public function postPostNew($request, $response, $args)
{
if (!$this->app->auth()->isLoggedIn()) {
$response = new \RedirectResponse('/unauthorised');
return $response;
}
$template = $this->twig->loadTemplate('post/new.twig');
$validator = new \Valitron\Validator(array('title' => $this->app->input()->post('title'), 'body' => $this->app->input()->post('body'), 'status' => $this->app->input()->post('status')));
$validator->rule('required', ['title', 'body', 'status']);
$validator->rule('integer', ['status']);
if ($validator->validate()) {
$post = \Model::factory('App\\Models\\Post')->create();
$post->title = $this->app->input()->post('title');
$post->body = $this->app->input()->post('body');
$post->created_at = date('Y-m-d H:i:s');
$post->updated_at = date('Y-m-d H:i:s');
$post->status = $this->app->input()->post('status');
if ($post->save()) {
$response = new RedirectResponse('/');
return $response;
} else {
$response->setContent($template->render(['errors' => [['Unable to create post']], 'input' => $this->app->input()->all('post')]));
return $response;
}
} else {
$response->setContent($template->render(['errors' => $validator->errors(), 'input' => $this->app->input()->all('post')]));
return $response;
}
}
public function createAction()
{
$v = new Valitron\Validator($_POST);
$v->rule('required', array('title', 'category_id', 'price', 'quantity', 'brand', 'description'));
$v->rule('numeric', 'price');
$v->rule('integer', 'quantity');
if ($v->validate()) {
$store_settings_result = $this->app->db->query("SELECT payment_profile, return_profile, shipping_profile, out_of_stock_control, get_it_fast, category_prefill,\n category_mapping, condition_type, country_code_type, currency_code, dispatch_time, optimal_picturesize,\n listing_duration, listing_type, item_location, postal_code, store_name, county,\n street, ebay_website, shippingservice_priority, shipping_service, shippingservice_cost, shippingservice_additionalcost\n FROM store_settings WHERE id = 1");
$store_settings = $store_settings_result->fetch_object();
$response = $this->app->ebay->addItem($store_settings, $_POST);
if ($response->Ack == 'Success') {
if ($query = $this->app->db->prepare("INSERT INTO products SET title = ?, category_id = ?, price = ?, qty = ?, brand = ?, description = ?")) {
$title = $_POST['title'];
$category_id = $_POST['category_id'];
$price = $_POST['price'];
$qty = $_POST['quantity'];
$brand = $_POST['brand'];
$description = $_POST['description'];
$query->bind_param("ssdiss", $title, $category_id, $price, $qty, $brand, $description);
$query->execute();
$this->app->flash('message', array('type' => 'success', 'text' => 'Product was created!'));
}
} else {
$long_message = json_decode(json_encode($response->Errors->LongMessage), true);
$this->app->flash('message', array('type' => 'danger', 'text' => $long_message[0]));
}
} else {
$this->app->flash('form', $_POST);
$this->app->flash('message', array('type' => 'danger', 'text' => 'Please fix the following errors', 'data' => $v->errors()));
}
$this->app->redirect('/tester/ebay_trading_api/products/new');
}
public function save(){
$name = $this->f3->get('POST.name');
$email = $this->f3->get('POST.email');
$comments = $this->f3->get('POST.comments');
$v = new Valitron\Validator(array('Name' => $name,'Email'=>$email,'Comments'=>$comments));
$v->rule('required', ['Name','Email','Comments']);
$v->rule('email',[Email]);
if ($v->validate()) {
$contact = new Contact($this->db);
$data = array(
'name' => $name,
'email' => $email,
'comments' => $comments,
'contact_date' => date('Y-m-d H:i:s')
);
$contact->insert($data);
$response = array(
'status' => true,
'message' => 'Your message saved!'
