session_start(); } // end if /* ------------------------------------------ * initialize SQL Query handler * ------------------------------------------ */ require_once '../classes/SQLQueryHandler.php'; $SQLQueryHandler = new SQLQueryHandler("../owasp-esapi-php/src/", $_SESSION["security-level"]); /* ------------------------------------------ * initialize custom error handler * ------------------------------------------ */ require_once '../classes/CustomErrorHandler.php'; $CustomErrorHandler = new CustomErrorHandler("../owasp-esapi-php/src/", $_SESSION["security-level"]); try { $lPageName = $_GET["pagename"]; $lQueryResult = $SQLQueryHandler->getPageHelpTexts($lPageName); echo '<div> </div>'; if ($lQueryResult->num_rows > 0) { echo ' <div class="help-text-header"> Hack with confidence. <br/> Page ' . $lPageName . ' is vulnerable to at least the following:</div>'; while ($row = $lQueryResult->fetch_object()) { echo $row->help_text; } //end while $row } else { echo ' <div class="help-text-header"> Page ' . $lPageName . ' does not have any help documentation.</div>'; } //end if