIKO
-	 * Templates that can be called recursive
-	 * used in function $this->_smarty_include
-	 *
-	 * @var string-array
+	 * OWN BY BIKO.
+	 * @var array $recur_allowed_tpls Templates that can be called recursive. Used in function $this->_smarty_include
+	 * @var array $_cache_include_info
+	 * @var string $recur_handler Template that is called if a recursion was detected. Used in function $this->_smarty_include
 	 */
-	var $recur_allowed_tpls = array();
-
-	/**
-	 * OWN BY BIKO
-	 * Template that is called if a recursion was detected
-	 * used in function $this->_smarty_include
-	 *
-	 * @var string
-	 */
-	var $recur_handler = "";
+	public $recur_allowed_tpls = [];
+	public $_cache_include_info = [];
+	public $recur_handler = "";
 
 	/**
 	 * The class constructor.
@@ -736,13 +747,19 @@ public function _compile_resource($resource_name, $compile_path)
 /**
  * Erweiterungen der Smarty Compiler Klasse für Zorg
  *
- * @author IneX
- * @date 03.01.2016
- * @version 1.0
  * @package zorg\Smarty
+ *
+ * @version 1.0
+ * @since 1.0 `03.01.2016` `IneX` Class added
  */
 class ZorgSmarty_Compiler extends Smarty
 {
+	/**
+	 * Class Vars
+	 */
+	public $_current_line_no = null;
+	public $_current_file = null;
+
 	/**
 	 * The class constructor.
 	 */
diff --git a/www/includes/spaceweather.inc.php b/www/includes/spaceweather.inc.php
index e3f0904..fa40154 100644
--- a/www/includes/spaceweather.inc.php
+++ b/www/includes/spaceweather.inc.php
@@ -163,23 +163,15 @@ function get_spaceweather()
 				foreach($value as $kk => $vv) {
 					$ps[] = trim($vv);
 				}
-				$sql = "
-				REPLACE into spaceweather_pha
-					(asteroid,datum,distance,mag)
-				VALUES
-					('".$ps[0]."','".date("Y-m-d",strtotime(str_replace(".","",$ps[1])))."','".$ps[2]."','".$ps[3]."')";
-				$db->query($sql,__LINE__,__FILE__,__FUNCTION__);
+				$sql = 'REPLACE into spaceweather_pha (asteroid,datum,distance,mag) VALUES (?, ?, ?, ?)';
+				$db->query($sql, __LINE__, __FILE__, __FUNCTION__, [$ps[0], date("Y-m-d",strtotime(str_replace(".","",$ps[1]))), $ps[2], $ps[3]]);
 			}
 		}
 
 		//write spaceweather
 		foreach($space as $key => $val) {
-			$sql = "
-			REPLACE into spaceweather
-				(name, wert, datum)
-			VALUES
-				('$key','$val',now())";
-			$db->query($sql,__LINE__,__FILE__);
+			$sql = 'REPLACE into spaceweather (name, wert, datum) VALUES (?, ?, ?)';
+			$db->query($sql, __LINE__, __FILE__, __FUNCTION__, [$key, $val, timestamp(true)]);
 		}
 	}
 }
@@ -232,7 +224,7 @@ function spaceweather_ticker() {
 			}
 			if(isset($add[$rs['name']]) && !empty($add[$rs['name']][0]))
 			{
-				zorgDebugger::me()->debug('$rs[name]=%s exists, value: %s', [$add[$rs['name']][0], (isset($add[$rs['name']][1]) ? $add[$rs['name']][1] : 'null')]);
+				zorgDebugger::log()->debug('$rs[name]=%s exists, value: %s', [$add[$rs['name']][0], (isset($add[$rs['name']][1]) ? $add[$rs['name']][1] : 'null')]);
 				$sw[] = [ 'type' => $add[$rs['name']][0], 'value' => $rs['wert'].(isset($add[$rs['name']][1]) ? " ".$add[$rs['name']][1] : '') ];
 			}
 		}
diff --git a/www/includes/stockbroker.inc.php b/www/includes/stockbroker.inc.php
index ae14be8..6e278a3 100644
--- a/www/includes/stockbroker.inc.php
+++ b/www/includes/stockbroker.inc.php
@@ -8,7 +8,7 @@
  * @include config.inc.php required
  * @include mysql.inc.php required
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 
 //set_time_limit(20);
@@ -23,6 +23,12 @@
  */
 class Stockbroker
 {
+	/**
+	 * @param integer $user_id
+	 * @param string $symbol
+	 * @param integer $menge
+	 * @param boolean $max
+	 */
 	function buyStock($user_id, $symbol, $menge, $max) {
 		global $db;
 
@@ -44,10 +50,10 @@ function buyStock($user_id, $symbol, $menge, $max) {
 		$symbol = strtoupper($symbol); // müsste eigentlich nicht hier sein, aber um sicher zu gehen...
 
 		// neuen Preis grabben
-		Stockbroker::updateKurs($symbol);
+		self::updateKurs($symbol);
 
 		// Kurs holen
-		$kurs = Stockbroker::getKurs($symbol);
+		$kurs = self::getKurs($symbol);
 
 		if(!is_numeric($kurs)) {
 			echo 'Konnte keinen Kurs nicht finden für '.$_POST['symbol'];
@@ -55,83 +61,49 @@ function buyStock($user_id, $symbol, $menge, $max) {
 		}
 
 		if($max) {
-			$menge = floor(Stockbroker::getBargeld($user_id)/$kurs);
-		} else if(Stockbroker::getBargeld($user_id) < ($menge * $kurs)) {
-			echo 'Du hast gar nicht soviel Geld! ('.Stockbroker::getBargeld($user_id).' < '.($menge * $kurs).')';
+			$menge = floor(self::getBargeld($user_id)/$kurs);
+		} else if(self::getBargeld($user_id) < ($menge * $kurs)) {
+			echo 'Du hast gar nicht soviel Geld! ('.self::getBargeld($user_id).' < '.($menge * $kurs).')';
 			return false;
 		}
 
 		// Handel vollziehen --------------------------------------------------------
-		$sql =
-			"
-			INSERT INTO
-				stock_trades (tag, zeit, user_id, symbol, menge, action, kurs)
-			VALUES (
-				now()
-				, now()
-				, ".$user_id."
-				, '".$symbol."'
-				, ".$menge."
-				, 'buy'
-				, ".$kurs."
-			)
-			"
-		;
-		$db->query($sql, __FILE__, __LINE__);
+		$sql = 'INSERT INTO
+					stock_trades (tag, zeit, user_id, symbol, menge, action, kurs)
+				VALUES
+					(?, ?, ?, ?, ?,"buy", ?)';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), timestamp(true), $user_id, $symbol, $menge, $kurs]);
 
 		return true;
 	}
 
+	/**
+	 * @param integer $user_id
+	 * @param string $symbol
+	 * @param string $comparison "<" or ">" or "="
+	 * @param float $kurs
+	 */
 	function changeWarning($user_id, $symbol, $comparison, $kurs) {
 		global $db;
-		$sql =
-			"
-			REPLACE INTO
-				stock_warnings (user_id, symbol, comparison, kurs)
-			VALUES (
-				".$user_id."
-				, '".$symbol."'
-				, '".$comparison."'
-				, ".$kurs."
-			)
-			"
-		;
-		$db->query($sql, __FILE__, __LINE__);
+		$sql = 'REPLACE INTO stock_warnings (user_id, symbol, comparison, kurs)
+				VALUES (?, ?, ?, ?)';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id, $symbol, $comparison, $kurs]);
 		return true;
 	}
 
 	function getBargeld($user_id) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				(1000+SUM(if(action='buy', -(menge*kurs), +(menge*kurs)))) AS bargeld
-			FROM
-				stock_trades
-			WHERE
-				user_id = '".$user_id."'
-			GROUP BY user_id
-			"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT (1000+SUM(if(action="buy", -(menge*kurs), +(menge*kurs)))) AS bargeld
+				FROM stock_trades WHERE user_id=? GROUP BY user_id';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]));
 		return $rs['bargeld'];
 
 	}
 
 	function getKurs($symbol) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				kurs
-			FROM
-				stock_quotes sq
-			WHERE symbol = '".$symbol."'
-			ORDER BY tag DESC, zeit DESC
-			LIMIT 0,1
-			"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT kurs FROM stock_quotes sq WHERE symbol=? ORDER BY tag DESC, zeit DESC LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$symbol]));
 		return $rs['kurs'];
 	}
 
@@ -152,7 +124,7 @@ function getKurseNeuste() {
 			LIMIT 0,20
 			"
 		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result)) {
 			$kurse[] = $rs;
@@ -164,17 +136,8 @@ function getKurseNeuste() {
 
 	function getStocksOldest() {
 		global $db;
-		$sql =
-			"
-			SELECT
-				symbol
-			FROM
-				stock_items
-			ORDER BY kurs_last_updated DESC
-			LIMIT 0,3
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT symbol FROM stock_items ORDER BY kurs_last_updated DESC LIMIT 3';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result)) {
 			$stocks[] = $rs['symbol'];
@@ -184,17 +147,8 @@ function getStocksOldest() {
 
 	function getStocksTraded() {
 		global $db;
-		$sql =
-			"
-			SELECT
-				symbol
-			FROM
-				stock_trades
-			GROUP BY
-				symbol
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT symbol FROM stock_trades GROUP BY symbol';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 		while($rs = $db->fetch($result)) {
 			$stocks[] = $rs['symbol'];
 		}
@@ -225,8 +179,7 @@ function issueStockWarnings($symbol, $kurs)
 
 		while($rs = $db->fetch($result))
 		{
-			// FIXME Don't use the bad eval()!!
-			eval("\$warning=".$kurs.$rs['comparison'].$rs['kurs'].';');
+			$warning = $kurs . $rs['comparison'] . $rs['kurs'];
 
 			if ($warning)
 			{
@@ -247,13 +200,8 @@ function issueStockWarnings($symbol, $kurs)
 				$notification_status = $notification->send($rs['user_id'], 'stockbroker', ['from_user_id'=>BARBARA_HARRIS, 'subject'=>t('message-subject', 'stockbroker'), 'text'=>$notification_text, 'message'=>$notification_text]);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Notification status "%s" for $symbol %s to user %d', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $symbol, $rs['user_id']));
 
-				$sql = 'DELETE
-						FROM stock_warnings
-						WHERE
-							user_id = '.$rs['user_id'].'
-							AND symbol = "'.$symbol.'"
-							AND comparison = "'.$rs['comparison'].'"';
-				$db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$sql = 'DELETE FROM stock_warnings WHERE user_id=? AND symbol=? AND comparison=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['user_id'], $symbol, $rs['comparison']]);
 			}
 		}
 	}
@@ -261,48 +209,35 @@ function issueStockWarnings($symbol, $kurs)
 	/**
 	 * Holt sich die neusten (nicht die heutigen) Kurse eines Wertpapiers.
 	 *
-	 * @return int
 	 * @param string $symbol
+	 * @return int
 	 */
 	function getSymbol($symbol) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				*
-			FROM
-				stock_items si
-			LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND sq.tag = (SELECT MAX(tag) FROM stock_quotes WHERE symbol = sq.symbol))
-			WHERE
-				si.symbol = '".$symbol."'
-			"
-		;
-		return $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT * FROM stock_items si
+					LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND sq.tag=(SELECT MAX(tag) FROM stock_quotes WHERE symbol = sq.symbol))
+				WHERE si.symbol=?';
+		return $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$symbol]));
 	}
 
 	function searchstocks($searchstring) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				si.symbol
-				, si.company
-				, si.description
-				, sq.tag
-				, sq.zeit
-				, sq.kurs
-				, sq.proz_steigerung
-				, sq.kurs_gestern
-			FROM
-				stock_items si
-			LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND tag = (SELECT max(tag) from stock_quotes WHERE symbol = sq.symbol))
-			WHERE
-				si.symbol LIKE CONCAT('%', ?, '%')
-				OR
-				si.company LIKE CONCAT('%', ?, '%')
-			"
-		;
-
+		$sql = "SELECT
+					si.symbol
+					,si.company
+					,si.description
+					,sq.tag
+					,sq.zeit
+					,sq.kurs
+					,sq.proz_steigerung
+					,sq.kurs_gestern
+				FROM
+					stock_items si
+					LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND tag = (SELECT max(tag) from stock_quotes WHERE symbol = sq.symbol))
+				WHERE
+					si.symbol LIKE CONCAT('%', ?, '%')
+					OR
+					si.company LIKE CONCAT('%', ?, '%')";
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$searchstring, $searchstring]);
 
 		while($rs = $db->fetch($result)) {
@@ -312,21 +247,12 @@ function searchstocks($searchstring) {
 		return $stocks;
 	}
 
-	function getTodaysWinners() {
-
+	function getTodaysWinners()
+	{
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				*
-			FROM stock_quotes
-			WHERE tag = now()
-			ORDER BY proz_steigerung DESC
-			LIMIT 0,10
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM stock_quotes WHERE tag=? ORDER BY proz_steigerung DESC LIMIT 10';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true)]);
 
 		while($rs = $db->fetch($result)) {
 			$kurse[] = $rs;
@@ -335,21 +261,12 @@ function getTodaysWinners() {
 		return $kurse;
 	}
 
-	function getTodaysLosers() {
-
+	function getTodaysLosers()
+	{
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				*
-			FROM stock_quotes
-			WHERE tag = now()
-			ORDER BY proz_steigerung ASC
-			LIMIT 0,10
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM stock_quotes WHERE tag=? ORDER BY proz_steigerung ASC LIMIT 10';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true)]);
 
 		while($rs = $db->fetch($result)) {
 			$kurse[] = $rs;
@@ -358,22 +275,12 @@ function getTodaysLosers() {
 		return $kurse;
 	}
 
-	function getStocksOwned($user_id) {
+	function getStocksOwned($user_id)
+	{
 		global $db;
-		$sql =
-			"
-			SELECT
-				symbol
-				, SUM(if(action='buy', menge, -menge)) AS amount
-			FROM
-				stock_trades
-			WHERE
-				user_id = '".$user_id."'
-			GROUP BY user_id, symbol
-			"
-		;
-
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT symbol, SUM(if(action="buy", menge, -menge)) AS amount FROM stock_trades
+				WHERE user_id=? GROUP BY user_id, symbol';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 
 		while($rs = $db->fetch($result)) {
 			$ownedstocks[] = $rs;
@@ -396,7 +303,7 @@ function getCurrentProperty($user_id) {
 			"
 		;
 
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		$assets['Bargeld'] = 1000; // Anfangsvermögen
 
@@ -415,87 +322,28 @@ function getCurrentProperty($user_id) {
 
 	function getKursBought($user_id, $symbol) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				kurs
-			FROM
-				stock_trades
-			WHERE
-					action='buy'
-				AND
-					symbol = '".$symbol."'
-				AND
-					user_id = ".$user_id."
-			ORDER by tag DESC, zeit DESC
-			LIMIT 0,1
-			"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT kurs FROM stock_trades WHERE action="buy" AND symbol=? AND user_id=? ORDER by tag DESC, zeit DESC LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$symbol, $user_id]));
 		return $rs['kurs'];
 	}
 
 	function getMengeOwned($user_id, $symbol) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				SUM(if(action='buy', menge, -menge)) AS amount
-			FROM
-				stock_trades
-			WHERE
-					symbol = '".$symbol."'
-				AND
-					user_id = ".$user_id."
-			GROUP BY user_id
-			"
-		;
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+		$sql = 'SELECT SUM(if(action="buy", menge, -menge)) AS amount FROM stock_trades WHERE symbol=? AND user_id=? GROUP BY user_id';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$symbol, $user_id]));
 		return $rs['amount'];
 	}
 
 
 	function getHighscore() {
-		global $db, $user;
-
-		$sql =
-			"
-			SELECT DISTINCT
-
-			user_id
-
-			, FLOOR(
-				1000 +
-				(
-					(
-						SUM(IF (ACTION = 'sell', (menge * st.kurs), 0 ))
-						- SUM(IF (ACTION = 'buy', (menge * st.kurs), 0 ))
-					)
-
-					+
-
-					(
-						SUM(IF (ACTION = 'buy', (menge * sq.kurs), 0 ))
-						- SUM(IF (ACTION = 'sell', (menge * sq.kurs), 0 ))
-					)
-				)
-			) AS betrag
-
-			FROM stock_trades st
-
-			LEFT JOIN stock_quotes sq
-				ON (
-					sq.tag = (SELECT MAX(tag) FROM stock_quotes WHERE symbol = st.symbol)
-					AND
-					sq.symbol = st.symbol
-				)
-
-			GROUP BY user_id
-			ORDER BY betrag DESC
-			"
-		;
+		global $db;
 
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT DISTINCT user_id,
+					FLOOR(1000 + ((SUM(IF (ACTION = "sell", (menge * st.kurs), 0 )) - SUM(IF (ACTION = "buy", (menge * st.kurs), 0 )))
+					+ (SUM(IF (ACTION = "buy", (menge * sq.kurs), 0 )) - SUM(IF (ACTION = "sell", (menge * sq.kurs), 0 ))))) AS betrag
+				FROM stock_trades st LEFT JOIN stock_quotes sq ON (sq.tag = (SELECT MAX(tag) FROM stock_quotes WHERE symbol = st.symbol) AND sq.symbol = st.symbol)
+				GROUP BY user_id ORDER BY betrag DESC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result)) {
 			$highscore[] = $rs;
@@ -507,17 +355,9 @@ function getHighscore() {
 	function getYesterdaysMosttraded() {
 		global $db;
 
-		$sql =
-			"
-			SELECT symbol, sum(menge*kurs) AS menge
-			FROM `stock_trades`
-			WHERE tag = DATE_SUB(now(), INTERVAL 1 DAY)
-			GROUP BY symbol
-			ORDER by menge desc
-			"
-		;
+		$sql = 'SELECT symbol, sum(menge*kurs) AS menge FROM stock_trades WHERE tag = DATE_SUB(now(), INTERVAL 1 DAY) GROUP BY symbol ORDER by menge desc';
 
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result)) {
 			if($rs['menge'] > 0) $stocks[] = $rs;
@@ -529,15 +369,8 @@ function getYesterdaysMosttraded() {
 	function getWarnings($user_id) {
 		global $db;
 
-		$sql =
-			"
-			SELECT *
-			FROM `stock_warnings`
-			WHERE user_id = '".$user_id."'
-			ORDER by symbol ASC
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM stock_warnings WHERE user_id=? ORDER by symbol ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 		while($rs = $db->fetch($result)) {
 			$warnings[] = $rs;
 		}
@@ -548,22 +381,10 @@ function getWarnings($user_id) {
 	function getStocklist($anzahl, $page) {
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				si.symbol
-				, si.company
-				, sq.kurs
-				, sq.tag
-				, sq.zeit
-			FROM
-				stock_items si
-			LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND tag = (SELECT max(tag) from stock_quotes WHERE symbol = sq.symbol))
-			ORDER BY si.symbol ASC
-			LIMIT ".($page*$anzahl).", ".$anzahl."
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT si.symbol, si.company, sq.kurs, sq.tag, sq.zeit FROM stock_items si
+					LEFT JOIN stock_quotes sq ON (sq.symbol = si.symbol AND tag = (SELECT MAX(tag) FROM stock_quotes WHERE symbol = sq.symbol))
+				ORDER BY si.symbol ASC LIMIT ?,?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$page*$anzahl, $anzahl]);
 
 		while($rs = $db->fetch($result)) {
 			$stocklist[] = $rs;
@@ -575,18 +396,8 @@ function getStocklist($anzahl, $page) {
 	function getTrades($user_id) {
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				*
-			FROM
-				stock_trades st
-			WHERE
-				user_id = '".$user_id."'
-			ORDER BY tag, zeit ASC
-			"
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM stock_trades st WHERE user_id=? ORDER BY tag, zeit ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 
 		while($rs = $db->fetch($result)) {
 			$trades[] = $rs;
@@ -611,8 +422,8 @@ function sellStock($user_id, $symbol, $menge, $max) {
 		$symbol = strtoupper($symbol); // müsste eigentlich nicht hier sein, aber um sicher zu gehen...
 
 		// neuen Preis grabben
-		Stockbroker::updateKurs($symbol);
-		$kurs = Stockbroker::getKurs($symbol);
+		self::updateKurs($symbol);
+		$kurs = self::getKurs($symbol);
 
 		if(!is_numeric($kurs)) {
 			echo 'Konnte keinen Kurs finden für '.$symbol;
@@ -620,44 +431,32 @@ function sellStock($user_id, $symbol, $menge, $max) {
 		}
 
 		if($max) {
-			$menge = Stockbroker::getMengeOwned($user_id, $symbol);
-		} else if($menge > Stockbroker::getMengeOwned($user_id, $symbol)) {
+			$menge = self::getMengeOwned($user_id, $symbol);
+		} else if($menge > self::getMengeOwned($user_id, $symbol)) {
 			echo 'Du kannst gar nicht soviel verkaufen!';
 			return false;
 		}
 
 		// Handel vollziehen --------------------------------------------------------
-		$sql =
-			"
-			INSERT INTO
-				stock_trades (tag, zeit, user_id, symbol, menge, action, kurs)
-			VALUES (
-				now()
-				, now()
-				, $user_id
-				, '".$symbol."'
-				, ".$menge."
-				, 'sell'
-				, ".$kurs."
-			)
-			"
-		;
-		$db->query($sql, __FILE__, __LINE__);
+		$sql = 'INSERT INTO stock_trades (tag, zeit, user_id, symbol, menge, action, kurs) VALUES (? ,?, ?, ?, ?, "sell", ?)';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), timestamp(true), $user_id, $symbol, $menge, $kurs]);
 
 		return true;
 	}
 
+	/**
+	 * @param string $symbol
+	 */
+	function updateKurs($symbol)
+	{
+		global $db;
 
-		function updateKurs($symbol) {
-
-		if($symbol == '') return false;
-
-		$symbol = strtoupper($symbol);
+		if(empty($symbol) || !is_string($symbol)) return false;
+		else $symbol = strtoupper($symbol);
 
-		global $db;
 		//link machen
-		$source = "http://finance.yahoo.com/q?s=".$symbol;
-		$html = join("",file($source));
+		$source = 'https://finance.yahoo.com/quote/'.$symbol;
+		$html = join('',file($source));
 		//unnützi war löschä
 		$html = strip_tags(str_replace("  "," ",$html),"<b> <i>");
 
@@ -671,38 +470,17 @@ function updateKurs($symbol) {
 
 			if($kurs > 0) {
 
-				$rs = $db->fetch($db->query(
-					"SELECT * FROM stock_quotes where symbol = '".$symbol."' AND tag = DATE_SUB(now(), INTERVAL 1 DAY)"
-					, __FILE__
-					, __LINE__
-				));
+				$sql_select = 'SELECT * FROM stock_quotes WHERE symbol=? AND tag=DATE_SUB(?, INTERVAL 1 DAY)';
+				$rs = $db->fetch($db->query($sql_select, __FILE__, __LINE__, __METHOD__, [$symbol, timestamp(true)]));
 
-				$sql = "
-				REPLACE INTO
-					stock_quotes (symbol, kurs, zeit, tag, kurs_gestern, proz_steigerung)
-				VALUES
-					(
-						'".$symbol."'
-						,'".$kurs."'
-						, now()
-						, now()
-						, '".$rs['kurs']."'
-						, ".($rs['kurs'] > 0 ? "(".$kurs."-".$rs['kurs'].")/".$rs['kurs']."*100" : "0")."
-					)
-				";
-				$db->query($sql,__FILE__,__LINE__);
-
-				$sql =
-					"
-					UPDATE
-						stock_items
-					SET kurs_last_updated = now()
-					WHERE symbol = '".$symbol."'
-					"
-				;
-				$db->query($sql,__FILE__,__LINE__);
-
-				Stockbroker::issueStockWarnings($symbol, $kurs);
+				$sql_replace = 'REPLACE INTO stock_quotes (symbol, kurs, zeit, tag, kurs_gestern, proz_steigerung)
+						VALUES ( ?, ?, ?, ?, ?, IF(?>0, (?-?)/?*100, 0) )';
+				$db->query($sql_replace, __FILE__, __LINE__, __METHOD__, [$symbol, $kurs, timestamp(true), timestamp(true), $rs['kurs'], $rs['kurs'], $kurs, $rs['kurs'], $rs['kurs'], $rs['kurs']]);
+
+				$sql_update = 'UPDATE stock_items SET kurs_last_updated=? WHERE symbol=?';
+				$db->query($sql_update, __FILE__, __LINE__, __METHOD__, [timestamp(true), $symbol]);
+
+				self::issueStockWarnings($symbol, $kurs);
 
 				return true;
 			} else {
@@ -728,16 +506,16 @@ function updateKurs($symbol) {
 				, 3
 			);
 			*/
-			$db->query("DELETE FROM stock_quotes WHERE symbol = '".$symbol."'", __FILE__, __LINE__);
+			$db->query('DELETE FROM stock_quotes WHERE symbol=?', __FILE__, __LINE__, __METHOD__, [$symbol]);
 			return false;
 		}
 	}
 
 	function update_orders($symbol) {
 
-		$source = "http://finance.yahoo.com/q/ecn?s=";
+		$source = 'https://finance.yahoo.com/quote/';
 
-		$html = join("",file($source.$symbol));
+		$html = join('',file($source.$symbol));
 		$html = strip_tags($html,"<table> <tr> <td> <th>");
 		$html = str_replace("  ","",$html);
 		$html = str_replace("\n","",$html);
diff --git a/www/includes/strings.array.php b/www/includes/strings.array.php
index 8212bfd..9618f26 100644
--- a/www/includes/strings.array.php
+++ b/www/includes/strings.array.php
@@ -171,6 +171,8 @@
 			,'error-package-missing' => 'Package "<strong>%s</strong>" existiert nicht.'
 			,'error-package-loading' => 'Error loading packages for template #%d'
 			,'activity-newpage' =>  'hat die Seite <a href="/tpl/%d">%s</a> erstellt.'
+			,'change-notification-owner' =>  '%s hat dein Template <a href="/tpl/%d">%s</a> bearbeitet.'
+			,'change-notification-owner-subject' => 'Dein Template wurde von %s bearbeitet'
 			,'favorite-page-action' => '[fav]'
 			,'unfavorite-page-action' => '[unfav]'
 		]
@@ -255,6 +257,8 @@
 	,'peter' =>
 		[
 			 'waiting-for-num-players' => 'Warten auf %d weitere Mitspieler...'
+			,'activity-newgame' => 'mischelt die Karten für einen <a href="%s/peter.php?game=%d">neuen «Peter» Jass</a>.'
+			,'activity-won' => 'hat <a href="%s/peter.php?game=%d">diese Runde</a> «Peter» für sich entschieden.'
 		]
 	,'poll' =>
 		[
@@ -300,4 +304,17 @@
 		[
 			 'webview-link' => "Diese E-Mail in all it's glory anschauen dooooo:\n%s/verein_mailer.php?mail=%s&user=%s&hash=%s"
 		]
+	,'wetten' =>
+		[
+			 'activity-neuewette' => '<a href="%s/wetten.php?id=%d">behauptet</a> dass «%s» - stimmst du zu, oder wettest du dagegen?'
+			,'activity-wette-done' => 'hat <a href="%s/wetten.php?id=%d">seine Wette</a> als entschieden markiert. Zeit den Wetteinsatz einzulösen!'
+		]
+	,'rezepte' =>
+		[
+			 'activity-new' => 'hat ein <a href="%s/tpl/129?rezept_id=%d">neues Rezept verraten</a> - lönds eu schmeckä!'
+		]
+	,'books' =>
+		[
+			 'activity-new' => 'hat das <a href="%s/books.php?do=show&book_id=%d">Buch «%s»</a> neu im Regal 👀'
+		]
 ];
diff --git a/www/includes/tpleditor.inc.php b/www/includes/tpleditor.inc.php
index f4fc3d7..0f61fc1 100644
--- a/www/includes/tpleditor.inc.php
+++ b/www/includes/tpleditor.inc.php
@@ -8,7 +8,8 @@
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/main.inc.php';
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'main.inc.php';
 
 /**
  * HTML Syntax Validator
@@ -40,6 +41,7 @@ function html_syntax_check ($str) {
 	// old query:	"(<[^<>]*<)"
 
 	/** check for invalid tags without > */
+	// FIXME $tagcheck_str is undefined (should it be $str ?)
 	if (preg_match('/< *\w+( +\w( *= *(\w*|"[^"]*"|\'[^\']*\'))?)*</', $tagcheck_str, $res, PREG_OFFSET_CAPTURE)) {
 		print_array($res);
 
@@ -122,7 +124,7 @@ function html_syntax_check ($str) {
 function tpleditor_unlock ($id) {
 	global $db, $user;
 
-	$e = $db->query('SELECT lock_user FROM templates WHERE id='.$id, __FILE__, __LINE__, __FUNCTION__);
+	$e = $db->query('SELECT lock_user FROM templates WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$id]);
 	$d = $db->fetch($e);
 	if ($d['lock_user'] == $user->id) $db->update('templates', ['id', $id], ['lock_user' => '0'], __FILE__, __LINE__, __FUNCTION__);
 }
@@ -146,7 +148,7 @@ function tpleditor_access_lock ($id, &$error)
 
 	if (!is_string($id) && $id > 0)
 	{
-		$e = $db->query('SELECT *, UNIX_TIMESTAMP(last_update) last_update, UNIX_TIMESTAMP(created) created, UNIX_TIMESTAMP(lock_time) lock_time_stamp, UNIX_TIMESTAMP(NOW()) now FROM templates WHERE id='.$id, __FILE__, __LINE__, __FUNCTION__);
+		$e = $db->query('SELECT *, UNIX_TIMESTAMP(last_update) last_update, UNIX_TIMESTAMP(created) created, UNIX_TIMESTAMP(lock_time) lock_time_stamp, UNIX_TIMESTAMP(?) now FROM templates WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [timestamp(true), $id]);
 		$d = $db->fetch($e);
 
 		if ($d && !tpl_permission($d['write_rights'], $d['owner'])) {
@@ -156,7 +158,7 @@ function tpleditor_access_lock ($id, &$error)
 			$error = 'Das Template ist gesperrt, da es gerade von '.$user->id2user($d['lock_user'], true).' bearbeitet wird.';
 			return false;
 		}else{
-			$db->query('UPDATE templates SET lock_user='.$user->id.', lock_time=NOW() WHERE id='.$d['id'], __FILE__, __LINE__);
+			$db->query('UPDATE templates SET lock_user=?, lock_time=? WHERE id=?', __FILE__, __LINE__, __FUNCTION__, [$user->id, timestamp(true), $d['id']]);
 			$error = "";
 			return true;
 		}
diff --git a/www/includes/usersystem.inc.php b/www/includes/usersystem.inc.php
index 2c4cd61..44a824d 100644
--- a/www/includes/usersystem.inc.php
+++ b/www/includes/usersystem.inc.php
@@ -10,12 +10,10 @@
 /**
  * File includes
  * @include	config.inc.php 		Include required global site configurations
- * @include util.inc.php 		Various Helper Functions
  * @include mysql.inc.php 		MySQL-DB Connection and Functions
  * @include	activities.inc.php	Activities Functions and Stream
  */
 require_once __DIR__.'/config.inc.php';
-require_once INCLUDES_DIR.'util.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'activities.inc.php';
 
