$clean_bid = XoopsFilterInput::clean($_POST['bid'], 'INT'); } $clean_cid = 0; if (isset($_POST['cid'])) { $clean_cid = XoopsFilterInput::clean($_POST['cid'], 'INT'); } } elseif (!empty($_GET['op'])) { // from $_POST we use keys: op, bid, cid $op = trim(XoopsFilterInput::clean($_GET['op'], 'STRING')); $clean_bid = 0; if (isset($_GET['bid'])) { $clean_bid = XoopsFilterInput::clean($_GET['bid'], 'INT'); } $clean_cid = 0; if (isset($_GET['cid'])) { $clean_cid = XoopsFilterInput::clean($_GET['cid'], 'INT'); } } $myts =& MyTextSanitizer::getInstance(); switch ($op) { case "click": $bid = $clean_bid; clickbanner($bid); break; case "Ok": if ($_SERVER['REQUEST_METHOD'] == 'POST') { if (!$GLOBALS['xoopsSecurity']->check(true, false, "BANNER_LOGIN")) { redirect_header("banners.php", 3, implode('<br />', $GLOBALS['xoopsSecurity']->getErrors())); exit; } $_SESSION['banner_login'] = $clean_login;
* of supporting developers from this source code or any supporting source code * which is considered copyrighted (c) material of the original comment or credit authors. * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. * * @copyright The XOOPS Project http://sourceforge.net/projects/xoops/ * @license GNU GPL 2 (http://www.gnu.org/licenses/old-licenses/gpl-2.0.html) * @package core * @since 2.0.0 * @version $Id: imagemanager.php 12349 2014-03-07 02:01:09Z rgriffith $ */ include dirname(__FILE__) . DIRECTORY_SEPARATOR . 'mainfile.php'; XoopsLoad::load('XoopsFilterInput'); if (isset($_REQUEST['target'])) { $target = trim(XoopsFilterInput::clean($_REQUEST['target'], 'WORD')); } else { exit('Target not set'); } $op = 'list'; if (isset($_GET['op']) && $_GET['op'] == 'upload') { $op = 'upload'; } elseif (isset($_POST['op']) && $_POST['op'] == 'doupload') { $op = 'doupload'; } if (!is_object($xoopsUser)) { $group = array(XOOPS_GROUP_ANONYMOUS); } else { $group = $xoopsUser->getGroups(); } if ($op == 'list') {
$clean_ok = false; if (isset($_POST['ok'])) { $clean_ok = XoopsFilterInput::clean($_POST['ok'], 'BOOLEAN'); } } elseif (isset($_GET['op'])) { // from $_GET we may use keys: op, xoops_redirect, id, actkey $op = trim(XoopsFilterInput::clean($_GET['op'])); $clean_redirect = ''; if (isset($_GET['xoops_redirect'])) { $clean_redirect = XoopsFilterInput::clean($_GET['xoops_redirect'], 'WEBURL'); } if (isset($_GET['id'])) { $clean_id = XoopsFilterInput::clean($_GET['id'], 'INT'); } if (isset($_GET['actkey'])) { $clean_actkey = XoopsFilterInput::clean($_GET['actkey'], 'STRING'); } } if ($op === 'login') { include_once $GLOBALS['xoops']->path('include/checklogin.php'); exit; } if ($op === 'main') { if (!$xoopsUser) { $GLOBALS['xoopsOption']['template_main'] = 'system_userform.tpl'; include $GLOBALS['xoops']->path('header.php'); $xoopsTpl->assign('xoops_pagetitle', _LOGIN); $xoTheme->addMeta('meta', 'keywords', _USERNAME . ', ' . _US_PASSWORD . ', ' . _US_LOSTPASSWORD); $xoTheme->addMeta('meta', 'description', _US_LOSTPASSWORD . ' ' . _US_NOPROBLEM); $xoopsTpl->assign('lang_login', _LOGIN); $xoopsTpl->assign('lang_username', _USERNAME);