);
}else{
$response = array(
'status' => false,
'errors' => $v->errors()
);
}
echo json_encode($response);
}
public function signin() {
$email = $this->f3->get('POST.email');
$password = $this->f3->get('POST.password');
$v = new Valitron\Validator(array('Email' => $email, 'Password' => $password));
$v->rule('required', ['Email', 'Password']);
$v->rule('email', 'Email');
if ($v->validate()) {
$account = new Account($this->db);
$pwd = md5($password);
$acc = $account->select("*", "email='$email' and password='******'");
if ($acc) {
$this->f3->set('SESSION.acc', $acc);
$acc = $acc[0];
$acc['lastlogin'] = date('Y-m-d H:i:s');
$account->update($acc,'id='.$acc['id']);
$this->f3->reroute('/dashboard');
} else {
$this->f3->set('email', $email);
$this->f3->set('errors', array(array('Login fail, wrong username or password')));
echo Template::instance()->render('index.html');
}
} else {
$this->f3->set('email', $email);
$this->f3->set('errors', $v->errors());
echo Template::instance()->render('index.html');
}
}
function validate(&$data)
{
$v = new \Valitron\Validator($data);
if (!empty($data['first_name'])) {
$v->rule('regex', 'first_name', '/^[A-Z \'.-]{2,30}$/i');
}
if (!empty($data['last_name'])) {
$v->rule('regex', 'last_name', '/^[A-Z \'.-]{2,40}$/i');
}
if (!empty($data['address1'])) {
$v->rule('regex', 'address1', '/^[A-Z0-9 \',.#-]{2,80}$/i');
}
if (!empty($data['address2'])) {
$v->rule('regex', 'address2', '/^[A-Z0-9 \',.#-]{2,80}$/i');
}
if (!empty($data['city'])) {
$v->rule('regex', 'city', '/^[A-Z \'.-]{2,60}$/i');
}
if (!empty($data['zip_code'])) {
$v->rule('regex', 'zip_code', '/^(\\d{5}$)|(^\\d{5}-\\d{4})$/');
}
if (!empty($data['phone'])) {
$v->rule('regex', 'phone', '/\\(?\\d{3}\\)?[-\\s.]?\\d{3}[-\\s.]\\d{4}/x');
}
if (!empty($data['state'])) {
$v->rule('regex', 'state', '/^[A-Z]{2}$/');
$v->rule('max', 'state', 2);
}
if ($v->validate()) {
return null;
} else {
return $v->errors();
}
}
function validate($data)
{
$v = new \Valitron\Validator($data);
$v->rule('required', 'email')->message('Email is required');
$v->rule('email', 'email')->message('Email Address is not a valid email address.');
if ($v->validate()) {
return null;
} else {
return $v->errors();
}
}
function validate($data)
{
$v = new \Valitron\Validator($data);
$v->rule('required', ['name', 'email', 'message']);
$v->rule('email', 'email');
$v->rule('max', 'email', 80);
if ($v->validate()) {
return null;
} else {
return $v->errors();
}
}
public function postContact($request, $response, $args)
{
$template = $this->twig->loadTemplate('contact.twig');
$validator = new \Valitron\Validator(array('name' => $this->app->input()->post('name'), 'email' => $this->app->input()->post('email'), 'message' => $this->app->input()->post('message')));
$validator->rule('required', ['name', 'email', 'message']);
$validator->rule('email', 'email');
if ($validator->validate()) {
die('I would send an email or store in a db now');
} else {
$response->setContent($template->render(['errors' => $validator->errors(), 'input' => $this->app->input()->all('post')]));
return $response;
}
}
function validate($data)
{
$v = new \Valitron\Validator($data);
$v->rule('required', 'password')->message('Password is required.');
$v->rule('required', 'new_password')->message('New Password is required.');
$v->rule('required', 'new_password_confirmation')->message('New Password Confirmation is required.');
$v->rule('regex', 'new_password', '/^\\S*(?=\\S{6,})(?=\\S*[a-z])(?=\\S*[A-Z])(?=\\S*[\\d])(?=\\S*[\\W]*)\\S*$/')->message('New Password contains invalid characters.');
$v->rule('equals', 'new_password_confirmation', 'new_password')->message('New Password Confirmation must match with New Password');
if ($v->validate()) {
return null;
} else {
return $v->errors();
}
}