@@ -162,7 +160,7 @@ class usersystem
 	 *
 	 * @var string (Optional) Error-Message, see: usersystem::activate_user()
 	 */
-	protected $error_message;
+	public $error_message;
 
 	/**
 	 * Klassen Konstruktor
@@ -205,16 +203,16 @@ function __construct()
 		{
 			/** Session init'en */
 			session_start();
-			zorgDebugger::me()->debug('Existing Session restarted');
+			zorgDebugger::log()->debug('Existing Session restarted');
 
 			/** $_SESSION[user_id] not yet available -> if not on forced Login / Logout try to Autologin */
 			if (!isset($_SESSION['user_id']) && !isset($_POST['username']) && !isset($_POST['logout']))
 			{
 				/** We got Cookies --> Autologin! */
-				zorgDebugger::me()->debug('$_SESSION[user_id] missing & no login/logout...');
+				zorgDebugger::log()->debug('$_SESSION[user_id] missing & no login/logout...');
 				if (!empty($_COOKIE[ZORG_COOKIE_USERID]) && !empty($_COOKIE[ZORG_COOKIE_USERPW]))
 				{
-					zorgDebugger::me()->debug('Autologin-Cookies existieren -> Login-Passthrough');
+					zorgDebugger::log()->debug('Autologin-Cookies existieren -> Login-Passthrough');
 					$this->login($_COOKIE[ZORG_COOKIE_USERID]); // Do NOT send $_COOKIE[ZORG_COOKIE_USERPW] here - because it only contains the PW-Hash!
 				}
 			}
@@ -229,7 +227,7 @@ function __construct()
 			isset($_SESSION['user_id']) && !empty($_SESSION['user_id']) && $_SESSION['user_id'] > 0)
 		{
 			/** Query User Infos in der DB */
-			zorgDebugger::me()->debug('Session re-started inkl. $_SESSION[user_id]');
+			zorgDebugger::log()->debug('Session re-started inkl. $_SESSION[user_id]');
 			$sql = 'SELECT *,
 						UNIX_TIMESTAMP('.$this->field_activity.') as '.$this->field_activity.',
 						UNIX_TIMESTAMP('.$this->field_lastlogin.') as '.$this->field_lastlogin.',
@@ -261,7 +259,7 @@ function __construct()
 				 * @var string $zorger hat der user zooomclan.org (retro) gewählt? sonst zorg.ch (modern) anzeigen
 				 * @var string $vereinsmitglied Vereinsmitglied-Status des user
 				 */
-				$this->id = $_SESSION['user_id'];
+				$this->id = intval($_SESSION['user_id']);
 				$this->email = $rs[$this->field_email];
 				$this->username = $rs[$this->field_username];
 				$this->clantag = $rs[$this->field_clantag];
@@ -279,12 +277,12 @@ function __construct()
 				$this->last_ip = (isset($_SESSION[$this->sessionkey_last_ip]) && !empty($_SESSION[$this->sessionkey_last_ip]) ? $_SESSION[$this->sessionkey_last_ip] : null);
 				$this->activities_allow = ($rs[$this->field_activities_allow] === '0' ? false : true);
 				$this->show_comments = ($rs[$this->field_show_comments] === '0' ? false : true);
-				$this->notifications = json_decode( (!empty($rs[$this->field_notifications]) ? $rs[$this->field_notifications] : $this->default_notifications), true); // JSON-Decode to Array
+				$this->notifications = json_decode( (!empty($rs[$this->field_notifications]) ? stripslashes($rs[$this->field_notifications]) : $this->default_notifications), true); // JSON-Decode to Array
 				$this->sql_tracker = ($rs[$this->field_sql_tracker] === '0' ? false : true);
 				$this->addle = ($rs[$this->field_addle] === '0' ? false : true);
 				$this->chess = ($rs[$this->field_chess] === '0' ? false : true);
 				$this->forum_boards = json_decode($rs['forum_boards'], true);//explode(',', $rs['forum_boards']);
-				$this->forum_boards_unread = json_decode($rs['forum_boards_unread'], true);//explode(',', $rs['forum_boards_unread']);
+				$this->forum_boards_unread = json_decode(stripslashes($rs['forum_boards_unread']), true);//explode(',', $rs['forum_boards_unread']);
 				$this->maxdepth = ($rs[$this->field_maxdepth] ? $rs[$this->field_maxdepth] : $this->maxdepth = DEFAULT_MAXDEPTH);
 				$this->menulayout = $rs[$this->field_menulayout];
 				$this->mymenu = $rs[$this->field_mymenu];
@@ -303,9 +301,9 @@ function __construct()
 				$userMobileClientAgent = isMobileClient($_SERVER['HTTP_USER_AGENT']);
 				$this->from_mobile = (!empty($userMobileClientAgent) ? reset($userMobileClientAgent) : false );
 
-				zorgDebugger::me()->debug('$user->lastlogin: %s', [strval($this->lastlogin)]);
-				zorgDebugger::me()->debug('$user->currentlogin: %s', [strval($this->currentlogin)]);
-				zorgDebugger::me()->debug('$user->from_mobile: %s => %s', [$_SERVER['HTTP_USER_AGENT'], ($this->from_mobile ? $this->from_mobile : 'false')]);
+				zorgDebugger::log()->debug('$user->lastlogin: %s', [strval($this->lastlogin)]);
+				zorgDebugger::log()->debug('$user->currentlogin: %s', [strval($this->currentlogin)]);
+				zorgDebugger::log()->debug('$user->from_mobile: %s => %s', [$_SERVER['HTTP_USER_AGENT'], ($this->from_mobile ? $this->from_mobile : 'false')]);
 
 				/**
 				 * Update last user activity
@@ -353,40 +351,41 @@ function login($username, $password=null, $user_wants_cookies=false)
 	{
 		global $db;
 
-		/** erstellt sql string für User überprüfung */
-		$sql = sprintf('SELECT id, %s FROM %s WHERE %s = "%s" LIMIT 0,1', $this->field_userpw, $this->table_name, $this->field_username, $username);
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 		$error = null;
 
+		/** erstellt sql string für User überprüfung */
+		$sql = sprintf('SELECT id, %s FROM %s WHERE %s=? LIMIT 1', $this->field_userpw, $this->table_name, $this->field_username);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$username]);
+
 		/**
 		 * Record gefunden (= User existiert).
 		 */
 		if($db->num($result) === 1)
 		{
-			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> username: found record in DB=>%d', __METHOD__, __LINE__, $db->num($result)));
 			$rs = $db->fetch($result);
+			zorgDebugger::log()->debug('username found in DB: %s', [$rs['id']]);
 
 			/**
 			 * Verifiziert ein übergebenes Passwort (on Login only)
 			 */
 			if (isset($password) && !empty($password) && !isset($_COOKIE[ZORG_COOKIE_USERPW]))
 			{
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> !empty($password)', __METHOD__, __LINE__));
+				zorgDebugger::log()->debug('empty($password)');
 				$hash_matches_pw = $this->verify_pw($password, $rs['userpw']);
 				if (true === $hash_matches_pw)
 				{
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Login: Password matches Hash - OK', __METHOD__, __LINE__));
+					zorgDebugger::log()->debug('Password matches Hash - OK');
 					/** But wait: do we have a new Hash? Because usersystem::upgrade_old_pw() was invoked? */
 					if (isset($this->userpw) && !empty($this->userpw))
 					{
-						if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Login: Ou dang! Password-Fallback using Hash from $this->userpw', __METHOD__, __LINE__));
+						zorgDebugger::log()->debug('Ou dang! Password-Fallback using Hash from $this->userpw');
 						$crypted_pw = $this->userpw;
 					} else {
-						if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Login: All good, regular Password match is OK', __METHOD__, __LINE__));
+						zorgDebugger::log()->debug('All good, regular Password match is OK');
 						$crypted_pw = $rs['userpw'];
 					}
 				} else {
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Login: Password and Hash MISMATCH!', __METHOD__, __LINE__));
+					zorgDebugger::log()->debug('MISMATCH Password and Hash!');
 					$crypted_pw = null;
 					http_response_code(401); // Set response code 401 (unauthorized)
 					$error = t('authentication-failed', 'user');
@@ -406,27 +405,23 @@ function login($username, $password=null, $user_wants_cookies=false)
 			if (isset($crypted_pw) && !empty($crypted_pw))
 			{
 				/** Erstell SQL-Query auf Basis User+Passworthash-Kombi */
-				$sql = sprintf('SELECT %10$s, %1$s, UNIX_TIMESTAMP(%2$s) %2$s, UNIX_TIMESTAMP(%3$s) %3$s, UNIX_TIMESTAMP(%4$s) %4$s FROM %5$s'.
-								' WHERE %6$s = "%7$s" AND %8$s = "%9$s" LIMIT 0,1',
-								$this->field_user_active,
-								$this->field_ausgesperrt_bis,
-								$this->field_currentlogin,
-								$this->field_lastlogin,
-								$this->table_name,
-								$this->field_username,
-								$username,
-								$this->field_userpw,
-								$crypted_pw,
-								$this->field_userid
+				$sql = sprintf('SELECT %8$s, %1$s, UNIX_TIMESTAMP(%2$s) %2$s, UNIX_TIMESTAMP(%3$s) %3$s, UNIX_TIMESTAMP(%4$s) %4$s FROM %5$s WHERE %6$s=? AND %7$s=? LIMIT 1',
+								$this->field_user_active, // %1$s
+								$this->field_ausgesperrt_bis, // %2$s
+								$this->field_currentlogin, // %3$s
+								$this->field_lastlogin, // %4$s
+								$this->table_name, // %5$s
+								$this->field_username, // %6$s
+								$this->field_userpw, // %7$s
+								$this->field_userid // %8$s
 						);
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: $db->query($sql) => %s', __METHOD__, __LINE__, print_r($sql,true)));
-				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$username, $crypted_pw]);
 
 				/** Record gefunden = User+Password matchen */
 				if($db->num($result) === 1)
 				{
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: password matches=>%d', __METHOD__, __LINE__, $db->num($result)));
 					$rs = $db->fetch($result);
+					zorgDebugger::log()->debug('password matches=>%d', [$db->num($result)]);
 
 					/** überprüfe ob user aktiviert wurde */
 					if($rs[$this->field_user_active] !== null && $rs[$this->field_user_active] !== 0 && $rs[$this->field_user_active] !== '0' && $rs[$this->field_user_active] !== false)
@@ -451,7 +446,7 @@ function login($username, $password=null, $user_wants_cookies=false)
 								 * @link http://php.net/manual/de/function.setcookie.php
 								 * @link http://php.net/manual/de/function.setcookie.php#73107
 								 */
-								if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Use cookies: %s | Session state: %d', __METHOD__, __LINE__, ($user_wants_cookies ? 'true --> enabling & setting Cookies' : 'false'), session_status()));
+								zorgDebugger::log()->debug('Use cookies: %s | Session state: %d', [($user_wants_cookies ? 'true --> enabling & setting Cookies' : 'false'), session_status()]);
 								if (session_status() === PHP_SESSION_NONE)
 								{
 									session_set_cookie_params([
@@ -496,13 +491,13 @@ function login($username, $password=null, $user_wants_cookies=false)
 
 							/** Fire up a new Session for the authenticated user */
 							if (session_status() === PHP_SESSION_NONE) session_start();
-							if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> NEW Session ID created: %s', __METHOD__, __LINE__, session_id()));
+							zorgDebugger::log()->debug('NEW Session ID created: %s', [session_id()]);
 
 							/** Push User-ID to the Session Superglobal */
 							$_SESSION['user_id'] = intval($rs['id']);
 
 							/** Last Login & current Login updaten */
-							if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Login update(user): %s=>%s | %s=>%s %s', __METHOD__, __LINE__, $this->field_lastlogin, timestamp(true, (int)$rs[$this->field_currentlogin]), $this->field_currentlogin, timestamp(true), print_r($rs,true)));
+							zorgDebugger::log()->debug('Login update(user): %s=>%s | %s=>%s %s', [$this->field_lastlogin, timestamp(true, (int)$rs[$this->field_currentlogin]), $this->field_currentlogin, timestamp(true), print_r($rs,true)]);
 							$db->update($this->table_name, ['id', $rs['id']], [
 								$this->field_lastlogin => timestamp(true, (int)$rs[$this->field_currentlogin]),
 								$this->field_currentlogin => timestamp(true),
@@ -515,8 +510,9 @@ function login($username, $password=null, $user_wants_cookies=false)
 							 * ...to have __construct() assign all additional User values
 							 * ...needed to work for whole page
 							 */
-							$loginRedirectUrl = (isset($_POST['redirect']) ? base64url_decode($_POST['redirect']) : $_SERVER['PHP_SELF'].(!empty($_SERVER['QUERY_STRING']) ? '?'.$_SERVER['QUERY_STRING'] : null));
-							if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: redirect url => %s', __METHOD__, __LINE__, $loginRedirectUrl));
+							$redirect = filter_input(INPUT_POST, 'redirect', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['redirect']
+							$loginRedirectUrl = (!empty($redirect) ? base64url_decode($redirect) : $_SERVER['PHP_SELF'].(!empty($_SERVER['QUERY_STRING']) ? '?'.$_SERVER['QUERY_STRING'] : null));
+							zorgDebugger::log()->debug('redirect url => %s', [$loginRedirectUrl]);
 							header('Location: '.$loginRedirectUrl);
 							exit;
 
@@ -527,7 +523,6 @@ function login($username, $password=null, $user_wants_cookies=false)
 						$error = t('account-inactive', 'user');
 					}
 				} else {
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: $db->num($result)=>ERROR (%d records match)', __METHOD__, __LINE__, $db->num($result)));
 					http_response_code(401); // Set response code 401 (unauthorized)
 					if (isset($_COOKIE[ZORG_COOKIE_USERPW]))
 					{
@@ -535,13 +530,13 @@ function login($username, $password=null, $user_wants_cookies=false)
 						header('Clear-Site-Data: "cookies"'); // Request Client Browser to remove all Cookies
 						$this->invalidate_session();
 						$error = t('invalid-cookie', 'user');
-						if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: $db->num($result)=>ERROR: %s', __METHOD__, __LINE__, $error));
 						//user_error(t('invalid-cookie', 'user'), E_USER_WARNING); // Warnung loggen
 					} else {
 						$this->logerror(1,$rs['id']);
 						$error = t('authentication-failed', 'user'); // nicht gegen aussen exponieren, dass es einen Useraccount gibt aber falsches PW
-						if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> login: $db->num($result)=>ERROR: %s', __METHOD__, __LINE__, $error));
+
 					}
+					zorgDebugger::log()->debug('$db->num($result)=>ERROR: %s', [$error]);
 				}
 			} else {
 				http_response_code(401); // Set response code 401 (unauthorized)
@@ -551,7 +546,7 @@ function login($username, $password=null, $user_wants_cookies=false)
 			http_response_code(401); // Set response code 401 (unauthorized)
 			$error = t('authentication-failed', 'user'); // nicht gegen aussen exponieren, dass Useraccount NICHT existiert
 		}
-		if (DEVELOPMENT && !empty($error)) error_log(sprintf('[DEBUG] <%s:%d> Error: %s', __METHOD__, __LINE__, $error));
+		zorgDebugger::log()->debug('Error: %s', [$error]);
 		return $error;
 	}
 
@@ -580,8 +575,10 @@ static function logout()
 		header('Clear-Site-Data: "cookies"');
 
 		/** Redirect user back to last page */
-		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> logout: redirect url => %s', __METHOD__, __LINE__, (isset($_POST['redirect']) ? base64url_decode($_POST['redirect']) : $_SERVER['PHP_SELF'])));
-		header('Location: '. (isset($_POST['redirect']) ? base64url_decode($_POST['redirect']) : $_SERVER['PHP_SELF']) );
+		$redirect = filter_input(INPUT_POST, 'redirect', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['redirect']
+		$redirectUrl = (!empty($redirect) ? base64url_decode($redirect) : $_SERVER['PHP_SELF']);
+		zorgDebugger::log()->debug('redirect url => %s', [$redirectUrl]);
+		header('Location: '.$redirectUrl);
 		exit;
 	}
 
@@ -749,27 +746,27 @@ function new_pass($email) {
 	 *
 	 * Erstellt einen Neuen Benutzer
 	 *
-	 * @version 3.0
+	 * @version 3.1
 	 * @since 1.0 method added
-	 * @since 2.0 replaced messages with Translation-String solution t()
-	 * @since 3.0 `04.12.2018` removed IMAP-code, code & query optimizations
+	 * @since 2.0 `IneX` replaced messages with Translation-String solution t()
+	 * @since 3.0 `04.12.2018` `IneX` removed IMAP-code, code & query optimizations
+	 * @since 3.1 `03.01.2024` `IneX` code hardenings, excluded Password-Checks
 	 *
 	 * @uses usersystem::crypt_pw(), t()
 	 * @uses SITE_URL, SENDMAIL_EMAIL
 	 * @param string $username Benutzername
-	 * @param string $pw Passwort
-	 * @param string $pw2 Passwortwiederholung
+	 * @param string $crypted_pw Passwort Hash created using password_hash()
 	 * @param string $email E-Mail
 	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
-	 * @return string error
+	 * @return bool|string True on success, or Error when unsuccessful
 	 */
-	function create_newuser($username, $pw, $pw2, $email) {
+	function create_newuser($username, $crypted_pw, $email) {
 		global $db;
 
-		if($username)
+		if(is_string($username))
 		{
-			$sql = 'SELECT id FROM '.$this->table_name.' WHERE '.$this->field_username.' = "'.$username.'"';
-			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+			$sql = sprintf('SELECT id FROM %s WHERE %s=?', $this->table_name, $this->field_username);
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$username]);
 
 			/** überprüfe ob user bereits existiert */
 			if(!$db->num($result))
@@ -778,42 +775,30 @@ function create_newuser($username, $pw, $pw2, $email) {
 				if(check_email($email))
 				{
 					/** überprüfe ob user mit gleicher email nicht bereits existiert */
-					$sql = 'SELECT id FROM '.$this->table_name.' WHERE '.$this->field_email.' = "'.$email.'"';
-					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> %s', __METHOD__, __LINE__, $sql));
+					$sql = 'SELECT id FROM '.$this->table_name.' WHERE '.$this->field_email.'=?';
+					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$email]);
 
-					if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $db->num($result): %d', __METHOD__, __LINE__, $db->num($result)));
 					if($db->num($result) === 0)
 					{
-						/** überprüfe passwort übereinstimmung */
-						if($pw === $pw2)
+						/** erstelle regcode */
+						$key = $this->regcode_gen($username);
+
+						/** user eintragen */
+						$sql = 'INSERT into '.$this->table_name.'
+									('.$this->field_regcode.', '.$this->field_regdate.', '.$this->field_userpw.','.$this->field_username.',
+									'.$this->field_email.', '.$this->field_usertyp.')
+								VALUES (?,?,?,?,?,1)';
+						$db->query($sql, __FILE__, __LINE__, __METHOD__, [$key, timestamp(true), $crypted_pw, $username, $email]);
+
+						/** email versenden */
+						$sendNewaccountConfirmation = mail($email, t('message-newaccount-subject', 'user'), t('message-newaccount', 'user', [ $username, SITE_URL, $key ]), 'From: '.SENDMAIL_EMAIL."\n");
+						if ($sendNewaccountConfirmation !== true)
 						{
-							/** erstelle regcode */
-							$key = $this->regcode_gen($username);
-
-							/** verschlüssle passwort */
-							$crypted_pw = $this->crypt_pw($pw);
-
-							/** user eintragen */
-							$sql = "INSERT into ".$this->table_name."
-								(".$this->field_regcode.", ".$this->field_regdate.",
-								".$this->field_userpw.",".$this->field_username.",
-								".$this->field_email.", ".$this->field_usertyp.")
-								VALUES ('".$key."',NOW(),'".$crypted_pw."','".$username."','".$email."', 1)";
-							$db->query($sql, __FILE__, __LINE__, __METHOD__);
-
-							/** email versenden */
-							$sendNewaccountConfirmation = mail($email, t('message-newaccount-subject', 'user'), t('message-newaccount', 'user', [ $username, SITE_URL, $key ]), 'From: '.SENDMAIL_EMAIL."\n");
-							if ($sendNewaccountConfirmation !== true)
-							{
-								error_log(sprintf('[NOTICE] <%s:%d> Account confirmation e-mail could NOT be sent', __FILE__, __LINE__));
-								$error = t('error-userprofile-update', 'user');
-							} else {
-								//$error = t('account-confirmation', 'user');
-								return true;
-							}
+							error_log(sprintf('[NOTICE] <%s:%d> Account confirmation e-mail could NOT be sent', __FILE__, __LINE__));
+							$error = t('error-userprofile-update', 'user');
 						} else {
-							$error = t('authentication-failed', 'user');
+							//$error = t('account-confirmation', 'user');
+							return true;
 						}
 					} else {
 						$error = t('invalid-email', 'user');
@@ -1195,17 +1180,17 @@ function checkimage($userid)
 		/** Check for cached Gravater */
 		if (is_file($user_imgpath_gravatar) !== false) // TODO use fileExists() method from util.inc.php?
 		{
-			zorgDebugger::me()->debug('userImage GRAVATAR exists/cached: %s', [strval($user_imgpath_gravatar)]);
+			zorgDebugger::log()->debug('userImage GRAVATAR exists/cached: %s', [strval($user_imgpath_gravatar)]);
 			return $user_imgpath_gravatar;
 
 		/** Check for custom Userpic */
 		} elseif (is_file($user_imgpath_custom) !== false) {
-			zorgDebugger::me()->debug('userImage ZORG exists/cached: %s', [strval($user_imgpath_custom)]);
+			zorgDebugger::log()->debug('userImage ZORG exists/cached: %s', [strval($user_imgpath_custom)]);
 			return $user_imgpath_custom;
 
 		/** Return false if no userpic cached */
 		} else {
-			zorgDebugger::me()->debug('userImage NOT CACHED: querying Gravatar');
+			zorgDebugger::log()->debug('userImage NOT CACHED: querying Gravatar');
 			return false;
 		}
 	}
@@ -1235,13 +1220,13 @@ function userImage($userid, $large=false)
 			$user_imgpath = str_replace(USER_IMGPATH, USER_IMGPATH_PUBLIC, $user_imgpath);
 
 			/** Add Thumbnail shortcut, if $large is NOT set */
-			if (empty($large)) $user_imgpath = str_replace(USER_IMGEXTENSION, '_tn' . USER_IMGEXTENSION, $user_imgpath);
+			if ($large !== true) $user_imgpath = str_replace(USER_IMGEXTENSION, '_tn' . USER_IMGEXTENSION, $user_imgpath);
 
 			return $user_imgpath;
 
 		/** If no userpic-file exists, query Gravatar with USER_IMGPATH_DEFAULT as fallback image */
 		} else {
-			zorgDebugger::me()->debug('userImage not cached for $userid: %s', [strval($userid)]);
+			zorgDebugger::log()->debug('userImage not cached for $userid: %s', [strval($userid)]);
 			return $this->get_gravatar(
 										 $this->id2useremail($userid)
 										,($large ? USER_IMGSIZE_LARGE : USER_IMGSIZE_SMALL)
@@ -1389,7 +1374,7 @@ function id2user($id, $clantag=FALSE, $pic=FALSE)
 	function user2id ($username)
 	{
 		global $db;
-		$e = $db->query('SELECT id FROM user WHERE username="'.$username.'" LIMIT 1', __FILE__, __LINE__, __METHOD__);
+		$e = $db->query('SELECT id FROM user WHERE username=? LIMIT 1', __FILE__, __LINE__, __METHOD__, [$username]);
 		$d = $db->fetch($e);
 		return ($d !== false || !empty($d) ? $d['id'] : 0);
 	}
@@ -1427,8 +1412,8 @@ function userpic($id, $displayName=FALSE)
 		if ($displayName) {
 			if (!isset($_users[$id])) {
 				try {
-					$sql = "SELECT clan_tag, username FROM user WHERE id='$id'";
-					$result = $db->query($sql, __FILE__, __LINE__);
+					$sql = "SELECT clan_tag, username FROM user WHERE id=?";
+					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$id]);
 					while ($rs = $db->fetch($result)) {
 						$_users[$id] = $rs;
 					}
@@ -1833,6 +1818,31 @@ function get_and_create_user_files_dir($user_id)
 		}
 	}
 
+	/**
+	 * Check if User plays Games.
+	 * Prüft ob der User-ID zum Beispiel Addle oder Schach spielt.
+	 *
+	 * @version 1.0
+	 * @since 1.0 `04.01.2024` `IneX` Method added
+	 *
+	 * @param integer $user_id
+	 * @param string $game_name Name of Game: «addle» or chess. Default: addle
+	 * @return boolean
+	 */
+	function userPlays($game_name='addle', $user_id)
+	{
+		global $db;
+
+		/** Validte parameters */
+		$allowedGames = ['addle', 'chess'];
+		if (!is_string($game_name) || !in_array($game_name, $allowedGames)) return false;
+		if (!is_numeric($user_id) || $user_id <= 0) return false;
+
+		$query = $db->query('SELECT '.implode(',', $allowedGames).' FROM user WHERE id=? LIMIT 1', __FILE__, __LINE__, __METHOD__, [$user_id]);
+		$result = $db->fetch($query);
+		return ( boolval($result[$game_name]) ? true : false );
+	}
+
 	/**
 	 * Get User Telegram Chat-ID
 	 *
@@ -1853,7 +1863,7 @@ function userHasTelegram($user_id)
 		/** Validte $user_id - valid integer & not empty/null */
 		if (empty($user_id) || $user_id === NULL || $user_id <= 0) return false;
 
-		$query = $db->query('SELECT telegram_chat_id tci FROM user WHERE id='.$user_id.' LIMIT 1', __FILE__, __LINE__, __METHOD__);
+		$query = $db->query('SELECT telegram_chat_id tci FROM user WHERE id=? LIMIT 1', __FILE__, __LINE__, __METHOD__, [$user_id]);
 		$result = $db->fetch($query);
 		return ( $result ? $result['tci'] : false );
 	}
@@ -1981,7 +1991,7 @@ function exec_changeprofile($user_id, $data_array)
 				}
 
 				/** Prepare SQL-Update "SET row=value"-Array */
-				$sqlUpdateSetValuesArray[$dataKey] = (!is_array($dataValue) ? mysqli_real_escape_string($db->conn, $dataValue) : $dataValue);
+				$sqlUpdateSetValuesArray[$dataKey] = (!is_array($dataValue) ? $dataValue : $dataValue);
 			}
 
 			/**
@@ -2007,14 +2017,14 @@ function exec_changeprofile($user_id, $data_array)
 			 * Process Form-Checkbox-Array values with JSON conversion
 			 */
 			if (is_array($data_array['notifications']) && count($data_array['notifications']) > 0) {
-				$sqlUpdateSetValuesArray['notifications'] = mysqli_real_escape_string($db->conn, json_encode($data_array['notifications']));
+				$sqlUpdateSetValuesArray['notifications'] = json_encode($data_array['notifications']);
 			} elseif (!isset($data_array['notifications']) || empty($data_array['notifications'])) {
 				$sqlUpdateSetValuesArray['notifications'] = NULL; // no change
 			}
 			if (is_array($data_array['forum_boards_unread']) && count($data_array['forum_boards_unread']) > 0) {
-				$sqlUpdateSetValuesArray['forum_boards_unread'] = mysqli_real_escape_string($db->conn, json_encode($data_array['forum_boards_unread']));
+				$sqlUpdateSetValuesArray['forum_boards_unread'] = json_encode($data_array['forum_boards_unread']);
 			} elseif (!isset($data_array['forum_boards_unread']) || empty($data_array['forum_boards_unread'])) {
-				$sqlUpdateSetValuesArray['forum_boards_unread'] = mysqli_real_escape_string($db->conn, $this->default_forum_boards_unread); // no change
+				$sqlUpdateSetValuesArray['forum_boards_unread'] = $this->default_forum_boards_unread; // no change
 			}
 
 			if (count($sqlUpdateSetValuesArray) > 0)
@@ -2242,11 +2252,11 @@ function exec_aussperren($user_id, $date_array)
 if (isset($_POST['logout']))
 {
 	/** exec the User logout */
-	zorgDebugger::me()->debug('exec User logout');
+	zorgDebugger::log()->debug('exec User logout');
 	usersystem::logout();
 } else {
 	/** Instantiate a new usersystem Class */
-	zorgDebugger::me()->debug('Instantiate new usersystem Class');
+	zorgDebugger::log()->debug('Instantiate new usersystem Class');
 	$user = new usersystem();
 }
 
@@ -2255,12 +2265,13 @@ function exec_aussperren($user_id, $date_array)
  */
 if (isset($_POST['do']) && $_POST['do'] === 'login')
 {
-	zorgDebugger::me()->debug('exec User login (Form): %s', [print_r($_POST, true)]);
+	zorgDebugger::log()->debug('exec User login (Form): %s', [print_r($_POST, true)]);
 	if (!empty($_POST['username']) && !empty($_POST['password']))
 	{
-		$login_username = (string)$_POST['username'];
-		$login_password = (string)$_POST['password'];
-		$auto = (isset($_POST['autologin']) && $_POST['autologin'] === 'cookie' ? true : false); // User wants Autologin on/off?
+		$login_remember = filter_input(INPUT_POST, 'autologin', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? false; // $_POST['autologin']
+		$login_username = filter_input(INPUT_POST, 'username', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['username']
+		$login_password = (string)$_POST['password']; // No sanitization to prevent PW being modified vs. user input
+		$auto = ($login_remember !== false && $login_remember === 'cookie' ? true : false); // User wants Autologin on/off?
 		$login_error = $user->login($login_username, $login_password, $auto);
 	} else {
 		$login_error = t('authentication-empty', 'user');
diff --git a/www/includes/wetten.inc.php b/www/includes/wetten.inc.php
index b40311a..9443b1c 100644
--- a/www/includes/wetten.inc.php
+++ b/www/includes/wetten.inc.php
@@ -2,239 +2,282 @@
 /**
  * zorg Wettbüro
  *
- * @author freiländer
  * @package zorg\Wetten
  */
 
