Issues (1210)

Security Analysis    not enabled

This project does not seem to handle request data directly as such no vulnerable execution paths were found.

  Cross-Site Scripting
Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.
  File Exposure
File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.
  File Manipulation
File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.
  Object Injection
Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.
  Code Injection
Code Injection enables an attacker to execute arbitrary code on the server.
  Response Splitting
Response Splitting can be used to send arbitrary responses.
  File Inclusion
File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.
  Command Injection
Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.
  SQL Injection
SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.
  XPath Injection
XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.
  LDAP Injection
LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.
  Header Injection
  Other Vulnerability
This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.
  Regex Injection
Regex Injection enables an attacker to execute arbitrary code in your PHP process.
  XML Injection
XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.
  Variable Injection
Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.
Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

language/utf8_tw/modinfo.php (2 issues)

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

1
<?php
2
3 View Code Duplication
if( defined( 'FOR_XOOPS_LANG_CHECKER' ) || ! defined( 'APCAL_MI_LOADED' ) ) {
0 ignored issues
show
This code seems to be duplicated across your project.

Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation.

You can also find more detailed suggestions in the “Code” section of your repository.

Loading history...
4
5
6
// Appended by Xoops Language Checker -GIJOE- in 2006-02-15 05:31:21
7
define('_MI_APCAL_ADMENU_MYTPLSADMIN','Templates');
8
9
define( 'APCAL_MI_LOADED' , 1 ) ;
10
11
12
// Module Info
13
14
// The name of this module
15
16
define('_MI_APCAL_ADMENU_MYBLOCKSADMIN','區塊與群組管理');
17
define("_MI_APCAL_NAME","APCal行事曆");
18
19
// A brief description of this module
20
define("_MI_APCAL_DESC","具有多功能的行事曆模組");
21
22
// Names of blocks for this module (Not all module has blocks)
23
define("_MI_APCAL_BNAME_MINICAL","迷你日曆");
24
define("_MI_APCAL_BNAME_MINICAL_DESC","顯示迷你日曆區塊");
25
define('_MI_APCAL_BNAME_MINICALEX','進階小月曆');
26
define('_MI_APCAL_BNAME_MINICALEX_DESC','可以搭配 plugin 的小月曆');
27
define("_MI_APCAL_BNAME_MONTHCAL","月曆");
28
define("_MI_APCAL_BNAME_MONTHCAL_DESC","顯示完整的月曆");
29
define("_MI_APCAL_BNAME_TODAYS","今日事件");
30
define("_MI_APCAL_BNAME_TODAYS_DESC","顯示今天的事件");
31
define("_MI_APCAL_BNAME_THEDAYS","%s 的事件");
32
define("_MI_APCAL_BNAME_THEDAYS_DESC","顯示指出日期的事件");
33
define("_MI_APCAL_BNAME_COMING","近期事件");
34
define("_MI_APCAL_BNAME_COMING_DESC","顯示近期的事件");
35
define("_MI_APCAL_BNAME_AFTER","今日以後事件");
36
define("_MI_APCAL_BNAME_AFTER_DESC","顯示今日以後的事件");
37
38
// Names of submenu
39
define('_MI_APCAL_SM_SUBMIT','新增');
40
41
//define("_MI_APCAL_ADMENU1","");
42
43
// Title of config items
44
define("_MI_USERS_AUTHORITY", "用戶權限");
45
define("_MI_GUESTS_AUTHORITY", "訪客權限");
46
define("_MI_MINICAL_TARGET", "當點選迷你行事曆時所要顯示在畫面中央的行事曆");
47
define("_MI_COMING_NUMROWS", "在近期事件區塊顯示事件的數目");
48
define("_MI_SKINFOLDER", "行事曆樣式的資料夾名稱 (images目錄內)");
49
define('_MI_APCAL_DEFAULTLOCALE','utf8_taiwan');
50
define('_MI_APCAL_LOCALE','地域設定 <br />將自動帶入當地例假日,台灣已內建至2010年為止之國曆與農曆假日');
51
define("_MI_SUNDAYCOLOR", "星期日的顏色");
52
define("_MI_WEEKDAYCOLOR", "平日的顏色");
53
define("_MI_SATURDAYCOLOR", "星期六的顏色");
54
define("_MI_HOLIDAYCOLOR", "假日的顏色");
55
define("_MI_TARGETDAYCOLOR", "預定日的顏色");
56
define("_MI_SUNDAYBGCOLOR", "星期日的背景顏色");
57
define("_MI_WEEKDAYBGCOLOR", "平日的顏色");
58
