/** * Filter get and post-vars * * - We don't not distinguish security between post-,get- and cookie-vars * because any of them can be easily forged. We create a joined assoc array * and filter for too long variables and html-tags. Additional security-checks * should be done later in db- and field-classes. * * - passed parames should always be accessed like; * * $f_person_name= get('person_name'); * * - You CAN NOT access $_GET, $_POST and $_COOKIE-vars directly (because they are cleared)! * - for additional information see std/common.inc */ function filterGlobalArrays() { ### clean global namespace from register globals ### if (@ini_get('register_globals')) { foreach ($_REQUEST as $key => $value) { unset($GLOBALS[$key]); } } clearRequestVars(); addRequestVars($_GET); addRequestVars($_POST); addRequestVars($_COOKIE); $_COOKIE = $_GET = $_POST = array(); }
* */ $g_supported_db_types = array(); if (function_exists('mysql_connect')) { $g_supported_db_types[] = 'mysql'; } if (function_exists('mysqli_connect')) { $g_supported_db_types[] = 'mysqli'; } require_once dirname(__FILE__) . "/../std/common.inc.php"; #require_once(dirname(__FILE__)."/../std/errorhandler.inc.php"); require_once dirname(__FILE__) . "/../conf/defines.inc.php"; require_once dirname(__FILE__) . "/../conf/conf.inc.php"; require_once dirname(__FILE__) . "/install_forms.inc.php"; print_InstallationHTMLOpen(); clearRequestVars(); addRequestVars($_GET); addRequestVars($_POST); addRequestVars($_COOKIE); if (!get('install_step')) { step_01_checkEvironment(); } else { step_02_form_submit(); } print_InstallationHTMLClose(); exit; /** * STEP WELCOME TO INSTALLATION */ function step_01_checkEvironment() {