Issues in xfcreate.php - New Issues - Inspection of "Merge pull request #14 from mambax7/master" - XoopsModules25x/xfguestbook - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 07b04b...37a2f2 )

by Michael

created 2017-05-24 07:54 UTC

xfcreate.php (2 issues)

Labels

Severity

Minor 2

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
//  ------------------------------------------------------------------------ //
//             XF Guestbook                                                  //
// ------------------------------------------------------------------------- //
//  This program is free software; you can redistribute it and/or modify     //
//  it under the terms of the GNU General Public License as published by     //
//  the Free Software Foundation; either version 2 of the License, or        //
//  (at your option) any later version.                                      //
//                                                                           //
//  You may not change or alter any portion of this comment or credits       //
//  of supporting developers from this source code or any supporting         //
//  source code which is considered copyrighted (c) material of the          //
//  original comment or credit authors.                                      //
//                                                                           //
//  This program is distributed in the hope that it will be useful,          //
//  but WITHOUT ANY WARRANTY; without even the implied warranty of           //
//  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the            //
//  GNU General Public License for more details.                             //
//                                                                           //
//  You should have received a copy of the GNU General Public License        //
//  along with this program; if not, write to the Free Software              //
//  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307 USA //
//  ------------------------------------------------------------------------ //

require __DIR__ . '/../../mainfile.php';
if (!is_object($GLOBALS['xoopsUser']) && 1 != $GLOBALS['xoopsModuleConfig']['anonsign']) {
    redirect_header(XOOPS_URL . '/user.php', 2, MD_XFGUESTBOOK_MUSTREGFIRST);
}

//include_once(XOOPS_ROOT_PATH."/modules/".$xoopsModule->dirname()."/class/msg.php");
include_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/class/util.php';
include_once __DIR__ . '/include/config.inc.php';

$option     = getOptions();
$msgHandler = xoops_getModuleHandler('msg');

$confirm_code = Xmf\Request::getString('confirm_code', '', 'POST');
$confirm_str  = Xmf\Request::getString('confirm_str', '', 'POST');
$user_id      = Xmf\Request::getInt('user_id', 0, 'POST');
$title        = Xmf\Request::getString('title', '', 'POST');
$message      = Xmf\Request::getString('message', '', 'POST');
$gender       = Xmf\Request::getString('gender', '', 'POST');
$preview_name = Xmf\Request::getString('preview_name', '', 'POST');
$email        = Xmf\Request::getEmail('email', '', 'POST');
$name         = Xmf\Request::getString('name', '', 'POST');
$url          = Xmf\Request::getUrl('url', '', 'POST');
$country      = Xmf\Request::getString('country', '', 'POST');
/*

$confirm_code = isset($_POST['confirm_code']) ? $_POST['confirm_code'] : '';
$confirm_str  = isset($_POST['confirm_str']) ? $_POST['confirm_str'] : '';
$user_id      = isset($_POST['user_id']) ? (int)$_POST['user_id'] : 0;
$title        = (isset($_POST['title']) ? $_POST['title'] : '');
$message      = (isset($_POST['message']) ? $_POST['message'] : '');
$gender       = (isset($_POST['gender']) ? $_POST['gender'] : '');
$preview_name = (isset($_POST['preview_name']) ? $_POST['preview_name'] : '');
$email        = (isset($_POST['email']) ? $_POST['email'] : '');
$name         = (isset($_POST['name']) ? $_POST['name'] : '');
$url          = (isset($_POST['url']) ? $_POST['url'] : '');
$country      = (isset($_POST['country']) ? $_POST['country'] : '');
*/
$op = Xmf\Request::getCmd('preview', null, 'POST');
$op = Xmf\Request::getCmd('post', $op, 'POST');
$op = (null === $op) ? 'form' : $op;
/*

if (isset($_POST['preview'])) {
    $op = 'preview';
} elseif (isset($_POST['post'])) {
    $op = 'post';
} else {
    $op = 'form';
}
*/
$badip = in_array($_SERVER['REMOTE_ADDR'], XfguestbookUtil::get_badips()) ? true : false;

switch ($op) {
    case 'cancel':
        $photos_dir     = XOOPS_UPLOAD_PATH . '/' . $xoopsModule->getVar('dirname');
        $nb_removed_tmp = XfguestbookUtil::clear_tmp_files($photos_dir);
        redirect_header('index.php', 0);
        break;

    case 'preview':
        $ts                                      = MyTextSanitizer::getInstance();
        $GLOBALS['xoopsOption']['template_main'] = 'xfguestbook_signform.tpl';
        include XOOPS_ROOT_PATH . '/header.php';
        $msgstop = '';