private static function ingredient_validator($attributes)
{
$validator = new Valitron\Validator($attributes);
$validator->rule('required', array('ingredient_name', 'ingredient_type', 'price'));
$validator->rule('numeric', 'price');
return $validator;
}
function test_it_can_validate_with_safe_text_rule_with_valid_input()
{
Validator::loadStaticRules();
$validator = new \Valitron\Validator(array('name' => 'Darshan'));
$validator->rule('safeText', 'name');
$this->assertTrue($validator->validate());
}
public static function save()
{
$params = $_POST;
$v = new Valitron\Validator($params);
$v->rule('required', 'content');
$v->rule('lengthMin', 'content', 1);
$v->rule('required', 'site-id');
$v->rule('numeric', 'site-id');
if ($v->validate()) {
$kommentti = new Kommentti(array('comment_content' => $params['content'], 'site_id' => $params['site-id'], 'kayttaja_id' => $_SESSION['user']));
$kommentti->save();
Redirect::to('/site/show_site/' . $params['site-id'], array('message' => 'Kommentti lisätty'));
} else {
$site = Site::find($params['site-id']);
$kommentit = Kommentti::getAllComments($params['site-id']);
View::make('site/show_site.html', array('site' => $site, 'kommentit' => $kommentit, 'errors' => $v->errors()));
}
}
public function validate_distance($input)
{
$errors = array();
$validator = new Valitron\Validator(array('input' => $input));
$validator->rule('numeric', 'input');
if (!$validator->validate()) {
$errors[] = 'Etäisyys ei ollut sopiva!';
}
return $errors;
}
public function postLogin($request, $response, $args)
{
$template = $this->twig->loadTemplate('login.twig');
$validator = new \Valitron\Validator(array('email' => $this->app->input()->post('email'), 'password' => $this->app->input()->post('password')));
$validator->rule('required', ['email', 'password']);
$validator->rule('email', 'email');
$validator->rule('lengthMin', 'password', 6);
if ($validator->validate()) {
if ($this->app->auth()->login($this->app->input()->post('email'), $this->app->input()->post('password'))) {
$response = new RedirectResponse('/');
return $response;
} else {
$response->setContent($template->render(['errors' => [['Unable to login, username and/or password may be incorrect']], 'input' => $this->app->input()->all('post')]));
return $response;
}
} else {
$response->setContent($template->render(['errors' => $validator->errors(), 'input' => $this->app->input()->all('post')]));
return $response;
}
}
public function update($id)
{
if (!empty($_POST)) {
$data['post'] = $_POST;
//enabling validation
$v = new Valitron\Validator($_POST);
// Input array
$v->rule('required', 'username');
$v->rule('required', 'name');
$v->rule('required', 'email');
$v->rule('required', 'location');
$v->rule('required', 'gender');
$v->rule('email', 'email');
if ($v->validate()) {
$data['result'] = $this->model->updateUser($_POST, "users", $id);
} else {
// Errors
$data['errors'] = $v->errors();
}
} else {
$data['post'] = $this->model->getUserById($id);
}
$data['user_id'] = $id;
$data['ep_title'] = "Update User";
//setting title name
$data['view_page'] = "users/update.php";
//controller view page
$data['ep_header'] = $GLOBALS['ep_header'];
//header view (Also Ex: "header.php")
$data['ep_footer'] = $GLOBALS['ep_footer'];
//footer view
return $data;
}
public static function store()
{
$params = $_POST;
$v = new Valitron\Validator($_POST);
$v->rule('required', 'nimi')->message('{field} pitää antaa')->label('Nimi');
$v->rule('required', 'ainekset')->message('Valitse vähintään yksi {field}')->label('Aines');
$v->rule('lengthMin', 'nimi', 1)->message('{field} pitää olla 1-50 merkkiä pitkä')->label('Nimi');
$v->rule('lengthMax', 'nimi', 50)->message('{field} pitää olla 1-50 merkkiä pitkä')->label('Nimi');
$v->rule('lengthMax', 'tyyppi', 30)->message('{field} saa olla korkeintaan 30 merkkiä pitkä')->label('Tyyppi');