+/**
+ * File includes
+ */
+require_once __DIR__.'/config.inc.php';
+require_once INCLUDES_DIR.'mysql.inc.php';
+require_once INCLUDES_DIR.'usersystem.inc.php';
+
 /**
  * Wettbüro Klasse
+ *
+ * @version 2.0
+ * @since 1.0 `freiländer` Class added
+ * @since 2.0 `IneX` Various modifications and refactorings
  */
 class wetten
 {
+	/**
+	 * Execute Wettbüro Actions.
+	 * Stuff like adding a new Wette, join/unjoin a Wette, etc...
+	 *
+	 * @version 2.0
+	 * @since 1.0 `freiländer` Method added
+ 	 * @since 2.0 `IneX` Various modifications and code / sql refactorings
+	 */
 	static function exec()
 	{
 		global $db, $user;
-		if(isset($_POST) && count($_POST) > 0)
+
+		if($user->is_loggedin())
 		{
-			if($_POST['wette'] && $_POST['einsatz'] && is_numeric($_POST['dauer']) && $_POST['titel'])
+			$wetteId = (isset($wette) ? $wette : (filter_input(INPUT_GET, 'id', FILTER_VALIDATE_INT) ?? 0)); // $_GET['id']
+			$doAction = filter_input(INPUT_GET, 'do', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['do']
+
+			if (count($_POST) > 0)
 			{
+				$wettetitel = filter_input(INPUT_POST, 'titel', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['titel']
+				$wette = filter_input(INPUT_POST, 'wette', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['wette']
+				$wetteinsatz = filter_input(INPUT_POST, 'einsatz', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['einsatz']
+				$wettedauer = filter_input(INPUT_POST, 'dauer', FILTER_VALIDATE_INT) ?? 0; // $_POST['dauer']
+				$starten = filter_input(INPUT_POST, 'start', FILTER_VALIDATE_BOOLEAN) ?? false; // $_POST['start'] = "1"
+				$schliessen = filter_input(INPUT_POST, 'schliessen', FILTER_VALIDATE_BOOLEAN) ?? false; // $_POST['schliessen'] = "1"
+
 				/** Neue Wette eintragen */
-				$sql = '
-				INSERT into wetten
-					(
-						wette,
-						einsatz,
-						user_id,
-						datum,
-						dauer,
-						status,
-						titel
-					)
-				VALUES
-					(
-						"'.addslashes(strip_tags($_POST['wette'],"<a> <b> <i> <u> <img>")).'",
-						"'.addslashes(strip_tags($_POST['einsatz'],"<a> <b> <i> <u> <img>")).'",
-						'.$user->id.',
-						NOW(),
-						'.$_POST['dauer'].',
-						"offen",
-						"'.addslashes(strip_tags($_POST['titel'])).'"
-					)';
-				$db->query($sql,__FILE__,__LINE__);
-
-				/** Teilnehmer eintrag */
-				$sql = '
-				INSERT into wetten_teilnehmer
-					(
-						wetten_id,
-						user_id,
-						seite,
-						datum
-					)
-				VALUES
-					(
-						'.$db->lastid().',
-						'.$user->id.',
-						"wetter",
-						NOW()
-					)';
-				$db->query($sql,__FILE__,__LINE__);
-
-				header('Location: '.getURL(false,false).'?eintrag=1');
-				exit;
-			}
+				if($wettedauer > 0 && !empty($wette) && !empty($wetteinsatz) && !empty($wettetitel))
+				{
+					$sql = 'INSERT into wetten (wette, einsatz, user_id, datum, dauer, status, titel) VALUES (?, ?, ?, ?, ?, "offen", ?)';
+					$neueWetteId = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$wette, $wetteinsatz, $user->id, timestamp(true), $wettedauer, $wettetitel]);
+
+					/** Teilnehmer eintrag */
+					$sql = 'INSERT into wetten_teilnehmer (wetten_id, user_id, seite, datum) VALUES (?, ?, "wetter", ?)';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [$neueWetteId, $user->id, timestamp(true)]);
 
-			/** Wette starten */
-			if ($_GET['id'] && $_POST['start'] && $_POST['dauer']) {
-				$sql = '
-				UPDATE wetten
-				SET
-					status = "laeuft",
-					start = NOW(),
-					ende = ADDDATE(DATE(NOW()),'.$_POST['dauer'].')
-				WHERE
-					id = '.$_GET['id'].'
-					AND
-					user_id = '.$user->id;
-				$db->query($sql,__FILE__,__LINE__);
+					/** Activity Eintrag auslösen */
+					Activities::addActivity($user->id, 0, t('activity-neuewette', 'wetten', [ SITE_URL, $neueWetteId, $wettetitel ]), 'w');
 
+					header('Location: '.getURL(false,false).'?eintrag=1');
+					exit;
+				}
+
+				/** Wette starten */
+				if ($starten === true && $wetteId > 0 && $wettedauer > 0)
+				{
+					$sql = 'UPDATE wetten SET status="laeuft", start=?, ende=ADDDATE(DATE(?),?) WHERE id=? AND user_id=?';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), timestamp(true), $wettedauer, $wetteId, $user->id]);
+				}
+
+				/** Wette schliessen */
+				elseif ($schliessen === true && $wetteId > 0)
+				{
+					$sql = 'UPDATE wetten SET status="geschlossen", geschlossen=? WHERE id=? AND user_id=?';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $wetteId, $user->id]);
+
+					/** Activity Eintrag auslösen */
+					Activities::addActivity($user->id, 0, t('activity-wette-done', 'wetten', [ SITE_URL, $wetteId ]), 'w');
+				}
 			}
-			
-			/** Wette schliessen */
-			elseif ($_GET['id'] && $_POST['schliessen'])
+
+			switch ($doAction)
 			{
-				$sql = "
-				UPDATE wetten
-				SET
-					status = 'geschlossen',
-					geschlossen = NOW()
-				WHERE
-					id = '$_GET[id]'
-					AND
-					user_id = '$_SESSION[user_id]'
-				";
-				$db->query($sql,__FILE__,__LINE__);
+				/** Wette als Wetter joinen */
+				case "wjoin":
+					$sql = 'SELECT * FROM wetten_teilnehmer WHERE user_id=? AND wetten_id=?';
+					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $wetteId]);
+					if($db->num($result) > 0)
+					{
+						$sql = 'INSERT INTO wetten_teilnehmer (wetten_id, user_id, seite, datum) VALUES (?, ?, "wetter", ?)';
+						$db->query($sql, __FILE__, __LINE__, __METHOD__, [$wetteId, $user->id, timestamp(true)]);
+					}
+					break;
+
+				/** wette unjoinen */
+				case "unjoin":
+					$sql = 'DELETE FROM wetten_teilnehmer WHERE user_id=? AND wetten_id=?';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $wetteId]);
+					break;
+
+				/** wette als gegner joinen */
+				case "gjoin":
+					$sql = 'SELECT * FROM wetten_teilnehmer WHERE user_id=? AND wetten_id=?';
+					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $wetteId]);
+					if($db->num($result) > 0)
+					{
+						$sql = 'INSERT INTO wetten_teilnehmer (wetten_id, user_id, seite, datum) VALUES (?, ?, "gegner", ?)';
+						$db->query($sql, __FILE__, __LINE__, __METHOD__, [$wetteId, $user->id, timestamp(true)]);
+					}
+					break;
+
 			}
 		}
+	}
 
-		if(isset($_GET['do']) && $_GET['id']) {
-			/** Wette als Wetter joinen */
-			if($_GET['do'] == "wjoin") {
-				$sql = "
-				SELECT
-					*
-				FROM wetten_teilnehmer
-				WHERE
-					user_id = '$_SESSION[user_id]'
-					AND
-					wetten_id = '$_GET[id]'
-				";
-				$result = $db->query($sql,__FILE__,__LINE__);
-				if(!$db->num($result)) {
-					$sql = "
-					INSERT 	into wetten_teilnehmer
-						(
-							wetten_id,
-							user_id,
-							seite,
-							datum
-						)
-					VALUES
-						(
-							'".$_GET['id']."',
-							'".$user->id."',
-							'wetter',
-							now()
-						)
-					";
-					$db->query($sql,__FILE__,__LINE__);
-				}
-			}
+	/**
+	 * Return a list of Wetten, based on Status.
+	 *
+	 * @version 1.0
+	 * @since 1.0 `04.01.2024` `IneX` Method added
+	 *
+	 * @param string $status The status of relevant Wetten: "offen"(default), "laeuft", "geschlossen".
+	 * @return void Echos HTML directly, no return value
+	 */
+	static function listwetten($status="offen")
+	{
+		global $db, $user;
+
+		$alleWettstati = ['offen', 'laeuft', 'geschlossen'];
+		$datumSpalte = 'Behauptet';
+
+		if (in_array($status, $alleWettstati))
+		{
+			switch ($status)
+			{
+				case "laeuft":
+					echo '<h2>Laufende Wetten</h2>';
+					$datumSpalte = 'Läuft seit';
+					break;
+
+				case "geschlossen":
+					echo '<h2>Abgeschlossene Wetten</h2>';
+					$datumSpalte = 'Beendet';
+					break;
+
+				default: // same as "offen" (Default)
+					echo '<h2>Offene Wetten</h2>';
 
-			/** wette unjoinen */
-			if($_GET['do'] == "unjoin") {
-				$sql = "
-				DELETE FROM
-				wetten_teilnehmer
-				WHERE
-					user_id = '$_SESSION[user_id]'
-					AND
-					wetten_id = '$_GET[id]'
-				";
-				$db->query($sql,__FILE__,__LINE__);
 			}
 
-			/** wette als gegner joinen */
-			if($_GET['do'] == "gjoin") {
-				$sql = "
-				SELECT
-					*
-				FROM wetten_teilnehmer
-				WHERE
-					user_id = '$_SESSION[user_id]'
-					AND
-					wetten_id = '$_GET[id]'
-				";
-				$result = $db->query($sql,__FILE__,__LINE__);
-				if(!$db->num($result)) {
-					$sql = "
-					INSERT 	into wetten_teilnehmer
-						(
-							wetten_id,
-							user_id,
-							seite,
-							datum
-						)
-					VALUES
-						(
-							'".$_GET['id']."',
-							'".$user->id."',
-							'gegner',
-							now()
-						)
-					";
-					$db->query($sql,__FILE__,__LINE__);
+			/** Query all relevant Wetten and include Wetter & Gegner Counts */
+			$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum,
+						(SELECT COUNT(*) FROM wetten_teilnehmer wt WHERE wt.wetten_id = w.id AND wt.seite = "wetter") AS anzahl_wetter,
+						(SELECT COUNT(*) FROM wetten_teilnehmer wt WHERE wt.wetten_id = w.id AND wt.seite = "gegner") AS anzahl_gegner
+					FROM wetten w WHERE w.status=? ORDER BY w.datum DESC';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$status]);
+
+			if ($db->num($result) > 0)
+			{
+				echo '<table class="border">
+						<thead class="title">
+							<tr align="left">
+								<td>Titel</td>
+								<td class="hide-mobile">Einsatz</td>
+								<td class="hide-mobile">Wettstarter</td>
+								<td>Dafür</td>
+								<td>Dagegen</td>
+								<td>'.$datumSpalte.'</td>
+							</tr>
+						</thead>
+						<tbody>';
+
+				while($rs = $db->fetch($result))
+				{
+					$wettstarter = $user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => false, 'link' => true, 'pic' => false]);
+
+					echo '<tr>';
+					echo '<td>
+							<a href="?id='.$rs['id'].'">'.stripslashes($rs['titel']).'</a>
+						</td>';
+					echo '<td>'.
+							text_width(stripslashes($rs['einsatz']), 25, '&hellip;', true, true).
+						'</td>';
+					echo '<td>'.
+							$wettstarter.
+						'</td>';
+					echo '<td>'.
+							($rs['anzahl_wetter'] > 0 ? $rs['anzahl_wetter'] : '-').
+						'</td>';
+					echo '<td>'.
+							($rs['anzahl_gegner'] > 0 ? $rs['anzahl_gegner'] : '-').
+						'</td>';
+					echo '<td>'.
+							($status === 'offen' ? datename($rs['datum']) : timename($rs['datum'])).
+						'</td>';
+					echo '</tr>';
 				}
+
+				echo '</tbody>
+				</table>';
+			}
+			/** Keine Wetten gefunden */
+			else {
+				echo '<p>Keine Wette gefunden.</p>';
 			}
 		}
+		/** Ungültiger Wettstatus */
+		else {
+			echo '<p>Ungültiger Wettstatus abgefragt.</p>';
+		}
 	}
 
-
-
+	/**
+	 * Liste offener Wetten.
+	 * Alle neuen/ungestarteten Wetten.
+	 *
+	 * @deprecated Use wetten::listwetten("offen") instead
+	 *
+	 * @version 1.1
+	 * @since 1.0 `freiländer` Method added
+	 * @since 1.1 `IneX` Code and SQL-Query optimized
+	 *
+	 * @return void
+	 */
 	static function listopen()
 	{
 		global $db, $user;
 
-		$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum 
-				FROM wetten w 
-				WHERE w.status = "offen" 
-				ORDER by w.datum DESC';
+		$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum FROM wetten w WHERE w.status = "offen" ORDER by w.datum DESC';
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-		
+
 		if ($db->num($result) > 0)
 		{
 			echo '<h2>Offene Wetten</h2>
 			<table width="700" cellpadding="4" cellspacing="1" bgcolor="'.BORDERCOLOR.'">
 			<tr align="left"  bgcolor="'.BORDERCOLOR.'">
-				<td><b>Wettstarter</b>
-				</td><td><b>Titel</b>
-				</td><td><b>Einsatz</b>
-				</td><td><b>Wetter</b>
-				</td><td><b>Gegner</b>
-				</td><td><b>Datum</b></td>
+				<td><b>Wettstarter</b></td>
+				<td><b>Titel</b></td>
+				<td><b>Einsatz</b></td>
+				<td><b>Wetter</b></td>
+				<td><b>Gegner</b></td>
+				<td><b>Datum</b></td>
 			</tr>';
-	
+
 			while($rs = $db->fetch($result))
 			{
 				/** Wetter & Gegner bei jedem Wette-Eintrag neu initialisieren */
-				$wetter = array();
-				$gegner = array();
-	
-				$sqli = 'SELECT wt.user_id, wt.seite 
-						 FROM wetten_teilnehmer wt 
-						 WHERE wt.wetten_id = '.$rs['id'];
-				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__);
-				while ($rsi = $db->fetch($resulti)) {
-					$username = $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]);
+				$wettstarter = intval($rs['user_id']);
+				$wetter = [];
+				$gegner = [];
+
+				$sqli = 'SELECT wt.user_id, wt.seite FROM wetten_teilnehmer wt WHERE wt.wetten_id=?';
+				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__, [$rs['id']]);
+				while ($rsi = $db->fetch($resulti))
+				{
+					$username = $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => false, 'link' => true, 'pic' => false]);
 					if($rsi['seite'] === 'wetter') {
-						array_push($wetter, $username);
+						$wetter[] = $username;
 					} else {
-						array_push($gegner, $username);
+						$gegner[] = $username;
 					}
+					/** Lass uns ein paar SQL-Queries sparen im hierauf folgenden Code... */
+					if (intval($rsi['user_id']) === $wettstarter) $wettstarter = $username;
 				}
-	
-				echo '<tr bgcolor="'.TABLEBACKGROUNDCOLOR.'">
-				<td>'.$user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]).'</td>
+
+				echo '<tr bgcolor="'.TABLEBACKGROUNDCOLOR.'">';
+				//echo '<td class="hide-mobile">'.(is_numeric($wettstarter) ? $user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]) : $wettstarter).'</td>
+				echo '<td>'.$wettstarter.'</td>
 				<td><a href="?id='.$rs['id'].'">'.stripslashes($rs['titel']).'</a></td>
-				<td>'.stripslashes($rs['einsatz']).'</td><td>';
+				<td>'.text_width(stripslashes($rs['einsatz']), 25, '&hellip;', true, true).'</td><td>';
 				echo (count($wetter) > 0 ? implode(', ', (array)$wetter) : 'keine');
 				echo '</td><td>';
 				echo (count($gegner) > 0 ? implode(', ', (array)$gegner) : 'keine');
-				echo '</td><td>
-					'.datename($rs['datum']).'
-				</td></tr>';
+				echo '</td><td>'.datename($rs['datum']).'</td>';
+				echo '</tr>';
 			}
-	
+
 			echo '</table>';
 		}
 		/** Keine Wetten gefunden */
@@ -244,20 +287,26 @@ static function listopen()
 
 		}
 	}
-	
 
+	/**
+	 * Liste laufender Wetten.
+	 * Alle gestarteten Wetten.
+	 *
+	 * @deprecated Use wetten::listwetten("laeuft") instead
+	 *
+	 * @version 1.1
+	 * @since 1.0 `freiländer` Method added
+	 * @since 1.1 `IneX` Code and SQL-Query optimized
+	 *
+	 * @return void
+	 */
 	static function listlaufende()
 	{
 		global $db, $user;
 
-		$sql = 'SELECT
-					w.*,
-					UNIX_TIMESTAMP(w.datum) as datum
-				FROM wetten w
-				WHERE w.status = "laeuft"
-				ORDER by w.datum DESC';
+		$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum FROM wetten w WHERE w.status = "laeuft" ORDER by w.datum DESC';
 		$result = $db->query($sql, __FILE__ ,__LINE__, __METHOD__);
-		
+
 		if ($db->num($result) > 0)
 		{
 			echo '<h2>Laufende Wetten</h2>
@@ -270,17 +319,15 @@ static function listlaufende()
 				<td><b>Gegner</b></td>
 				<td><b>Datum</b></td>
 			</tr>';
-	
+
 			while($rs = $db->fetch($result))
 			{
 				/** Wetter & Gegner bei jedem Wette-Eintrag neu initialisieren */
 				$wetter = array();
 				$gegner = array();
-	
-				$sqli = 'SELECT wt.user_id, wt.seite 
-						 FROM wetten_teilnehmer wt 
-						 WHERE wt.wetten_id = '.$rs['id'];
-				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__);
+
+				$sqli = 'SELECT wt.user_id, wt.seite FROM wetten_teilnehmer wt WHERE wt.wetten_id=?';
+				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__, [$rs['id']]);
 				while ($rsi = $db->fetch($resulti)) {
 					$username = $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]);
 					if($rsi['seite'] === 'wetter') {
@@ -289,7 +336,7 @@ static function listlaufende()
 						array_push($gegner, $username);
 					}
 				}
-	
+
 				echo '<tr bgcolor="'.TABLEBACKGROUNDCOLOR.'">
 				<td>'.$user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]).'</td>
 				<td><a href="?id='.$rs['id'].'">'.stripslashes($rs['titel']).'</a>
@@ -310,18 +357,26 @@ static function listlaufende()
 			echo '<p>Zur Zeit läuft gerade keine Wette mehr...</p>';
 		}
 	}
-	
-	
+
+	/**
+	 * Liste geschlossener Wetten.
+	 * Alle alten/abgeschlossenen Wetten.
+	 *
+	 * @deprecated Use wetten::listwetten("geschlossen") instead
+	 *
+	 * @version 1.1
+	 * @since 1.0 `freiländer` Method added
+	 * @since 1.1 `IneX` Code and SQL-Query optimized
+	 *
+	 * @return void
+	 */
 	static function listclosed()
 	{
 		global $db, $user;
 
-		$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum 
-				FROM wetten w 
-				WHERE w.status = "geschlossen" 
-				ORDER by w.datum DESC';
+		$sql = 'SELECT w.*, UNIX_TIMESTAMP(w.datum) as datum FROM wetten w WHERE w.status = "geschlossen" ORDER by w.datum DESC';
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
-		
+
 		if ($db->num($result) > 0)
 		{
 			echo '<h2>Abgeschlossene Wetten</h2>
@@ -334,17 +389,15 @@ static function listclosed()
 						<td><b>Gegner</b></td>
 						<td><b>Datum</b></td>
 					</tr>';
-	
+
 			while($rs = $db->fetch($result))
 			{
 				/** Wetter & Gegner bei jedem Wette-Eintrag neu initialisieren */
 				$wetter = array();
 				$gegner = array();
-	
-				$sqli = 'SELECT wt.user_id, wt.seite
-						 FROM wetten_teilnehmer wt
-						 WHERE wt.wetten_id = '.$rs['id'];
-				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__);
+
+				$sqli = 'SELECT wt.user_id, wt.seite FROM wetten_teilnehmer wt WHERE wt.wetten_id=?';
+				$resulti = $db->query($sqli, __FILE__, __LINE__, __METHOD__, [$rs['id']]);
 				while ($rsi = $db->fetch($resulti)) {
 					$username = $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]);
 					if($rsi['seite'] === 'wetter') {
@@ -353,18 +406,18 @@ static function listclosed()
 						array_push($gegner, $username);
 					}
 				}
-	
+
 				echo '<tr bgcolor="'.TABLEBACKGROUNDCOLOR.'">
 						<td>'.$user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]).'</td>
 						<td><a href="?id='.$rs['id'].'">'.stripslashes($rs['titel']).'</a></td>
-						<td>'.stripslashes($rs['einsatz']).'</td><td>';
+						<td>'.text_width(stripslashes($rs['einsatz']), 25, '&hellip;', true, true).'</td><td>';
 						echo (count($wetter) > 0 ? implode(', ', (array)$wetter) : 'keine');
 						echo '</td><td>';
 						echo (count($gegner) > 0 ? implode(', ', (array)$gegner) : 'keine');
 						echo '</td><td>'.datename($rs['datum']).'</td>
 					</tr>';
 			}
-	
+
 			echo '</table>';
 		}
 		/** Keine Wetten gefunden */
@@ -372,7 +425,7 @@ static function listclosed()
 			echo '<p>Keine fertige Wette gefunden.</p>';
 		}
 	}
-	
+
 	/**
 	 * Formular um neue Wette einzutragen
 	 *
@@ -436,15 +489,14 @@ static function get_wette ($id)
 		$gjoin = false;
 		$html = '';
 
-		$sql = '
-		SELECT *
-			,UNIX_TIMESTAMP(datum) as datum
-			,UNIX_TIMESTAMP(start) as startdatum
-			,UNIX_TIMESTAMP(ende) as enddatum
-			,UNIX_TIMESTAMP(geschlossen) as geschlossen
-		FROM wetten
-		WHERE id = '.$id;
-		if(!$rs = $db->fetch($db->query($sql,__FILE__,__LINE__)))
+		$sql = 'SELECT *
+					,UNIX_TIMESTAMP(datum) as datum
+					,UNIX_TIMESTAMP(start) as startdatum
+					,UNIX_TIMESTAMP(ende) as enddatum
+					,UNIX_TIMESTAMP(geschlossen) as geschlossen
+				FROM wetten
+				WHERE id=?';
+		if(!$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$id])))
 		{
 			/** Wette nicht gefunden */
 			$smarty->assign('error', ['type' => 'warn', 'dismissable' => 'false', 'title' => 'Diese Wette gibts nicht!', 'message' => '<a class="tiny" href="wetten.php">&lt;&lt; Zur&uuml;ck</a>']);
@@ -454,18 +506,16 @@ static function get_wette ($id)
 		}
 		else {
 			/** Wette gefunden - Details & Daten abfragen */
-			$sqli = 'SELECT *
-					FROM wetten_teilnehmer
-					WHERE wetten_id = '.$rs['id'];
-			$resulti = $db->query($sqli,__FILE__,__LINE__);
-			
+			$sqli = 'SELECT * FROM wetten_teilnehmer WHERE wetten_id=?';
+			$resulti = $db->query($sqli,__FILE__,__LINE__,__METHOD__,[$rs['id']]);
+
 			while ($rsi = $db->fetch($resulti))
 			{
 				if($rsi['seite'] == "wetter") {
-					array_push($wetter, $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]));
+					array_push($wetter, $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => false, 'link' => true, 'pic' => false]));
 					if($user->is_loggedin() && $rsi['user_id'] === $user->id) $wjoin = true;
 				} else {
-					array_push($gegner, $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false]));
+					array_push($gegner, $user->userprofile_link($rsi['user_id'], ['username' => true, 'clantag' => false, 'link' => true, 'pic' => false]));
 					if($user->is_loggedin() && $rsi['user_id'] === $user->id) $gjoin = true;
 				}
 			}
@@ -490,18 +540,25 @@ static function get_wette ($id)
 			}
 
 			$html .= "
-			<br />
-			<table width='600' cellpadding='10' cellspacing='0'>
-			<tr><td colspan='2'>
-			<h1>Wette #".$rs['id']." &laquo;".stripslashes($rs['titel'])."&raquo;</h1>
+			<h1>&laquo;".stripslashes($rs['titel'])."&raquo; (Wette&nbsp;#".$rs['id'].")</h1>
+			<table class=\"shadedcells\" cellpadding=\"10\">
+			<tr><td valign=\"top\"
+				<b>Wettstarter</b>
+			</td><td colspan=\"2\">
+				".$user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false])."
 			</td></tr><tr><td valign=\"top\">
-			<b>Wettstarter</b>
-			</td><td>
-			".$user->userprofile_link($rs['user_id'], ['username' => true, 'clantag' => true, 'link' => true, 'pic' => false])."
+				<b>Wette</b>
+			</td><td colspan=\"2\">
+				".nl2br(stripslashes($rs['wette']))."
 			</td></tr><tr><td valign=\"top\">
-			<b>Wetter</b>
-			</td><td>
-			";
+				<b>Einsatz</b>
+			</td><td colspan=\"2\">
+				".nl2br(stripslashes($rs['einsatz']))."
+			</td></tr><tr>
+				<td></td>
+				<td valign=\"top\">
+					<p><b>Wetten <i>DAFÜR</i></b></p>
+			";//</td><td>
 
 			// Alle Wetter ausgeben
 			$anzwetter = count($wetter);
@@ -509,33 +566,25 @@ static function get_wette ($id)
 
 			$html .= ($anzwetter > 0 && $ww <> "") ? " | " : "";
 			$html .= $ww."
-			</td></tr><tr><td valign=\"top\">
-			<b>Gegner</b>
-			</td><td>
-			";
+				</td>
+				<td valign=\"top\">
+					<p><b>Wetten <i>DAGEGEN</i></b></p>
+			";//</td><td>
 
 			// Alle Wett-Gegner ausgeben
 			$anzgegner = count($gegner);
 			$html .= ($gegner = implode(', ', $gegner));
-			
+
 			$html .= ($anzgegner > 0 && $gg <> "") ? " | " : "";
 			$html .= $gg."
 			</td></tr><tr><td valign=\"top\">
-			<b>Wette</b>
-			</td><td>
-			".nl2br(stripslashes($rs['wette']))."
-			</td></tr><tr><td valign=\"top\">
-			<b>Einsatz</b>
-			</td><td>
-			".nl2br(stripslashes($rs['einsatz']))."
-			</td></tr><tr><td valign=\"top\">
-			<b>Ende</b>
-			</td><td>";			
-			if ($rs['status'] === 'laeuft' || $rs['status'] === 'geschlossen') $html .= ($rs['enddatum'] < time() && $rs['status'] != 'geschlossen') ? "<font color='red'><b>".timename($rs['enddatum'])."</b></font>" : "<b>".timename($rs['enddatum'])."</b>";
+				<b>Ende</b>
+			</td><td colspan=\"2\">";
+				if ($rs['status'] === 'laeuft' || $rs['status'] === 'geschlossen') $html .= ($rs['enddatum'] < time() && $rs['status'] != 'geschlossen') ? "<font color='red'><b>".timename($rs['enddatum'])."</b></font>" : "<b>".timename($rs['enddatum'])."</b>";
 			$html .=  " (".$rs['dauer']." Tage".($rs['status'] === 'laeuft' || $rs['status'] === 'geschlossen' ? " ab ".datename($rs['startdatum']) : ' Dauer geplant').")
 			</td></tr><tr><td valign=\"top\">
-			<b>Status</b>
-			</td><td>";
+				<b>Status</b>
+			</td><td colspan=\"2\">";
 
 			switch ($rs['status'])
 			{
@@ -554,11 +603,11 @@ static function get_wette ($id)
 						$html .= '<span class="blink">'.$rs['status'].'</span>';
 					}
 					break;
-					
+
 				case 'laeuft':
 					if($user->is_loggedin() && $user->id == $rs['user_id'])
 					{
-						
+
 						$html .= '
 						<form action="'.getURL(true,false).'" method="post">
 							<input type="hidden" name="schliessen" value="1">
@@ -570,11 +619,11 @@ static function get_wette ($id)
 						$html .= '<span class="blink">'.$rs['status'].'</span>';
 					}
 					break;
-				
+
 				case 'geschlossen':
 					$html .= '<font color="green"><b>'.$rs['status'].' @ '.date("d.m.Y", $rs['geschlossen']).'</b></font>';
 					break;
-				
+
 				default:
 					$html .= '<span class="blink">'.$rs['status'].'</span>';
 			}
@@ -585,10 +634,16 @@ static function get_wette ($id)
 
 			$html .= '<a href="'.getURL(false, false).'">&lt;&lt; zur&uuml;ck</a>';
 
+			$html .= '<h3>Standpunkte verargumentieren</h3>'; // CommentingSystem Title
+
 			echo $html;
+
+			// Wetten Commenting ------------------------------------------
+			Forum::printCommentingSystem('w', $id);
+			// End Commenting -------------------------------------------
 		}
 	}
-	
+
 	/**
 	 * Titel einer Wette holen
 	 *
@@ -604,8 +659,8 @@ public static function getTitle($wette_id)
 		global $db;
 
 		$wetteId = (int)$wette_id;
-		$sql = 'SELECT titel FROM wetten WHERE id='.$wetteId.' LIMIT 1';
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT titel FROM wetten WHERE id=? LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$wetteId]));
 		if (!$rs) return false;
 		else return $rs['titel'];
 	}
@@ -625,8 +680,8 @@ public static function getWettstarter($wette_id)
 		global $db;
 
 		$wetteId = (int)$wette_id;
-		$sql = 'SELECT user_id FROM wetten WHERE id='.$wetteId.' LIMIT 1';
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT user_id FROM wetten WHERE id=? LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$wetteId]));
 		if (!$rs) return false;
 		else return $rs['user_id'];
 	}
@@ -646,8 +701,8 @@ public static function getWettetext($wette_id)
 		global $db;
 
 		$wetteId = (int)$wette_id;
-		$sql = 'SELECT wette FROM wetten WHERE id='.$wetteId.' LIMIT 1';
-		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
+		$sql = 'SELECT wette FROM wetten WHERE id=? LIMIT 1';
+		$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$wetteId]));
 		if (!$rs) return false;
 		else return $rs['wette'];
 	}
diff --git a/www/index.php b/www/index.php
index 3fa22b2..2820a90 100644
--- a/www/index.php
+++ b/www/index.php
@@ -48,13 +48,16 @@
 
 		/** Route: /event/[year]/[month]/[day]/[event-id|eventname] */
 		case 'event':
-			$_GET['tpl'] = 158; // 158 = Event Template
-			$_GET['event_id'] = $routeValue;
+			$tplId = 158; // 158 = Event Template
+			$_GET['tpl'] = $tplId;
+			$getEventId = (int)$routeValue;
+			$_GET['event_id'] = $getEventId;
 			break;
 
 		/** Route: /word/[pagetitle] */
 		case 'word':
-			$_GET['word'] = $routeValue;
+			$tplWord = $routeValue;
+			$_GET['word'] = $tplWord;
 			break;
 