        /*if ($option['opt_code']==1) {
            xoops_load('XoopsCaptcha');
            $xoopsCaptcha = XoopsCaptcha::getInstance();
            if (!$xoopsCaptcha->verify()) {
                $msgstop .= $xoopsCaptcha->getMessage();
            }
        }*/
        if (2 == $option['opt_url'] && preg_match('/(http)|(www)/i', $message)) {
            $msgstop .= MD_XFGUESTBOOK_URL_DISABLED . '<br>';
        }

        if ('' !== $email && !checkEmail($email)) {
            $msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br>';
        }
        if (!empty($_FILES['photo']['name'])) {
            XfguestbookUtil::upload();
        }
        $title   = $ts->htmlSpecialChars($ts->stripSlashesGPC($title));
        $message = $ts->htmlSpecialChars($ts->stripSlashesGPC($message));
        if (!empty($msgstop)) {
            $xoopsTpl->assign('preview', true);
            $xoopsTpl->assign('msgstop', $msgstop);
            include_once __DIR__ . '/include/form_sign.inc.php';
            $signform->assign($xoopsTpl);
            include XOOPS_ROOT_PATH . '/footer.php';
            exit();
        }
        $msgpost['title']   = $ts->previewTarea($title);
        $msgpost['message'] = $ts->previewTarea($message);
        $msgpost['poster']  = $name;
        $msgpost['user_id'] = $user_id;
        $msgpost['date']    = formatTimestamp(time(), 's');
        $msgpost['photo']   = $preview_name;
        if (1 == $option['opt_url']) {
            $msgpost['message'] = str_replace('target="_blank"', 'target="_blank" rel="nofollow"', $msgpost['message']);
        }
        if ($gender) {
            $msgpost['gender'] = '<img src="assets/images/' . $gender . '.gif"';
        }
        if ($email) {
            $msgpost['email'] = '<img src="' . XOOPS_URL . '/images/icons/email.gif" alt="' . _SENDEMAILTO . '">';
        }
        if ($url) {
            $msgpost['url'] = '<img src="' . XOOPS_URL . '/images/icons/www.gif" alt="' . _VISITWEBSITE . '">';
        }
        if ($country) {
            $flag         = XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/assets/images/flags/' . $xoopsModuleConfig['flagdir'] . '/' . $country . '.gif';
            $arr_country  = XfguestbookUtil::getCountry("country_code ='" . $country . '\'');
            $country_name = (count($arr_country) > 0) ? $arr_country[0]['country_name'] : '';
            if (file_exists($flag)) {
                $msgpost['country'] = '<img src="'
                                      . XOOPS_URL
                                      . '/modules/xfguestbook/assets/images/flags/'
                                      . $xoopsModuleConfig['flagdir']
                                      . '/'
                                      . $country
                                      . '.gif" alt="'
                                      . $country_name
                                      . '">';
            } else {
                $msgpost['country'] = $country_name;
            }
        }