$v->rule('lengthMax', 'lasi', 30)->message('{field} nimi saa olla korkeintaan 30 merkkiä pitkä')->label('Lasin');
if (!isset($params['alkoholiton'])) {
$params['alkoholiton'] = 0;
}
$params['tyovaiheet'] = " ";
$drink = new Drink(array('nimi' => $params['nimi'], 'tyyppi' => $params['tyyppi'], 'alkoholiton' => $params['alkoholiton'], 'lasi' => $params['lasi'], 'kuvaus' => $params['kuvaus'], 'tyovaiheet' => $params['tyovaiheet']));
if ($v->validate()) {
$ainekset = $params['ainekset'];
$drink->save($ainekset);
Redirect::to('/drinks/' . $drink->drinkki_id, array('message' => 'Resepti lisätty tietokantaan'));
} else {
if (!isset($params['ainekset'])) {
$ainekset = array();
} else {
$ainekset = $params['ainekset'];
}
$aineslista = Aines::all();
View::make('drinks/addnew.html', array('errors' => $v->errors(), 'ainekset' => $ainekset, 'aineslista' => $aineslista, 'attributes' => $drink));
}
}
function validate($data)
{
$v = new \Valitron\Validator($data);
$v->rule('required', 'name')->message('Your Name is required.');
$v->rule('required', 'email')->message('Your Email is required.');
$v->rule('required', 'rating')->message('Your Rating is required.');
$v->rule('required', 'message')->message('Your Review is required.');
$v->rule('email', 'email')->message('Email Address is not a valid email address.');
$v->rule('max', 'email', 80)->message('Email Address must be less than 80 characters.');
$v->rule('integer', 'rating')->message('Your rating must be a number');
$v->rule('min', 'rating', 1)->message('Your rating min value must be 1');
$v->rule('max', 'rating', 5)->message('Your rating max value must be 5');
if ($v->validate()) {
return null;
} else {
return $v->errors();
}
}
public static function store()
{
$params = $_POST;
$v = new Valitron\Validator($params);
$v->rule('required', 'book_name');
$v->rule('lengthBetween', 'book_name', 1, 50);
$v->rule('required', 'writer');
$v->rule('lengthBetween', 'writer', 1, 50);
$v->rule('required', 'publisher');
$v->rule('lengthBetween', 'publisher', 1, 50);
$v->rule('numeric', 'published');
$v->rule('required', 'published');
$v->rule('lengthBetween', 'published', 1, 4);
if ($v->validate()) {
$book = new Book(array('book_name' => $params['book_name'], 'writer' => $params['writer'], 'publisher' => $params['publisher'], 'published' => $params['published'], 'genre' => $params['genre'], 'reader_id' => $_SESSION['user']));
$book->save();
Kint::dump($params);
Redirect::to('/book/' . $book->id, array('message' => 'Kirja on lisätty valikoimaasi.'));
} else {
View::make('book/new.html', array('errors' => $v->errors(), 'message' => 'Syötteissä virheitä, kokeile uudestaan.'));
}
}
public function updateAction()
{
$v = new Valitron\Validator($_POST);
$v->rule('required', array('store_name', 'county', 'street', 'country_code_type', 'ebay_website', 'postal_code', 'currency_code', 'item_location', 'dispatch_time', 'listing_duration', 'listing_type', 'condition_type', 'PAYMENT', 'RETURN_POLICY', 'SHIPPING', 'shipping_service', 'shippingservice_priority', 'shippingservice_cost', 'shippingservice_additionalcost'));
if ($v->validate()) {
$id = 1;
$store_name = $_POST['store_name'];
$street = $_POST['street'];
$county = $_POST['county'];
$country_code_type = $_POST['country_code_type'];
$ebay_website = $_POST['ebay_website'];
$postal_code = $_POST['postal_code'];
$category_mapping = !empty($_POST['category_mapping']) ? 1 : 0;
$category_prefill = !empty($_POST['category_prefill']) ? 1 : 0;
$optimal_picturesize = !empty($_POST['optimal_picturesize']) ? 1 : 0;
$out_of_stock_control = !empty($_POST['out_of_stock_control']) ? 1 : 0;
$get_it_fast = !empty($_POST['get_it_fast']) ? 1 : 0;
$include_prefilled = !empty($_POST['include_prefilled']) ? 1 : 0;