 		/** Route: /thread/[thread-id] */
@@ -63,47 +66,50 @@
 			if (!empty($getThreadId)) {
 				$_GET['thread_id'] = $getThreadId;
 				include('forum.php');
-				die();
+				exit;
 			}
 			break;
 	}
 }
-/**
- * Standardtemplate setzen, wenn tpl oder word nicht oder leer übergeben wurden
- */
-if (isset($_GET['layout']) && $_GET['layout'] != 'rss' && ((!isset($_GET['tpl']) && !isset($_GET['word'])) ||
-	(empty($_GET['tpl']) && empty($_GET['word'])) || ($_GET['tpl'] <= 0 || is_numeric($_GET['word']))))
-	{
-		// If no Templates (yet) in Database, use 0 instead of 23...
-		$_GET['tpl'] = ($db->num($db->query('SELECT id FROM templates WHERE id=23 LIMIT 1', __FILE__, __LINE__)) === 1 ? SMARTY_DEFAULT_TPL : 0);
-	}
 
+/** Input validation and sanitization */
+$tplByName = (isset($tplWord) ? $tplWord : (filter_input(INPUT_GET, 'word', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null)); // $_GET['word']
+$tplById = (isset($tplId) ? $tplId : (filter_input(INPUT_GET, 'tpl', FILTER_VALIDATE_INT) ?? null)); // $_GET['tpl']
+$useLayout = filter_input(INPUT_GET, 'layout', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['layout']
+$feedType = filter_input(INPUT_GET, 'type', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['type']
+$feedCommentsBoard = filter_input(INPUT_GET, 'board', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['board']
+$feedCommentsThreadId = filter_input(INPUT_GET, 'thread_id', FILTER_VALIDATE_INT) ?? null; // $_GET['thread_id']
+$eventId = (isset($getEventId) ? $getEventId : (filter_input(INPUT_GET, 'event_id', FILTER_VALIDATE_INT) ?? null)); // $_GET['event_id']
+$tplEditor = filter_input(INPUT_GET, 'tpleditor', FILTER_VALIDATE_BOOLEAN); // $_GET['tpleditor'] === "1"
+$editTpl = (isset($_GET['tplupd']) && is_numeric($_GET['tplupd']) ? filter_input(INPUT_GET, 'tplupd', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) : (isset($_GET['tplupd']) && $_GET['tplupd'] === 'new' ? 'new' : null));
+$tplCreated = filter_input(INPUT_GET, 'created', FILTER_VALIDATE_BOOLEAN); // $_GET['created'] === "1"
+$tplUpdated = filter_input(INPUT_GET, 'updated', FILTER_VALIDATE_BOOLEAN); // $_GET['updated'] === "1"
 
 /**
  * RSS Feeds
  * @see Forum::printRSS()
  */
-if (isset($_GET['layout']) && $_GET['layout'] === 'rss' && isset($_GET['type']))
+if ($useLayout === 'rss' && !empty($feedType))
 {
 	$smarty->assign('feeddesc', SITE_HOSTNAME . ' RSS Feed');
 	$smarty->assign('feedlang', 'de-DE');
 	$smarty->assign('feeddate', date('D, d M Y H:i:s').' GMT');
 	$feedURLbase = $_ENV['URLPATH_RSS'];
 
-	switch ($_GET['type'])
+	switch ($feedType)
 	{
 		/** Forum RSS */
 		case 'forum':
 			/** ...ein board wurde übergeben */
-			if (isset($_GET['board']))
+			if (!empty($feedCommentsBoard))
 			{
 				/** eine thread_id wurde übergeben */
-				if (isset($_GET['thread_id']) && is_numeric($_GET['thread_id']))
+				if (is_numeric($feedCommentsThreadId) && $feedCommentsThreadId > 0)
 				{
 					/** RSS Feed für einen einzelnen Thread */
-					$smarty->assign('feedtitle', remove_html(Comment::getLinkThread($_GET['board'], $_GET['thread_id']) . PAGETITLE_SUFFIX) );
-					$smarty->assign('feedlink', $feedURLbase . '&amp;amp;type=forum&amp;amp;board=' . $_GET['board'] . '&amp;amp;thread_id=' . $_GET['thread_id']);
-					$smarty->assign('feeditems', Forum::printRSS($_GET['board'], (isset($_SESSION['user_id']) && $_SESSION['user_id'] > 0 ? $_SESSION['user_id'] : null), $_GET['thread_id']));
+					$smarty->assign('feedtitle', remove_html(Comment::getLinkThread($feedCommentsBoard, $feedCommentsThreadId) . PAGETITLE_SUFFIX) );
+					$smarty->assign('feedlink', $feedURLbase . '&amp;amp;type=forum&amp;amp;board=' . $feedCommentsBoard . '&amp;amp;thread_id=' . $feedCommentsThreadId);
+					$smarty->assign('feeditems', Forum::printRSS($feedCommentsBoard, (isset($_SESSION['user_id']) && $_SESSION['user_id'] > 0 ? $_SESSION['user_id'] : null), $feedCommentsThreadId));
 
 				/** keine thread_id vorhanden */
 				} else {
@@ -111,9 +117,9 @@
 					 * RSS Feed für ein ganzes Board
 					 * @TODO Fix "unknown feed" (broken RSS-feed) für Gallery-Comments: ?layout=rss&type=forum&board=i
 					 */
-					$smarty->assign('feedtitle', remove_html(Forum::getBoardTitle($_GET['board']) . PAGETITLE_SUFFIX) );
-					$smarty->assign('feedlink', $feedURLbase . '&amp;amp;type=forum&amp;amp;board=' . $_GET['board']);
-					$smarty->assign('feeditems', Forum::printRSS($_GET['board'], (isset($_SESSION['user_id']) && $_SESSION['user_id'] > 0 ? $_SESSION['user_id'] : null)));
+					$smarty->assign('feedtitle', remove_html(Forum::getBoardTitle($feedCommentsBoard) . PAGETITLE_SUFFIX) );
+					$smarty->assign('feedlink', $feedURLbase . '&amp;amp;type=forum&amp;amp;board=' . $feedCommentsBoard);
+					$smarty->assign('feeditems', Forum::printRSS($feedCommentsBoard, (isset($_SESSION['user_id']) && $_SESSION['user_id'] > 0 ? $_SESSION['user_id'] : null)));
 				}
 
 			/** kein board vorhanden */
@@ -144,35 +150,41 @@
  * @uses SMARTY_404PAGE_TPL
  */
 } else {
-	/** Fallback for missing Template-ID */
-	if (empty($_GET['word']) && empty($_GET['tpl']))
+	/** Standardtemplate setzen, wenn tpl oder word nicht oder leer übergeben wurden */
+	if ((empty($tplById) && empty($tplByName)) || ($tplById<=0 && !is_string($tplByName)))
 	{
 		// If no Templates (yet) in Database, use 0 instead of 23...
-		$_GET['tpl'] = ($db->num($db->query('SELECT id FROM templates WHERE id=23 LIMIT 1', __FILE__, __LINE__)) === 1 ? SMARTY_DEFAULT_TPL : 0);
+		$defaultTplId = ($db->num($db->query('SELECT id FROM templates WHERE id=23 LIMIT 1', __FILE__, __LINE__)) === 1 ? SMARTY_DEFAULT_TPL : 0);
+		$_GET['tpl'] = $defaultTplId;
+		$tplById = $defaultTplId;
 	}
 
 	/** Load Template data */
-	if ($_GET['tpl'] !== 0)
+	if ($tplById > 0 || is_string($tplByName))
 	{
-		if (isset($_GET['word']) && is_string($_GET['word'])) {
-			$tplWord = (string)strip_tags(filter_var(trim($_GET['word']), FILTER_SANITIZE_STRING));
-			if (false !== $tplWord && !empty($tplWord)) $queryWhere = 'word="'.$tplWord.'"';
-		} else {
-			$tplId = (int)strip_tags(filter_var(trim($_GET['tpl']), FILTER_SANITIZE_NUMBER_INT));
-			if (false !== $tplId && !empty($tplId)) $queryWhere = 'id="'.$tplId.'"';
+		$queryWhere = null;
+		$queryParams = [];
+		if (!empty($tplByName) && is_string($tplByName)) {
+			$queryWhere = 'word=?';
+			$queryParams[] = $tplByName;
+		}
+		else {
+			$queryWhere = 'id=?';
+			$queryParams[] = $tplById;
 		}
 		// FIXME change this to use Smarty:: Function!
-		if (!empty($queryWhere)) $e = $db->query('SELECT id, title, word, LENGTH(tpl) size, owner, update_user, page_title,
-										UNIX_TIMESTAMP(last_update) last_update, UNIX_TIMESTAMP(created) created, read_rights,
-										write_rights, force_compile, border, sidebar_tpl, allow_comments FROM templates WHERE '.$queryWhere, __FILE__, __LINE__, '$_TPLROOT');
+		$e = $db->query('SELECT id, title, word, LENGTH(tpl) size, owner, update_user, page_title,
+						UNIX_TIMESTAMP(last_update) last_update, UNIX_TIMESTAMP(created) created, read_rights,
+						write_rights, force_compile, border, sidebar_tpl, allow_comments FROM templates WHERE '.$queryWhere,
+						__FILE__, __LINE__, 'Assign $_TPLROOT', $queryParams);
 
 		/**
 		 * No Template found (404)
 		 */
-		if (empty($queryWhere) || empty($db->num($e)) || $e === false)
+		if ($e === false || empty($db->num($e)))
 		{
-			if (isset($tplId)) $_TPLROOT['id'] = $tplId;
-			if (isset($tplWord)) $_TPLROOT['word'] = $tplWord;
+			if (!empty($tplById)) $_TPLROOT['id'] = $tplById;
+			if (!empty($tplByName)) $_TPLROOT['word'] = $tplByName;
 			$_TPLROOT['page_title'] = sprintf('Page «%s» not found', (isset($_TPLROOT['word']) ? $_TPLROOT['word'] : $_TPLROOT['id']));
 			$_TPLROOT['page_link'] = (isset($_TPLROOT['word']) ? '/page/'.$_TPLROOT['word'] : '/tpl/'.$_TPLROOT['id']);
 			$_TPLROOT['title'] = $_TPLROOT['page_title'];
@@ -198,16 +210,16 @@
 			if (is_array($tpl_menus)) $_TPLROOT['menus'] = $tpl_menus;
 
 			/** Assign Tpl Id, Template Titles and Template link */
-			if (!empty($_GET['word'])) $_GET['tpl'] = $_TPLROOT['id'];
+			if (!empty($tplByName)) $_GET['tpl'] = $_TPLROOT['id'];
 			if (!empty($_TPLROOT['title']) && $_TPLROOT['title'] !== null) $_TPLROOT['page_title'] = $_TPLROOT['title']; // HTML Page Title
 			if (!empty($_TPLROOT['word']) && $_TPLROOT['word'] !== null) $_TPLROOT['page_link'] = '/page/'.$_TPLROOT['word']; // Canonical URL
 			else $_TPLROOT['page_link'] = '/tpl/'.$_TPLROOT['id'];
 
 			/** Events special... */
-			if ($_TPLROOT['id'] == 158) {
-				if (!empty($_GET['event_id'])) {
-					$_TPLROOT['page_title'] = Events::getEventName($_GET['event_id']);
-					$_TPLROOT['page_link'] = Events::getEventLink($_GET['event_id']);
+			if ($_TPLROOT['id'] === 158) {
+				if (!empty($eventId) && $eventId>0) {
+					$_TPLROOT['page_title'] = Events::getEventName($eventId);
+					$_TPLROOT['page_link'] = Events::getEventLink($eventId);
 				} else {
 					$_TPLROOT['page_link'] = '/events/';
 				}
@@ -220,13 +232,13 @@
 			}
 
 			/** Immer zuletzt: Tpleditor special... */
-			if ( isset($_GET['tpleditor']) && $_GET['tpleditor'] == 1) {
-				$_TPLROOT['page_title'] = ($_GET['tplupd'] === 'new' ? 'Neues Template erstellen' : 'Template «'.$_TPLROOT['page_title'].'» bearbeiten');
+			if ($tplEditor === true) {
+				$_TPLROOT['page_title'] = ($editTpl === 'new' ? 'Neues Template erstellen' : 'Template «'.$_TPLROOT['page_title'].'» bearbeiten');
 				$_TPLROOT['sidebar_tpl'] = null; // Clear an assigned Sidebar
 			}
-			if ( isset($_GET['updated']) || isset($_GET['created']) ) {
+			if ($tplCreated === true || $tplUpdated === true) {
 				/** If Template was updated from Tpleditor, show a Success-Message */
-				$successTitle = sprintf('Template %s!', (isset($_GET['created']) ? 'created' : 'updated'));
+				$successTitle = sprintf('Template %s!', ($tplCreated ? 'created' : 'updated'));
 				unset($_GET['created']); // Remove Query-Param from URL
 				unset($_GET['updated']); // Remove Query-Param from URL
 				$smarty->assign('error', ['type'=>'success', 'dismissable'=>'true', 'title'=>$successTitle]);
diff --git a/www/scripts/chatlog_bak.php b/www/scripts/chatlog_bak.php
index bdc01d9..497f4ea 100644
--- a/www/scripts/chatlog_bak.php
+++ b/www/scripts/chatlog_bak.php
@@ -7,20 +7,10 @@
 
 $chatmessages = array();
 
-$sql = 
-	"
-	SELECT
-		chat.text
-		, UNIX_TIMESTAMP(date) AS date 
-		, user.username AS username
-		, user.clan_tag AS clantag
-		, chat.user_id
-	FROM chat
-	LEFT JOIN user ON (chat.user_id = user.id)
-	ORDER BY date ASC
-	"
+$sql = "SELECT chat.text, UNIX_TIMESTAMP(date) AS date , user.username AS username, user.clan_tag AS clantag, chat.user_id
+	FROM chat LEFT JOIN user ON (chat.user_id = user.id) ORDER BY date ASC"
 ;
-$result = $db->query($sql, __FILE__, __LINE__);
+$result = $db->query($sql, __FILE__, __LINE__, 'SELECT FROM chat');
 
 while ($rs = $db->fetch($result)) {
   array_push($chatmessages, $rs);
diff --git a/www/scripts/file_manager.php b/www/scripts/file_manager.php
index 5d35919..9e5fd81 100644
--- a/www/scripts/file_manager.php
+++ b/www/scripts/file_manager.php
@@ -5,92 +5,102 @@
  */
 global $smarty, $db, $user;
 
-define("MAX_DISCSPACE", 10485760 * 5);   // 50 MB
-define("USERPATH", FILES_DIR.$user->id.'/');
+$error = '';
+$state = '';
 
-$error = "";
-$state = "";
+if ($user->is_loggedin())
+{
+	define('MAX_DISCSPACE', 10485760 * 5); // 50 MB
+	define('USERPATH', FILES_DIR.$user->id.'/');
 
-switch ($_GET['sort']) {
-	case "datum":
-			$sort = "ORDER BY upload_date DESC";
+	$sortby = filter_input(INPUT_GET, 'sort', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['sort']
+	switch ($sortby) {
+		case "datum":
+			$sort = 'datum';
 			break;
 		case "size":
-			$sort = "ORDER BY size DESC";
+			$sort = 'size';
 			break;
 		default:
-			$sort = "ORDER BY upload_date DESC"; break;
+			$sort = 'upload_date';
+			break;
 	}
 
+	$showform = filter_input(INPUT_POST, 'formid', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['formid']
+	if ($showform === "filemanager") {
+		if (!@file_exists(USERPATH)) @mkdir(USERPATH, 0775);
 
-if ($_POST['formid'] == "filemanager") {
-	if (!@file_exists(USERPATH)) @mkdir(USERPATH, 0775);
-
-	if (is_uploaded_file($_FILES['file']['tmp_name'])) {
-		$e = $db->query("SELECT sum(size) size FROM files WHERE user=$user->id", __FILE__, __LINE__);
-		$d = $db->fetch($e);
-		if ($d['size'] + $_FILES['file']['size'] <= MAX_DISCSPACE) {
-			if (file_exists(USERPATH.$_FILES['file']['name']))  {
-				$index = 0;
-				do {
-					$index++;
-					$filename = file_name($_FILES['file']['name']) . " ($index)" . file_ext($_FILES['file']['name']);
-				} while (file_exists(USERPATH.$filename));
-			}else{
-				$filename = $_FILES['file']['name'];
-			}
-			if (@move_uploaded_file($_FILES['file']['tmp_name'], USERPATH.$filename)) {
-				chmod(USERPATH.$filename, 0664);
-				$db->query("INSERT INTO files (user, upload_date, name, size, mime)
-					VALUES ($user->id, NOW(), '$filename', '".$_FILES['file']['size']."', '".$_FILES['file']['type']."')", __FILE__, __LINE__);
-				$state = "File hinzugefügt. <br />";
+		if (is_uploaded_file($_FILES['file']['tmp_name'])) {
+			$e = $db->query('SELECT SUM(size) size FROM files WHERE user=?', __FILE__, __LINE__, 'SELECT FROM files', [$user->id]);
+			$d = $db->fetch($e);
+			if ($d['size'] + $_FILES['file']['size'] <= MAX_DISCSPACE) {
+				if (file_exists(USERPATH.$_FILES['file']['name']))  {
+					$index = 0;
+					do {
+						$index++;
+						$filename = file_name($_FILES['file']['name']) . " ($index)" . file_ext($_FILES['file']['name']);
+					} while (file_exists(USERPATH.$filename));
+				}else{
+					$filename = $_FILES['file']['name'];
+				}
+				if (@move_uploaded_file($_FILES['file']['tmp_name'], USERPATH.$filename)) {
+					chmod(USERPATH.$filename, 0664);
+					$db->query('INSERT INTO files (user, upload_date, name, size, mime)
+								VALUES (?, ?, ?, ?, ?)', __FILE__, __LINE__, 'INSERT INTO files'
+								,[$user->id, timestamp(true), $filename, $_FILES['file']['size'], $_FILES['file']['type']]);
+					$state = "File hinzugefügt. <br />";
+				}else{
+					$error = "Datei-Indizierung fehlgeschlagen. <br />";
+				}
 			}else{
-				$error = "Datei-Indizierung fehlgeschlagen. <br />";
+				$error = "Maximale Disc Quota überschritten. <br />";
 			}
 		}else{
-			$error = "Maximale Disc Quota überschritten. <br />";
+			$error = "Datei-Upload fehlgeschlagen. <br />";
 		}
-	}else{
-		$error = "Datei-Upload fehlgeschlagen. <br />";
 	}
-}
 
-if ($_GET['fm_del']) {
-	$e = $db->query("SELECT * FROM files WHERE id='$_GET[fm_del]' AND user=$user->id", __FILE__, __LINE__);
-	$d = $db->fetch($e);
-	if ($d) {
-		if (file_exists(USERPATH.$d['name'])) {
-			if (unlink(USERPATH.$d['name'])) {
-				$db->query("DELETE FROM files WHERE id=$_GET[fm_del] AND user=$user->id", __FILE__, __LINE__);
-				$state = "File '$d[name]' gelöscht.<br />";
+	$deleteFileID = filter_input(INPUT_GET, 'fm_del', FILTER_VALIDATE_INT) ?? null; // $_GET['id']
+	if (!empty($deleteFileID))
+	{
+		$e = $db->query('SELECT * FROM files WHERE id=? AND user=?', __FILE__, __LINE__, 'SELECT fm_del', [$deleteFileID, $user->id]);
+		$d = $db->fetch($e);
+		if ($d) {
+			if (file_exists(USERPATH.$d['name'])) {
+				if (unlink(USERPATH.$d['name'])) {
+					$db->query('DELETE FROM files WHERE id=? AND user=?', __FILE__, __LINE__, 'DELETE FROM files', [$deleteFileID, $user->id]);
+					$state = "File '".$d['name']."' gelöscht.<br />";
+				}else{
+					$error = "File '".$d['name']."' konnte nicht gelöscht werden. <br />";
+				}
 			}else{
-				$error = "File '$d[name]' konnte nicht gelöscht werden. <br />";
+				$error = "File '".$d['name']."' existiert nicht. <br />";
 			}
 		}else{
-			$error = "File '$d[name]' existiert nicht. <br />";
+			$error = "File existiert nicht oder gehört einem anderen User. <br />";
 		}
-	}else{
-		$error = "File existiert nicht oder gehört einem anderen User. <br />";
 	}
-}
 
-$e = $db->query("SELECT sum(size) quota FROM files WHERE user=$user->id", __FILE__, __LINE__);
-$d = $db->fetch($e);
-$quota = $d[quota];
+	$e = $db->query('SELECT SUM(size) quota FROM files WHERE user=?', __FILE__, __LINE__, 'SELECT quota', [$user->id]);
+	$d = $db->fetch($e);
+	$quota = $d['quota'];
 
-$e = $db->query("SELECT *, UNIX_TIMESTAMP(upload_date) upload_date FROM files WHERE user=$user->id $sort", __FILE__, __LINE__);
-$files = array();
-while ($d = $db->fetch($e)) {
-	$d['delparam'] = "fm_del=$d[id]";
-	array_push($files, $d);
-}
+	$e = $db->query('SELECT *, UNIX_TIMESTAMP(upload_date) upload_date FROM files WHERE user=? ORDER BY ? DESC', __FILE__, __LINE__, 'SELECT Userfiles', [$user->id, $sort]);
+	$files = array();
+	while ($d = $db->fetch($e)) {
+		$d['delparam'] = "fm_del=$d[id]";
+		array_push($files, $d);
+	}
 
+	$smarty->assign("fm_quota", $quota);
+	$smarty->assign("fm_maxquota", MAX_DISCSPACE);
+	$smarty->assign("files", $files);
+}
+else {
+	$error = 'Du musst eingeloggt sein um den File Manager zu benutzen<br />';
+}
 $smarty->assign("fm_error", $error);
 $smarty->assign("fm_state", $state);
-$smarty->assign("fm_quota", $quota);
-$smarty->assign("fm_maxquota", MAX_DISCSPACE);
-$smarty->assign("files", $files);
-
 
 function file_name ($file) {
 	for ($i=strlen($file)-1; $i>=0; $i--) {
diff --git a/www/scripts/tpleditor.php b/www/scripts/tpleditor.php
index 74c1627..bc4dd17 100644
--- a/www/scripts/tpleditor.php
+++ b/www/scripts/tpleditor.php
@@ -33,19 +33,19 @@
 	if (tpleditor_access_lock($tpl_id, $access_error))
 	{
 		/** Template content */
-		$templatesQuerySql = 'SELECT *, UNIX_TIMESTAMP(created) created, UNIX_TIMESTAMP(last_update) last_update FROM templates WHERE id='.$tpl_id;
-		$templatesQuery = $db->query($templatesQuerySql, __FILE__, __LINE__, 'SELECT FROM templates');
+		$templatesQuerySql = 'SELECT *, UNIX_TIMESTAMP(created) created, UNIX_TIMESTAMP(last_update) last_update FROM templates WHERE id=?';
+		$templatesQuery = $db->query($templatesQuerySql, __FILE__, __LINE__, 'SELECT FROM templates', [$tpl_id]);
 		$templateData = $db->fetch($templatesQuery);
 
 		if ($templateData && !$vars['tpleditor_frm'])
 		{
 			/** Template menus */
-			$menusQuerySql = 'SELECT menu_id FROM tpl_menus WHERE tpl_id='.$tpl_id;
-			$menusQuery = $db->query($menusQuerySql, __FILE__, __LINE__, 'SELECT FROM tpl_menus');
+			$menusQuerySql = 'SELECT menu_id FROM tpl_menus WHERE tpl_id=?';
+			$menusQuery = $db->query($menusQuerySql, __FILE__, __LINE__, 'SELECT FROM tpl_menus', [$tpl_id]);
 
 			/** Template packages */
-			$packagesQuerySql = 'SELECT package_id FROM tpl_packages WHERE tpl_id='.$tpl_id;
-			$packagesQuery = $db->query($packagesQuerySql, __FILE__, __LINE__, 'SELECT FROM tpl_packages');
+			$packagesQuerySql = 'SELECT package_id FROM tpl_packages WHERE tpl_id=?';
+			$packagesQuery = $db->query($packagesQuerySql, __FILE__, __LINE__, 'SELECT FROM tpl_packages', [$tpl_id]);
 
 			/** Assign Template Values to Tpleditor Frame */
 			$templateData['title'] = stripslashes($templateData['title']);
diff --git a/www/seti_xml.php b/www/seti_xml.php
index 0bb6f21..63cde10 100644
--- a/www/seti_xml.php
+++ b/www/seti_xml.php
@@ -12,7 +12,7 @@
  * @include setiathome.inc.php Includes SETI@home setiathome() Class and Methods
  * @include core.model.php required
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
+require_once __DIR__.'/includes/main.inc.php';
 require_once INCLUDES_DIR.'setiathome.inc.php';
 require_once MODELS_DIR.'core.model.php';
 
@@ -20,6 +20,7 @@
  * Initialise MVC Model
  */
 $model = new MVC\Seti();
+$seti = new setiathome();
 
 /**
  * Validate GET-Parameters
@@ -30,7 +31,7 @@
 {
 	if ($user->is_loggedin() && $user->typ >= USER_MEMBER)
 	{
-		setiathome::update_group();	
+		$seti->update_group();
 		header('Location: '.getURL(false,false));
 	} else {
 		$model->showOverview($smarty);
@@ -42,38 +43,18 @@
 	$model->showOverview($smarty);
 	$smarty->display('file:layout/head.tpl');
 
-	$sql = "
-	SELECT 
-	count(s.name) as number, 
-	sum(s.num_results) as results, 
-	sum(s.total_cpu) as time,
-	sum(s.num_results) - sum(st.num_results) as diff
-	FROM seti s
-	INNER JOIN seti_tage st
-		ON st.name = s.name
-	WHERE 
-		DAY(st.datum) = DAY(now()) 
-		AND 
-		YEAR(st.datum) = YEAR(now()) 
-		AND 
-		MONTH(st.datum) = MONTH(now())";
-	$result = $db->query($sql);
+	$sql = 'SELECT count(s.name) as number, sum(s.num_results) as results, sum(s.total_cpu) as time, sum(s.num_results) - sum(st.num_results) as diff
+			FROM seti s INNER JOIN seti_tage st ON st.name = s.name WHERE DAY(st.datum)=DAY(?) AND YEAR(st.datum)=YEAR(?) AND MONTH(st.datum)=MONTH(?)';
+			$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [timestamp(true), timestamp(true), timestamp(true)]);
 	if(!$db->num($result)) {
-		$sql = "
-		SELECT 
-		count(s.name) as number, 
-		sum(s.num_results) as results, 
-		sum(s.total_cpu) as time,
-		0 as diff
-		FROM seti s";
-		$result = $db->query($sql);
+		$sql = 'SELECT COUNT(s.name) as number, SUM(s.num_results) as results, SUM(s.total_cpu) as time, 0 as diff FROM seti s';
+		$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__);
 	}
 	$group = $db->fetch($result);
 
-	echo "
-	<h1>SETI - zooomclan.org</h1>
+	echo "<h1>SETI - zooomclan.org</h1>
 	<h3>Total Units: ".$group['results']."<sup>+".$group['diff']."</sup></h3>
-	<h3>Total CPU Zeit: ".setiathome::seti_time($group['time'])."</h3>
+	<h3>Total CPU Zeit: ".$seti->seti_time($group['time'])."</h3>
 	<table cellpadding='3' cellspacing='1' bgcolor=".TABLEBACKGROUNDCOLOR.">
 		<tr><td align='center' colspan='6' bgcolor=".BORDERCOLOR."><b></b></td></tr>
 		<tr>
@@ -84,34 +65,20 @@
 			<td align='left' bgcolor=".BACKGROUNDCOLOR."><b>Letztes Unit</b></td></tr>";
 
 	$secadd = (date("I",time()) ? 7200 : 3600);
-	$sql = "
-	SELECT 
-		s.*, 
-		(UNIX_TIMESTAMP(s.date_last_result) + $secadd) as date_last_result, 
-		st.num_results as last_num 
-	FROM seti s
-	LEFT JOIN seti_tage st
-		ON st.name = s.name
-	WHERE 
-		YEAR(st.datum) = YEAR(now()) AND DAY(st.datum) = DAY(now()) AND MONTH(st.datum) = MONTH(now())
-	ORDER by s.num_results DESC";
-	$result = $db->query($sql);
+	$sql = 'SELECT s.*, (UNIX_TIMESTAMP(s.date_last_result) + ?) as date_last_result, st.num_results as last_num FROM seti s
+				LEFT JOIN seti_tage st ON st.name = s.name
+			WHERE YEAR(st.datum)=YEAR(?) AND DAY(st.datum)=DAY(?) AND MONTH(st.datum)=MONTH(?) ORDER by s.num_results DESC';
+	$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$secadd, timestamp(true), timestamp(true), timestamp(true)]);
 	if(!$db->num($result)) {
-		$sql = "
-		SELECT 
-			s.*,
-			(UNIX_TIMESTAMP(s.date_last_result) + 7200) as date_last_result,
-			num_results as last_num
-		FROM seti s
-		ORDER by s.num_results DESC	";
+		$sql = 'SELECT s.*, (UNIX_TIMESTAMP(s.date_last_result) + 7200) as date_last_result, num_results as last_num FROM seti s ORDER by s.num_results DESC';
 		$result = $db->query($sql,__FILE__,__LINE__);
 	}
 	$i = 1;
 	while($rs = $db->fetch($result)) {
-		if(($i % 2) == 0) {	
-			$add = " bgcolor=".TABLEBACKGROUNDCOLOR." "; 
-		} else { 
-			$add = " bgcolor=".BACKGROUNDCOLOR." "; 
+		if(($i % 2) == 0) {
+			$add = " bgcolor=".TABLEBACKGROUNDCOLOR." ";
+		} else {
+			$add = " bgcolor=".BACKGROUNDCOLOR." ";
 		}
 		if($rs['num_results'] > $rs['last_num']) {
 			$add2 = "<sup>+".($rs['num_results'] - $rs['last_num'])."</sup>";
@@ -126,7 +93,7 @@
 			<td align='left' $add class='hide-mobile'>".setiathome::seti_time($rs['total_cpu'])."</td>
 			<td align='left' $add class='hide-mobile'>".$rs['avg_cpu']."</td>
 			<td align='left' $add>".datename($rs['date_last_result'])."</td>
-		</tr>";	
+		</tr>";
 		$i++;
 	}
 	echo "</table>";
diff --git a/www/stl2.php b/www/stl2.php
index 6d5ea32..3a014a1 100644
--- a/www/stl2.php
+++ b/www/stl2.php
@@ -59,32 +59,43 @@
  *			shoot_date
  *				datum an dem der spieler das torpedo geschossen hat.
  *
- * @author [z]milamber
  * @version 2.0
+ * @since 2.0 `[z]milamber` File added
+ *
  * @package zorg\Games\STL
  */
+
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/includes/main.inc.php';
-
-/** =====================================================================================
-config:
-==================================================================================== */
+require_once __DIR__.'/includes/config.inc.php';
+require_once INCLUDES_DIR.'stl.inc.php';
+require_once INCLUDES_DIR.'smarty.inc.php';
 
