function ua_referer($default = '') { global $referer; $indexname = URL . "index.php"; $default = empty($default) ? $indexname : ''; $referer = pb_htmlspecialchar($referer); if (!preg_match("/(\\.php|[a-z]+(\\-\\d+)+\\.html)/", $referer) || strpos($referer, 'logging.php')) { $referer = $default; } return $referer; }
function pb_htmlspecialchar($string) { if (is_array($string)) { foreach ($string as $key => $val) { $string[$key] = pb_htmlspecialchar($val); } } else { $string = pb_remove_xss($string); } return $string; }
$app_lang = "en-us"; } //for older version /** * PHPB2B Debug Level * Myabe 0-5 */ if (!isset($debug)) { $debug = 0; } require PHPB2B_ROOT . 'libraries' . DS . 'core' . DS . 'paths.php'; require PHPB2B_ROOT . 'libraries' . DS . 'global.func.php'; if ($_SERVER['REQUEST_URI']) { //XSS $_GET = pb_htmlspecialchar($_GET); $_POST = pb_htmlspecialchar($_POST); } if (!$admin_runquery) { pb_hack_check(); } //safe check to post, get. list($accept_language) = explode(",", $_SERVER['HTTP_ACCEPT_LANGUAGE']); if (!empty($accept_language)) { $app_lang = strtolower($accept_language); } if (isset($_COOKIE[$cookiepre . 'lang'])) { $app_lang = $_COOKIE[$cookiepre . 'lang']; } if (isset($_GET['app_lang'])) { $app_lang = $_GET['app_lang']; }
function pb_htmlspecialchar($string) { if (is_array($string)) { foreach ($string as $key => $val) { $string[$key] = pb_htmlspecialchar($val); } } else { $string = preg_replace('/&((#(\\d{3,5}|x[a-fA-F0-9]{4})|[a-zA-Z][a-z0-9]{2,5});)/', '&\\1', str_replace(array('&', '"', '<', '>'), array('&', '"', '<', '>'), $string)); } return $string; }
function pb_htmlspecialchar($string, $force = false) { if ($force) { if (is_array($string)) { foreach ($string as $key => $val) { $string[$key] = pb_htmlspecialchar($val, $force); } } else { $string = pb_remove_xss(htmlspecialchars($string)); } } return $string; }