XoopsLoad::load('XoopsFilterInput'); $clean_uname = ''; if (isset($_POST['uname'])) { $clean_uname = trim(XoopsFilterInput::clean($_POST['uname'], 'STRING')); } $clean_pass = ''; if (isset($_POST['pass'])) { $clean_pass = trim(XoopsFilterInput::clean($_POST['pass'], 'STRING')); } $clean_rememberme = ''; if (isset($_POST['rememberme'])) { $clean_rememberme = trim(XoopsFilterInput::clean($_POST['rememberme'], 'STRING')); } $clean_redirect = ''; if (isset($_POST['xoops_redirect'])) { $clean_redirect = trim(XoopsFilterInput::clean($_POST['xoops_redirect'], 'WEBURL')); } $uname = $clean_uname; $pass = $clean_pass; if ($uname == '' || $pass == '') { redirect_header(XOOPS_URL . '/user.php', 1, _US_INCORRECTLOGIN); exit; } $member_handler =& xoops_gethandler('member'); $myts =& MyTextsanitizer::getInstance(); include_once $GLOBALS['xoops']->path('class/auth/authfactory.php'); xoops_loadLanguage('auth'); $xoopsAuth =& XoopsAuthFactory::getAuthConnection($myts->addSlashes($uname)); $user = $xoopsAuth->authenticate($myts->addSlashes($uname), $myts->addSlashes($pass)); if (false != $user) { if (0 == $user->getVar('level')) {
exit("Token error"); } $xoops->theme()->addBaseStylesheetAssets('@jqueryuicss'); $xoops->theme()->addStylesheet('modules/system/css/admin.css'); $xoops->theme()->addBaseScriptAssets('@jqueryui', '@jgrowl', 'modules/system/js/admin.js'); $xoops->header('admin:system/system_services.tpl'); $admin_page = new \Xoops\Module\Admin(); $admin_page->addBreadcrumbLink(SystemLocale::CONTROL_PANEL, \XoopsBaseConfig::get('url') . '/admin.php', true); $admin_page->addBreadcrumbLink(SystemLocale::SERVICES_MANAGER, $system->adminVersion('services', 'adminpath')); $admin_page->addBreadcrumbLink(XoopsLocale::MAIN); $admin_page->addTips(SystemLocale::SERVICES_TIPS); $admin_page->renderBreadcrumb(); $admin_page->renderTips(); $selected_service = ''; if (isset($_GET['service'])) { $selected_service = strtolower(XoopsFilterInput::clean($_GET['service'], 'WORD')); } $xoops->tpl()->assign('selected_service', $selected_service); $sm = Manager::getInstance(); $filter = 'coreservicelocate'; $eventList = $xoops->events()->getEvents(); $l = strlen($filter); $filteredList = array(); foreach ($eventList as $k => $v) { if (strncasecmp($filter, $k, $l) == 0) { $filteredList[] = strtolower(substr($k, $l)); } } $service_list = array(); sort($filteredList); foreach ($filteredList as $v) {
break; case 'submit': $ret = array(); $write = false; $module = empty($_POST['module']) ? array() : $_POST['module']; foreach ($module as $mid) { if (isset($newstatus[$mid]) && $newstatus[$mid] == 1) { if ($oldstatus[$mid] == 0) { $ret[] = xoops_module_activate($mid); } } else { if ($oldstatus[$mid] == 1) { $ret[] = xoops_module_deactivate($mid); } } $newname[$mid] = trim(XoopsFilterInput::clean($newname[$mid], 'STRING')); if ($oldname[$mid] != $newname[$mid]) { $ret[] = xoops_module_change($mid, $newname[$mid]); $write = true; } } if ($write) { // Flush cache files for cpanel GUIs xoops_load('cpanel', 'system'); XoopsSystemCpanel::flush(); } //Set active modules in cache folder xoops_setActiveModules(); // Define main template $GLOBALS['xoopsOption']['template_main'] = 'system_modules_confirm.tpl'; // Call Header