for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
/**************************************************************************
********** English Wikipedia Account Request Interface **********
***************************************************************************
** Wikipedia Account Request Graphic Design by Charles Melbye, **
** which is licensed under a Creative Commons **
** Attribution-Noncommercial-Share Alike 3.0 United States License. **
** **
** All other code are released under the Public Domain **
** by the ACC Development Team. **
** See CREDITS for the list of developers. **
***************************************************************************/
global $session;
// load the configuration
require_once 'config.inc.php';
// Get all the classes.
require_once 'functions.php';
initialiseSession();
require_once 'includes/PdoDatabase.php';
require_once 'includes/SmartyInit.php';
// Check to see if the database is unavailable.
// Uses the false variable as its the internal interface.
if (Offline::isOffline()) {
echo Offline::getOfflineMessage(false);
die();
}
if (isset($_SESSION['user'])) {
$sessionuser = $_SESSION['user'];
else {
$sessionuser = "";
// initialise providers
global $squidIpList;
$locationProvider = new $locationProviderClass(gGetDb('acc'), $locationProviderApiKey);
$rdnsProvider = new $rdnsProviderClass(gGetDb('acc'));
$antispoofProvider = new $antispoofProviderClass();
$xffTrustProvider = new $xffTrustProviderClass($squidIpList);
BootstrapSkin::displayInternalHeader();
$session = new session();
$session->checksecurity();
session::checksecurity()
If this is a false-positive, you can also ignore this issue in your code via the ignore-deprecated annotation
ignore-deprecated
/** @scrutinizer ignore-deprecated */ $session->checksecurity();
// protect against logged out users
if (User::getCurrent()->isCommunityUser()) {
showlogin();
BootstrapSkin::displayInternalFooter();
///////////////// Page code
$smarty->display("search/header.tpl");
BootstrapSkin::pushTagStack("</div>"); // span12
BootstrapSkin::pushTagStack("</div>"); // row
if (isset($_GET['term']) && isset($_GET['type'])) {
$term = $_GET['term'];
if ($term == "" || $term == "%") {
BootstrapSkin::displayAlertBox("No search term entered.", "alert-error", "", false);
$smarty->display("search/searchform.tpl");
if ($_GET['type'] == "email") {
if ($term == "@") {
BootstrapSkin::displayAlertBox("The search term '@' is not valid for email address searches!");
$qterm = '%' . $term . '%';
$statement = gGetDb()->prepare("SELECT * FROM request WHERE email LIKE :term;");
$statement->bindValue(":term", $qterm);
$statement->execute();
$requests = $statement->fetchAll(PDO::FETCH_CLASS, "Request");
foreach ($requests as $r) {
$r->setDatabase(gGetDb());
$smarty->assign("term", $term);
$smarty->assign("requests", $requests);
$target = "email address";
$smarty->assign("target", $target);
$smarty->display("search/searchresult.tpl");
elseif ($_GET['type'] == 'IP') {
$statement = gGetDb()->prepare("SELECT * FROM request WHERE email <> '[email protected]' and ip <> '127.0.0.1' and ip LIKE :term or forwardedip LIKE :term2;");
$statement->bindValue(":term2", $qterm);
$target = "IP address";
elseif ($_GET['type'] == 'Request') {
$statement = gGetDb()->prepare("SELECT * FROM request WHERE name LIKE :term;");
$target = "requested name";
BootstrapSkin::displayAlertBox("Unknown search type", "alert-error", "Error");
enwikipedia-acc /
waca
Simon Walker
Loading history...