        $xoopsTpl->assign('preview', true);
        $xoopsTpl->assign('msgstop', $msgstop);
        include __DIR__ . '/include/form_sign.inc.php';
        $xoopsTpl->assign('msg', $msgpost);
        $signform->assign($xoopsTpl);
        include XOOPS_ROOT_PATH . '/footer.php';
        break;

    case 'post':
        $msgstop = '';
        if (1 == $option['opt_code']) {
            xoops_load('XoopsCaptcha');
            $xoopsCaptcha = XoopsCaptcha::getInstance();
            if (!$xoopsCaptcha->verify()) {
                $msgstop .= $xoopsCaptcha->getMessage() . '<br><br>';
            }
            include XOOPS_ROOT_PATH . '/header.php';
        }
        if ('' == $_POST['uman']) {
            redirect_header('index.php', 2, '');
        }
        if (2 == $option['opt_url'] && preg_match('/(http[s])|(www)/i', $message)) {
            $msgstop .= MD_XFGUESTBOOK_URL_DISABLED . '<br><br>';
        }
        if (!XfguestbookUtil::email_exist($email)) {
            $msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br><br>';
        }
        if ('' !== $email && !checkEmail($email)) {
            $msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br><br>';
        }
        if (!empty($_FILES['photo']['name'])) {
            XfguestbookUtil::upload();
        }
        if (!empty($msgstop)) {
            $GLOBALS['xoopsOption']['template_main'] = 'xfguestbook_signform.tpl';
            include XOOPS_ROOT_PATH . '/header.php';
            $xoopsTpl->assign('preview', true);
            $xoopsTpl->assign('msgstop', $msgstop);
            include_once __DIR__ . '/include/form_sign.inc.php';
            $signform->assign($xoopsTpl);
            include XOOPS_ROOT_PATH . '/footer.php';
            exit();
        }
        $photos_dir = XOOPS_UPLOAD_PATH . '/' . $xoopsModule->getVar('dirname');
        if ('' !== $preview_name) {
            $photo = str_replace('tmp_', 'msg_', $preview_name);
            rename("$photos_dir/$preview_name", "$photos_dir/$photo");
        }

        $msgpost = $msgHandler->create();
        $xoopsUser ? $user_id = $xoopsUser->uid() : $user_id = 0;
        $xoopsUser ? $username = $xoopsUser->uname() : $username = $name;
        $msgpost->setVar('user_id', $user_id);
        $msgpost->setVar('uname', $username);
        $msgpost->setVar('title', $title);
        $msgpost->setVar('message', $message);
        $msgpost->setVar('note', '');
        $msgpost->setVar('post_time', time());
        $msgpost->setVar('email', $email);
        $msgpost->setVar('url', $url);
        $msgpost->setVar('poster_ip', $_SERVER['REMOTE_ADDR']);
        $msgpost->setVar('country', $country);
        $msgpost->setVar('flagdir', $xoopsModuleConfig['flagdir']);
        $msgpost->setVar('gender', $gender);
        if (!isset($photo)) {
            $photo = '';
        }
        $msgpost->setVar('photo', $photo);

        if ($badip) {
            $msgpost->setVar('moderate', 1);
        } else {
            $msgpost->setVar('moderate', $xoopsModuleConfig['moderate']);
        }
        $nb_removed_tmp = XfguestbookUtil::clear_tmp_files($photos_dir);
        $messagesent    = MD_XFGUESTBOOK_MESSAGESENT;

        if ($msgHandler->insert($msgpost)) {
            if ($badip || $xoopsModuleConfig['moderate']) {
                $messagesent .= '<br>' . MD_XFGUESTBOOK_AFTERMODERATE;
            }

            // Send mail to webmaster
            if (1 == $xoopsModuleConfig['sendmail2wm']) {
                $subject     = $xoopsConfig['sitename'] . ' - ' . MD_XFGUESTBOOK_NAMEMODULE;
                $xoopsMailer = xoops_getMailer();
                $xoopsMailer->useMail();
                $xoopsMailer->setToEmails($xoopsConfig['adminmail']);
                $xoopsMailer->setFromEmail($xoopsConfig['adminmail']);
                $xoopsMailer->setFromName($xoopsConfig['sitename']);
                $xoopsMailer->setSubject($subject);
                $xoopsMailer->setBody(MD_XFGUESTBOOK_NEWMESSAGE . ' ' . XOOPS_URL . '/modules/' . $xoopsModule->dirname() . '/');
                if (!$xoopsMailer->send()) {
                    echo $xoopsMailer->getErrors();
                }
            }
            redirect_header('index.php', 2, $messagesent);
        } else {
            $messagesent = $msgpost->getHtmlErrors();
            redirect_header('index.php', 2, $messagesent);
        }
        break;

