Issues in NullEventManager.php (master) - Issues in master - abacaphiliac/zend-eventmanager-pluginmanager - Measure and Improve Code Quality continuously with Scrutinizer

Issues (5)

Security Analysis no request data

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

src/PluginManager/NullEventManager.php (1 issue)

Labels

Deprecated Code 1

Severity

Minor 1

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace Abacaphiliac\Zend\EventManager\PluginManager;

use Traversable;
use Zend\EventManager\EventManagerInterface;
use Zend\EventManager\ListenerAggregateInterface;
use Zend\EventManager\ResponseCollection;
use Zend\EventManager\SharedEventManagerAwareInterface;
use Zend\EventManager\SharedEventManagerInterface;
use Zend\Stdlib\CallbackHandler;

class NullEventManager implements EventManagerInterface
{
    /** @var  SharedEventManagerInterface */
    private $sharedEventManager;

    /**
     * NullEventManager constructor.
     * @param SharedEventManagerInterface $sharedEventManager
     */
    public function __construct(SharedEventManagerInterface $sharedEventManager)
    {
        $this->sharedEventManager = $sharedEventManager;
    }

    /**
     * Trigger an event
     *
     * Should allow handling the following scenarios:
     * - Passing Event object only
     * - Passing event name and Event object only
     * - Passing event name, target, and Event object
     * - Passing event name, target, and array|ArrayAccess of arguments
     *
     * Can emulate triggerUntil() if the last argument provided is a callback.
     *
     * @param  string $event
     * @param  object|string $target
     * @param  array|object $argv
     * @param  null|callable $callback
     * @return ResponseCollection
     */
    public function trigger($event, $target = null, $argv = array(), $callback = null)
    {
        return new ResponseCollection();
    }

    /**
     * Trigger an event until the given callback returns a boolean false
     *
     * Should allow handling the following scenarios:
     * - Passing Event object and callback only
     * - Passing event name, Event object, and callback only
     * - Passing event name, target, Event object, and callback
     * - Passing event name, target, array|ArrayAccess of arguments, and callback
     *
     * @param  string $event
     * @param  object|string $target
     * @param  array|object $argv
     * @param  callable $callback
     * @return ResponseCollection
     */
    public function triggerUntil($event, $target, $argv = null, $callback = null)
    {
        return new ResponseCollection();
    }

    /**
     * Attach a listener to an event
     *
     * @param  string $event
     * @param  callable $callback
     * @param  int $priority Priority at which to register listener
     * @return CallbackHandler
     */
    public function attach($event, $callback = null, $priority = 1)
    {
        return new CallbackHandler(function () {

            
        });
    }

    /**
     * Detach an event listener
     *
     * @param  CallbackHandler|ListenerAggregateInterface $listener
     * @return bool
     */
    public function detach($listener)
    {
        return true;
    }

    /**
     * Get a list of events for which this collection has listeners
     *
     * @return array
     */
    public function getEvents()
    {
        return array();
    }

    /**
     * Retrieve a list of listeners registered to a given event
     *
     * @param  string $event
     * @return array|object
     */
    public function getListeners($event)
    {
        return array();
    }

    /**
     * Clear all listeners for a given event
     *
     * @param  string $event
     * @return void
     */
    public function clearListeners($event)
    {

    }

    /**
     * Set the event class to utilize
     *
     * @param  string $class
     * @return EventManagerInterface
     */
    public function setEventClass($class)
    {
        return $this;
    }

    /**
     * Get the identifier(s) for this EventManager
     *
     * @return array
     */
    public function getIdentifiers()
    {
        return array();
    }

    /**
     * Set the identifiers (overrides any currently set identifiers)
     *
     * @param string|int|array|Traversable $identifiers
     * @return EventManagerInterface
     */
    public function setIdentifiers($identifiers)
    {
        return $this;
    }

    /**
     * Add some identifier(s) (appends to any currently set identifiers)
     *
     * @param string|int|array|Traversable $identifiers
     * @return EventManagerInterface
     */
    public function addIdentifiers($identifiers)
    {
        return $this;
    }