$currency_code = $_POST['currency_code'];
$item_location = $_POST['item_location'];
$dispatch_time = $_POST['dispatch_time'];
$listing_duration = $_POST['listing_duration'];
$listing_type = $_POST['listing_type'];
$condition_type = $_POST['condition_type'];
$payment_policy = $_POST['PAYMENT'];
$return_policy = $_POST['RETURN_POLICY'];
$shipping_policy = $_POST['SHIPPING'];
$shipping_service = $_POST['shipping_service'];
$shippingservice_priority = $_POST['shippingservice_priority'];
$shippingservice_cost = $_POST['shippingservice_cost'];
$shippingservice_additionalcost = $_POST['shippingservice_additionalcost'];
if ($query = $this->app->db->prepare("UPDATE store_settings SET store_name = ?, county = ?, street = ?, \n \tcountry_code_type = ?, ebay_website = ?, postal_code = ?, category_mapping = ?, category_prefill = ?, \n \tcurrency_code = ?, item_location = ?, dispatch_time = ?, listing_duration = ?, listing_type = ?, \n \tcondition_type = ?, optimal_picturesize = ?, out_of_stock_control = ?, get_it_fast = ?, include_prefilled = ?, \n \tshipping_profile = ?, return_profile = ?, payment_profile = ?, shipping_service = ?,\n \tshippingservice_priority = ?, shippingservice_cost = ?, shippingservice_additionalcost = ? \n \tWHERE id = ?")) {
$query->bind_param("ssssssiississsiiiissssiddi", $store_name, $county, $street, $country_code_type, $ebay_website, $postal_code, $category_mapping, $category_prefill, $currency_code, $item_location, $dispatch_time, $listing_duration, $listing_type, $condition_type, $optimal_picturesize, $out_of_stock_control, $get_it_fast, $include_prefilled, $shipping_policy, $return_policy, $payment_policy, $shipping_service, $shippingservice_priority, $shippingservice_cost, $shippingservice_additionalcost, $id);
$query->execute();
$this->app->flash('message', array('type' => 'success', 'text' => 'Settings was updated!'));
$this->app->redirect('/tester/ebay_trading_api/settings');
}
} else {
$this->app->flash('form', $_POST);
$this->app->flash('message', array('type' => 'danger', 'text' => 'Please fix the following errors', 'data' => $v->errors()));
$this->app->redirect('/tester/ebay_trading_api/settings');
}
}
/**
* Gets the country information by id
*
* @param array $params Array with params, id is required
*
* @return array Name and locale of the country
*/
public function read($params)
{
$v = new Valitron\Validator($params);
$v->rule('required', 'id');
if ($v->validate()) {
if ($this->empty_values($params, array('id')) === true) {
$sql = "SELECT name, locale FROM country WHERE id = :id";
$query = $this->db->prepare($sql);
$parameters = array(':id' => $params['id']);
$query->execute($parameters);
$result = $query->fetch();
return array('name' => $result->name, 'locale' => $result->locale);
} else {
return $this->indentifier_error();
}
} else {
return $this->param_error();
}
}
public static function update_user($id)
{
$params = $_POST;
$v = new Valitron\Validator($params);
$v->rule('required', 'reader_name');
$v->rule('lengthMin', 'reader_name', 3);
$v->rule('lengthMax', 'reader_name', 15);
$v->rule('required', 'reader_password');
$v->rule('lengthMin', 'reader_password', 4);
$v->rule('lengthMax', 'reader_password', 15);
$attributes = array('id' => $id, 'reader_name' => $params['reader_name'], 'reader_password' => $params['reader_password']);
if ($v->validate()) {
$reader = new Reader($attributes);
$reader->update();
Redirect::to('/reader/' . $reader->id, array('message' => 'Tietojasi on muokattu onnistuneesti.'));
}
}
public static function update($aines_id)
{
$params = $_POST;
$v = new Valitron\Validator($_POST);
$v->rule('required', 'nimi')->message('{field} pitää antaa')->label('Nimi');
$v->rule('required', 'alkpitoisuus')->message('{field} pitää antaa')->label('Alkoholipitoisuus');