    case 'form':
    default:
        $xoopsOption['template_main'] = 'xfguestbook_signform.tpl';

        include XOOPS_ROOT_PATH . '/header.php';
        $user_id = !empty($xoopsUser) ? $xoopsUser->getVar('uid', 'E') : 0;
        $name    = !empty($xoopsUser) ? $xoopsUser->getVar('uname', 'E') : '';
        $email   = !empty($xoopsUser) ? $xoopsUser->getVar('email', 'E') : '';
        $url     = !empty($xoopsUser) ? $xoopsUser->getVar('url', 'E') : '';
        $country = $option['countrybydefault'];

        if (1 == $option['opt_code']) {
            xoops_load('XoopsCaptcha');
            $xoopsCaptcha = XoopsCaptcha::getInstance();
        }
        if ($badip || $xoopsModuleConfig['moderate']) {
            $xoopsTpl->assign('moderate', MD_XFGUESTBOOK_MODERATED);
        }

        include __DIR__ . '/include/form_sign.inc.php';
        $signform->assign($xoopsTpl);
        include XOOPS_ROOT_PATH . '/footer.php';
        break;
}


1		<?php
2		// ------------------------------------------------------------------------ //
3		// XF Guestbook //
4		// ------------------------------------------------------------------------- //
5		// This program is free software; you can redistribute it and/or modify //
6		// it under the terms of the GNU General Public License as published by //
7		// the Free Software Foundation; either version 2 of the License, or //
8		// (at your option) any later version. //
9		// //
10		// You may not change or alter any portion of this comment or credits //
11		// of supporting developers from this source code or any supporting //
12		// source code which is considered copyrighted (c) material of the //
13		// original comment or credit authors. //
14		// //
15		// This program is distributed in the hope that it will be useful, //
16		// but WITHOUT ANY WARRANTY; without even the implied warranty of //
17		// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
18		// GNU General Public License for more details. //
19		// //
20		// You should have received a copy of the GNU General Public License //
21		// along with this program; if not, write to the Free Software //
22		// Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA //
23		// ------------------------------------------------------------------------ //
24
25		require __DIR__ . '/../../mainfile.php';
26		if (!is_object($GLOBALS['xoopsUser']) && 1 != $GLOBALS['xoopsModuleConfig']['anonsign']) {
27		redirect_header(XOOPS_URL . '/user.php', 2, MD_XFGUESTBOOK_MUSTREGFIRST);
28		}
29
30		//include_once(XOOPS_ROOT_PATH."/modules/".$xoopsModule->dirname()."/class/msg.php");
31		include_once XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/class/util.php';
32		include_once __DIR__ . '/include/config.inc.php';
33
34		$option = getOptions();
35		$msgHandler = xoops_getModuleHandler('msg');
36
37		$confirm_code = Xmf\Request::getString('confirm_code', '', 'POST');
38		$confirm_str = Xmf\Request::getString('confirm_str', '', 'POST');
39		$user_id = Xmf\Request::getInt('user_id', 0, 'POST');
40		$title = Xmf\Request::getString('title', '', 'POST');
41		$message = Xmf\Request::getString('message', '', 'POST');
42		$gender = Xmf\Request::getString('gender', '', 'POST');
43		$preview_name = Xmf\Request::getString('preview_name', '', 'POST');
44		$email = Xmf\Request::getEmail('email', '', 'POST');
45		$name = Xmf\Request::getString('name', '', 'POST');
46		$url = Xmf\Request::getUrl('url', '', 'POST');