    /**
     * Attach a listener aggregate
     *
     * @param  ListenerAggregateInterface $aggregate
     * @param  int $priority If provided, a suggested priority for the aggregate to use
     * @return void return value of {@link ListenerAggregateInterface::attach()}
     */
    public function attachAggregate(ListenerAggregateInterface $aggregate, $priority = 1)
    {
        
    }

    /**
     * Detach a listener aggregate
     *
     * @param  ListenerAggregateInterface $aggregate
     * @return void return value of {@link ListenerAggregateInterface::detach()}
     */
    public function detachAggregate(ListenerAggregateInterface $aggregate)
    {
        
    }

    /**
     * Inject a SharedEventManager instance
     *
     * @param  SharedEventManagerInterface $sharedEventManager
     * @return SharedEventManagerAwareInterface
     */
    public function setSharedManager(SharedEventManagerInterface $sharedEventManager)
    {
        $this->sharedEventManager = $sharedEventManager;
        
        return $this;
    }

    /**
     * Get shared collections container
     *
     * @return SharedEventManagerInterface
     */
    public function getSharedManager()
    {
        return $this->sharedEventManager;
    }

    /**
     * Remove any shared collections
     *
     * @return void
     */
    public function unsetSharedManager()
    {
        $this->sharedEventManager = null;
    }
}


