Issues in Title.php (master) - Issues in master - LaraComponents/seo - Measure and Improve Code Quality continuously with Scrutinizer

Issues (10)

Security Analysis no request data

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

src/Entities/Title.php (1 issue)

Labels

Bug 1

Severity

Major 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace LaraComponents\Seo\Entities;

use LaraComponents\Seo\Traits\HasLimit;
use LaraComponents\Seo\Contracts\Title as TitleContract;

class Title implements TitleContract

{
    use HasLimit;

    /**
     * @var array
     */
    protected $segments = [];

    /**
     * @var string
     */
    protected $separator;

    /**
     * @var string
     */
    protected $siteName;

    /**
     * @var int
     */
    protected $maxSegment;

    /**
     * @var int
     */
    protected $maxTitle;

    /**
     * @var bool
     */
    protected $reverse;

    /**
     * @var bool
     */
    protected $siteNameVisibility;

    /**
     * Create a new title instance.
     *
     * @param array $config
     */
    public function __construct(array $config = [])
    {
        $this->initConfig($config);
    }

    /**
     * Init config.
     *
     * @param  array  $config
     * @return void
     */
    protected function initConfig(array $config)
    {
        $this->setSeparator(isset($config['separator']) ? $config['separator'] : ' :: ');
        $this->setSiteName(isset($config['site_name']) ? $config['site_name'] : null);
        $this->setMaxSegemnt(isset($config['max_segment']) ? $config['max_segment'] : 0);
        $this->setMaxTitle(isset($config['max_title']) ? $config['max_title'] : 0);
        $this->setReverse(isset($config['reverse']) ? $config['reverse'] : false);
        $this->setSiteNameVisibility(isset($config['site_name_visible']) ? $config['site_name_visible'] : true);
    }

    /**
     * Set title separator.
     *
     * @param string $separator
     * @return \LaraComponents\Seo\Title
     */
    public function setSeparator($separator)
    {
        if (! is_null($separator)) {
            $this->separator = (string) $separator;
        }

        return $this;
    }

    /**
     * Get title separator.
     *
     * @return string
     */
    public function getSeparator()
    {
        return $this->separator;
    }

    /**
     * Set site name.
     *
     * @param string $siteName
     * @return \LaraComponents\Seo\Title
     */
    public function setSiteName($siteName)
    {
        if (! is_null($siteName)) {
            $this->siteName = (string) $siteName;
        }

        return $this;
    }

    /**
     * Get site name.
     *
     * @return string
     */
    public function getSiteName()
    {
        return $this->siteName;
    }

    /**
     * Set segment max length.
     *
     * @param int $max
     * @return \LaraComponents\Seo\Title
     */
    public function setMaxSegemnt($max)
    {
        $this->maxSegment = (int) $max;

        return $this;
    }

    /**
     * Get segment max length.
     *
     * @return int
     */
    public function getMaxSegment()
    {
        return $this->maxSegment;
    }

    /**
     * Set title max length.
     *
     * @param int $max
     * @return \LaraComponents\Seo\Title
     */
    public function setMaxTitle($max)
    {
        $this->maxTitle = (int) $max;

        return $this;
    }

    /**
     * Get title max length.
     *
     * @return int
     */
    public function getMaxTitle()
    {
        return $this->maxTitle;
    }

    /**
     * Set reverse title position.
     *
     * @param bool $reverse
     * @return \LaraComponents\Seo\Title
     */
    public function setReverse($reverse = true)
    {
        $this->reverse = (bool) $reverse;

        return $this;
    }

    /**
     * Check reverse title position.
     *
     * @return bool
     */
    public function isReverse()
    {
        return $this->reverse;
    }

    /**
     * Set the site name visibility.
     *
     * @param bool $visible
     */
    public function setSiteNameVisibility($visible)
    {
        $this->siteNameVisibility = (bool) $visible;

        return $this;
    }

    /**
     * Check if site name exists and visible.
     *
     * @return bool
     */
    public function isSiteNameVisible()
    {
        return ! is_null($this->siteName) && $this->siteNameVisibility;
    }

    /**
     * Appent title to segments.
     *
     * @return \LaraComponents\Seo\Title
     */
    public function add()
    {
        $segments = func_get_args();

        foreach ($this->normalizeSegments($segments) as $segment) {
            $this->segments[] = $segment;
        }

        return $this;
    }

    /**
     * Set title segments.
     *
     * @return \LaraComponents\Seo\Title
     */
    public function set()
    {
        $segments = func_get_args();