 /**
  * Shoot The Lamber v2 (Game)
  *
- * @author [z]milamber
  * @version 2.0
+ * @since 2.0 `[z]milamber` Class added
+ *
  * @package zorg\Games\STL
  */
-class stlv2 {
+class stlv2
+{
+	/**
+	 * Class Vars
+	 */
+	public $data = [];
+	public $config = [];
+	public $case = null;
+	public $view = null;
+	public $add = [];
+	public $team_id = null;
 
 	/**
 	 * Klassenkonstruktor, generiert autom. die ganze ausgabe...(Game & Overview)
 	 *
-	 * @return stl
+	 * @return stlv2
 	 */
 	function __construct() {
 		global $db, $user;
@@ -96,24 +107,12 @@ function __construct() {
 		$this->exec();
 
 		if($_GET['game_id']) {
-			$sql = '
-			SELECT
-				*
-			FROM stl
-			WHERE
-				game_id = '.$_GET['game_id'];
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT * FROM stl WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 			$this->data['stl'] = $db->fetch($result);
 
-			$sql = '
-			SELECT
-				team_id
-			FROM stl_players
-			WHERE
-				user_id = '.$user->id.'
-				AND
-				game_id = '.$_GET['game_id'];
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT team_id FROM stl_players WHERE user_id=? AND game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $_GET['game_id']]);
 			$rs = $db->fetch($result);
 			$this->data['team_id'] = $rs['team_id'];
 
@@ -127,8 +126,7 @@ function __construct() {
 			$this->game();
 		}
 		//Legende:
-		$this->data['legende'] = "
-		<br><br><br>
+		$this->data['legende'] = "<br><br><br>
 		<table><tr><td align='center' style='text-align: center' colspan='2'>
 		<B>Legende</B>
 		</td></tr><tr><td align='left'>
@@ -214,27 +212,11 @@ function __construct() {
 	function teams() {
 		global $db;
 
-		$sql = "
-		SELECT
-			user.username as username,
-			user.id as user_id,
-			stl_players.team_id as team_id,
-			stl_positions.*
-		FROM stl_players
-			LEFT JOIN user
-				ON
-				user.id = stl_players.user_id
-			INNER JOIN stl_positions
-				ON
-				stl_players.user_id = stl_positions.ship_user_id
-		WHERE
-			stl_players.game_id = '$_GET[game_id]'
-			AND
-			stl_positions.game_id = '$_GET[game_id]'
-
-
-		";
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT user.username as username, user.id as user_id, stl_players.team_id as team_id, stl_positions.*
+				FROM stl_players LEFT JOIN user ON user.id = stl_players.user_id
+				INNER JOIN stl_positions ON stl_players.user_id = stl_positions.ship_user_id
+				WHERE stl_players.game_id = ? AND stl_positions.game_id = ?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $_GET['game_id']]);
 		$add1 = "<b>";
 		while($rs = $db->fetch($result)) {
 			$add1 = ($rs['hit_user_id']) ? "<b style='text-decoration: line-through'>" : "<b>";
@@ -256,30 +238,15 @@ function teams() {
 	 */
 	function check4join() {
 		global $db, $user;
-		$sql = '
-		SELECT
-			game_id
-		FROM stl
-		WHERE status = 0
-		AND game_id = '.$_GET['game_id'];
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT game_id FROM stl WHERE status = 0 AND game_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 		if($db->num($result)) {
-			$sql = '
-			SELECT
-				user_id
-			FROM stl_players
-			WHERE
-				game_id = '.$_GET['game_id'].'
-				AND
-				user_id = '.$user->id;
-			$result = $db->query($sql);
+			$sql = 'SELECT user_id FROM stl_players WHERE game_id=? AND user_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $user->id]);
 			//wenn spieler noch nicht eingetragen ist
 			if(!$db->num($result)) {
-				$sql = '
-				INSERT into stl_players (user_id, game_id)
-				VALUES
-				('.$user->id.','.$_GET['game_id'].')';
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'INSERT into stl_players (user_id, game_id) VALUES (?, ?)';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $_GET['game_id']]);
 			}
 		}
 	}
@@ -292,61 +259,20 @@ function check4join() {
 	function check4finish() {
 		global $db;
 
-		$sql = "
-		SELECT
-			pos_id
-		FROM stl_positions
-		WHERE
-			game_id = '$_GET[game_id]'
-			AND
-			ship_team_id = 1
-			AND
-			hit_team_id = 0
-			AND
-			ship_user_id <> 0
-			AND
-			hit_user_id <> 0";
-		$win_team_gelb = $db->query($sql,__FILE__,__LINE__);
-
-		$sql = "
-		SELECT
-			pos_id
-		FROM stl_positions
-		WHERE
-			game_id = '$_GET[game_id]'
-			AND
-			ship_team_id = 0
-			AND
-			hit_team_id = 1
-			AND
-			ship_user_id <> 0
-			AND
-			hit_user_id <> 0";
-		$win_team_gruen = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT pos_id FROM stl_positions WHERE game_id=? AND ship_team_id=1 AND hit_team_id=0 AND ship_user_id<>0 AND hit_user_id<>0';
+		$win_team_gelb = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 
-		if($db->num($win_team_gelb) == ($this->data['stl']['num_players'] / 2)) {
-			$sql = "
-			UPDATE stl
-				set
-				status = 2,
-				winner_team = 0
-			WHERE
-				game_id = '$_GET[game_id]'";
-			$db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT pos_id FROM stl_positions WHERE game_id=? AND ship_team_id=0 AND hit_team_id=1 AND ship_user_id<>0 AND hit_user_id<>0';
+		$win_team_gruen = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 
+		if($db->num($win_team_gelb) == ($this->data['stl']['num_players'] / 2)) {
+			$sql = 'UPDATE stl SET status=2, winner_team=0 WHERE game_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 		}
 		if($db->num($win_team_gruen) == ($this->data['stl']['num_players'] / 2)) {
-			$sql = "
-			UPDATE stl
-				set
-				status = 2,
-				winner_team = 1
-			WHERE
-				game_id = '$_GET[game_id]'";
-			$db->query($sql,__FILE__,__LINE__);
-
+			$sql = 'UPDATE stl SET status = 2, winner_team = 1 WHERE game_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 		}
-
 	}
 
 	/**
@@ -359,22 +285,12 @@ function check4finish() {
 	function check4start() {
 		global $db;
 
-		$sql = "
-		SELECT
-			count(user_id) as num
-		FROM stl_players
-		WHERE
-			game_id = '$_GET[game_id]'";
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT count(user_id) as num FROM stl_players WHERE game_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 		$rs = $db->fetch($result);
 		if($rs['num'] == $this->config['num_players']) {
-			$sql = "
-			SELECT
-				*
-			FROM stl_players
-			WHERE
-				game_id = '$_GET[game_id]'";
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT * FROM stl_players WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 			while($rs = $db->fetch($result)) {
 				$players[] = $rs['id'];
 			}
@@ -382,19 +298,13 @@ function check4start() {
 			for($i=0;$i<=count($players);$i++) {
 				$team = ($i % 2);
 				$shoot_date = date("Y-m-s H:i:s",time()-5000);
-				$sql = "
-				UPDATE stl_players set team_id = '$team', last_shoot = '$shoot_date' WHERE id = '$players[$i]'";
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'UPDATE stl_players set team_id=?, last_shoot=? WHERE id=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$team, $shoot_date, $players[$i]]);
 			}
-			$sql = "
-			SELECT
-				*
-			FROM stl_players
-			WHERE
-				game_id = '$_GET[game_id]'";
-			$result = $db->query($sql,__FILE__,__LINE__);
-			while($rs = $db->fetch($result)) {
-
+			$sql = 'SELECT * FROM stl_players WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
+			while($rs = $db->fetch($result))
+			{
 				//grid array erstellen
 				$grid_x_array = range(1,$this->config['game_size']);
 				$grid_y_array = range(1,$this->config['game_size']);
@@ -424,42 +334,23 @@ function check4start() {
 					}
 				}
 				//position
-				$sql = "
-				INSERT into
-					 stl_positions
-					(game_id, grid_x, grid_y, ship_user_id, shoot_date)
-				VALUES
-					($_GET[game_id],$grid_x,$grid_y,$rs[user_id], now())";
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'INSERT into stl_positions (game_id, grid_x, grid_y, ship_user_id, shoot_date) VALUES (?, ?, ?, ?, ?)';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $grid_x, $grid_y, $rs['user_id'], timestamp(true)]);
 
 			}
 
 			//team_id in positions table schreiben
-			$sql = "
-			SELECT
-				team_id,
-				game_id,
-				user_id
-			FROM stl_players
-			WHERE game_id = '$_GET[game_id]'";
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT team_id, game_id, user_id FROM stl_players WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 			while($rs = $db->fetch($result)) {
-				$sql = "
-				UPDATE stl_positions
-				set
-					ship_team_id = '$rs[team_id]'
-				WHERE
-					ship_user_id = '$rs[user_id]'
-					AND
-					game_id = '$_GET[game_id]'";
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'UPDATE stl_positions SET ship_team_id=? WHERE ship_user_id=? AND game_id=?';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['team_id'], $rs['user_id'], $_GET['game_id']]);
 			}
 			//game starten
-			$sql = "
-			UPDATE stl set status = 1 WHERE game_id = '$_GET[game_id]'";
-			$db->query($sql,__FILE__,__LINE__);
+			$sql = 'UPDATE stl set status=1 WHERE game_id=?';
+			$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 
-			header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=$_GET[game_id]&".session_name()."=".session_id());
+			header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=".$_GET['game_id']."&".session_name()."=".session_id());
 		}
 	}
 
@@ -472,12 +363,8 @@ function check4start() {
 	 */
 	function game() {
 		global $db, $user;
-		$sql = "
-		SELECT
-			*
-		FROM stl
-		WHERE game_id = '$_GET[game_id]'";
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT * FROM stl WHERE game_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
 		$this->config = $db->fetch($result);
 
 		//Joinstatus, spiel läuft noch nicht
@@ -487,30 +374,20 @@ function game() {
 			//Prüfen ob das game gestartet werden kann (genügend spieler)
 			$this->check4start();
 
-			$sql = "
-			SELECT
-				stl_players.user_id as user_id,
-				user.username as username
-			FROM stl_players
-				LEFT JOIN user
-					ON
-					user.id = stl_players.user_id
-			WHERE game_id = '$_GET[game_id]'";
-			$result = $db->query($sql,__FILE__,__LINE__);
-
-			$this->data['game'] .= "
-			<div align='center'><b>Spieler bis jetzt:</b><br>";
+			$sql = 'SELECT stl_players.user_id as user_id, user.username as username FROM stl_players LEFT JOIN user ON user.id = stl_players.user_id WHERE game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
+
+			$this->data['game'] .= "<div align='center'><b>Spieler bis jetzt:</b><br>";
 			$num = 0;
 			while($rs = $db->fetch($result)) {
 				$this->data['game'] .= $rs['username']."<br />";
 				$num++;
 			}
-			$this->data['game'] .= "
-			<br><b>".
-			($this->config['num_players'] - $num)
-			." Spieler fehlen noch</b><br>
-			<small>(Spiel wird bei vollständiger Spielerzahl automatisch gestarten. <br>
-			Der Spieler wird zufällig einem Team und einer Position auf dem Spielfeld zugewiesen)</small><br></div>";
+			$this->data['game'] .= "<br><b>".
+				($this->config['num_players'] - $num)
+				." Spieler fehlen noch</b><br>
+				<small>(Spiel wird bei vollständiger Spielerzahl automatisch gestarten. <br>
+				Der Spieler wird zufällig einem Team und einer Position auf dem Spielfeld zugewiesen)</small><br></div>";
 
 		}
 		//Team anzeige & grid wenn spiel läuft
@@ -522,44 +399,16 @@ function game() {
 			$this->teams();
 
 			//Grid Infos
-			$sql = "
-			SELECT
-				stl_positions.grid_x as grid_x,
-				stl_positions.grid_y as grid_y,
-				stl_positions.hit_user_id as hit_user_id,
-				stl_positions.hit_team_id as hit_team_id,
-				stl_positions.ship_user_id as ship_user_id,
-				stl_positions.ship_team_id as ship_team_id,
-				stl_positions.shoot_date as shoot_date,
-				stl_players.team_id as team_id,
-				user.username as username
-			FROM stl_positions
-				LEFT JOIN stl_players
-					ON
-					stl_players.game_id = stl_positions.game_id
-					AND
-					stl_players.user_id = stl_positions.ship_user_id
-				LEFT JOIN user
-					ON
-					user.id = stl_positions.ship_user_id
-			WHERE
-				stl_positions.game_id = '".$this->data['stl']['game_id']."'";
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT stl_positions.grid_x as grid_x, stl_positions.grid_y as grid_y, stl_positions.hit_user_id as hit_user_id, stl_positions.hit_team_id as hit_team_id, stl_positions.ship_user_id as ship_user_id, stl_positions.ship_team_id as ship_team_id, stl_positions.shoot_date as shoot_date, stl_players.team_id as team_id, user.username as username FROM stl_positions LEFT JOIN stl_players ON stl_players.game_id=stl_positions.game_id AND stl_players.user_id=stl_positions.ship_user_id LEFT JOIN user ON user.id=stl_positions.ship_user_id WHERE stl_positions.game_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->data['stl']['game_id']]);
 			//erstellung eines daten-arrays (ist einfachen beim erstellen des grids
 			while($rs = $db->fetch($result)) {
 				$this->data['game_data'][$rs['grid_y']][$rs['grid_x']] = $rs;
 			}
 
 			//Team ID zuweisungen
-			$sql = '
-			SELECT
-				team_id
-			FROM stl_players
-			WHERE
-				game_id = '.$this->data['stl']['game_id'].'
-				AND
-				user_id = '.$user->id;
-			$result = $db->query($sql);
+			$sql = 'SELECT team_id FROM stl_players WHERE game_id=? AND user_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$this->data['stl']['game_id'], $user->id]);
 			//team zuweisung
 			if($db->num($result)) {
 				$rs = $db->fetch($result);
@@ -575,30 +424,14 @@ function game() {
 			//normalerweise
 			} else {
 				//Prüfen ob der Spieler getroffen wurde
-				$sql = '
-				SELECT
-					hit_user_id
-				FROM stl_positions
-				WHERE
-					ship_user_id = '.$user->id.'
-					AND
-					game_id = '.$_GET['game_id'];
-				$result = $db->query($sql,__FILE__,__LINE__);
+				$sql = 'SELECT hit_user_id FROM stl_positions WHERE ship_user_id=? AND game_id=?';
+				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $_GET['game_id']]);
 				$rs = $db->fetch($result);
 				//Wenn der spieler noch im spiel ist
 				if($rs['hit_user_id'] == 0) {
 					//Prüfen wann Seine Torpedos wieder geladen sind
-					$sql = '
-					SELECT
-						game_id
-					FROM stl_players
-					WHERE
-					game_id = '.$_GET['game_id'].'
-					AND
-					user_id = '.$user->id.'
-					AND
-					HOUR(last_shoot) <> HOUR(now())';
-					$result = $db->query($sql,__FILE__,__LINE__);
+					$sql = 'SELECT game_id FROM stl_players WHERE game_id=? AND user_id=? AND HOUR(last_shoot) <> HOUR(now())';
+					$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $user->id]);
 
 					//Zuweisung der Message wenn geladen wird oder nicht
 					$msg = ($db->num($result)) ? $this->data['msg'][3] : $this->data['msg'][6];
@@ -611,13 +444,11 @@ function game() {
 			//Prüfen ob das Spiel noch läuft.
 			if($this->data['stl']['status'] == 2) {
 				$winner = ($this->data['stl']['winner_team']) ? "Grün" : "Gelb";
-				$this->data['game'] .= "
-				<h1 style='text-align:center'>Team ".$winner." hat gewonnen!</h1><br><br><br><br>";
+				$this->data['game'] .= "<h1 style='text-align:center'>Team ".$winner." hat gewonnen!</h1><br><br><br><br>";
 			}
 
 			//Spielfeld & HTML
-			$this->data['game'] .= "
-			<table width='100%' cellpadding='4' cellspacing='1' class='border' align='center'>
+			$this->data['game'] .= "<table width='100%' cellpadding='4' cellspacing='1' class='border' align='center'>
 			<tr><td align='center' bgcolor='#FFFF00'>
 			<b>Team Gelb</b>
 			</td>
@@ -634,16 +465,8 @@ function game() {
 			</td><td align='center' valign='middle' bgcolor='#".BORDERCOLOR."'>";
 
 			//sichtbar
-			$sql = '
-			SELECT
-				grid_x,
-				grid_y
-			FROM stl_positions
-			WHERE
-				game_id = '.$_GET['game_id'].'
-				AND
-				ship_user_id = '.$user->id;
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT grid_x, grid_y FROM stl_positions WHERE game_id=? AND ship_user_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $user->id]);
 			$rs = $db->fetch($result);
 
 			$max_x = $rs['grid_x'] + $this->view;
@@ -688,11 +511,7 @@ function game() {
 			//Spielfeld
 			for($y = $this->data['stl']['game_size'];$y>=0;$y--) {
 
-				$this->data['game'] .=  "
-
-				<table cellpadding='5' cellspacing='0' align='center'>
-				<tr>
-				";
+				$this->data['game'] .=  "<table cellpadding='5' cellspacing='0' align='center'><tr>";
 				for($x = 1;$x<=$this->data['stl']['game_size'];$x++) {
 					if($y != 0) {
 
@@ -832,9 +651,8 @@ function game() {
 
 						//Wenn links gesetzt werden sollen
 						if($links == TRUE) {
-							$this->data['game'] .= "
-							<td ".$this->add[0]." onClick=\"document.location.href='?do=game&game_id=$_GET[game_id]&shoot=".$x.",".$y."'\" align='center' valign='middle' style='width:".$this->case."px;height:".$this->case."px; text-align: center;'>
-							<a href='?do=game&game_id=$_GET[game_id]&shoot=".$x.",".$y."' style='text-decoration: none;'  align='center'>
+							$this->data['game'] .= "<td ".$this->add[0]." onClick=\"document.location.href='?do=game&game_id=".$_GET['game_id']."&shoot=".$x.",".$y."'\" align='center' valign='middle' style='width:".$this->case."px;height:".$this->case."px; text-align: center;'>
+							<a href='?do=game&game_id=".$_GET['game_id']."&shoot=".$x.",".$y."' style='text-decoration: none;'  align='center'>
 							<b style='font-size:14px;'>
 							".$this->add[1].$this->add[3].$this->add[2]."
 							</b>
@@ -842,8 +660,7 @@ function game() {
 							</td>";
 						//Wenn auf dem Feld bereits was ist (keine links)
 						} else {
-							$this->data['game'] .= "
-							<td ".$this->add[0]." align='center' valign='middle' style='width:".$this->case."px;height:".$this->case."px; text-align: center;'>
+							$this->data['game'] .= "<td ".$this->add[0]." align='center' valign='middle' style='width:".$this->case."px;height:".$this->case."px; text-align: center;'>
 							<b style='font-size:14px;'>
 							".$this->add[1].$this->add[3].$this->add[2]."
 							</b>
@@ -853,8 +670,7 @@ function game() {
 				}
 				$this->data['game'] .= "</tr>";
 			}
-			$this->data['game'] .= "
-			</table>
+			$this->data['game'] .= "</table>
 			</td>
 			<td align='right' valign='top' bgcolor='#CCFFCC'>
 			".$this->data['team_gruen']."
@@ -874,35 +690,12 @@ function game() {
 	function overview() {
 		global $db, $user;
 			//selektiert games bei denen ich mitmache
-			$sql = '
-			SELECT
-				stl.game_id as game_id,
-				stl.game_title as game_title,
-				stl.game_size as game_size,
-				stl.num_players as num_players,
-				stl.status as status,
-				user.username as userame,
-				HOUR(stl_players.last_shoot) as last_shoot,
-				HOUR(now()) as akt
-			FROM stl
-				LEFT JOIN stl_players
-					ON
-					stl_players.game_id = stl.game_id
-				LEFT JOIN user
-					ON
-					user.id = stl.creator_id
-			WHERE
-				stl_players.user_id = '.$user->id.'
-				AND
-				stl.status <> 2
-			ORDER by stl.status DESC';
-
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT stl.game_id as game_id, stl.game_title as game_title, stl.game_size as game_size, stl.num_players as num_players, stl.status as status, user.username as userame, HOUR(stl_players.last_shoot) as last_shoot, HOUR(now()) as akt FROM stl LEFT JOIN stl_players ON stl_players.game_id = stl.game_id LEFT JOIN user ON user.id = stl.creator_id WHERE stl_players.user_id = ? AND stl.status <> 2 ORDER by stl.status DESC';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id]);
 
 			//wenns spiele gibt bei denen ich mitmachen
 			if($db->num($result)) {
-				$this->data['overview'] = "
-				<div align='center'><b>Spiele:<br><small>(hier spielst du mit)</small></b><br>";
+				$this->data['overview'] = "<div align='center'><b>Spiele:<br><small>(hier spielst du mit)</small></b><br>";
 
 				while($rs = $db->fetch($result)) {
 					if($rs['status'] == 1 && $rs['last_shoot'] != $rs['akt']) {
@@ -912,43 +705,22 @@ function overview() {
 					} else {
 						$add = "";
 					}
-					$this->data['overview'] .=
-					"<a $add href='?do=game&amp;game_id=$rs[game_id]'>".strip_tags($rs['game_title'])." <small>(".$rs['game_size']." x ".$rs['game_size']."), ".$rs['num_players']."</small></a><br/>";
+					$this->data['overview'] .= "<a ".$add." href='?do=game&amp;game_id=".$rs['game_id']."'>".strip_tags($rs['game_title'])." <small>(".$rs['game_size']." x ".$rs['game_size']."), ".$rs['num_players']."</small></a><br/>";
 				}
 				$this->data['overview'] .= "<br><br><br>";
 			}
 
 			//selektiert games bei denen ich nicht mitmache und noch joinen kann
-			$sql = '
-			SELECT
-				stl.game_id as game_id,
-				stl.game_title as game_title,
-				stl.game_size as game_size,
-				stl.num_players as num_players,
-				stl.status as status,
-				user.username as userame
-			FROM stl
-				LEFT JOIN stl_players
-					ON
-					stl_players.game_id = stl.game_id
-				LEFT JOIN user
-					ON
-					user.id = stl.creator_id
-			WHERE
-				stl_players.user_id <> '.$user->id.'
-				AND
-				stl.status = 0';
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT stl.game_id as game_id, stl.game_title as game_title, stl.game_size as game_size, stl.num_players as num_players, stl.status as status, user.username as userame FROM stl LEFT JOIN stl_players ON stl_players.game_id = stl.game_id LEFT JOIN user ON user.id = stl.creator_id WHERE stl_players.user_id <> ? AND stl.status = 0';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [[$user->id]]);
 
 			//wenns games gibt wo ich nicht mitmache
 			if($db->num($result)) {
-				$this->data['overview'] .= "
-				<b>Offene Spiele: <br><small>(hier könnt ihr noch joinen, klicken um zu joinen)</small></b><br />";
+				$this->data['overview'] .= "<b>Offene Spiele: <br><small>(hier könnt ihr noch joinen, klicken um zu joinen)</small></b><br />";
 
 				while($rs = $db->fetch($result)) {
-					if($old != $rs['game_id']) {
-						$this->data['overview'] .= "
-						<a href='?do=game&amp;game_id=$rs[game_id]'>".strip_tags($rs['game_title'])." <small>(".$rs['game_size']." x ".$rs['game_size']."), ".$rs['num_players']."</small></a><br />";
+					if($old != $rs['game_id']) { // FIXME Where is $old coming from?
+						$this->data['overview'] .= "<a href='?do=game&amp;game_id=".$rs['game_id']."'>".strip_tags($rs['game_title'])." <small>(".$rs['game_size']." x ".$rs['game_size']."), ".$rs['num_players']."</small></a><br />";
 					}
 					$old = $rs['game_id'];
 				}
@@ -956,8 +728,7 @@ function overview() {
 
 			}
 
-			$this->data['overview'] .= "
-			<form action='$_SERVER[PHP_SELF]' method='post'>
+			$this->data['overview'] .= "<form action='$_SERVER[PHP_SELF]' method='post'>
 			<table>
 			<tr><td align='center' colspan='2'>
 			<b>Neues Spiel</b>
@@ -1006,35 +777,16 @@ function exec() {
 				if(($num_players % 2) == 1) { $num_players++; }
 
 				//game erstellen
-				$sql = '
-				INSERT
-					into stl
-					(game_size, status, creator_id, game_title, num_players)
-				VALUES
-					('.$game_size.',0,'.$user->id.',"'.$_POST['game_title'].'",'.$num_players.')';
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'INSERT into stl (game_size, status, creator_id, game_title, num_players) VALUES (?, 0, ?, ?, ?)';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$game_size, $user->id, $_POST['game_title'], $num_players]);
 
 				//creator automatisch als spieler im neu erstellten game eintragen.
-				$sql = '
-				SELECT
-					game_id
-				FROM
-					stl
-				WHERE
-					creator_id = '.$user->id.'
-				ORDER by
-					game_id
-				DESC';
-				$result = $db->query($sql,__FILE__,__LINE__);
+				$sql = 'SELECT game_id FROM stl WHERE creator_id=? ORDER by game_id DESC';
+				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id]);
 				$rs = $db->fetch($result);
 
-				$sql = '
-				INSERT
-					into stl_players
-					(game_id, user_id)
-				VALUES
-					('.$rs['game_id'].', '.$user->id.')';
-				$db->query($sql,__FILE__,__LINE__);
+				$sql = 'INSERT into stl_players (game_id, user_id) VALUES (?, ?)';
+				$db->query($sql, __FILE__, __LINE__, __METHOD__, [$rs['game_id'], $user->id]);
 				//setzte redirect
 				$go = true;
 			}
@@ -1054,29 +806,13 @@ function exec() {
 	function shoot() {
 		global $db, $user;
 
-		$sql = '
-		SELECT
-			game_id
-		FROM stl_players
-		WHERE
-			game_id = '.$_GET['game_id'].'
-			AND
-			user_id = '.$user->id.'
-			AND
-			HOUR(last_shoot) <> HOUR(now())';
-		$result = $db->query($sql,__FILE__,__LINE__);
+		$sql = 'SELECT game_id FROM stl_players WHERE game_id=? AND user_id=? AND HOUR(last_shoot)<>HOUR(?)';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $user->id, timestamp(true)]);
 
 		//Prüfen ob der Spieler schiessen darf und ob das Spiel den passenden Status hat
 		if($db->num($result) && $this->data['stl']['status'] == 1) {
-			$sql = '
-			SELECT
-				hit_user_id
-			FROM stl_positions
-			WHERE
-				game_id = '.$_GET['game_id'].'
-				AND
-				ship_user_id = '.$user->id;
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT hit_user_id FROM stl_positions WHERE game_id=? AND ship_user_id=?';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $user->id]);
 			$rs = $db->fetch($result);
 			//Prüfen ob der Spieler nicht gesunken ist
 			if($rs['hit_user_id'] == 0) {
@@ -1084,43 +820,20 @@ function shoot() {
 				$y_grid = substr($_GET['shoot'],strrpos($_GET['shoot'],",")+1);
 
 				//Prüfen ob ein Datensatz mit diesen Grid koords bereits besteht
-				$sql = "
-				SELECT
-					*
-				FROM stl_positions
-				WHERE
-					grid_x = '$x_grid'
-					AND
-					grid_y = '$y_grid'
-					AND
-					game_id = '$_GET[game_id]'";
-				$result = $db->query($sql,__FILE__,__LINE__);
+				$sql = 'SELECT * FROM stl_positions WHERE grid_x = ? AND grid_y = ? AND game_id = ?';
+				$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$x_grid, $y_grid, $_GET['game_id']]);
 				//wenn JA wird der bestehende Datensatz geupdatet
 				if($db->num($result)) {
 					$rs = $db->fetch($result);
 					//Prüft ob Ziel keine verbündete sind
 					if($rs['ship_team_id'] != $this->data['team_id']) {
 						if($rs['hit_user_id'] == 0) {
-							$sql = '
-							UPDATE stl_positions
-								set
-									hit_user_id = '.$user->id.',
-									hit_team_id = '.$this->data['team_id'].',
-									shoot_date = now()
-							WHERE
-								pos_id = '.$rs['pos_id'];
-							$db->query($sql,__FILE__,__LINE__);
+							$sql = 'UPDATE stl_positions SET hit_user_id=?, hit_team_id=?, shoot_date=? WHERE pos_id=?';
+							$db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id, $this->data['team_id'], timestamp(true), $rs['pos_id']]);
 
 							//last_shoot neu setzen
-							$sql = '
-							UPDATE stl_players
-								set
-									last_shoot = now()
-							WHERE
-								game_id = '.$_GET['game_id'].'
-								AND
-								user_id = '.$user->id;
-							$db->query($sql,__FILE__,__LINE__);
+							$sql = 'UPDATE stl_players SET last_shoot=? WHERE game_id=? AND user_id=?';
+							$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $_GET['game_id'], $user->id]);
 
 							$this->check4finish();
 						} else {
@@ -1132,21 +845,13 @@ function shoot() {
 				//Wenn NEIN werden diese koords im Grid erstellt
 				} else {
 					//Neue Position im Grid erstellen
-					$sql = '
-					INSERT into stl_positions (game_id, grid_x, grid_y, hit_user_id, hit_team_id, shoot_date)
-					VALUES ('.$_GET['game_id'].','.$x_grid.','.$y_grid.','.$user->id.','.$this->data['team_id'].',now())';
-					$db->query($sql,__FILE__,__LINE__);
+					$sql = 'INSERT into stl_positions (game_id, grid_x, grid_y, hit_user_id, hit_team_id, shoot_date)
+							VALUES (?, ?, ?, ?, ?, ?)';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id'], $x_grid, $y_grid, $user->id, $this->data['team_id'], timestamp(true)]);
 
 					//last_shoot neu setzen
-					$sql = '
-					UPDATE stl_players
-						set
-							last_shoot = now()
-					WHERE
-						game_id = '.$_GET['game_id'].'
-						AND
-						user_id = '.$user->id;
-					$db->query($sql,__FILE__,__LINE__);
+					$sql = 'UPDATE stl_players SET last_shoot=? WHERE game_id=? AND user_id=?';
+					$db->query($sql, __FILE__, __LINE__, __METHOD__, [timestamp(true), $_GET['game_id'], $user->id]);
 				}
 			} else {
 				//echo "gesunken";
@@ -1156,19 +861,19 @@ function shoot() {
 			$msg = 5;
 		}
 		if(!isset($msg)) {
-			header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=$_GET[game_id]&".session_name()."=".session_id());
+			header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=".$_GET['game_id']."&".session_name()."=".session_id());
 		} else {
-						header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=$_GET[game_id]&msg=$msg&".session_name()."=".session_id());
+			header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=".$_GET['game_id']."&msg=$msg&".session_name()."=".session_id());
 		}
 	}
 