47		$country = Xmf\Request::getString('country', '', 'POST');
48		/*
		0 ignored issues – show Unused Code Comprehensibility introduced 2017-05-24 07:56 UTC by Report Bug Copy Issue Report Show Similar Issues like this `69%` of this comment could be valid code. Did you maybe forget this after debugging? Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it. The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production. This check looks for comments that seem to be mostly valid code and reports them. Loading history...
49		$confirm_code = isset($_POST['confirm_code']) ? $_POST['confirm_code'] : '';
50		$confirm_str = isset($_POST['confirm_str']) ? $_POST['confirm_str'] : '';
51		$user_id = isset($_POST['user_id']) ? (int)$_POST['user_id'] : 0;
52		$title = (isset($_POST['title']) ? $_POST['title'] : '');
53		$message = (isset($_POST['message']) ? $_POST['message'] : '');
54		$gender = (isset($_POST['gender']) ? $_POST['gender'] : '');
55		$preview_name = (isset($_POST['preview_name']) ? $_POST['preview_name'] : '');
56		$email = (isset($_POST['email']) ? $_POST['email'] : '');
57		$name = (isset($_POST['name']) ? $_POST['name'] : '');
58		$url = (isset($_POST['url']) ? $_POST['url'] : '');
59		$country = (isset($_POST['country']) ? $_POST['country'] : '');
60		*/
61		$op = Xmf\Request::getCmd('preview', null, 'POST');
62		$op = Xmf\Request::getCmd('post', $op, 'POST');
63		$op = (null === $op) ? 'form' : $op;
64		/*
		0 ignored issues – show Unused Code Comprehensibility introduced 2017-05-24 07:56 UTC by Report Bug Copy Issue Report Show Similar Issues like this `62%` of this comment could be valid code. Did you maybe forget this after debugging? Sometimes obsolete code just ends up commented out instead of removed. In this case it is better to remove the code once you have checked you do not need it. The code might also have been commented out for debugging purposes. In this case it is vital that someone uncomments it again or your project may behave in very unexpected ways in production. This check looks for comments that seem to be mostly valid code and reports them. Loading history...
65		if (isset($_POST['preview'])) {
66		$op = 'preview';
67		} elseif (isset($_POST['post'])) {
68		$op = 'post';
69		} else {
70		$op = 'form';
71		}
72		*/
73		$badip = in_array($_SERVER['REMOTE_ADDR'], XfguestbookUtil::get_badips()) ? true : false;
74
75		switch ($op) {
76	View Code Duplication	case 'cancel':
77		$photos_dir = XOOPS_UPLOAD_PATH . '/' . $xoopsModule->getVar('dirname');
78		$nb_removed_tmp = XfguestbookUtil::clear_tmp_files($photos_dir);
79		redirect_header('index.php', 0);
80		break;
81
82		case 'preview':
83		$ts = MyTextSanitizer::getInstance();
84		$GLOBALS['xoopsOption']['template_main'] = 'xfguestbook_signform.tpl';
85		include XOOPS_ROOT_PATH . '/header.php';
86		$msgstop = '';
87
88		/*if ($option['opt_code']==1) {
89		xoops_load('XoopsCaptcha');
90		$xoopsCaptcha = XoopsCaptcha::getInstance();
91		if (!$xoopsCaptcha->verify()) {
92		$msgstop .= $xoopsCaptcha->getMessage();
93		}
94		}*/
95	View Code Duplication	if (2 == $option['opt_url'] && preg_match('/(http)\|(www)/i', $message)) {
96		$msgstop .= MD_XFGUESTBOOK_URL_DISABLED . '<br>';
97		}
98
99		if ('' !== $email && !checkEmail($email)) {
100		$msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br>';
101		}
102		if (!empty($_FILES['photo']['name'])) {
103		XfguestbookUtil::upload();
104		}
