debug modus fuer session daten erweitert

bugfix: problem mit lokalen variabeln und uebergaben


git-svn-id: svn://svn.cccv.de/engel-system@10 29ba0400-6e00-0410-a75a-ca02368028f8
main
cookie 19 years ago
parent c912c19f8e
commit 50c5e06f09

@ -6,8 +6,11 @@ $Page["CVS"] = $_SESSION['CVS'][ $Page["Name"] ];
if( $DEBUG ) if( $DEBUG )
{ {
echo "UserID:". $_SESSION["UID"]. "<br>"; // echo "UserID:". $_SESSION["UID"]. "<br>";
echo "Nick:". $_SESSION["Nick"]. "<br>"; // echo "Nick:". $_SESSION["Nick"]. "<br>";
foreach( $_SESSION as $k => $v)
echo "$k = $v<br>\n";
if( strlen($Page["CVS"]) == 0 ) if( strlen($Page["CVS"]) == 0 )
echo "<h1><u> CVS ERROR, on page '". $Page["Name"]. "'</u></h1>"; echo "<h1><u> CVS ERROR, on page '". $Page["Name"]. "'</u></h1>";

@ -5,33 +5,26 @@
foreach ($_GET as $k => $v) foreach ($_GET as $k => $v)
{ {
$v = htmlspecialchars($v); $v = htmlspecialchars($v);
//echo "$v<br>";
$v = mysql_escape_string($v); $v = mysql_escape_string($v);
//echo "$v<br>";
// $v = htmlentities($v); // $v = htmlentities($v);
//echo "$v<br>";
// if (preg_match('/([\'"`\'])/', $v, $match))
if (preg_match('/([\"`])/', $v, $match)) if (preg_match('/([\"`])/', $v, $match))
{ {
print "sorry get has illegal char '$match[1]'"; print "sorry get has illegal char '$match[1]'";
exit; exit;
} }
$$k = $v; $_GET[$k] = $v;
} }
foreach ($_POST as $k => $v) foreach ($_POST as $k => $v)
{ {
$v = htmlspecialchars($v); $v = htmlspecialchars($v);
//echo "$v<br>";
$v = mysql_escape_string($v); $v = mysql_escape_string($v);
//echo "$v<br>";
// $v = htmlentities($v); // $v = htmlentities($v);
//echo "$v<br>";
if (preg_match('/([\'"`\'])/', $v, $match)) { if (preg_match('/([\'"`\'])/', $v, $match)) {
print "sorry post has illegal char '$match[1]'"; print "sorry post has illegal char '$match[1]'";
exit; exit;
} }
$$k = $v; $_POST[$k] = $v;
} }
?> ?>

Loading…
Cancel
Save