        $this->segments = $this->normalizeSegments($segments);

        return $this;
    }

    /**
     * Get title segments.
     *
     * @return array
     */
    public function get()
    {
        return $this->segments;
    }

    /**
     * Make the title string.
     *
     * @return string
     */
    public function toString()
    {
        $parts = [];
        if ($this->isSiteNameVisible()) {
            $parts[] = $this->siteName;
        }

        if (count($this->segments)) {
            $segments = $this->isReverse() ? array_reverse($this->segments) : $this->segments;

            $title = implode($this->separator, $segments);
            $title = $this->maxTitle > 0 ? $this->limit($title, $this->maxTitle) : $title;

            $this->isReverse() ? array_push($parts, $title) : array_unshift($parts, $title);
        }

        return implode($this->separator, $parts);
    }

    /**
     * Normalize the get segments.
     *
     * @param  array $segments
     * @return array
     */
    protected function normalizeSegments($segments)
    {
        $normalized = [];

        foreach ($segments as $segment) {
            if (is_array($segment)) {
                $normalized = array_merge($normalized, $this->normalizeSegments($segment));
            } else {
                $segment = trim(strip_tags((string) $segment));

                if (mb_strlen($segment) > 0) {
                    $normalized[] = $this->maxSegment > 0 ? $this->limit($segment, $this->maxSegment) : $segment;
                }
            }
        }

        return $normalized;
    }

    /**
     * Convert object to string.
     *
     * @return string
     */
    public function __toString()
    {
        return $this->toString();
    }
}