 }
 
-$stl = new stl();
+$stl = new stlv2();
 
-if($user->id)
+if($user->is_loggedin())
 {
-	if($_GET['do'] == "game")
+	if($_GET['do'] === "game")
 	{
 		if($_GET['game_id'])
 		{
@@ -1179,15 +884,8 @@ function shoot() {
 			echo $stl->data['game'];
 			echo $stl->data['legende'];
 		} else {
-			$sql = '
-			SELECT
-				game_id
-			FROM stl_players
-			WHERE
-				user_id = '.$user->id.'
-			ORDER by
-				last_shoot DESC';
-			$result = $db->query($sql,__FILE__,__LINE__);
+			$sql = 'SELECT game_id FROM stl_players WHERE user_id=? ORDER by last_shoot DESC';
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->id]);
 			if($db->num($result)) {
 				$rs = $db->fetch($result);
 				header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=".$rs['game_id']."&".session_name()."=".session_id());
@@ -1202,21 +900,12 @@ function shoot() {
 		echo $stl->data['overview'];
 		echo $stl->data['legende'];
 	}
-	if($_GET['do'] == "reshuffle" && $_GET['game_id']) {
-		$sql = "
-		DELETE
-		FROM stl_positions
-		WHERE
-			game_id = '$_GET[game_id]'";
-		$db->query($sql,__FILE__,__LINE__);
-		$sql = "
-		UPDATE stl
-			set
-			status = 0
-		WHERE
-			game_id = '$_GET[game_id]'";
-		$db->query($sql,__FILE__,__LINE__);
-		header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=$_GET[game_id]&".session_name()."=".session_id());
+	if($_GET['do'] === "reshuffle" && $_GET['game_id']) {
+		$sql = 'DELETE FROM stl_positions WHERE game_id=?';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
+		$sql = 'UPDATE stl SET status = 0 WHERE game_id=?';
+		$db->query($sql, __FILE__, __LINE__, __METHOD__, [$_GET['game_id']]);
+		header("Location: http://".$_SERVER['SERVER_NAME'].$_SERVER['PHP_SELF']."?do=game&game_id=".$_GET['game_id']."&".session_name()."=".session_id());
 	}
 	$smarty->display('file:layout/footer.tpl');
 } else {
diff --git a/www/templates/layout/partials/messages/messages_list.tpl b/www/templates/layout/partials/messages/messages_list.tpl
index b00c02b..84f58c8 100644
--- a/www/templates/layout/partials/messages/messages_list.tpl
+++ b/www/templates/layout/partials/messages/messages_list.tpl
@@ -22,7 +22,7 @@
 					{/if}</h3>
 				</th>
 				<th align="right" colspan="{$cols_total-3}">
-					<a href="{get_changed_url change="newmsg=true"}{*$newmsg_url*}"><button class="button primary" name="button_newMessage" style="float:right;">Neue Nachricht</button></a>
+					<a href="{get_changed_url change="do=newmsg"}{*$newmsg_url*}"><button class="button primary" name="button_newMessage" style="float:right;">Neue Nachricht</button></a>
 				</th>
 			</tr>
 			<tr>

From f88725010fd94d852a0efbc622e5682eecb1635b Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Wed, 10 Jan 2024 21:06:54 +0100
Subject: [PATCH 3/8] =?UTF-8?q?Fixes=20Tauschb=C3=B6rse=20functionality?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 www/actions/tauschboerse.php | 89 +++++++++++++++++++++++-------------
 1 file changed, 57 insertions(+), 32 deletions(-)

diff --git a/www/actions/tauschboerse.php b/www/actions/tauschboerse.php
index f476725..eb926a7 100644
--- a/www/actions/tauschboerse.php
+++ b/www/actions/tauschboerse.php
@@ -19,57 +19,79 @@
 	if (isset($_POST['url']) && is_string($_POST['url'])) $redirectUrl = base64url_decode($_POST['url']);
 	else $redirectUrl = '/tpl/190'; // Tauschbörse TPL-ID
 
+	$allowedFiletypes = ['image/jpeg', 'image/pjpeg', 'image/png', 'image/jpg', 'image/gif']; // Use MIME type notation
+
 	switch($doAction)
 	{
 		/**
 		 * Add new Tauschbörse Angebot
 		 */
 		case 'add':
-			$sql = 'INSERT INTO tauschboerse
-					 	(art, user_id, datum, bezeichnung, wertvorstellung, zustand, lieferbedingung, kommentar)
-					VALUES (
-						"'.$_POST['art'].'"
-						,'.$user->id.'
-						,'.timestamp(true).'
-						,"'.$_POST['bezeichnung'].'"
-						,"'.$_POST['wertvorstellung'].'"
-						,"'.$_POST['zustand'].'"
-						,"'.$_POST['lieferbedingung'].'"
-						,"'.$_POST['kommentar'].'"
-					)';
-			$artikelId = $db->query($sql, __FILE__, __LINE__);
+			$angebot = filter_input(INPUT_POST, 'art', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['art']
+			$angebotTyp = (in_array($angebot, ['angebot', 'nachfrage']) ? $angebot : 'angebot'); // Default: 'angebot'
+			$bezeichnung = text_width(filter_input(INPUT_POST, 'bezeichnung', FILTER_SANITIZE_FULL_SPECIAL_CHARS), 255) ?? null; // $_POST['bezeichnung']
+			$wertvorstellung = text_width(filter_input(INPUT_GET, 'wertvorstellung', FILTER_SANITIZE_FULL_SPECIAL_CHARS), 25) ?? '0'; // $_POST['wertvorstellung'] : Default: '0'
+			$zustand = text_width(filter_input(INPUT_POST, 'zustand', FILTER_SANITIZE_FULL_SPECIAL_CHARS), 100) ?? null; // $_POST['zustand']
+			$lieferbedingungen = text_width(filter_input(INPUT_POST, 'lieferbedingung', FILTER_SANITIZE_FULL_SPECIAL_CHARS), 150) ?? null; // $_POST['lieferbedingung']
+			$kommentar = filter_input(INPUT_POST, 'kommentar', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['kommentar']
+
+			$sql = 'INSERT INTO tauschboerse (art, user_id, datum, bezeichnung, wertvorstellung, zustand, lieferbedingung, kommentar)
+					VALUES (? ,? ,? ,? ,? ,? ,? ,?)';
+			$artikelId = $db->query($sql, __FILE__, __LINE__, 'Tauschbörse Add', [
+																					$angebotTyp
+																					,$user->id
+																					,timestamp(true)
+																					,$bezeichnung
+																					,$wertvorstellung
+																					,$zustand
+																					,$lieferbedingungen
+																					,$kommentar
+																				]);
 
 			/** Falls ein Bild gewählt wurde. */
-			if ($_FILES['image']['name'])
+			if ($_FILES['image']['name'] && $artikelId>0)
 			{
-				if($_FILES['image']['error'] != 0) {
-				  echo "Das Bild konnte nicht &uuml;bertragen werden!<br />".__FILE__.__LINE__;
+				if(!empty($_FILES['image']['error']) && !$_FILES['image']['error']) {
+				  echo "Das Bild konnte nicht &uuml;bertragen werden!<br />";
 				  exit;
 				}
 
-				if ($_FILES['image']['type'] != "image/jpeg" && $_FILES['image']['type'] != "image/pjpeg") {
-				   echo "Dies ist kein JPEG Bild!<br />".__FILE__.__LINE__;
+				if (!in_array($_FILES['image']['type'], $allowedFiletypes)) {
+				   echo "Dies ist kein unterstützes Bildformat (JPEG, PNG, oder GIF)!<br />";
 				   exit;
 				}
 
-				$tmpfile = TAUSCHARTIKEL_IMGPATH.$artikelId.".jpg";
-				if (!move_uploaded_file($_FILES['image']['tmp_name'], $tmpfile)) {
-				  echo "Bild konnte nicht bearbeitet werden.".__FILE__.__LINE__;
-				  exit;
+				$extension = pathinfo($_FILES['image']['name'], PATHINFO_EXTENSION);
+				$allowedPath = realpath(TAUSCHARTIKEL_IMGPATH);
+				$tmpFilePath = TAUSCHARTIKEL_IMGPATH.'upload/'.$_FILES['image']['tmp_name'].'.'.$extension;
+				$realPathOfFile = realpath($tmpFilePath);
+				$moveToFilePath = TAUSCHARTIKEL_IMGPATH.$artikelId.'.'.$extension;
+				$moveToFilePathThumb = TAUSCHARTIKEL_IMGPATH.$artikelId.'_tn.'.$extension;
+				if ($realPathOfFile === false || strpos($realPathOfFile, $allowedPath) !== 0) {
+					echo "Ungültiger Pfad um das Bild zu speichern.";
+					exit;
 				}
 
-				$e = createPic($tmpfile, TAUSCHARTIKEL_IMGPATH.$artikelId."_tn.jpg", 100, 100, array(0,0,0));
-				if ($e['error']) {
-				  echo $e['error'].__FILE__.__LINE__;
-				  exit;
+				if (file_exists($_FILES['image']['tmp_name']) && !move_uploaded_file($_FILES['image']['tmp_name'], $tmpFilePath)) {
+					echo "Bild konnte nicht modifiziert werden.";
+					exit;
 				}
 
-				$e = createPic($tmpfile, TAUSCHARTIKEL_IMGPATH.$artikelId.".jpg", 500, 500);
+				$e = createPic($tmpFilePath, $moveToFilePathThumb, 100, 100, array(0,0,0));
 				if ($e['error']) {
-				  echo $e['error'].__FILE__.__LINE__;
-				  exit;
+					echo $e['error'];
+					exit;
+				}
+				$e = createPic($tmpFilePath, $moveToFilePath, 500, 500);
+				if ($e['error']) {
+					echo $e['error'];
+					exit;
+				}
+
+				if (file_exists($tmpFilePath) && !@unlink($tmpFilePath)) {
+					echo 'File konnte nicht gel&ouml;scht werden.';
+					exit;
 				}
-				unlink($tmpfile);
 			}
 			header('Location: '.$redirectUrl);
 			exit;
@@ -79,8 +101,11 @@
 		 * Archive an old Tauschbörse Angebot
 		 */
 		case 'archive':
-			$artikelId = (int)$_GET['artikel_id'];
-			$result = $db->update('tauschboerse', ['id', $artikelId, 'user_id', $user->id], ['aktuell' => '0'],__FILE__,__LINE__,__METHOD__);
+			$artikelId = filter_input(INPUT_GET, 'artikel_id', FILTER_VALIDATE_INT) ?? null; // $_GET['artikel_id']
+
+			if ($artikelId > 0) {
+				$result = $db->update('tauschboerse', ['id', $artikelId, 'user_id', $user->id], ['aktuell' => '0'],__FILE__,__LINE__,'Tauschbörse Archive');
+			}
 			header('Location: '.$redirectUrl);
 			exit;
 			break;

From da89a0a4a8657cc8674613cb41ec057b59c3a903 Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Wed, 10 Jan 2024 21:07:07 +0100
Subject: [PATCH 4/8] Fixes Rezepte functionality

---
 www/actions/rezepte.php      | 104 +++++++-------
 www/includes/rezepte.inc.php | 268 ++++++++++++++++++++++-------------
 2 files changed, 223 insertions(+), 149 deletions(-)

diff --git a/www/actions/rezepte.php b/www/actions/rezepte.php
index 15a4a14..4cd6349 100644
--- a/www/actions/rezepte.php
+++ b/www/actions/rezepte.php
@@ -1,84 +1,86 @@
 <?php
 /**
  * Rezepte Actions
+ *
  * @package zorg\Rezepte
  */
+
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/../includes/main.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
+require_once INCLUDES_DIR.'rezepte.inc.php';
 
-if (true === $user->is_loggedin())
+if ($user->is_loggedin())
 {
 	/** Validate passed Parameters */
-	$doAction = (isset($_POST['action']) && is_string($_POST['action']) ? (string)$_POST['action'] : null);
+	$doAction = filter_input(INPUT_POST, 'action', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_POST['action']
+	$rezeptId = filter_input(INPUT_POST, 'rezept_id', FILTER_VALIDATE_INT) ?? null; // $_POST['rezept_id']
+	$returnUrl = base64url_decode(filter_input(INPUT_POST, 'url', FILTER_SANITIZE_FULL_SPECIAL_CHARS)) ?? '/tpl/129?rezept_id='.$rezeptId; // $_POST['url']
+	zorgDebugger::log()->debug('$doAction %s | $rezeptId %d | $returnUrl: %s', [$doAction, $rezeptId, $returnUrl]);
 
 	switch ($doAction)
 	{
 		/** Neues Rezept hinzufügen */
 		case 'new':
-			// TODO Change to $db->insert()
-			$sql = 'INSERT INTO rezepte
-						(category_id, title, zutaten, anz_personen, prep_time, cook_time, difficulty, description, ersteller_id, erstellt_date)
-					VALUES
-						(
-							 '.(int)$_POST['category'].'
-							,"'.$_POST['title'].'"
-							,"'.$_POST['zutaten'].'"
-							,'.(int)$_POST['personen'].'
-							,'.(int)$_POST['preparation'].'
-							,'.(int)$_POST['cookingtime'].'
-							,'.(int)$_POST['difficulty'].'
-							,"'.$_POST['description'].'"
-							,'.$user->id.'
-							,'.timestamp(true).'
-						)';
-			$rezeptId = $db->query($sql, __FILE__, __LINE__);
-			header('Location: '.base64url_decode($_POST['url']).'&rezept_id='.$rezeptId);
+			$data = [
+				'category_id' => filter_input(INPUT_POST, 'category', FILTER_VALIDATE_INT) ?? 0,
+				'title' => filter_input(INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null,
+				'zutaten' => filter_input(INPUT_POST, 'zutaten', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null,
+				'anz_personen' => filter_input(INPUT_POST, 'personen', FILTER_VALIDATE_INT) ?? 0,
+				'prep_time' => filter_input(INPUT_POST, 'preparation', FILTER_VALIDATE_INT) ?? 0,
+				'cook_time' => filter_input(INPUT_POST, 'cookingtime', FILTER_VALIDATE_INT) ?? 0,
+				'difficulty' => filter_input(INPUT_POST, 'difficulty', FILTER_VALIDATE_INT) ?? 0,
+				'description' => filter_input(INPUT_POST, 'description', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null
+			];
+			$newRezeptId = Rezepte::addRezept($data);
+
+			$returnUrl = ($newRezeptId > 0 ? '/tpl/129?rezept_id='.$newRezeptId : $returnUrl.'&error=Not%20added');
+			header('Location: '.$returnUrl);
 			exit;
-		break;
+			break;
 
 		/** Rezept aktualisieren */
 		case 'edit':
-			// TODO Change to $db->update()
-			$sql = 'UPDATE rezepte
-					SET
-						 category_id = '.(int)$_POST['category'].'
-						,title = "'.$_POST['title'].'"
-						,zutaten = "'.$_POST['zutaten'].'"
-						,anz_personen = '.(int)$_POST['personen'].'
-						,prep_time = '.(int)$_POST['preparation'].'
-						,cook_time = '.(int)$_POST['cookingtime'].'
-						,difficulty = '.(int)$_POST['difficulty'].'
-						,description = "'.$_POST['description'].'"
-					WHERE id = '.(int)$_POST['id']; // TODO align by changing in Tpl & here to "rezept_id"
-			$db->query($sql, __FILE__, __LINE__);
-			header('Location: '.base64url_decode($_POST['url']).'&rezept_id='.$_POST['id']);
+			if ($rezeptId > 0) {
+				$data = [
+					'category_id' => filter_input(INPUT_POST, 'category', FILTER_VALIDATE_INT) ?? 0,
+					'title' => filter_input(INPUT_POST, 'title', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null,
+					'zutaten' => filter_input(INPUT_POST, 'zutaten', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null,
+					'anz_personen' => filter_input(INPUT_POST, 'personen', FILTER_VALIDATE_INT) ?? 0,
+					'prep_time' => filter_input(INPUT_POST, 'preparation', FILTER_VALIDATE_INT) ?? 0,
+					'cook_time' => filter_input(INPUT_POST, 'cookingtime', FILTER_VALIDATE_INT) ?? 0,
+					'difficulty' => filter_input(INPUT_POST, 'difficulty', FILTER_VALIDATE_INT) ?? 0,
+					'description' => filter_input(INPUT_POST, 'description', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null
+				];
+				$updated = Rezepte::updateRezept($rezeptId, $data);
+			}
+
+			header('Location: '.$returnUrl.(!$updated ? '&error=Not%20updated' : ''));
 			exit;
-		break;
+			break;
 
 		/** Neue Rezepte-Kategorie hinzufügen */
 		case 'newcategory':
-			$sql = 'INSERT INTO rezepte_categories SET title = "'.$_POST['new_category'].'"';
-			$db->query($sql, __FILE__, __LINE__);
-			header('Location: '.base64url_decode($_POST['url']));
+			$newCategoryTitle = filter_input(INPUT_POST, 'new_category', FILTER_SANITIZE_FULL_SPECIAL_CHARS) ?? null; // $_POST['new_category']
+
+			if (!empty($newCategoryTitle)) {
+				$added = Rezepte::addCategory($newCategoryTitle);
+			}
+			header('Location: '.$returnUrl.(!$added ? '&error=Category%20not%20added' : ''));
 			exit;
-		break;
 
 		/** Ein Rezept bewerten */
 		case 'benoten':
-			if (isset($_POST['score']) && is_numeric($_POST['score']) && (int)$_POST['score'] >= 1 && (int)$_POST['score'] < 6)
+			$benotenScore = filter_input(INPUT_POST, 'score', FILTER_VALIDATE_INT) ?? 0; // $_POST['score']
+
+			if ($rezeptId>0 && $benotenScore > 0 && $benotenScore <= 5)
 			{
-				$sql = 'REPLACE INTO rezepte_votes (rezept_id, user_id, score)
-						VALUES (
-							 '.$_POST['rezept_id'].'
-							,'.$user->id.'
-							,'.(int)$_POST['score'].'
-						)';
-				$db->query($sql, __FILE__, __LINE__);
+				$voted = Rezepte::addVote($rezeptId, $benotenScore);
 			}
-			header('Location: '.base64url_decode($_POST['url']));
-		break;
+			header('Location: '.$returnUrl.(!$voted ? '&error=Vote%20not%20added' : ''));
+			exit;
+			break;
 	}
 }
 /** User not logged in */
diff --git a/www/includes/rezepte.inc.php b/www/includes/rezepte.inc.php
index 13b5345..06ea3a1 100644
--- a/www/includes/rezepte.inc.php
+++ b/www/includes/rezepte.inc.php
@@ -9,83 +9,62 @@
  * File includes
  * @include config.inc.php
  * @include usersystem.inc.php
- * @include util.inc.php
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
-require_once INCLUDES_DIR.'util.inc.php';
 
 /**
  * zorg Rezepte Datenbank Klasse
  *
  * @package zorg\Rezepte
+ *
+ * @version 2.0
+ * @since 1.0 `IneX` Class added
+ * @since 2.0 `07.01.2024` `IneX` SQL-queries changed to prepared statements, added Functions from /actions/rezepte.php
  */
 class Rezepte
 {
 	static function getRezept($rezept_id) {
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				r.*
-				, UNIX_TIMESTAMP(r.erstellt_date) AS erstellt_date
-				, r_cat.id
-				, r_cat.title AS kategorie
-			FROM
-			rezepte r LEFT OUTER
-			JOIN rezepte_categories r_cat ON r.category_id = r_cat.id
-			WHERE
-			r.id = ".$rezept_id."
-			"
-		;
-
-		$result = $db->query($sql, __FILE__, __LINE__);
-
-		return $db->fetch($result);
+		$sql = 'SELECT r.*, UNIX_TIMESTAMP(r.erstellt_date) AS erstellt_date, r_cat.id, r_cat.title AS kategorie FROM rezepte r LEFT OUTER JOIN rezepte_categories r_cat ON r.category_id = r_cat.id WHERE r.id = ?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rezept_id]);
+		$rs = $db->fetch($result);
+
+		if (isset($rs['title'])) $rs['title'] = html_entity_decode($rs['title']);
+		if (isset($rs['zutaten'])) $rs['zutaten'] = html_entity_decode($rs['zutaten']);
+		if (isset($rs['description'])) $rs['description'] = html_entity_decode($rs['description']);
+
+		return $rs;
 	}
 
 	static function getRezeptNewest() {
 		global $db;
 
-		$sql =
-			"
-			SELECT
-				*
-				, UNIX_TIMESTAMP(erstellt_date) AS erstellt_date
-			FROM
-			rezepte
-			ORDER BY erstellt_date DESC
-			LIMIT 0,1
-			"
-		;
-
-		$result = $db->query($sql, __FILE__, __LINE__);
-
-		return $db->fetch($result);
+		$sql = 'SELECT *, UNIX_TIMESTAMP(erstellt_date) AS erstellt_date FROM rezepte ORDER BY erstellt_date DESC LIMIT 1';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$rs = $db->fetch($result);
+
+		if (isset($rs['title'])) $rs['title'] = html_entity_decode($rs['title']);
+		if (isset($rs['zutaten'])) $rs['zutaten'] = html_entity_decode($rs['zutaten']);
+		if (isset($rs['description'])) $rs['description'] = html_entity_decode($rs['description']);
+
+		return $rs;
 	}
 
-	static function getRezepte($category) {
+	static function getRezepte($category_id) {
 		global $db;
 
 		$rezepte = array();
 
-		$sql =
-			"
-			SELECT
-				*
-				, UNIX_TIMESTAMP(erstellt_date) AS erstellt_date
-			FROM
-			rezepte
-			WHERE
-			category_id = ".$category."
-			ORDER BY category_id ASC, title ASC
-			"
-		;
-
-		$result = $db->query($sql, __FILE__, __LINE__);
-
-		while($rs = $db->fetch($result)) {
+		$sql = 'SELECT *, UNIX_TIMESTAMP(erstellt_date) AS erstellt_date FROM rezepte WHERE category_id=? ORDER BY category_id ASC, title ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$category_id]);
+
+		while($rs = $db->fetch($result))
+		{
+			if (isset($rs['title'])) $rs['title'] = html_entity_decode($rs['title']);
+			if (isset($rs['zutaten'])) $rs['zutaten'] = html_entity_decode($rs['zutaten']);
+			if (isset($rs['description'])) $rs['description'] = html_entity_decode($rs['description']);
 			array_push($rezepte, $rs);
 		}
 
@@ -96,18 +75,8 @@ static function getNumNewRezepte() {
 		global $db, $user;
 
 		if($user->lastlogin > 0) {
-			$sql =
-				"
-				SELECT
-				*
-				FROM
-				rezepte
-				WHERE
-				UNIX_TIMESTAMP(erstellt_date) > ".$user->lastlogin."
-				"
-			;
-
-			return $db->num($db->query($sql, __FILE__, __LINE__));
+			$sql = 'SELECT * FROM rezepte WHERE UNIX_TIMESTAMP(erstellt_date) > ?';
+			return $db->num($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->lastlogin]));
 		} else {
 			return 0;
 		}
@@ -118,19 +87,12 @@ static function getCategories() {
 
 		$categories = array();
 
-		$sql =
-			"
-			SELECT
-				*
-			FROM
-			rezepte_categories
-			ORDER BY title ASC
-			"
-		;
+		$sql = 'SELECT * FROM rezepte_categories ORDER BY title ASC';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
-		$result = $db->query($sql, __FILE__, __LINE__);
-
-		while($rs = $db->fetch($result)) {
+		while($rs = $db->fetch($result))
+		{
+			if (isset($rs['title'])) $rs['title'] = html_entity_decode($rs['title']);
 			array_push($categories, $rs);
 		}
 
@@ -140,13 +102,9 @@ static function getCategories() {
 	static function getScore($rezept_id) {
 		global $db;
 
-		$sql =
-			"SELECT AVG(score) as score"
-			." FROM rezepte_votes"
-			." WHERE rezept_id = ".$rezept_id
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
-		$rs = $db->fetch($result, __FILE__, __LINE__);
+		$sql = 'SELECT AVG(score) as score FROM rezepte_votes WHERE rezept_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rezept_id]);
+		$rs = $db->fetch($result);
 
 		return round($rs['score'], 1);
 	}
@@ -154,27 +112,141 @@ static function getScore($rezept_id) {
 	static function getNumVotes($rezept_id) {
 		global $db;
 
-		$sql =
-			"SELECT *"
-			." FROM rezepte_votes"
-			." WHERE rezept_id = ".$rezept_id
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM rezepte_votes WHERE rezept_id = ?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rezept_id]);
 
-		return $db->num($result, __FILE__, __LINE__);
+		return $db->num($result);
 	}
 
 	static function hasVoted($user_id, $rezept_id) {
 		global $db;
 
-		$sql =
-			"SELECT *"
-			." FROM rezepte_votes"
-			." WHERE rezept_id = '".$rezept_id."' AND user_id =".$user_id
-		;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$sql = 'SELECT * FROM rezepte_votes WHERE rezept_id=? AND user_id=?';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rezept_id, $user_id]);
 
-		return $db->num($result, __FILE__, __LINE__);
+		return $db->num($result);
 	}
 
+	/**
+	 * Neues Rezept hinzufügen.
+	 * @version 1.0
+	 * @since 1.0 `07.01.2024` `IneX` code moved from /actions/rezepte.php
+	 *
+	 * @param array $values Key-Value Pairs, like ['title' => '...']
+	 * @return int|bool ID of new Rezept on success; or FALSE if insert failed.
+	 */
+	static function addRezept($values)
+	{
+		global $db, $user;
+
+		// $sql = 'INSERT INTO rezepte (category_id, title, zutaten, anz_personen, prep_time, cook_time, difficulty, description, ersteller_id, erstellt_date) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?)';
+			// $newRezeptId = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$categoryId, $title, $zutaten, $pax, $prepTime, $cookTime, $difficultyLevel, $description, $user->id, timestamp(true)]);
+		$values = [
+			'category_id' => intval($values['category_id']),
+			'title' => htmlspecialchars($values['title'], ENT_QUOTES),
+			'zutaten' => htmlspecialchars($values['zutaten'], ENT_QUOTES),
+			'anz_personen' => intval($values['anz_personen']),
+			'prep_time' => intval($values['prep_time']),
+			'cook_time' => intval($values['cook_time']),
+			'difficulty' => intval($values['difficulty']),
+			'description' => htmlspecialchars($values['description'], ENT_QUOTES),
+			'ersteller_id' => $user->id,
+			'erstellt_date' => timestamp(true)
+		];
+		$rezept_id = $db->insert('rezepte', $values, __FILE__, __LINE__, __METHOD__);
+
+		$return = false;
+		if ($rezept_id > 0)
+		{
+			$return = $rezept_id;
+
+			/** Activity Eintrag auslösen */
+			Activities::addActivity($user->id, 0, t('activity-new', 'rezepte', [ SITE_URL, $rezept_id ]), 'r');
+		}
+
+		return $return;
+	}
+
+	/**
+	 * Rezept aktualisieren.
+	 * @version 1.0
+	 * @since 1.0 `07.01.2024` `IneX` code moved from /actions/rezepte.php
+	 *
+	 * @param int $rezept_id ID of Rezept to update
+	 * @param array $values Key-Value Pairs for updated Data, like ['title' => '...']
+	 * @return boolean
+	 */
+	static function updateRezept($rezept_id, $update_values)
+	{
+		global $db;
+
+		// $sql = 'UPDATE rezepte SET category_id=?, title=?, zutaten=?, anz_personen=?, prep_time=?, cook_time=?, difficulty=?, description=? WHERE id=?';
+		// $db->query($sql, __FILE__, __LINE__, __METHOD__, [$categoryId, $title, $zutaten, $pax, $prepTime, $cookTime, $difficultyLevel, $description, $rezeptId]);
+		$values = [];
+		if (isset($update_values['category_id'])) $values['category_id'] = intval($update_values['category_id']);
+		if (isset($update_values['title'])) $values['title'] = htmlspecialchars($update_values['title'], ENT_QUOTES);
+		if (isset($update_values['zutaten'])) $values['zutaten'] = htmlspecialchars($update_values['zutaten'], ENT_QUOTES);
+		if (isset($update_values['anz_personen'])) $values['anz_personen'] = intval($update_values['anz_personen']);
+		if (isset($update_values['prep_time'])) $values['prep_time'] = intval($update_values['prep_time']);
+		if (isset($update_values['cook_time'])) $values['cook_time'] = intval($update_values['cook_time']);
+		if (isset($update_values['difficulty'])) $values['difficulty'] = intval($update_values['difficulty']);
+		if (isset($update_values['description'])) $values['description'] = htmlspecialchars($update_values['description'], ENT_QUOTES);
+		zorgDebugger::log()->debug('SQL: id=%d%s', [$rezept_id, print_r($values,true)]);
+		$result = $db->update('rezepte', $rezept_id, $values, __FILE__, __LINE__, __METHOD__);
+
+		return (!$result ? false : true);
+	}
+
+	/**
+	 * Neue Rezepte-Kategorie hinzufügen.
+	 * @version 1.0
+	 * @since 1.0 `07.01.2024` `IneX` code moved from /actions/rezepte.php
+	 *
+	 * @param string $category Title-String of the new Category
+	 * @return bool
+	 */
+	static function addCategory($category)
+	{
+		global $db;
+
+		/** Validate parameters */
+		if (empty($category) || !is_string($category)) return false;
+		$categoryName = trim(htmlentities($category, ENT_QUOTES));
+
+		/** Make sure the Category does NOT YET EXIST */
+		$existingCategories = array_column(Rezepte::getCategories(), 'title');
+		if (array_search($categoryName, $existingCategories) !== false) {
+			/** Category already EXISTS */
+			return false;
+		}
+		/** Add new Category */
+		else {
+			$db->insert('rezepte_categories', ['title' => $categoryName], __FILE__, __LINE__, __METHOD__);
+			return true;
+		}
+	}
+
+	/**
+	 * Ein Rezept bewerten.
+	 * @version 1.0
+	 * @since 1.0 `07.01.2024` `IneX` code moved from /actions/rezepte.php
+	 *
+	 * @param int $rezept_id ID of Rezept to update its score
+	 * @param int $vote User's voted value to add to Total Score
+	 * @return bool
+	 */
+	static function addVote($rezept_id, $vote)
+	{
+		global $db, $user;
+
+		/** Validate parameters */
+		if (!is_numeric($rezept_id) || $rezept_id <= 0) return false;
+		if (!is_numeric($vote) || $vote <= 0) return false;
+
+		/** Add the Vote */
+		$sql = 'REPLACE INTO rezepte_votes (rezept_id, user_id, score) VALUES (?, ?, ?)';
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$rezept_id, $user->id, $vote]);
+
+		return (!$result ? false : true);
+	}
 }

From b17df5cd8a055db9dba5945f12787c44baa40ca8 Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Thu, 11 Jan 2024 08:40:23 +0100
Subject: [PATCH 5/8] Mitigates SQL injects through Prepared Statements