1		<?php
2
3		namespace Abacaphiliac\Zend\EventManager\PluginManager;
4
5		use Traversable;
6		use Zend\EventManager\EventManagerInterface;
7		use Zend\EventManager\ListenerAggregateInterface;
8		use Zend\EventManager\ResponseCollection;
9		use Zend\EventManager\SharedEventManagerAwareInterface;
10		use Zend\EventManager\SharedEventManagerInterface;
11		use Zend\Stdlib\CallbackHandler;
12
13		class NullEventManager implements EventManagerInterface
14		{
15		/** @var SharedEventManagerInterface */
16		private $sharedEventManager;
17
18		/**
19		* NullEventManager constructor.
20		* @param SharedEventManagerInterface $sharedEventManager
21		*/
22	22	public function __construct(SharedEventManagerInterface $sharedEventManager)
23		{
24	22	$this->sharedEventManager = $sharedEventManager;
25	22	}
26
27		/**
28		* Trigger an event
29		*
30		* Should allow handling the following scenarios:
31		* - Passing Event object only
32		* - Passing event name and Event object only
33		* - Passing event name, target, and Event object
34		* - Passing event name, target, and array\|ArrayAccess of arguments
35		*
36		* Can emulate triggerUntil() if the last argument provided is a callback.
37		*
38		* @param string $event
39		* @param object\|string $target
40		* @param array\|object $argv
41		* @param null\|callable $callback
42		* @return ResponseCollection
43		*/
44	1	public function trigger($event, $target = null, $argv = array(), $callback = null)
45		{
46	1	return new ResponseCollection();
47		}
48
49		/**
50		* Trigger an event until the given callback returns a boolean false
51		*
52		* Should allow handling the following scenarios:
53		* - Passing Event object and callback only
54		* - Passing event name, Event object, and callback only
55		* - Passing event name, target, Event object, and callback
56		* - Passing event name, target, array\|ArrayAccess of arguments, and callback
57		*
58		* @param string $event
59		* @param object\|string $target
60		* @param array\|object $argv
61		* @param callable $callback
62		* @return ResponseCollection
63		*/
64	1	public function triggerUntil($event, $target, $argv = null, $callback = null)
65		{
66	1	return new ResponseCollection();
67		}
68
69		/**
70		* Attach a listener to an event
71		*
72		* @param string $event
73		* @param callable $callback
74		* @param int $priority Priority at which to register listener
75		* @return CallbackHandler
76		*/
77		public function attach($event, $callback = null, $priority = 1)
78		{
79	2	return new CallbackHandler(function () {
		0 ignored issues – show Deprecated Code introduced 2016-04-12 05:40 UTC by Report Bug Copy Issue Report Show Similar Issues like this The class `Zend\Stdlib\CallbackHandler` has been deprecated with message: as of v2.7.4. This class, trait or interface has been deprecated. The supplier of the file has supplied an explanatory message. The explanatory message should give you some clue as to whether and when the type will be removed from the class and what other constant to use instead. Loading history...
80
81	2	});
82		}
83
84		/**
85		* Detach an event listener
86		*
87		* @param CallbackHandler\|ListenerAggregateInterface $listener
88		* @return bool
89		*/
90	1	public function detach($listener)
91		{
92	1	return true;
93		}
94
95		/**
96		* Get a list of events for which this collection has listeners
97		*
98		* @return array
99		*/
100	3	public function getEvents()
101		{
102	3	return array();
103		}
104
105		/**
106		* Retrieve a list of listeners registered to a given event
107		*
108		* @param string $event
109		* @return array\|object
110		*/
111	1	public function getListeners($event)
112		{
113	1	return array();
114		}
115
116		/**
117		* Clear all listeners for a given event
118		*
119		* @param string $event
120		* @return void
121		*/
122	1	public function clearListeners($event)
123		{
124
125	1	}
126
127		/**
128		* Set the event class to utilize
129		*
130		* @param string $class
131		* @return EventManagerInterface
132		*/
133	1	public function setEventClass($class)
134		{
135	1	return $this;
136		}
137
138		/**
139		* Get the identifier(s) for this EventManager
140		*
141		* @return array
142		*/
143	3	public function getIdentifiers()
144		{
145	3	return array();
146		}
147
148		/**
149		* Set the identifiers (overrides any currently set identifiers)
150		*
151		* @param string\|int\|array\|Traversable $identifiers
152		* @return EventManagerInterface
153		*/
154	2	public function setIdentifiers($identifiers)
155		{
156	2	return $this;
157		}
158
159		/**
160		* Add some identifier(s) (appends to any currently set identifiers)
161		*
162		* @param string\|int\|array\|Traversable $identifiers
163		* @return EventManagerInterface
164		*/
165	2	public function addIdentifiers($identifiers)
166		{
167	2	return $this;
168		}
169
170		/**
171		* Attach a listener aggregate
172		*
173		* @param ListenerAggregateInterface $aggregate
174		* @param int $priority If provided, a suggested priority for the aggregate to use
175		* @return void return value of {@link ListenerAggregateInterface::attach()}
176		*/
177	2	public function attachAggregate(ListenerAggregateInterface $aggregate, $priority = 1)
178		{
179
180	2	}
181
182		/**
183		* Detach a listener aggregate
184		*
185		* @param ListenerAggregateInterface $aggregate
186		* @return void return value of {@link ListenerAggregateInterface::detach()}
187		*/
188	1	public function detachAggregate(ListenerAggregateInterface $aggregate)
189		{
190
191	1	}
192
193		/**
194		* Inject a SharedEventManager instance
195		*
196		* @param SharedEventManagerInterface $sharedEventManager
197		* @return SharedEventManagerAwareInterface
198		*/
199	1	public function setSharedManager(SharedEventManagerInterface $sharedEventManager)
200		{
201	1	$this->sharedEventManager = $sharedEventManager;
202
203	1	return $this;
204		}
205
206		/**
207		* Get shared collections container
208		*
209		* @return SharedEventManagerInterface
210		*/
211	3	public function getSharedManager()
212		{
213	3	return $this->sharedEventManager;
214		}
215
216		/**
217		* Remove any shared collections
218		*
219		* @return void
220		*/
221	1	public function unsetSharedManager()
222		{
223	1	$this->sharedEventManager = null;
224	1	}
225		}
226

abacaphiliac / zend-eventmanager-pluginmanager

Issues (5)

Security Analysis no request data

src/PluginManager/NullEventManager.php (1 issue)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like