1			<?php
2
3			namespace LaraComponents\Seo\Entities;
4
5			use LaraComponents\Seo\Traits\HasLimit;
6			use LaraComponents\Seo\Contracts\Title as TitleContract;
7
8			class Title implements TitleContract
			0 ignored issues – show Bug introduced 2017-04-26 21:36 UTC by Report Bug Copy Issue Report Show Similar Issues like this There is at least one abstract method in this class. Maybe declare it as abstract, or implement the remaining methods: append, make Loading history...
9			{
10			use HasLimit;
11
12			/**
13			* @var array
14			*/
15			protected $segments = [];
16
17			/**
18			* @var string
19			*/
20			protected $separator;
21
22			/**
23			* @var string
24			*/
25			protected $siteName;
26
27			/**
28			* @var int
29			*/
30			protected $maxSegment;
31
32			/**
33			* @var int
34			*/
35			protected $maxTitle;
36
37			/**
38			* @var bool
39			*/
40			protected $reverse;
41
42			/**
43			* @var bool
44			*/
45			protected $siteNameVisibility;
46
47			/**
48			* Create a new title instance.
49			*
50			* @param array $config
51			*/
52			public function __construct(array $config = [])
53			{
54			$this->initConfig($config);
55			}
56
57			/**
58			* Init config.
59			*
60			* @param array $config
61			* @return void
62			*/
63			protected function initConfig(array $config)
64			{
65			$this->setSeparator(isset($config['separator']) ? $config['separator'] : ' :: ');
66			$this->setSiteName(isset($config['site_name']) ? $config['site_name'] : null);
67			$this->setMaxSegemnt(isset($config['max_segment']) ? $config['max_segment'] : 0);
68			$this->setMaxTitle(isset($config['max_title']) ? $config['max_title'] : 0);
69			$this->setReverse(isset($config['reverse']) ? $config['reverse'] : false);
70			$this->setSiteNameVisibility(isset($config['site_name_visible']) ? $config['site_name_visible'] : true);
71			}
72
73			/**
74			* Set title separator.
75			*
76			* @param string $separator
77			* @return \LaraComponents\Seo\Title
78			*/
79			public function setSeparator($separator)
80			{
81			if (! is_null($separator)) {
82			$this->separator = (string) $separator;
83			}
84
85			return $this;
86			}
87
88			/**
89			* Get title separator.
90			*
91			* @return string
92			*/
93			public function getSeparator()
94			{
95			return $this->separator;
96			}
97
98			/**
99			* Set site name.
100			*
101			* @param string $siteName
102			* @return \LaraComponents\Seo\Title
103			*/
104			public function setSiteName($siteName)
105			{
106			if (! is_null($siteName)) {
107			$this->siteName = (string) $siteName;
108			}
109
110			return $this;
111			}
112
113			/**
114			* Get site name.
115			*
116			* @return string
117			*/
118			public function getSiteName()
119			{
120			return $this->siteName;
121			}
122
123			/**
124			* Set segment max length.
125			*
126			* @param int $max
127			* @return \LaraComponents\Seo\Title
128			*/
129			public function setMaxSegemnt($max)
130			{
131			$this->maxSegment = (int) $max;
132
133			return $this;
134			}
135
136			/**
137			* Get segment max length.
138			*
139			* @return int
140			*/
141			public function getMaxSegment()
142			{
143			return $this->maxSegment;
144			}
145
146			/**
147			* Set title max length.
148			*
149			* @param int $max
150			* @return \LaraComponents\Seo\Title
151			*/
152			public function setMaxTitle($max)
153			{
154			$this->maxTitle = (int) $max;
155
156			return $this;
157			}
158
159			/**
160			* Get title max length.
161			*
162			* @return int
163			*/
164			public function getMaxTitle()
165			{
166			return $this->maxTitle;
167			}
168
169			/**
170			* Set reverse title position.
171			*
172			* @param bool $reverse
173			* @return \LaraComponents\Seo\Title
174			*/
175			public function setReverse($reverse = true)
176			{
177			$this->reverse = (bool) $reverse;
178
179			return $this;
180			}
181
182			/**
183			* Check reverse title position.
184			*
185			* @return bool
186			*/
187			public function isReverse()
188			{
189			return $this->reverse;
190			}
191
192			/**
193			* Set the site name visibility.
194			*
195			* @param bool $visible
196			*/
197			public function setSiteNameVisibility($visible)
198			{
199			$this->siteNameVisibility = (bool) $visible;
200
201			return $this;
202			}
203
204			/**
205			* Check if site name exists and visible.
206			*
207			* @return bool
208			*/
209			public function isSiteNameVisible()
210			{
211			return ! is_null($this->siteName) && $this->siteNameVisibility;
212			}
213
214			/**
215			* Appent title to segments.
216			*
217			* @return \LaraComponents\Seo\Title
218			*/
219			public function add()
220			{
221			$segments = func_get_args();
222
223			foreach ($this->normalizeSegments($segments) as $segment) {
224			$this->segments[] = $segment;
225			}
226
227			return $this;
228			}
229
230			/**
231			* Set title segments.
232			*
233			* @return \LaraComponents\Seo\Title
234			*/
235			public function set()
236			{
237			$segments = func_get_args();
238
239			$this->segments = $this->normalizeSegments($segments);
240
241			return $this;
242			}
243
244			/**
245			* Get title segments.
246			*
247			* @return array
248			*/
249			public function get()
250			{
251			return $this->segments;
252			}
253
254			/**
255			* Make the title string.
256			*
257			* @return string
258			*/
259			public function toString()
260			{
261			$parts = [];
262			if ($this->isSiteNameVisible()) {
263			$parts[] = $this->siteName;
264			}
265
266			if (count($this->segments)) {
267			$segments = $this->isReverse() ? array_reverse($this->segments) : $this->segments;
268
269			$title = implode($this->separator, $segments);
270			$title = $this->maxTitle > 0 ? $this->limit($title, $this->maxTitle) : $title;
271
272			$this->isReverse() ? array_push($parts, $title) : array_unshift($parts, $title);
273			}
274
275			return implode($this->separator, $parts);
276			}
277
278			/**
279			* Normalize the get segments.
280			*
281			* @param array $segments
282			* @return array
283			*/
284			protected function normalizeSegments($segments)
285			{
286			$normalized = [];
287
288			foreach ($segments as $segment) {
289			if (is_array($segment)) {
290			$normalized = array_merge($normalized, $this->normalizeSegments($segment));
291			} else {
292			$segment = trim(strip_tags((string) $segment));
293
294			if (mb_strlen($segment) > 0) {
295			$normalized[] = $this->maxSegment > 0 ? $this->limit($segment, $this->maxSegment) : $segment;
296			}
297			}
298			}
299
300			return $normalized;
301			}
302
303			/**
304			* Convert object to string.
305			*
306			* @return string
307			*/
308			public function __toString()
309			{
310			return $this->toString();
311			}
312			}
313

LaraComponents / seo

Issues (10)

Security Analysis no request data

src/Entities/Title.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like