$v->rule('lengthMax', 'nimi', 50)->message('{field} ei saa olla yli 50 merkkiä pitkä')->label('Nimi');
$v->rule('numeric', 'alkpitoisuus')->message('{field} pitää olla numeerinen kokonaisluku tai desimaaliluku erotettuna pisteellä');
$v->rule('min', 'alkpitoisuus', 0)->message('{field} pitää olla 0-100')->label('Alkoholipitoisuus');
$v->rule('max', 'alkpitoisuus', 100)->message('{field} pitää olla 0-100')->label('Alkoholipitoisuus');
$aines = new Aines(array('nimi' => $params['nimi'], 'alkpitoisuus' => $params['alkpitoisuus']));
if ($v->validate()) {
$aines->update($aines_id);
Redirect::to('/ingredients/' . $aines->aines_id, array('message' => 'Ainesta muokattu onnistuneesti'));
} else {
$aines->aines_id = $aines_id;
View::make('ingredients/edit_ingredient.html', array('errors' => $v->errors(), 'attributes' => $aines));
}
}
<?php
include '../main/config.php';
$db = new PDO("mysql:host={$dbhost};dbname={$dbname};charset=utf8", $dbuser, $dbpass);
$v = new Valitron\Validator($_POST);
$v->rule('accepted', ['isPlugName', 'isPlugFam', 'isPlugInfo', 'isPlugOut', 'isService', 'isCvss', 'isVulnPub', 'isExploit', 'isSynopsis', 'isDescription', 'isSolution', 'isSeeAlso', 'isCve', 'isBid', 'isOsvdb', 'isCert', 'isIava', 'isCWE', 'isMS', 'isSec', 'isEdb', 'isAffected', 'isNotes', 'cover']);
//$v->rule('numeric', ['scan_start1', 'scan_end1', 'scan_start2', 'scan_end2']);
//$v->rule('slug', ['agency1', 'agency2']);
//$v->rule('regex',['report_name1', 'report_name2'],'/[a-zA-Z]+/');
$v->rule('length', 1, ['critical', 'high', 'medium', 'low', 'info']);
$v->rule('integer', ['critical', 'high', 'medium', 'low', 'info']);
if (!$v->validate()) {
print_r($v->errors());
exit;
}
$critical = $_POST["critical"];
$high = $_POST["high"];
$medium = $_POST["medium"];
$low = $_POST["low"];
$info = $_POST["info"];
$sArray = array($critical, $high, $medium, $low, $info);
$sql = "CREATE temporary TABLE nessus_tmp_severity (severity VARCHAR(255), INDEX ndx_severity (severity))";
$stmt = $db->prepare($sql);
$stmt->execute();
foreach ($sArray as $s) {
if ($s != "") {
$sql = "INSERT INTO nessus_tmp_severity (severity) VALUES (?)";
$stmt = $db->prepare($sql);
$stmt->execute(array($s));
}
}
<?php
include_once 'phpincluds.php';
include_once 'phpsettings.php';
header("content-type: application/json");
//проверка капчи
if (!isset($_POST['g-recaptcha-response']) || !captchaCheck($_POST['g-recaptcha-response'])) {
exit(createMessageJson(false, 'Не прошла проверка Каптчи'));
}
//проверка введённых данных, используем модуль
$v = new Valitron\Validator($_POST);
$v->rule('required', ['name', 'email', 'text']);
$v->rule('email', 'email');
if (!$v->validate()) {
exit(createMessageJson(false, 'Неверные введённые данные'));
}
//echo( $_post );
$body = '';
//foreach($_POST as $key => $value){
$body .= '<p><strong>Name</strong>' . $_POST['name'] . '</p>';
$body .= '<p><strong>Email</strong>' . $_POST['email'] . '</p>';
$body .= '<p><strong>Text</strong>' . $_POST['text'] . '</p>';
//}
$res = sendEmail($_POST['name'], $_POST['email'], 'Сообщение с сайта visermort.ru', $body);
if ($res) {
exit(createMessageJson(false, $res));
} else {
exit(createMessageJson(true, 'Ваше сообщение отправлено!'));
}
* Open eClass is an open platform distributed in the hope that it will
* be useful (without any warranty), under the terms of the GNU (General
* Public License) as published by the Free Software Foundation.
* The full license can be read in "/info/license/license_gpl.txt".
*
* Contact address: GUnet Asynchronous eLearning Group,
* Network Operations Center, University of Athens,
* Panepistimiopolis Ilissia, 15784, Athens, Greece
* e-mail: info@openeclass.org
* ======================================================================== */
$require_current_course = TRUE;