105		$title = $ts->htmlSpecialChars($ts->stripSlashesGPC($title));
106		$message = $ts->htmlSpecialChars($ts->stripSlashesGPC($message));
107		if (!empty($msgstop)) {
108		$xoopsTpl->assign('preview', true);
109		$xoopsTpl->assign('msgstop', $msgstop);
110		include_once __DIR__ . '/include/form_sign.inc.php';
111		$signform->assign($xoopsTpl);
112		include XOOPS_ROOT_PATH . '/footer.php';
113		exit();
114		}
115		$msgpost['title'] = $ts->previewTarea($title);
116		$msgpost['message'] = $ts->previewTarea($message);
117		$msgpost['poster'] = $name;
118		$msgpost['user_id'] = $user_id;
119		$msgpost['date'] = formatTimestamp(time(), 's');
120		$msgpost['photo'] = $preview_name;
121		if (1 == $option['opt_url']) {
122		$msgpost['message'] = str_replace('target="_blank"', 'target="_blank" rel="nofollow"', $msgpost['message']);
123		}
124		if ($gender) {
125		$msgpost['gender'] = '<img src="assets/images/' . $gender . '.gif"';
126		}
127		if ($email) {
128		$msgpost['email'] = '<img src="' . XOOPS_URL . '/images/icons/email.gif" alt="' . _SENDEMAILTO . '">';
129		}
130		if ($url) {
131		$msgpost['url'] = '<img src="' . XOOPS_URL . '/images/icons/www.gif" alt="' . _VISITWEBSITE . '">';
132		}
133		if ($country) {
134		$flag = XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->dirname() . '/assets/images/flags/' . $xoopsModuleConfig['flagdir'] . '/' . $country . '.gif';
135		$arr_country = XfguestbookUtil::getCountry("country_code ='" . $country . '\'');
136		$country_name = (count($arr_country) > 0) ? $arr_country[0]['country_name'] : '';
137	View Code Duplication	if (file_exists($flag)) {
138		$msgpost['country'] = '<img src="'
139		. XOOPS_URL
140		. '/modules/xfguestbook/assets/images/flags/'
141		. $xoopsModuleConfig['flagdir']
142		. '/'
143		. $country
144		. '.gif" alt="'
145		. $country_name
146		. '">';
147		} else {
148		$msgpost['country'] = $country_name;
149		}
150		}
151
152		$xoopsTpl->assign('preview', true);
153		$xoopsTpl->assign('msgstop', $msgstop);
154		include __DIR__ . '/include/form_sign.inc.php';
155		$xoopsTpl->assign('msg', $msgpost);
156		$signform->assign($xoopsTpl);
157		include XOOPS_ROOT_PATH . '/footer.php';
158		break;
159
160		case 'post':
161		$msgstop = '';
162	View Code Duplication	if (1 == $option['opt_code']) {
163		xoops_load('XoopsCaptcha');
164		$xoopsCaptcha = XoopsCaptcha::getInstance();
165		if (!$xoopsCaptcha->verify()) {
166		$msgstop .= $xoopsCaptcha->getMessage() . '<br><br>';
167		}
168		include XOOPS_ROOT_PATH . '/header.php';
169		}
170		if ('' == $_POST['uman']) {
171		redirect_header('index.php', 2, '');
172		}
173	View Code Duplication	if (2 == $option['opt_url'] && preg_match('/(http[s])\|(www)/i', $message)) {
174		$msgstop .= MD_XFGUESTBOOK_URL_DISABLED . '<br><br>';
175		}
176		if (!XfguestbookUtil::email_exist($email)) {
177		$msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br><br>';
178		}
179		if ('' !== $email && !checkEmail($email)) {
180		$msgstop .= MD_XFGUESTBOOK_INVALIDMAIL . '<br><br>';
181		}
182		if (!empty($_FILES['photo']['name'])) {
183		XfguestbookUtil::upload();
184		}
185		if (!empty($msgstop)) {
186		$GLOBALS['xoopsOption']['template_main'] = 'xfguestbook_signform.tpl';
187		include XOOPS_ROOT_PATH . '/header.php';
188		$xoopsTpl->assign('preview', true);
189		$xoopsTpl->assign('msgstop', $msgstop);
190		include_once __DIR__ . '/include/form_sign.inc.php';
191		$signform->assign($xoopsTpl);