define("_MI_SATURDAYBGCOLOR", "星期六的背景顏色");
59
define("_MI_HOLIDAYBGCOLOR", "假日的背景顏色");
60
define("_MI_TARGETDAYBGCOLOR", "預定日的背景顏色");
61
define("_MI_CALHEADCOLOR", "行事曆主題部份的顏色");
62
define("_MI_CALHEADBGCOLOR", "行事曆主題部份的背景顏色");
63
define("_MI_CALFRAMECSS", "行事曆視窗的樣式");
64
define("_MI_CANOUTPUTICS", "匯出 ics 檔案的權限");
65
define("_MI_MAXRRULEEXTRACT", "重複事件展開上限數.");
66
define("_MI_WEEKSTARTFROM", "每週的第一天是");
67
define('_MI_TIMEZONE_USING','伺服器的時區指定');
68
define('_MI_USE24HOUR','是否使用24小時制 (如選擇否將自動以12小時制)');
69
define('_MI_NAMEORUNAME','顯示發表者名');
70
define('_MI_DESCNAMEORUNAME','請選擇顯示帳號或是真實姓名(暱稱)');
71
72
// Description of each config items
73
define("_MI_EDITBYGUESTDSC", "訪客新增事件的權限");
74
75
// Options of each config items
76
define("_MI_OPT_AUTH_NONE", "無法新增事件");
77
define("_MI_OPT_AUTH_WAIT", "可以新增事件並且需要審核");
78
define("_MI_OPT_AUTH_POST", "可以新增事件但不需要審核");
79
define("_MI_OPT_AUTH_BYGROUP", "依照群組權限設定");
80
define("_MI_OPT_MINI_PHPSELF", "目前頁面");
81
define("_MI_OPT_MINI_MONTHLY", "月行事曆");
82
define("_MI_OPT_MINI_WEEKLY", "週行事曆");
83
define("_MI_OPT_MINI_DAILY", "日行事曆");
84
define("_MI_OPT_CANNOTOUTPUTICS", "可以匯出");
85
define("_MI_OPT_CANOUTPUTICS", "無法匯出");
86
define("_MI_OPT_STARTFROMSUN", "星期日");
87
define("_MI_OPT_STARTFROMMON", "星期一");
88
define('_MI_OPT_TZ_USEXOOPS','XOOPS的預設值');
89
define('_MI_OPT_TZ_USEWINTER','由伺服器取得的冬令時間 (推薦)');
90
define('_MI_OPT_TZ_USESUMMER','由伺服器取得的夏令時間');
91
define('_MI_OPT_USENAME','真實姓名');
92
define('_MI_OPT_USEUNAME','登入帳號');
93
94
95
// Admin Menus
96
define("_MI_APCAL_ADMENU0","待審事件區");
97
define("_MI_APCAL_ADMENU1","事件管理區");
98
define("_MI_APCAL_ADMENU2","群組權限管理");
99
define('_MI_APCAL_ADMENU_PLUGINS','Plugin管理區');
100
101
102
// Appended by Xoops Language Checker -GIJOE- in 2003-12-05 14:18:43
103
104
// Appended by Xoops Language Checker -GIJOE- in 2003-12-26 10:55:16
105
define('_MI_DAYSTARTFROM','切換一日的時間');
106
define('_MI_APCAL_GLOBAL_NOTIFY','模組整體');
107
define('_MI_APCAL_GLOBAL_NOTIFYDSC','所有 APCal 模組的通知選項');
108
define('_MI_APCAL_CATEGORY_NOTIFY','類別');
109
define('_MI_APCAL_CATEGORY_NOTIFYDSC','針對所選擇類別的通知選項');
110
define('_MI_APCAL_EVENT_NOTIFY','事件');
111
define('_MI_APCAL_EVENT_NOTIFYDSC','針對顯示中的事件通知選項');
112
define('_MI_APCAL_GLOBAL_NEWEVENT_NOTIFY','新事件通知');
113
define('_MI_APCAL_GLOBAL_NEWEVENT_NOTIFYCAP','有新增事件時的通知選項');
114
define('_MI_APCAL_GLOBAL_NEWEVENT_NOTIFYDSC','有新增事件時的通知選項');
115
define('_MI_APCAL_GLOBAL_NEWEVENT_NOTIFYSBJ','[{X_SITENAME}] {X_MODULE} :有新增的事件喔!');
116
117
// Appended by Xoops Language Checker -GIJOE- in 2004-01-14 18:31:01
118
define('_MI_APCAL_BNAME_NEW','新的事件');
119
define('_MI_APCAL_BNAME_NEW_DESC','顯示新增的事件');
120
define('_MI_DEFAULT_VIEW','預設的月曆顯示畫面');
121
define('_MI_WEEKNUMBERING','週別計算方式');
122
define('_MI_OPT_MINI_LIST','事件一覽');
123
define('_MI_OPT_WEEKNOEACHMONTH','以每月計算');
124
define('_MI_OPT_WEEKNOWHOLEYEAR','以整年計算');
125
define('_MI_APCAL_ADMENU_CAT','類別管理');
126
define('_MI_APCAL_ADMENU_CAT2GROUP','類別的瀏覽權限');
127
define('_MI_APCAL_ADMENU_TM','時區維護');
128
define('_MI_APCAL_ADMENU_ICAL','匯入iCalendar');
129
define('_MI_APCAL_CATEGORY_NEWEVENT_NOTIFY','每個類別裡的新增事件');
130
define('_MI_APCAL_CATEGORY_NEWEVENT_NOTIFYCAP','在這個類別裡有新增事件時的通知');
131
define('_MI_APCAL_CATEGORY_NEWEVENT_NOTIFYDSC','在這個類別裡有新增事件時的通知');
132
define('_MI_APCAL_CATEGORY_NEWEVENT_NOTIFYSBJ','[{X_SITENAME}] {X_MODULE} : 有新的事件');
133
134
}
135
136
?>
0 ignored issues
show
It is not recommended to use PHP's closing tag ?> in files other than templates.

Using a closing tag in PHP files that only contain PHP code is not recommended as you might accidentally add whitespace after the closing tag which would then be output by PHP. This can cause severe problems, for example headers cannot be sent anymore.

A simple precaution is to leave off the closing tag as it is not required, and it also has no negative effects whatsoever.

Loading history...