$require_editor = true;
include '../../include/baseTheme.php';
if (isset($_POST['submitCat'])) {
$v = new Valitron\Validator($_POST);
$v->rule('required', array('questionCatName'));
$v->labels(array('questionCatName' => "{$langTheField} {$langTitle}"));
if ($v->validate()) {
$q_cat_name = $_POST['questionCatName'];
if (isset($_GET['modifyCat'])) {
$q_cat_id = $_GET['modifyCat'];
Database::get()->query("UPDATE exercise_question_cats SET question_cat_name = ?s " . "WHERE question_cat_id = ?d", $q_cat_name, $q_cat_id);
Session::Messages($langEditCatSuccess, 'alert-success');
} else {
$PollActive = 1;
$q_cat_id = Database::get()->query("INSERT INTO exercise_question_cats\n (question_cat_name, course_id)\n VALUES (?s, ?d)", $q_cat_name, $course_id)->lastInsertID;
Session::Messages($langNewCatSuccess, 'alert-success');
}
redirect_to_home_page("modules/exercise/question_categories.php?course={$course_code}");
} else {
Session::flashPost()->Messages($langFormErrors)->Errors($v->errors());
if (!$v1->validate()) {
print_r($v1->errors());
exit;
}
$nodeArray = $_POST["node"];
foreach ($nodeArray as $key => $value) {
if ($value == "REMOVE") {
unset($nodeArray[$key]);
}
}
$sql = "CREATE temporary TABLE nexpose_tmp_nodes (node_address VARCHAR(255), node_device_id VARCHAR(255), INDEX ndx_node_address (node_address))";
$stmt = $db->prepare($sql);
$stmt->execute();
foreach ($nodeArray as $nA) {
$v2 = new Valitron\Validator(array('node' => $nA));
$v2->rule('regex', 'node', '/^([\\w.-])+$/i');
if (!$v2->validate()) {
print_r($v2->errors());
exit;
}
$temp_nodes_array = explode(":", $nA);
$sql = "INSERT INTO nexpose_tmp_nodes (node_address, node_device_id) VALUES (?,?)";
$stmt = $db->prepare($sql);
$stmt->execute(array($temp_nodes_array[0], $temp_nodes_array[1]));
}
$tags = $_POST["tags"];
$sql = "CREATE temporary TABLE nexpose_tmp_tags (tag VARCHAR(255), INDEX ndx_tag (tag))";
$stmt = $db->prepare($sql);
$stmt->execute();
foreach ($tags as $t) {
$sql = "INSERT INTO nexpose_tmp_tags (tag) VALUES (?)";
<?php
//Custom Report 1
//this custom report is for my current employer. If it helps you than cool.
include '../main/config.php';
$db = new PDO("mysql:host={$dbhost};dbname={$dbname};charset=utf8", $dbuser, $dbpass);
$v = new Valitron\Validator($_POST);
$v->rule('accepted', ['isSSLIssues', 'isRDPIssues', 'isSMBIssues', 'isCleartext', 'isAllIssues']);
$v->rule('slug', 'agency');
if (!$v->validate()) {
print_r($v->errors());
exit;
}
$agency_temp = explode("xxxxXXXXxxxx", $_POST["agency"]);
$agency = $agency_temp[0];
$scan_id = $agency_temp[1];
$severity = $_POST["severity"];
date_default_timezone_set('UTC');
$date = date('mdYHis');
$myDir = getcwd() . "/csvfiles/";
$vuln_table_filename = $agency . "_vuln_table_" . $date . ".csv";
$vuln_table_file = $myDir . $vuln_table_filename;
$fh_vuln = fopen($vuln_table_file, 'w') or die("can't open {$vuln_table_file} for writing. Please check folder permissions.");
$exposure_rating_filename = $agency . "_exposure_table_" . $date . ".csv";
$exposure_rating_file = $myDir . $exposure_rating_filename;
$fh_exposure = fopen($exposure_rating_file, 'w') or die("can't open {$exposure_rating_file} for writing. Please check folder permissions.");
$vuln_cat = $_POST["vuln_cat"];
if ($vuln_cat == "isAllIssues") {
$isAllIssues = "yes";
}
$vuln_id_array = array();
$dateme = strtotime($result['GDD_START_DATE']);
$futuredate = strtotime('-1 year');
$isit = strtotime($dateme) < strtotime('-1 year');
#echo $dateme."\r";
#echo $futuredate."\r";
if (strtotime($result['GDD_START_DATE']) > strtotime('-1 year')) {
// echo "score";
} else {
$GDDSTATUS = "invalid";
}
}
if ($_SERVER["REQUEST_METHOD"] == "POST") {
// Set Error Fields
$regex1 = "/^[a-zA-Z]+(?:[\\s-][a-zA-Z]+)*\$/";
$v = new Valitron\Validator($_POST);