---
 www/includes/bugtracker.inc.php    | 33 ++++++++-------------
 www/includes/mobilez/users.inc.php | 19 +++---------
 www/includes/smarty.fnc.php        | 27 +++++-------------
 www/includes/stockbroker.inc.php   | 29 +++----------------
 www/scripts/hz_stats.php           | 46 +++++++++++-------------------
 www/scripts/tauschboerse.php       | 32 +++------------------
 www/util/hz_stats.php              | 13 ++++-----
 7 files changed, 54 insertions(+), 145 deletions(-)

diff --git a/www/includes/bugtracker.inc.php b/www/includes/bugtracker.inc.php
index c50a190..014b1d8 100644
--- a/www/includes/bugtracker.inc.php
+++ b/www/includes/bugtracker.inc.php
@@ -10,9 +10,8 @@
 /**
  * File Includes
  */
-require_once dirname(__FILE__).'/config.inc.php';
+require_once __DIR__.'/config.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
-include_once INCLUDES_DIR.'util.inc.php';
 
 /**
  * Bugtracker Klasse
@@ -130,7 +129,7 @@ static function execActions()
 			if($user->id != $rs['reporter_id'])
 			{
 				$notification_subject = t('message-subject-reopenbug', 'bugtracker', [ $user->id2user($user->id, true), $bugId ]);
-				$notification_text = t('message-newbug', 'bugtracker', [ remove_html($rs['description'],'<a><br><i><b><code><pre>'), SITE_URL, $bugId, $bugTitle]);
+				$notification_text = sprintf('<a href="%">Bug %d anschauen</a>', SITE_URL.'/bug/'.$bugId, $bugId);
 				$notification_status = $notification->send($rs['reporter_id'], 'bugtracker', ['from_user_id'=>$user->id, 'subject'=>$notification_subject, 'text'=>$notification_text, 'message'=>$notification_text]);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status "%s" from user=%s to user=%s', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $user->id, $rs['reporter_id']));
 			}
@@ -162,7 +161,7 @@ static function execActions()
 			if($user->id != $rs['reporter_id'])
 			{
 				$notification_subject = t('message-subject-resolvedbug', 'bugtracker', [ $user->id2user($user->id, true), $bugId ]);
-				$notification_text = t('message-newbug', 'bugtracker', [ remove_html($rs['description'],'<a><br><i><b><code><pre>'), SITE_URL, $bugId, $bugTitle]);
+				$notification_text = sprintf('<a href="%">Bug %d anschauen</a>', SITE_URL.'/bug/'.$bugId, $bugId);
 				$notification_status = $notification->send($rs['reporter_id'], 'bugtracker', ['from_user_id'=>$user->id, 'subject'=>$notification_subject, 'text'=>$notification_text, 'message'=>$notification_text]);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status "%s" from user=%s to user=%s', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $user->id, $rs['reporter_id']));
 			}
@@ -208,7 +207,7 @@ static function execActions()
 			if($user->id != $rs['reporter_id'])
 			{
 				$notification_subject = t('message-subject-deniedbug', 'bugtracker', [ $user->id2user($user->id, true), $bugId ]);
-				$notification_text = t('message-newbug', 'bugtracker', [ remove_html($rs['description'],'<a><br><i><b><code><pre>'), SITE_URL, $bugId, $bugTitle]);
+				$notification_text = sprintf('<a href="%">Bug %d anschauen</a>', SITE_URL.'/bug/'.$bugId, $bugId);
 				$notification_status = $notification->send($rs['reporter_id'], 'bugtracker', ['from_user_id'=>$user->id, 'subject'=>$notification_subject, 'text'=>$notification_text, 'message'=>$notification_text]);
 				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $notification_status "%s" from user=%s to user=%s', __METHOD__, __LINE__, ($notification_status===true?'true':'false'), $user->id, $rs['reporter_id']));
 			}
@@ -459,7 +458,7 @@ static function getBugList($show, $order)
 
 		$sql .= " ORDER BY ".$order;
 
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		$html =
 			'<table class="border shadedcells" width="100%">'
@@ -628,7 +627,7 @@ static function getNumOpenBugs()
 
 		if ($user->typ >= USER_MEMBER) {
 		$sql = 'SELECT count(*) as num FROM bugtracker_bugs WHERE assignedto_id = 0';
-			$result = $db->query($sql, __FILE__, __LINE__);
+			$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 		  $rs = $db->fetch($result);
 
 			return $rs['num'];
@@ -640,16 +639,8 @@ static function getNumNewBugs()
 		global $db, $user;
 
 		if ($user->typ >= USER_MEMBER) {
-			$sql =
-				"
-				SELECT count(*) as num FROM bugtracker_bugs
-				WHERE UNIX_TIMESTAMP(reported_date) > ".$user->lastlogin."
-				AND UNIX_TIMESTAMP(resolved_date) = 0
-				AND UNIX_TIMESTAMP(denied_date) = 0
-				"
-			;
-
-		  $rs = $db->fetch($db->query($sql, __FILE__, __LINE__));
+			$sql = 'SELECT count(*) as num FROM bugtracker_bugs WHERE UNIX_TIMESTAMP(reported_date)>? AND UNIX_TIMESTAMP(resolved_date)=0 AND UNIX_TIMESTAMP(denied_date)=0';
+			$rs = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__, [$user->lastlogin]));
 
 		 	return $rs['num'];
 		}
@@ -660,9 +651,9 @@ function getFormFieldBuglist($name)
 		global $db;
 
 		$sql = 'SELECT * FROM bugtracker_bugs WHERE (denied_date = 0 OR denied_date IS NULL) && (resolved_date = 0 OR resolved_date IS NULL)';
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
-		$html .= '<select name="'.$name.'" size="1">';
+		$html = '<select name="'.$name.'" size="1">';
 		$html .= '<option value="0"> -- kein Bug --</option>';
 		while ($rs = $db->fetch($result)) {
 		   $html .= '<option value="'.$rs['id'].'">#'.$rs['id'].' '.htmlentities($rs['title'], ENT_QUOTES).'</option>';
@@ -677,7 +668,7 @@ static function getFormFieldCategory($category_id='')
 		global $db;
 
 		$sql = 'SELECT * FROM bugtracker_categories ORDER BY title ASC';
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		$html = '<select name="category_id"><option label="--- Kategorie wählen ---" selected disabled>--- Kategorie wählen ---</option>';
 		while($rs = $db->fetch($result))
@@ -698,7 +689,7 @@ function getFormFieldFilterCategory($category_id='')
 		global $db;
 
 		$sql = 'SELECT * FROM bugtracker_categories ORDER BY title ASC';
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		$html = '<select name="show[]">';
 		while($rs = $db->fetch($result))
diff --git a/www/includes/mobilez/users.inc.php b/www/includes/mobilez/users.inc.php
index 25366e0..7f4d4a5 100644
--- a/www/includes/mobilez/users.inc.php
+++ b/www/includes/mobilez/users.inc.php
@@ -3,7 +3,7 @@
  * User Management
  * Various functions to handle user management
  * like login, logout, profiles, etc.
- * 
+ *
  * @author IneX
  * @date 16.01.2016
  * @version 1.0
@@ -40,19 +40,8 @@ function login($username, $password="", $use_cookie = 0) {
 			}
 
 			//erstellt sql string fuer passwort ueberpruefung
-			$sql =
-				"
-					SELECT
-						id
-						, ".$this->field_user_active."
-						, UNIX_TIMESTAMP(".AUSGESPERRT_BIS.") as ".AUSGESPERRT_BIS."
-					FROM ".$this->table_name."
-					WHERE "
-							.$this->field_username." = '".$username."'
-						AND
-							".$this->field_userpw." = '".$crypted_pw."'
-				"
-			;
+			$sql = "SELECT id, ".$this->field_user_active.", UNIX_TIMESTAMP(".AUSGESPERRT_BIS.") as ".AUSGESPERRT_BIS." FROM ".$this->table_name."
+					WHERE ".$this->field_username." = '".$username."' AND ".$this->field_userpw." = '".$crypted_pw."'";
 			$result = $db->query($sql, __FILE__, __LINE__);
 
 			//ueberprueft ob passwort korrekt ist
@@ -102,7 +91,7 @@ function login($username, $password="", $use_cookie = 0) {
 		} else { $error = "Dieser Benutzer existiert nicht!"; }
 		return $error;
 	}
-	
+
 	/**
 	 * User Logout
 	 *
diff --git a/www/includes/smarty.fnc.php b/www/includes/smarty.fnc.php
index e1c6c8b..f07460a 100644
--- a/www/includes/smarty.fnc.php
+++ b/www/includes/smarty.fnc.php
@@ -1293,27 +1293,14 @@ function smarty_assign_chatmessages($params, &$smarty) {
 		$anzahl = ($params['anzahl'] == '' ? 10 : $params['anzahl']);
 		$page = ($params['page'] == '' ? 0 : $params['page']);
 
-		$sql = "SELECT * from chat";
-		$result = $db->query($sql, __FILE__, __LINE__);
-		$num = $db->num($result);
-
-		$sql =
-			"
-			SELECT
-				chat.text
-				, UNIX_TIMESTAMP(date) AS date
-				, user.username AS username
-				, user.clan_tag AS clantag
-				, chat.user_id
-				, chat.from_mobile
-			FROM chat
-			LEFT JOIN user ON (chat.user_id = user.id)
-			ORDER BY date ASC
-			LIMIT ".(($num-$anzahl)-($page*$anzahl)).", ".$anzahl."
-			"
-		;
+		$sql = "SELECT COUNT(*) AS anz from chat";
+		$result = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__));
+		$num = $result['anz'];//$db->num($result);
+
+		$sql = 'SELECT chat.text, UNIX_TIMESTAMP(date) AS date, user.username AS username, user.clan_tag AS clantag, chat.user_id, chat.from_mobile
+				FROM chat LEFT JOIN user ON (chat.user_id=user.id) ORDER BY date ASC LIMIT ?,?';
 		//echo $sql;
-		$result = $db->query($sql, __FILE__, __LINE__);
+		$result = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [(($num-$anzahl)-($page*$anzahl)), $anzahl]);
 
 		while ($rs = $db->fetch($result)) {
 		  $chatmessages[] = $rs;
diff --git a/www/includes/stockbroker.inc.php b/www/includes/stockbroker.inc.php
index 6e278a3..eb5bc4f 100644
--- a/www/includes/stockbroker.inc.php
+++ b/www/includes/stockbroker.inc.php
@@ -110,20 +110,8 @@ function getKurs($symbol) {
 	/*
 	function getKurseNeuste() {
 		global $db;
-		$sql =
-			"
-			SELECT
-				sq.symbol
-				, sq.kurs
-				, sq.zeit
-				, si.company
-			FROM
-				stock_quotes sq
-			LEFT JOIN stock_items si ON (si.symbol = sq.symbol)
-			ORDER BY tag DESC, zeit DESC
-			LIMIT 0,20
-			"
-		;
+		$sql = "SELECT sq.symbol, sq.kurs, sq.zeit, si.company FROM stock_quotes sq
+			LEFT JOIN stock_items si ON (si.symbol = sq.symbol) ORDER BY tag DESC, zeit DESC LIMIT 0,20";
 		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
 
 		while($rs = $db->fetch($result)) {
@@ -292,18 +280,9 @@ function getStocksOwned($user_id)
 	/*
 	function getCurrentProperty($user_id) {
 		global $db;
-		$sql =
-			"
-			SELECT
-				*
-			FROM
-				stock_trades st
-			WHERE
-				user_id = '".$user_id."'
-			"
-		;
+		$sql = "SELECT * FROM stock_trades st WHERE user_id=?;
 
-		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__);
+		$result = $db->query($sql, __FILE__, __LINE__, __METHOD__, [$user_id]);
 
 		$assets['Bargeld'] = 1000; // Anfangsvermögen
 
diff --git a/www/scripts/hz_stats.php b/www/scripts/hz_stats.php
index 868d800..3f2242b 100644
--- a/www/scripts/hz_stats.php
+++ b/www/scripts/hz_stats.php
@@ -7,36 +7,27 @@
 
 $usr_e = $db->query(
 	"SELECT d.*, concat(u.clan_tag, u.username) username, count(g.id) games, count(if(p.type='z', '1', NULL)) zgames
-	FROM hz_players p, hz_games g, user u, hz_dwz d
-	WHERE g.id=p.game AND g.state='finished' AND u.id=p.user AND d.user=p.user
-	GROUP BY p.user
-	ORDER BY d.rank",
-	__FILE__, __LINE__
+	FROM hz_players p, hz_games g, user u, hz_dwz d WHERE g.id=p.game AND g.state='finished' AND u.id=p.user AND d.user=p.user
+	GROUP BY p.user ORDER BY d.rank", __FILE__, __LINE__, 'SELECT Finished Games Stats'
 );
 $stats = array();
-while ($usr = $db->fetch($usr_e)) {
-	$usr['userparam'] = "user=$usr[user]";
-	
+while ($usr = $db->fetch($usr_e))
+{
+	/** Wins + Loose by User */
 	$e = $db->query(
 		"SELECT if(g.z_score > sum(a.score)-g.z_score && p.type='z' || g.z_score < sum(a.score)-g.z_score && p.type!='z', '1', '0') win
-		FROM hz_players p, hz_games g, hz_aims a
-		WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=".$usr['user']." 
-		GROUP BY g.id
-		HAVING win='1'",
-		__FILE__, __LINE__
+		FROM hz_players p, hz_games g, hz_aims a WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=? GROUP BY g.id HAVING win='1'",
+		__FILE__, __LINE__, 'SELECT User Wins+Looses', [$usr['user']]
 	);
 	$usr['win'] = $db->num($e);
 	$usr['loose'] = $usr['games'] - $usr['win'];
-	
-	
+
+
 	if ($usr['zgames'] != 0) {
 		$e = $db->query(
-			"SELECT if(g.z_score > sum(a.score)-g.z_score && p.type='z', '1', '0') win
-			FROM hz_players p, hz_games g, hz_aims a
-			WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=".$usr['user']." 
-			GROUP BY g.id
-			HAVING win='1'",
-			__FILE__, __LINE__
+			"SELECT if(g.z_score > sum(a.score)-g.z_score && p.type='z', '1', '0') win FROM hz_players p, hz_games g, hz_aims a
+			WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=? GROUP BY g.id HAVING win='1'",
+			__FILE__, __LINE__, 'SELECT User Wins as MrZ', [$usr['user']]
 		);
 		$usr['zwin'] = $db->num($e);
 		$usr['zloose'] = $usr['zgames'] - $usr['zwin'];
@@ -44,17 +35,14 @@
 		$usr['zwin'] = 0;
 		$usr['zloose'] = 0;
 	}
-	
-	
+
+
 	$usr['igames'] = $usr['games'] - $usr['zgames'];
 	if ($usr['igames'] != 0) {
 		$e = $db->query(
-			"SELECT if(g.z_score < sum(a.score)-g.z_score && p.type!='z', '1', '0') win
-			FROM hz_players p, hz_games g, hz_aims a
-			WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=".$usr['user']." 
-			GROUP BY g.id
-			HAVING win='1'",
-			__FILE__, __LINE__
+			"SELECT if(g.z_score < sum(a.score)-g.z_score && p.type!='z', '1', '0') win FROM hz_players p, hz_games g, hz_aims a
+			WHERE g.id=p.game AND a.map=g.map AND g.state='finished' AND p.user=? GROUP BY g.id HAVING win='1'",
+			__FILE__, __LINE__, 'SELECT User Total Wins', [$usr['user']]
 		);
 		$usr['iwin'] = $db->num($e);
 		$usr['iloose'] = $usr['igames'] - $usr['iwin'];
diff --git a/www/scripts/tauschboerse.php b/www/scripts/tauschboerse.php
index 73358ef..9c78cc6 100644
--- a/www/scripts/tauschboerse.php
+++ b/www/scripts/tauschboerse.php
@@ -6,20 +6,8 @@
 global $db, $user, $smarty;
 
 // Angebote
-$result = $db->query(
-	"
-	SELECT *,
-		CONVERT(kommentar USING latin1) kommentar,
-		UNIX_TIMESTAMP(datum) AS datum
-	FROM tauschboerse
-	WHERE 
-		art = 'angebot'
-		AND
-		aktuell = '1'
-	ORDER BY datum DESC
-	",
-	__FILE__, __LINE__
-);
+$result = $db->query('SELECT *, CONVERT(kommentar USING latin1) kommentar, UNIX_TIMESTAMP(datum) AS datum FROM tauschboerse
+					WHERE art="angebot" AND aktuell="1" ORDER BY datum DESC', __FILE__, __LINE__, 'SELECT Angebote');
 while ($rs = $db->fetch($result)) {
 	$angebote[$rs['id']] = $rs;
 }
@@ -27,20 +15,8 @@
 
 
 // Nachfragen
-$result = $db->query(
-	"
-	SELECT *,
-		CONVERT(kommentar USING latin1) kommentar,
-		UNIX_TIMESTAMP(datum) AS datum
-	FROM tauschboerse
-	WHERE 
-		art = 'nachfrage'
-		AND
-		aktuell = '1'
-	ORDER BY datum DESC
-	",
-	__FILE__, __LINE__
-);
+$result = $db->query('SELECT *, CONVERT(kommentar USING latin1) kommentar, UNIX_TIMESTAMP(datum) AS datum FROM tauschboerse
+					WHERE art="nachfrage" AND aktuell="1" ORDER BY datum DESC',	__FILE__, __LINE__, 'SELECT Nachfragen');
 while ($rs = $db->fetch($result)) {
 	$nachfragen[$rs['id']] = $rs;
 }
diff --git a/www/util/hz_stats.php b/www/util/hz_stats.php
index 55c288a..bba7923 100644
--- a/www/util/hz_stats.php
+++ b/www/util/hz_stats.php
@@ -3,23 +3,22 @@
  * Hunting z Stats Output als XMP-File
  * @package zorg\Games\HuntingZ
  */
+
 /**
  * File includes
  */
-require_once dirname(__FILE__).'/../includes/config.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
 require_once INCLUDES_DIR.'mysql.inc.php';
 require_once INCLUDES_DIR.'util.inc.php';
 
 $ge = $db->query(
-	"SELECT g.id, if(sum(a.score)-g.z_score > g.z_score, 'i', 'z') winner, u.username mrz
-	FROM hz_players p, hz_games g, hz_aims a, user u
-	WHERE g.id=p.game AND p.type='z' AND g.state='finished' AND a.map=g.map AND u.id=p.user
-	GROUP BY g.id"
-	, __FILE__, __LINE__
+	"SELECT g.id, if(sum(a.score)-g.z_score > g.z_score, 'i', 'z') winner, u.username mrz FROM hz_players p, hz_games g, hz_aims a, user u
+	WHERE g.id=p.game AND p.type='z' AND g.state='finished' AND a.map=g.map AND u.id=p.user GROUP BY g.id",
+	__FILE__, __LINE__, 'SELECT User Score'
 );
 $user = array();
 while ($g = $db->fetch($ge)) {
-	$t = $db->fetch($db->query("SELECT * FROM hz_tracks WHERE player='z' AND game=$g[id] ORDER BY nr DESC LIMIT 0,1", __FILE__, __LINE__));
+	$t = $db->fetch($db->query("SELECT * FROM hz_tracks WHERE player='z' AND game=? ORDER BY nr DESC LIMIT 1", __FILE__, __LINE__, 'SELECT User Wins', [$g['id']]));
 	if ($g['winner']=='z') $user['wins'][$g['mrz']]++;
 	$user['games'][$g['mrz']]++;
 	$user['turns'][$g['mrz']] += $t['nr'];

From ac01e878d3da4bc0ab090b3d667f8366bdcbe235 Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Thu, 11 Jan 2024 23:35:10 +0100
Subject: [PATCH 6/8] Improves zorg Debugger

---
 www/includes/errlog.inc.php                | 67 +++++++++++++++-------
 www/includes/mysql.inc.php                 |  2 +-
 www/includes/smarty.inc.php                |  6 +-
 www/includes/telegrambot.inc.php           |  4 +-
 www/includes/util.inc.php                  |  2 +-
 www/js/ajax/get-onlineuser.php             |  1 +
 www/js/ajax/verein_mailer/set-mailsend.php |  4 +-
 7 files changed, 57 insertions(+), 29 deletions(-)

diff --git a/www/includes/errlog.inc.php b/www/includes/errlog.inc.php
index 582b059..4dfb4f3 100644
--- a/www/includes/errlog.inc.php
+++ b/www/includes/errlog.inc.php
@@ -198,7 +198,7 @@ private function write($level, $message, $params, $origin = [])
     private function getOrigin()
     {
         $backtrace = debug_backtrace(DEBUG_BACKTRACE_PROVIDE_OBJECT, 3);
-		// 1=self::getOrigin() | 2=self::debug()/self::warn()/... | 3=self::__construct()
+		// (Does not alway apply) 1=self::getOrigin() | 2=self::debug()/self::warn()/... | 3=caller
 
         $origin = [
             'function' => '',
@@ -207,32 +207,59 @@ private function getOrigin()
         ];
 		$debuggerMethods = ['debug', 'info', 'warn', 'write'];
 
-        if (isset($backtrace[1])) {
-            if (isset($backtrace[1]['function'])) {
-				/** Only log the Function name, if it's not from this Debugger Class */
-				if (isset($backtrace[1]['function']) && !in_array($backtrace[1]['function'], $debuggerMethods)) {
-					$origin['function'] = $backtrace[1]['function'];
-				}
+		$step = 2;
+        if (isset($backtrace[$step])) {
+			/** Function */
+            if (isset($backtrace[$step]['function']) && !in_array($backtrace[$step]['function'], $debuggerMethods)) {
 				/** When the Function is a Class Constructor, then log its Class Name instead */
-				elseif ($backtrace[1]['function'] === '__construct' && isset($backtrace[1]['class']) ) {
+				if ($backtrace[$step]['function'] === '__construct' && isset($backtrace[$step]['class']) ) {
 					/** However, when it's the Debugger's Class Name, then fall back to use the Origin File reference */
-					if ($backtrace[1]['class'] !== __CLASS__) {
-						$origin['function'] = $backtrace[1]['class'];
+					if ($backtrace[$step]['class'] !== __CLASS__) {
+						$origin['function'] = $backtrace[$step]['class'];
+					} elseif ($backtrace[$step]['class'] === __CLASS__ && isset($backtrace[$step+1]['class'])) {
+						$origin['function'] = $backtrace[$step+1]['class'];
 					} else {
-						$origin['function'] = basename($backtrace[1]['file']);
+						$origin['function'] = basename($backtrace[$step]['file']);
 					}
 				}
+				/** Only log the Function name, if it's not from this Debugger Class */
+				elseif (isset($backtrace[$step]['function'])) {
+					$origin['function'] = $backtrace[$step]['function'];
+				}
             }
-            elseif (isset($backtrace[1]['file'])) {
-                $origin['function'] = basename($backtrace[1]['file']);
-            }
-			if (isset($backtrace[1]['file'])) {
-                $origin['file'] = basename($backtrace[1]['file']);
-            }
-            if (isset($backtrace[1]['line'])) {
-                $origin['line'] = $backtrace[1]['line'];
+			/** Function of Backtrace Step+1 */
+            elseif (isset($backtrace[$step+1]['function']) && !in_array($backtrace[$step+1]['function'], $debuggerMethods)) {
+				/** When the Function is a Class Constructor, then log its Class Name instead */
+				if ($backtrace[$step+1]['function'] === '__construct' && isset($backtrace[$step+1]['class']) ) {
+					$origin['function'] = $backtrace[$step+1]['class'];
+				} else {
+					$origin['function'] = basename($backtrace[$step]['file']);
+				}
+			}
+			elseif (isset($backtrace[$step]['file'])) {
+                $origin['function'] = basename($backtrace[$step]['file']);
             }
-        }
+			/** File */
+			if (isset($backtrace[$step]['file'])) $origin['file'] = basename($backtrace[$step]['file']);
+			/** Line */
+            if (isset($backtrace[$step]['line'])) $origin['line'] = $backtrace[$step]['line'];
+		/** Backtrace Step-1 */
+        } elseif (isset($backtrace[$step-1])) {
+			/** Function */
+            if (isset($backtrace[$step-1]['function']) && !in_array($backtrace[$step-1]['function'], $debuggerMethods)) {
+				$origin['function'] = $backtrace[$step-1]['function'];
+			} elseif ($backtrace[$step-1]['file']) {
+				$origin['function'] = basename($backtrace[$step]['file']);
+			}
+			/** File */
+			if (isset($backtrace[$step-1]['file'])) $origin['file'] = basename($backtrace[$step-1]['file']);
+			/** Line */
+            if (isset($backtrace[$step-1]['line'])) $origin['line'] = $backtrace[$step-1]['line'];
+		} else {
+			$origin['function'] = 'nofunc';
+			$origin['file'] = 'nofile';
+			$origin['line'] = 0;
+		}
 
         return $origin;
     }
diff --git a/www/includes/mysql.inc.php b/www/includes/mysql.inc.php
index 0e434d4..35c04b3 100644
--- a/www/includes/mysql.inc.php
+++ b/www/includes/mysql.inc.php
@@ -247,7 +247,7 @@ function saveerror($msg, $sql, $file='', $line=0, $funktion='')
 		$ip = (isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : '');
 		$page = (isset($_SERVER['REQUEST_URI']) ? $_SERVER['REQUEST_URI'] : '');
 		$referer = (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : '');
-		// FIXME crasht wenn von :193 -> :222 aufgerufen, prepared statement scheint falsch zu sein *shrug*
+		// FIXME crasht wenn von Line 193 -> Line 222 aufgerufen, prepared statement scheint falsch zu sein *shrug*
 		$insertSql = 'INSERT INTO sql_error (user_id, ip, page, query, msg, date, file, line, referer, status, function) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, 1, ?)';
 		$stmt = mysqli_prepare($this->conn, $insertSql);
 		mysqli_stmt_bind_param($stmt, 'isssssiss', $user_id, $ip, $page, $sql, $msg, timestamp(true), $file, $line, $referer, $funktion);
diff --git a/www/includes/smarty.inc.php b/www/includes/smarty.inc.php
index 8b77f16..e827346 100644
--- a/www/includes/smarty.inc.php
+++ b/www/includes/smarty.inc.php
@@ -329,7 +329,7 @@ function load_packages($tpl_id, &$smarty)
 		$packagesQuery = 'SELECT pkg.name as name FROM packages pkg INNER JOIN tpl_packages tplp ON pkg.id = tplp.package_id WHERE tplp.tpl_id=?';
 		$packagesFound = $db->query($packagesQuery, __FILE__, __LINE__, __FUNCTION__, [$tpl]);
 		$numPackagesFound = (int)$db->num($packagesFound);
-		zorgDebugger::log()->debug('Found %d packages for template «%s»', [$numPackagesFound, strval($tpl)]);
+		zorgDebugger::log()->debug('Found %d packages for template "%s"', [$numPackagesFound, strval($tpl)]);
 
 		/** 1 or more Packages found */
 		if ($numPackagesFound > 0)
@@ -339,7 +339,7 @@ function load_packages($tpl_id, &$smarty)
 				/** Check if $package matches a PHP-File (Package) */
 				$package_file = basename($packages['name']); // Remove any directory traversal characters
 				$package_filepath = SMARTY_PACKAGES_DIR.$package_file.SMARTY_PACKAGES_EXTENSION;
-				zorgDebugger::log()->debug('Loading package «%s» from %s', [$package_file, $package_filepath]);
+				zorgDebugger::log()->debug('Loading package "%s" from %s', [$package_file, $package_filepath]);
 				if (is_file($package_filepath) !== false)
 				{
 					require_once $package_filepath;
@@ -356,7 +356,7 @@ function load_packages($tpl_id, &$smarty)
 		/** 0 Packages found (but this is no error) */
 		elseif ($numPackagesFound === 0)
 		{
-			zorgDebugger::log()->debug('Template «%s» has no packages associated', [strval($tpl)]);
+			zorgDebugger::log()->debug('Template "%s" has no packages associated', [strval($tpl)]);
 			return true;
 		}
 	} else {
diff --git a/www/includes/telegrambot.inc.php b/www/includes/telegrambot.inc.php
index 0be04cc..32f89a4 100644
--- a/www/includes/telegrambot.inc.php
+++ b/www/includes/telegrambot.inc.php
@@ -171,7 +171,7 @@ public function send($userScope, $messageType, $content)
 						}
 					}
 				} else {
-					zorgDebugger::log()->warn('«%s» did not pass validation!', [$messageType]);
+					zorgDebugger::log()->warn('"%s" did not pass validation!', [$messageType]);
 					return false;
 				}
 			}
@@ -220,7 +220,7 @@ public function mentionUser($userid)
 					LIMIT 1';
 			$telegramUserIds = $db->fetch($db->query($sql, __FILE__, __LINE__, __METHOD__));
 			$telegramUserId = $telegramUserIds['tui'];
-			zorgDebugger::log()->debug('Found Telegram User ID «%d»', [$telegramUserId]);
+			zorgDebugger::log()->debug('Found Telegram User ID "%d"', [$telegramUserId]);
 
 			if (!empty($telegramUserId))
 			{
diff --git a/www/includes/util.inc.php b/www/includes/util.inc.php
index 8b38ad5..0acf11b 100644
--- a/www/includes/util.inc.php
+++ b/www/includes/util.inc.php
@@ -300,7 +300,7 @@ function changeURL($url, $query_string_changes)
 	$urlarray = parse_url($url);
 	$urlarray['query'] = changeQueryString($urlarray['query'], $query_string_changes);
 	$newUrl = glue_url($urlarray);
-	if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> url: %s | new query-string: %s | new url: %s', __FUNCTION__, __LINE__, $url, $urlarray['query'], $newUrl));
+	zorgDebugger::log()->debug('url: %s | new query-string: %s | new url: %s', [$url, $urlarray['query'], $newUrl]);
 	return $newUrl;
 }
 
diff --git a/www/js/ajax/get-onlineuser.php b/www/js/ajax/get-onlineuser.php
index deea566..4825d48 100644
--- a/www/js/ajax/get-onlineuser.php
+++ b/www/js/ajax/get-onlineuser.php
@@ -59,6 +59,7 @@
 		require_once INCLUDES_DIR.'mysql.inc.php';
 		$sql = 'SELECT id, username, clan_tag FROM user WHERE activity > (NOW()-?) ORDER by activity DESC';
 		$result = $db->query($sql, __FILE__, __LINE__, 'AJAX.GET(get-onlineuser)', [USER_TIMEOUT]);
+		zorgDebugger::log()->debug('%s', [$sql]);
 		/** Check if at least 1 user is online */
 		$num_online = (false !== $result && !empty($result) ? (int)$db->num($result) : 0);
 		if (false !== $num_online && !empty($num_online))
diff --git a/www/js/ajax/verein_mailer/set-mailsend.php b/www/js/ajax/verein_mailer/set-mailsend.php
index 905bdec..3aacacf 100644
--- a/www/js/ajax/verein_mailer/set-mailsend.php
+++ b/www/js/ajax/verein_mailer/set-mailsend.php
@@ -175,7 +175,7 @@
 				if ( mail($mailTo, $mailSubject, $message_text, $mailHeaders) )
 				{
 					/** mail(): Success! */
-					error_log('[INFO] OK - Successfully sent E-Mail «'.$mailMessage['subject_text'].'» to ' . $mailTo . ' (user id '.$recipient_id.')');
+					error_log('[INFO] OK - Successfully sent E-Mail "'.$mailMessage['subject_text'].'" to ' . $mailTo . ' (user id '.$recipient_id.')');
 					//echo $recipient_id;
 					$response[] = [ 'value' => $recipient_id ];
 				} else {
@@ -183,7 +183,7 @@
 					 * mail(): Failed
 					 * @link http://php.net/manual/de/function.mail.php#121163
 					 */
-					error_log('[ERROR] Failed to send E-Mail «'.$mailMessage['subject_text'].'» to ' . $mailTo . ': ' . error_get_last()['message']);
+					error_log('[ERROR] Failed to send E-Mail "'.$mailMessage['subject_text'].'" to ' . $mailTo . ': ' . error_get_last()['message']);
 					$response[] = [ 'value' => "Failed to send E-Mail to user id: $recipient_id with error: ".error_get_last()['message'] ]; // Don't die - would kill foreach{..}!
 				}
 			} else {