192		include XOOPS_ROOT_PATH . '/footer.php';
193		exit();
194		}
195		$photos_dir = XOOPS_UPLOAD_PATH . '/' . $xoopsModule->getVar('dirname');
196		if ('' !== $preview_name) {
197		$photo = str_replace('tmp_', 'msg_', $preview_name);
198		rename("$photos_dir/$preview_name", "$photos_dir/$photo");
199		}
200
201		$msgpost = $msgHandler->create();
202		$xoopsUser ? $user_id = $xoopsUser->uid() : $user_id = 0;
203		$xoopsUser ? $username = $xoopsUser->uname() : $username = $name;
204		$msgpost->setVar('user_id', $user_id);
205		$msgpost->setVar('uname', $username);
206		$msgpost->setVar('title', $title);
207		$msgpost->setVar('message', $message);
208		$msgpost->setVar('note', '');
209		$msgpost->setVar('post_time', time());
210		$msgpost->setVar('email', $email);
211		$msgpost->setVar('url', $url);
212		$msgpost->setVar('poster_ip', $_SERVER['REMOTE_ADDR']);
213		$msgpost->setVar('country', $country);
214		$msgpost->setVar('flagdir', $xoopsModuleConfig['flagdir']);
215		$msgpost->setVar('gender', $gender);
216		if (!isset($photo)) {
217		$photo = '';
218		}
219		$msgpost->setVar('photo', $photo);
220
221		if ($badip) {
222		$msgpost->setVar('moderate', 1);
223		} else {
224		$msgpost->setVar('moderate', $xoopsModuleConfig['moderate']);
225		}
226		$nb_removed_tmp = XfguestbookUtil::clear_tmp_files($photos_dir);
227		$messagesent = MD_XFGUESTBOOK_MESSAGESENT;
228
229		if ($msgHandler->insert($msgpost)) {
230		if ($badip \|\| $xoopsModuleConfig['moderate']) {
231		$messagesent .= '<br>' . MD_XFGUESTBOOK_AFTERMODERATE;
232		}
233
234		// Send mail to webmaster
235		if (1 == $xoopsModuleConfig['sendmail2wm']) {
236		$subject = $xoopsConfig['sitename'] . ' - ' . MD_XFGUESTBOOK_NAMEMODULE;
237		$xoopsMailer = xoops_getMailer();
238		$xoopsMailer->useMail();
239		$xoopsMailer->setToEmails($xoopsConfig['adminmail']);
240		$xoopsMailer->setFromEmail($xoopsConfig['adminmail']);
241		$xoopsMailer->setFromName($xoopsConfig['sitename']);
242		$xoopsMailer->setSubject($subject);
243		$xoopsMailer->setBody(MD_XFGUESTBOOK_NEWMESSAGE . ' ' . XOOPS_URL . '/modules/' . $xoopsModule->dirname() . '/');
244		if (!$xoopsMailer->send()) {
245		echo $xoopsMailer->getErrors();
246		}
247		}
248		redirect_header('index.php', 2, $messagesent);
249		} else {
250		$messagesent = $msgpost->getHtmlErrors();
251		redirect_header('index.php', 2, $messagesent);
252		}
253		break;
254
255		case 'form':
256		default:
257		$xoopsOption['template_main'] = 'xfguestbook_signform.tpl';
258
259		include XOOPS_ROOT_PATH . '/header.php';
260		$user_id = !empty($xoopsUser) ? $xoopsUser->getVar('uid', 'E') : 0;
261		$name = !empty($xoopsUser) ? $xoopsUser->getVar('uname', 'E') : '';
262		$email = !empty($xoopsUser) ? $xoopsUser->getVar('email', 'E') : '';
263		$url = !empty($xoopsUser) ? $xoopsUser->getVar('url', 'E') : '';
264		$country = $option['countrybydefault'];
265
266		if (1 == $option['opt_code']) {
267		xoops_load('XoopsCaptcha');
268		$xoopsCaptcha = XoopsCaptcha::getInstance();
269		}
270		if ($badip \|\| $xoopsModuleConfig['moderate']) {
271		$xoopsTpl->assign('moderate', MD_XFGUESTBOOK_MODERATED);
272		}
273
274		include __DIR__ . '/include/form_sign.inc.php';
275		$signform->assign($xoopsTpl);
276		include XOOPS_ROOT_PATH . '/footer.php';
277		break;
278		}
279

XoopsModules25x / xfguestbook

Push — master ( 07b04b...37a2f2 )

xfcreate.php (2 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like