$v->rule('required', ['HIVENAME', 'HIVEID', 'BEEKEEPERID', 'YARDID', 'CITY', 'STATE', 'COUNTRY'], 1)->message('{field} is required');
$v->rule('slug', ['HIVENAME', 'POWER', 'INTERNET', 'STATUS', 'COMPUTER']);
$v->rule('integer', ['YARDID', 'BEEKEEPERID'], 1)->message('{field} can only be an integer');
$v->rule('alphaNum', ['HIVEID'], 1)->message('{field} can only be alpha numeric');
$v->rule('lengthmin', ['HIVEID'], 1)->message('{field} is required to be 13 characters');
$v->rule('lengthmax', ['HIVENAME', 'HIVEID', 'BEEKEEPERID', 'YARDID', 'CITY', 'STATE', 'COUNTRY', 'LATITUDE', 'LONGITUDE', 'ZIP'], 40);
$v->rule('regex', ['CITY', 'STATE', 'COUNTRY'], $regex1);
$v->rule('numeric', ['BEEKEEPERID', 'YARDID', 'GDD_BASE_TEMP', 'ZIP']);
}
//Check input for badness
function test_input($data)
{
$data = trim($data);
$data = stripslashes($data);
$data = htmlspecialchars($data);
return $data;
/**
* Gets all the companies this user it connected to
* @param $params
*/
public function get_all_companies($params)
{
$v = new Valitron\Validator($params);
$v->rule('required', 'token');
if ($v->validate()) {
if (($token = $this->token->validate($params['token'])) !== false) {
$sql = 'SELECT cu.id_company, c.name FROM company_has_user as cu INNER JOIN company as c ON c.id = cu.id_company WHERE cu.id_user= :userid AND c.deleted_at IS NULL';
$query = $this->db->prepare($sql);
$parameters = array(':userid' => $token['id_user']);
$query->execute($parameters);
$result = $query->fetchAll(PDO::FETCH_ASSOC);
return $result;
} else {
return $this->auth_error();
}
} else {
return $this->param_error();
}
}
<?php
include '../main/config.php';
$db = new PDO("mysql:host={$dbhost};dbname={$dbname};charset=utf8", $dbuser, $dbpass);
$agency_temp = explode(":", $_POST["agency"]);
$v1 = new Valitron\Validator($agency_temp);
$v1->rule('slug', '0');
//validate agency
$v1->rule('regex', '1', '/^([\\w\\s_.\\[\\]():;@-])+$/');
//regex includes alpha/numeric, space, underscore, dash, period, white space, brackets, parentheses, colon, "at" symbol, and semi-colon
$v1->rule('numeric', ['2', '3']);
//validate scan_start and scan_end
if (!$v1->validate()) {
print_r($v1->errors());
exit;
}
$agency = $agency_temp[0];
$report_name = $agency_temp[1];
$scan_start = $agency_temp[2];
$scan_end = $agency_temp[3];
$agency_sql = "SELECT DISTINCT \n\t\t\t\t\tnessus_results.agency, \n\t\t\t\t\tnessus_results.report_name, \n\t\t\t\t\tnessus_results.scan_start, \n\t\t\t\t\tnessus_results.scan_end \n\t\t\t\tFROM \n\t\t\t\t\tnessus_results\n\t\t\t\t";
$agency_stmt = $db->prepare($agency_sql);
$agency_stmt->execute();
if ($agency != "") {
$host_sql = "SELECT DISTINCT\n\t\t\t\t\tnessus_tags.host_name,\n\t\t\t\t\tnessus_tags.ip_addr,\n\t\t\t\t\tnessus_tags.fqdn,\n\t\t\t\t\tnessus_tags.netbios\n\t\t\t\tFROM\n\t\t\t\t\tnessus_results\n\t\t\t\tINNER JOIN nessus_tags ON nessus_results.tagID = nessus_tags.tagID\n\t\t\t\tWHERE \n\t\t\t\t\tnessus_results.agency = ? AND\n\t\t\t\t\tnessus_results.report_name = ? AND\n\t\t\t\t\tnessus_results.scan_start = ? AND\n\t\t\t\t\tnessus_results.scan_end = ?\n\t\t\t\tORDER BY \n\t\t\t\t\tnessus_tags.host_name\n\t\t\t\t";
$host_data = array($agency, $report_name, $scan_start, $scan_end);
$host_stmt = $db->prepare($host_sql);
$host_stmt->execute($host_data);
$plugin_sql = "SELECT DISTINCT \n\t\t\t\t\t\tnessus_results.pluginFamily \n\t\t\t\t\tFROM \n\t\t\t\t\t\tnessus_results \n\t\t\t\tWHERE \n\t\t\t\t\tnessus_results.agency = ? AND\n\t\t\t\t\tnessus_results.report_name = ? AND\n\t\t\t\t\tnessus_results.scan_start = ? AND\n\t\t\t\t\tnessus_results.scan_end = ?\n\t\t\t\t\tORDER BY \n\t\t\t\t\t\tnessus_results.pluginFamily\n\t\t\t\t\t";
$plugin_data = array($agency, $report_name, $scan_start, $scan_end);
$plugin_stmt = $db->prepare($plugin_sql);