From bf44467af23f13d4d06f8aca9f57a8ff44b7124f Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Thu, 11 Jan 2024 23:36:20 +0100
Subject: [PATCH 7/8] More code hardenings

---
 www/actions/events.php   | 75 +++++++++++++++++++++++-----------------
 www/models/books.php     |  2 +-
 www/packages/anficks.php |  2 +-
 www/packages/doku.php    | 28 +++++++--------
 4 files changed, 60 insertions(+), 47 deletions(-)

diff --git a/www/actions/events.php b/www/actions/events.php
index b61388e..b18f9fc 100644
--- a/www/actions/events.php
+++ b/www/actions/events.php
@@ -46,7 +46,7 @@
 		break;
 
 	/** Add new Event */
-	case (isset($_POST['action']) && $_POST['action'] === 'new'):
+	case ($_POST['action'] === 'new'):
 		if (isset($fromDate) && isset($fromTime)) {
 			$startdate = timestamp(true, [
 				 'year' => intval($fromDate[0])
@@ -66,8 +66,8 @@
 			]);
 		}
 		/** Backwards-compatibility to old individual Date fields */
-		if (empty($startdate)) $startdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
-		if (empty($enddate)) $enddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
+		if (!isset($startdate)) $startdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
+		if (!isset($enddate)) $enddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
 		$values = [
 			'name' => $eventName,
 			'location' => $eventLocation,
@@ -99,25 +99,38 @@
 
 
 	/** Save updated Event details */
-	case (isset($_POST['action']) && $_POST['action'] === 'edit'):
-		zorgDebugger::log()->debug('Update existing Event: %d «%s»', [$eventId, $eventName]);
-
-		$newStartdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
-		$newEnddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
-		$sql = 'UPDATE events
-			 	SET
-					name = "'.$eventName.'"
-					, location = "'.$eventLocation.'"
-					, link = "'.$eventLink.'"
-					, description = "'.$eventDescription.'"
-					, startdate = "'.$newStartdate.'"
-			 		, enddate = "'.$newEnddate.'"
-			 		, gallery_id = '.$eventGallery.'
-			 		, review_url = "'.$eventReviewlink.'"
-				WHERE id = '.$eventId
-				;
-		// TODO use $db->update() Method
-		$result = $db->query($sql, __FILE__, __LINE__, 'edit');
+	case ($_POST['action'] === 'edit'):
+		zorgDebugger::log()->debug('Update existing Event: %d "%s"', [$eventId, $eventName]);
+		if (isset($fromDate) && isset($fromTime)) {
+			$newStartdate = timestamp(true, [
+				 'year' => intval($fromDate[0])
+				,'month' => intval($fromDate[1])
+				,'day' => intval($fromDate[2])
+				,'hour' => intval($fromTime[0])
+				,'minute' => intval($fromTime[1])
+			]);
+		}
+		if (isset($toDate) && isset($toTime)) {
+			$newEnddate = timestamp(true, [
+				 'year' => intval($toDate[0])
+				,'month' => intval($toDate[1])
+				,'day' => intval($toDate[2])
+				,'hour' => intval($toTime[0])
+				,'minute' => intval($toTime[1])
+			]);
+		}
+		if (!isset($newStartdate)) $newStartdate = sprintf('%s-%s-%s %s:00', $_POST['startYear'], $_POST['startMonth'], $_POST['startDay'], $_POST['startHour']);
+		if (!isset($newEnddate)) $newEnddate = sprintf('%s-%s-%s %s:00', $_POST['endYear'], $_POST['endMonth'], $_POST['endDay'], $_POST['endHour']);
+		if (!isset($eventName)) $values[] = $eventName;
+		if (!isset($eventLocation)) $values[] = $eventLocation;
+		if (!isset($eventLink)) $values[] = $eventLink;
+		if (!isset($eventDescription)) $values[] = $eventDescription;
+		if (!isset($newStartdate)) $values[] = $newStartdate;
+		if (!isset($newEnddate)) $values[] = $newEnddate;
+		if (!isset($eventGallery)) $values[] = $eventGallery;
+		if (!isset($eventReviewlink)) $values[] = $eventReviewlink;
+
+		$result = $db->update('events', $eventId, $values, __FILE__, __LINE__, 'UPDATE events');
 		if ($result === false) $error = 'Error updating Event ID "' . $eventId . '"';
 
 		break;
@@ -150,7 +163,7 @@
 
 
 	/** Post Event to Twitter */
-	case (isset($_POST['action']) && $_POST['action'] === 'tweet'):
+	case ($_POST['action'] === 'tweet'):
 		zorgDebugger::log()->debug('Tweet Event: %s', [$redirect_url]);
 
 		/**
@@ -166,7 +179,7 @@
 						 ,'tokensecret' => $_ENV['TWITTER_API_TOKENSECRET']
 						 ,'callback' => $_ENV['TWITTER_API_CALLBACK_URL']
 						];
-		if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Twitter API Keys found: %s', __FILE__, __LINE__, print_r($twitterApiKey, true)));
+		zorgDebugger::log()->debug('Twitter API Keys found: %s', [print_r($twitterApiKey, true)]);
 		if (!empty($twitterApiKey['key']) && !empty($twitterApiKey['secret']) && !empty($twitterApiKey['token']) && !empty($twitterApiKey['tokensecret']))
 		{
 			/** Instantiate new Twitter Class */
@@ -180,7 +193,7 @@
 
 			/**
 			 * Send Tweet
-			 * @TODO you can add $imagePath or array of image paths as second argument
+			 * // FIXME you can add $imagePath or array of image paths as second argument
 			 */
 			try {
 				$eventURL = SITE_URL . '/event/' . date('Y/m/d/', $_POST['date']) . $eventId;
@@ -192,21 +205,21 @@
 
 			if (!empty($tweet))
 			{
-				/** Update Event-Entry in the Database */
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> Tweet "%s" sent => https://twitter.com/%s/status/%s', __FILE__, __LINE__, $tweet->text, TWITTER_NAME, $tweet->id_str));
+				zorgDebugger::log()->debug('Tweet "%s" sent => https://twitter.com/%s/status/%s', [$tweet->text, TWITTER_NAME, $tweet->id_str]);
 
-				$sql = 'UPDATE events SET tweet = "'.$tweet->id_str.'" WHERE id = '.$eventId;
-				if (!$db->query($sql,__FILE__, __LINE__)) $error = 'Cannot update Tweet-Status for Event ID ' . $eventId;
+				/** Update Event-Entry in the Database */
+				$sql = 'UPDATE events SET tweet=? WHERE id=?';
+				if (!$db->query($sql,__FILE__, __LINE__, 'action --> tweet', [$tweet->id_str, $eventId])) $error = 'Cannot update Tweet-Status for Event ID ' . $eventId;
 
 			} else {
 				$error = 'Twitter API: $twitter->send() ERROR';
-				if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> %s', __FILE__, __LINE__, $error));
+				zorgDebugger::log()->error('%s', [$error]);
 			}
 
 		} else {
 			$errormsg = 'Twitter API Keys: ERROR - file missing';
 			$error = $errormsg;
-			if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $errormsg: %s', __FILE__, __LINE__, $errormsg));
+			zorgDebugger::log()->error('$errormsg: %s', [$errormsg]);
 		}
 		break;
 
diff --git a/www/models/books.php b/www/models/books.php
index e537ce1..897e0a2 100644
--- a/www/models/books.php
+++ b/www/models/books.php
@@ -100,7 +100,7 @@ public function showDelete(&$smarty, $book_id, $book_title)
 	public function showUserbooks(&$smarty, &$user, $user_id)
 	{
 		$this->page_title = 'Books von '.$user->id2user($user_id);
-		$this->page_link = $this->page_link . '?do=show&book_id=' . $book_id;
+		$this->page_link = $this->page_link . '?do=my&user=' . $user_id;
 
 		$this->assign_model_to_smarty($smarty);
 	}
diff --git a/www/packages/anficks.php b/www/packages/anficks.php
index 5183a72..d7f62bc 100644
--- a/www/packages/anficks.php
+++ b/www/packages/anficks.php
@@ -14,7 +14,7 @@
  * @include smarty.inc.php
  * @include anficker.inc.php
  */
-require_once dirname(__FILE__).'/../includes/config.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
 require_once INCLUDES_DIR.'smarty.inc.php';
 require_once INCLUDES_DIR.'anficker.inc.php';
 
diff --git a/www/packages/doku.php b/www/packages/doku.php
index c88d933..28ad9c2 100644
--- a/www/packages/doku.php
+++ b/www/packages/doku.php
@@ -13,25 +13,25 @@
 
 function doku_doku ($params, $content, &$smarty, &$repeat) {
   $pack = "";
-  if (isset($params[package])) {
-     $pack = '<tr><td align="left"><b>Package: </b>'.$params[package].'<br /><br /></td></tr>';
+  if (isset($params['package'])) {
+     $pack = '<tr><td align="left"><b>Package: </b>'.$params['package'].'<br /><br /></td></tr>';
   }
-  
+
   $nav = "";
-  if (isset($params[up]) || isset($params[home])) {
+  if (isset($params['up']) || isset($params['home'])) {
      $nav = '<tr><td align="left">';
-     if (isset($params[home])) $nav .= '<a href="/?tpl='.$params[home].'">home</a> | ';
-     if (isset($params[up])) $nav .= '<a href="/?tpl='.$params[up].'">up</a> | ';
+     if (isset($params['home'])) $nav .= '<a href="/?tpl='.$params['home'].'">home</a> | ';
+     if (isset($params['up'])) $nav .= '<a href="/?tpl='.$params['up'].'">up</a> | ';
      $nav = substr($nav, 0, -3);
      $nav .= '<br /><br /></td></tr>';
   }
-  
+
   return  '<table width="100%">'.
               $nav.
               $pack.
-              '<tr><td align="left"><h2>'.$params[title].'</h3></td></tr>'.
+              '<tr><td align="left"><h2>'.$params['title'].'</h3></td></tr>'.
               '<tr><td align="left">'.$content.'</td></tr>'.
-          '</table>';      
+          '</table>';
 }
 
 function doku_return ($params, $content, &$smarty, &$repeat) {
@@ -46,7 +46,7 @@ function doku_param ($params, $content, &$smarty, &$repeat) {
   return '<table width="100%">'.
               '<tr>'.
                  '<td width="15">&nbsp;</td>'.
-                 '<td align="left" valign="top" width="100"><b>'.$params[name].'</b></td>'.
+                 '<td align="left" valign="top" width="100"><b>'.$params['name'].'</b></td>'.
                  '<td align="left">'.$content.'</td>'.
               '</tr>'.
           '</table>';
@@ -58,14 +58,14 @@ function doku_code ($params, $content, &$smarty, &$repeat) {
 
 
 function doku_entry ($params, $content, &$smarty, &$repeat) {
-  if (isset($params[tpl])) {
-     $params[title] = '<a href="/?tpl='.$params[tpl].'">'.$params[title].'</a>';
+  if (isset($params['tpl'])) {
+     $params['title'] = '<a href="/?tpl='.$params['tpl'].'">'.$params['title'].'</a>';
   }
-  
+
   return '<table>'.
            '<tr>'.
               '<td width="20">&nbsp;</td>'.
-              '<td align="left" valign="top">'.$params[title].' </td>'.
+              '<td align="left" valign="top">'.$params['title'].' </td>'.
               '<td align="left" valign="top"> - '.$content.' </td>'.
            '</tr>'.
          '</table>';

From b2ef088c0daef5b0de95e6045b398b4250e3a42d Mon Sep 17 00:00:00 2001
From: Oliver <github@raduner.ch>
Date: Thu, 11 Jan 2024 23:36:39 +0100
Subject: [PATCH 8/8] Fixes Polls

---
 www/actions/poll_state.php    |  4 +-
 www/actions/poll_unvote.php   |  8 ++--
 www/actions/poll_vote.php     | 15 ++++---
 www/includes/poll.inc.php     | 78 +++++++++++++++++++++++++----------
 www/includes/smarty.fnc.php   | 14 ++++---
 www/packages/polls.php        | 19 +++++++++
 www/scripts/poll_editor.php   | 14 +++----
 www/scripts/poll_my.php       |  4 +-
 www/scripts/poll_overview.php |  4 +-
 9 files changed, 107 insertions(+), 53 deletions(-)
 create mode 100644 www/packages/polls.php

diff --git a/www/actions/poll_state.php b/www/actions/poll_state.php
index b06b60b..dfd3cbe 100644
--- a/www/actions/poll_state.php
+++ b/www/actions/poll_state.php
@@ -5,6 +5,8 @@
  */
 require_once __DIR__.'/../includes/poll.inc.php';
 
+global $polls;
+
 /** Input validation and sanitization */
 $pollId = filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null; // $_GET['poll']
 $pollState = filter_input(INPUT_GET, 'state', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR) ?? null; // $_GET['state']
@@ -22,7 +24,7 @@
 	user_error('Invalid poll-id: '.$pollId, E_USER_ERROR);
 }
 
-$polls = new Polls();
+//$polls = new Polls(); --> Instantiated in poll.inc.php
 
 $e = $db->query('SELECT * FROM polls WHERE user=? AND id=?', __FILE__, __LINE__, 'SELECT', [$user->id, $pollId]);
 $d = $db->fetch($e);
diff --git a/www/actions/poll_unvote.php b/www/actions/poll_unvote.php
index d9479d8..254d860 100644
--- a/www/actions/poll_unvote.php
+++ b/www/actions/poll_unvote.php
@@ -3,21 +3,21 @@
  * Poll Unvote.
  * @packages zorg\Polls
  */
-require_once dirname(__FILE__).'/../includes/poll.inc.php';
+require_once __DIR__.'/../includes/poll.inc.php';
 
-/** Input validation and sanitization */
-$pollId = filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null; // $_GET['poll']
+global $polls;
 
 if(!$user->is_loggedin()) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Du bist nicht eingeloggt', E_USER_ERROR);
 }
+$pollId = filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null; // $_GET['poll']
 if(empty($pollId) || $pollId <= 0) {
 	http_response_code(404); // Set response code 404 (Not found)
 	user_error('Invalid poll-id: '.$pollId, E_USER_ERROR);
 }
 
-$polls = new Polls();
+//$polls = new Polls(); --> Instantiated in poll.inc.php
 
 $e = $db->query('SELECT * FROM polls WHERE id=?', __FILE__, __LINE__, 'SELECT', [$pollId]);
 $d = $db->fetch($e);
diff --git a/www/actions/poll_vote.php b/www/actions/poll_vote.php
index 13da307..d2d1525 100644
--- a/www/actions/poll_vote.php
+++ b/www/actions/poll_vote.php
@@ -5,34 +5,33 @@
  */
 require_once __DIR__.'/../includes/poll.inc.php';
 
-/** Input validation and sanitization */
-$poll = (filter_input(INPUT_POST, 'poll', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null)); // $_POST['poll'] / $_GET['poll']
-$vote = (filter_input(INPUT_POST, 'vote', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'vote', FILTER_VALIDATE_INT) ?? null)); // $_POST['vote'] / $_GET['vote']
-$redirect = base64url_decode(filter_input(INPUT_GET, 'redirect', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR)) ?? null; // $_GET['redirect']
+global $polls;
 
 if (!$user->is_loggedin()) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Access denied', E_USER_ERROR);
 }
+$poll = (filter_input(INPUT_POST, 'poll', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'poll', FILTER_VALIDATE_INT) ?? null)); // $_POST['poll'] / $_GET['poll']
+$vote = (filter_input(INPUT_POST, 'vote', FILTER_VALIDATE_INT) ?? (filter_input(INPUT_GET, 'vote', FILTER_VALIDATE_INT) ?? null)); // $_POST['vote'] / $_GET['vote']
 if (empty($poll) || $poll <= 0 || empty($vote) || $vote <= 0) {
 	http_response_code(403); // Set response code 403 (Access denied)
 	user_error('Nice try', E_USER_ERROR);
 }
 
-if ($poll !== null && $vote !== null)
+if ($poll>0 && $vote>0)
 {
-	$polls = new Polls();
+	//$polls = new Polls(); --> Instantiated in poll.inc.php
 
 	$e = $db->query('SELECT p.* FROM polls p, poll_answers a WHERE a.poll=p.id AND p.id=? AND a.id=?', __FILE__, __LINE__, __FILE__, [$poll, $vote]);
 	$d = $db->fetch($e);
 
 	if ($d && $d['state']=='open' && $polls->user_has_vote_permission($d['type'])) {
-		$db->query('REPLACE INTO poll_votes (poll, user, answer) VALUES (?, ?, ?)',
-					__FILE__, __LINE__, 'REPLACE INTO poll_votes', [$poll, $user->id, $vote]);
+		$db->query('REPLACE INTO poll_votes (poll, user, answer) VALUES (?, ?, ?)', __FILE__, __LINE__, 'REPLACE INTO poll_votes', [$poll, $user->id, $vote]);
 	}else{
 		user_error('Invalid Poll/Vote "'.$poll.' / '.$vote.'"', E_USER_ERROR);
 	}
 
+	$redirect = base64url_decode(filter_input(INPUT_GET, 'redirect', FILTER_DEFAULT, FILTER_REQUIRE_SCALAR)) ?? null; // $_GET['redirect']
 	header('Location: '.$redirect);
 	exit;
 
diff --git a/www/includes/poll.inc.php b/www/includes/poll.inc.php
index 4959e64..0332153 100644
--- a/www/includes/poll.inc.php
+++ b/www/includes/poll.inc.php
@@ -38,24 +38,34 @@ class Polls
 	 * @param $id Poll-ID to display
 	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
 	 * @global object $user Globales Class-Object mit den User-Methoden & Variablen
-	 * @return string HTML-markup to display the Poll
+	 * @return string smarty->fetch() Results
 	 */
 	function show($id)
 	{
 		global $db, $user, $smarty;
 
+		/** Validate Parameters */
+		if (!is_numeric($id) || $id <= 0) {
+			$smarty->assign('error', ['type' => 'warn', 'title' => t('invalid-poll_id', 'poll', [$id]), 'dismissable' => false]);
+			return $smarty->fetch('file:layout/elements/block_error.tpl');
+		}
+		$id = intval($id);
+		zorgDebugger::log()->debug('poll %d', [$id]);
+
+		$sql = '';
 		$params = [];
-		$sql = 'SELECT p.* ,UNIX_TIMESTAMP(p.date) date ,(SELECT count(*) FROM poll_votes WHERE poll=?) total_votes
-					'.($user->is_loggedin() ? ',(SELECT answer FROM poll_votes WHERE poll=? AND user=?) myvote' : '').'
-				FROM polls p WHERE id=? GROUP BY p.id';
-		$params[] = $id;
 		if ($user->is_loggedin()) {
+			$sql = 'SELECT p.*, UNIX_TIMESTAMP(p.date) date, (SELECT count(*) FROM poll_votes WHERE poll=?) total_votes, (SELECT answer FROM poll_votes WHERE poll=? AND user=?) myvote FROM polls p WHERE id=? GROUP BY p.id';
+			$params[] = $id;
 			$params[] = $id;
 			$params[] = $user->id;
+			$params[] = $id;
+		} else {
+			$sql = 'SELECT p.*, UNIX_TIMESTAMP(p.date) date, (SELECT count(*) FROM poll_votes WHERE poll=?) total_votes FROM polls p WHERE id=? GROUP BY p.id';
+			$params[] = $id;
+			$params[] = $id;
 		}
-		$params = $id;
 		$poll = $db->fetch($db->query($sql, __FILE__, __LINE__, __FUNCTION__, $params));
-		//if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $poll: %s', __FUNCTION__, __LINE__, print_r($poll,true)));
 
 		if (!empty($poll) && $poll !== false)
 		{
@@ -66,29 +76,28 @@ function show($id)
 			$smarty->assign('user_has_vote_permission', $user_has_vote_permission);
 			//if (DEVELOPMENT) error_log(sprintf('[DEBUG] <%s:%d> $user_has_vote_permission: %s', __FUNCTION__, __LINE__, ($user_has_vote_permission?'true':'false')));
 
-			/** Query Poll answers and return each answer with votes count */
-			$pollMaxvotes = ($poll['total_votes'] > 0 ? $poll['total_votes'] : 0);
-			$pollbarMaxwidth = 200;
-			$pollbarSize = 0;
-
-			//$e = $db->query('SELECT count(*) anz FROM poll_votes WHERE poll='.$id.' GROUP BY answer', __FILE__, __LINE__, __FUNCTION__);
-			$sql = 'SELECT a.*, count(v.user) votes FROM poll_answers a
-						LEFT JOIN poll_votes v ON v.answer=a.id
-					WHERE a.poll=? GROUP BY a.id ORDER BY a.id';
+			$sql = 'SELECT a.*, count(v.user) votes FROM poll_answers a LEFT JOIN poll_votes v ON v.answer=a.id WHERE a.poll=? GROUP BY a.id ORDER BY a.id';
 			$pollAnswers = $db->query($sql, __FILE__, __LINE__, __FUNCTION__, [$id]);
 			while ($pollAnswer = $db->fetch($pollAnswers))
 			{
 				$pollAnswersArray[$pollAnswer['id']] = $pollAnswer;
 
+				/** Query Poll answers and return each answer with votes count */
+				$pollMaxvotes = ($poll['total_votes'] > 0 ? $poll['total_votes'] : 0);
+				$pollbarMaxwidth = 200;
+				$pollbarSize = 0;
+
 				/** Poll votes result-bar calculations */
-				if ($pollAnswer['votes'] == 0) $pollbarSize = 1;
-				else $pollbarSize = round($pollAnswer['votes'] / $pollMaxvotes * $pollbarMaxwidth);
+				if (empty($pollAnswer['votes'])) {
+					$pollbarSize = 1;
+				} else {
+					$pollbarSize = round($pollAnswer['votes'] / $pollMaxvotes * $pollbarMaxwidth);
+				}
 				$pollAnswersArray[$pollAnswer['id']]['pollbar_size'] = $pollbarSize;
 				$pollAnswersArray[$pollAnswer['id']]['pollbar_space'] = $pollbarMaxwidth - $pollbarSize;
 
 				if ($poll['myvote'] == $pollAnswer['id']) {
 					if ($poll['myvote'] && $poll['state']=='open' && $user_has_vote_permission) {
-						//$old_url = base64url_encode("$_SERVER[PHP_SELF]?".url_params());
 						$pollAnswersArray[$pollAnswer['id']]['unvote_url'] = '/actions/poll_unvote.php?poll='.$poll['id'].'&redirect='.getURL();
 					}
 				}
@@ -117,12 +126,12 @@ function show($id)
 				$smarty->assign('voters', $pollVotersArray);
 			}
 
-			$smarty->display('file:layout/partials/polls/poll.tpl');
+			return $smarty->fetch('file:layout/partials/polls/poll.tpl');
 
 		/** Poll not found - $id invalid */
 		} else {
 			$smarty->assign('error', ['type' => 'warn', 'title' => t('invalid-poll_id', 'poll', [$id]), 'dismissable' => false]);
-			$smarty->display('file:layout/elements/block_error.tpl');
+			return $smarty->fetch('file:layout/elements/block_error.tpl');
 		}
 	}
 
@@ -143,7 +152,7 @@ function user_has_vote_permission($poll_type)
 	}
 
 	/**
-	 * Updates the title and options of a poll.
+	 * // TODO Updates the title and options of a poll.
 	 * @link https://zorg.ch/bug/765 [Bug #765] Edit-Link bei bestehenden My Polls fehlt
 	 *
 	 * @version 1.0
@@ -173,4 +182,29 @@ public function update($poll_id, $title, $type, $answers) {
 
 		return true;
 	}
+
+	/**
+	 * Return all Poll IDs
+	 *
+	 * @version 1.0
+	 * @since 1.0 `11.01.2024` `IneX` Method added
+	 *
+	 * @global object $db Globales Class-Object mit allen MySQL-Methoden
+	 * @return array Array with all IDs of all Polls
+	 */
+	public function getAll()
+	{
+		global $db;
+
+		$polls = [];
+		$e = $db->query('SELECT id FROM polls ORDER BY date DESC', __FILE__, __LINE__, 'SELECT id FROM polls');
+		while ($d = $db->fetch($e)) {
+		 	$polls[] = $d['id'];
+		}
+
+		return $polls;
+	}
 }
+
+/** Instantiate Polls */
+$polls = new Polls();
diff --git a/www/includes/smarty.fnc.php b/www/includes/smarty.fnc.php
index f07460a..9962909 100644
--- a/www/includes/smarty.fnc.php
+++ b/www/includes/smarty.fnc.php
@@ -20,7 +20,6 @@
 include_once INCLUDES_DIR.'go_game.inc.php';
 include_once INCLUDES_DIR.'quotes.inc.php';
 include_once INCLUDES_DIR.'stockbroker.inc.php';
-include_once INCLUDES_DIR.'util.inc.php';
 include_once INCLUDES_DIR.'poll.inc.php';
 include_once INCLUDES_DIR.'stl.inc.php';
 include_once INCLUDES_DIR.'error.inc.php';
@@ -587,11 +586,13 @@ function smarty_new_tpl_link ($params, $content, &$smarty, &$repeat) {
 
 		return '<a href="/?tpleditor=1&tplupd=new&location='.base64url_encode($_SERVER['PHP_SELF'].'?'.url_params()).'">'.$content.'</a>';
 	}
-	function smarty_edit_link ($params, $content, &$smarty, &$repeat) {
-
+	function smarty_edit_link ($params, $content, &$smarty, &$repeat)
+	{
 		if (!$repeat) {  // closing tag
 			if ($params['tpl']) {
 				$tpl = $params['tpl'];
+				$rights = 0;
+				$owner = 0;
 			}else{
 				$vars = $smarty->get_template_vars();
 				$tpl = $vars['tpl']['id'];
@@ -740,12 +741,13 @@ function smarty_getdailyquote ($params) {
  */
 	function smarty_poll ($params)
 	{
-		if (!isset($params['id']) || empty($params['id']) || !is_numeric($params['id']))
+		global $polls;
+		if (!isset($params['id']) || empty($params['id']) || !is_numeric($params['id']) || intval($params['id'])<=0)
 		{
 			return smarty_error(['msg' => t('invalid-poll_id', 'poll', [$params['id']])]);
 		} else {
-			$poll = new Polls();
-			return $poll->show($params['id']);
+			//$poll = new Polls(); --> Instantiated in poll.inc.php
+			return $polls->show(intval($params['id']));
 		}
 	}
 
diff --git a/www/packages/polls.php b/www/packages/polls.php
new file mode 100644
index 0000000..7b6f8fc
--- /dev/null
+++ b/www/packages/polls.php
@@ -0,0 +1,19 @@
+<?php
+/**
+ * Polls Packages
+ *
+ * Holt und übergibt Polls an Smarty
+ *
+ * @version 1.0
+ * @since 1.0 `11.01.2024` `IneX` Package added
+ *
+ * @package		zorg\Polls
+ */
+
+/**
+ * @global object $polls Globales Class-Object mit allen Polls-Methoden
+ */
+global $polls;
+
+//$polls = new Polls(); --> Instantiated in poll.inc.php
+$smarty->assign('polls', $polls->getAll());
diff --git a/www/scripts/poll_editor.php b/www/scripts/poll_editor.php
index dbe59b1..11abf02 100644
--- a/www/scripts/poll_editor.php
+++ b/www/scripts/poll_editor.php
@@ -1,21 +1,19 @@
 <?php
-require_once dirname(__FILE__).'/../includes/config.inc.php';
+require_once __DIR__.'/../includes/config.inc.php';
 require_once INCLUDES_DIR.'usersystem.inc.php';
 
 global $smarty, $user;
 
 if ($user->is_loggedin())
 {
-	$types = array();
-	$types_n = array();
-	$types[] = 'standard';
-	$types_n[] = 'Standard';
-	
-	if ($user->typ == USER_MEMBER) {
+	$types = ['standard'];
+	$types_n = ['Standard'];
+
+	if ($user->typ >= USER_MEMBER) {
 		$types[] = 'member';
 		$types_n[] = 'Member';
 	}
-	
+
 	$smarty->assign('poll_types_v', $types);
 	$smarty->assign('poll_types_n', $types_n);
 } else {
diff --git a/www/scripts/poll_my.php b/www/scripts/poll_my.php
index 45f2aba..8eb9a66 100644
--- a/www/scripts/poll_my.php
+++ b/www/scripts/poll_my.php
@@ -3,8 +3,8 @@
 
 if ($user->is_loggedin())
 {
-	$e = $db->query('SELECT * FROM polls WHERE user='.$user->id.' ORDER BY date DESC', __FILE__, __LINE__, 'SELECT * FROM polls');
-	$polls = array();
+	$polls = [];
+	$e = $db->query('SELECT * FROM polls WHERE user=? ORDER BY date DESC', __FILE__, __LINE__, 'SELECT polls of User', [$user->id]);
 	while ($d = $db->fetch($e)) {
 		$polls[] = $d['id'];
 	}
diff --git a/www/scripts/poll_overview.php b/www/scripts/poll_overview.php
index 2e1884c..ce1c37d 100644
--- a/www/scripts/poll_overview.php
+++ b/www/scripts/poll_overview.php
@@ -1,8 +1,8 @@
 <?php
 global $db, $user, $smarty;
 
-$e = $db->query('SELECT * FROM polls ORDER BY date DESC', __FILE__, __LINE__);
-$polls = array();
+$polls = [];
+$e = $db->query('SELECT * FROM polls ORDER BY date DESC', __FILE__, __LINE__, 'SELECT * FROM polls');
 while ($d = $db->fetch($e)) {
 	$polls[] = $d['id'];
 }