/** * Führt alle Querys aus dem Array aus und gibt eventuelle Daten über das Ergebnis zurück * * @param array $sqlarray Das SQL-Query-Array * @since 0.0.1 * @version 0.0.2 * @access private * @return array * @author Alexander Mieland * @copyright 2000-2004 by APP - Another PHP Program */ function DoQuerys($sqlarray) { $query_num = count($sqlarray); $ret = array(); require_once $_SESSION['APCMS']['CLASS_DIR'] . "/apcms_benchmark.class." . $_SESSION['APCMS']['SUFFIX']; $b1 = new APCMS_BENCH(); $b1->Start(); if ($query_num == 1) { $sql = _APCMS_trim($sqlarray[0]); if (preg_match("`^SELECT[\\s]+`i", $sql)) { $result = $this->unbuffered_getAll_assoc($sql); $ret['queryreturn'] = $result; } elseif (preg_match("`^UPDATE[\\s]+`i", $sql)) { $result = $this->unbuffered_query($sql); $ret['num'] = $this->affected_rows(); $ret['queryreturn'][0] = array(); } elseif (preg_match("`^INSERT[\\s]+INTO[\\s]+`i", $sql)) { $result = $this->unbuffered_query($sql); $ret['num'] = $this->affected_rows(); $ret['queryreturn'][0] = array(); } elseif (preg_match("`^DROP[\\s]+TABLE[\\s]+`i", $sql)) { $result = $this->unbuffered_query($sql); $ret['queryreturn'][0] = array(); } elseif (preg_match("`^TRUNCATE[\\s]+TABLE[\\s]+`i", $sql)) { $result = $this->unbuffered_query($sql); $ret['num'] = $this->affected_rows(); $ret['queryreturn'][0] = array(); } elseif (preg_match("`^CREATE[\\s]+TABLE[\\s]+`i", $sql)) { $result = $this->unbuffered_query($sql); $ret['queryreturn'][0] = array(); } elseif (preg_match("`^EXPLAIN[\\s]+`i", $sql)) { $result = $this->unbuffered_getAll_assoc($sql); $ret['queryreturn'] = $result; } else { $result = $this->unbuffered_query($sql); $ret['num'] = $this->affected_rows(); $ret['queryreturn'][0] = array(); } if (!isset($ret['num']) || $ret['num'] <= 0) { $ret['num'] = 0; } } else { for ($a = 0; $a < $query_num; $a++) { $sql = _APCMS_trim($sqlarray[$a]); $this->unbuffered_query($sql); } $ret['num'] = $a; } $b1->Stop(); $ret['runtime'] = $b1->BenchmarkTime(); return $ret; }
$contentinclude = str_replace("..", "", trim($_GET['s'])); } elseif (!isset($contentinclude) && isset($_POST['s']) && trim($_POST['s']) != "") { $contentinclude = str_replace("..", "", trim($_POST['s'])); } else { if (!isset($contentinclude)) { $contentinclude = "index"; } else { $contentinclude = str_replace("..", "", trim($contentinclude)); } } $firstinclude = $_SESSION['APCMS']['INC_DIR'] . '/content.' . $contentinclude . '.' . $_SESSION['APCMS']['SUFFIX']; $langfile = 'content.' . $contentinclude . '.' . $_SESSION['APCMS']['SUFFIX']; /** Include der Debug-Funktionen des Systems */ require_once $_SESSION['APCMS']['CLASS_DIR'] . "/apcms_benchmark.class." . $_SESSION['APCMS']['SUFFIX']; $Benchmark = new APCMS_BENCH(); $Benchmark->Start(); /** Datenbank connecten */ include $_SESSION['APCMS']['LIB_DIR'] . "/apcms_database.func." . $_SESSION['APCMS']['SUFFIX']; /** Generelle Haupt-Konfiguration starten */ include $_SESSION['APCMS']['LIB_DIR'] . "/proconfig.lib." . $_SESSION['APCMS']['SUFFIX']; /** Include der Basis-Funktionen des Systems */ include $_SESSION['APCMS']['LIB_DIR'] . "/apcms_general.func." . $_SESSION['APCMS']['SUFFIX']; /** Überprüft Variablen in der URL auf SQL-Injection oder sonstige unerlaubte Zeichenfolgen */ _APCMS_NoScriptKiddies(); $TITLE_LOCATION = ""; $CONTENTTITEL = ""; $CONTENTINHALT = ""; $CONTENT = ""; $target_url = ""; $OnlineUserIndexStats = array(); $TodayOnlineUserStats = array();