debug modus fuer session daten erweitert

bugfix: problem mit lokalen variabeln und uebergaben git-svn-id: svn://svn.cccv.de/engel-system@10 29ba0400-6e00-0410-a75a-ca02368028f8
19 years ago · 50c5e06f09
parent c912c19f8e
commit 50c5e06f09
2 changed files with 8 additions and 12 deletions
--- a/inc/UserCVS.php
+++ b/inc/UserCVS.php
@ -6,9 +6,12 @@ $Page["CVS"] = $_SESSION['CVS'][ $Page["Name"] ];

 if( $DEBUG ) 
 {
-	echo "UserID:". $_SESSION["UID"]. "<br>";
-	echo "Nick:". $_SESSION["Nick"]. "<br>";
-	
+//	echo "UserID:". $_SESSION["UID"]. "<br>";
+//	echo "Nick:". $_SESSION["Nick"]. "<br>";
+
+	foreach( $_SESSION as $k => $v)
+		echo "$k = $v<br>\n";
+
 	if( strlen($Page["CVS"]) == 0 )
 		echo "<h1><u> CVS ERROR, on page '". $Page["Name"]. "'</u></h1>";
 	else
--- a/inc/secure.php
+++ b/inc/secure.php
@ -5,33 +5,26 @@
 foreach ($_GET as $k => $v) 
 {	
  	$v = htmlspecialchars($v);
-//echo "$v<br>";
 	$v = mysql_escape_string($v);
-//echo "$v<br>";
 //	$v = htmlentities($v);
-//echo "$v<br>";
-//    if (preg_match('/([\'"`\'])/', $v, $match)) 
 	if (preg_match('/([\"`])/', $v, $match)) 
 	{
 		print "sorry get has illegal char '$match[1]'";
 		exit;
 	}
-	$$k = $v;
+	$_GET[$k] = $v;
 }
  
 foreach ($_POST as $k => $v) 
 {
  	$v = htmlspecialchars($v);
-//echo "$v<br>";
 	$v = mysql_escape_string($v);
-//echo "$v<br>";
 //	$v = htmlentities($v);
-//echo "$v<br>";
 	if (preg_match('/([\'"`\'])/', $v, $match)) {
 		print "sorry post has illegal char '$match[1]'";
 		exit;
 	}
-	$$k = $v;
+	$_POST[$k] = $v;
 }

 ?>