Issues in HtmlButton.php (master) - Issues in master - jcheron/phalcon-jquery - Measure and Improve Code Quality continuously with Scrutinizer

Issues (277)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

Ajax/semantic/html/elements/HtmlButton.php (4 issues)

Labels

Severity

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php

namespace Ajax\semantic\html\elements;

use Ajax\semantic\html\base\HtmlSemDoubleElement;
use Ajax\semantic\html\base\traits\LabeledIconTrait;
use Ajax\semantic\html\base\constants\Emphasis;
use Ajax\semantic\html\base\constants\Social;
use Ajax\semantic\html\elements\html5\HtmlLink;

/**
 * Semantic Button component
 * @see http://semantic-ui.com/elements/button.html
 * @author jc
 * @version 1.001
 */
class HtmlButton extends HtmlSemDoubleElement {
	use LabeledIconTrait;

	/**
	 * Constructs an HTML Semantic button
	 * @param string $identifier HTML id
	 * @param string $value value of the Button
	 * @param string $cssStyle btn-default, btn-primary...
	 * @param string $onClick JS Code for click event
	 */
	public function __construct($identifier, $value="", $cssStyle=null, $onClick=null) {

		parent::__construct($identifier, "button", "ui button");
		$this->content=$value;
		if (isset($cssStyle)) {
			$this->setStyle($cssStyle);
		}
		if (isset($onClick)) {
			$this->onClick($onClick);
		}
	}

	/**
	 * Set the button value
	 * @param string $value
	 * @return \Ajax\semantic\html\HtmlButton
	 */
	public function setValue($value) {
		$this->content=$value;
		return $this;
	}

	/**
	 * define the button style
	 * @param string|int $cssStyle
	 * @return \Ajax\semantic\html\HtmlButton default : ""
	 */
	public function setStyle($cssStyle) {
		return $this->addToProperty("class", $cssStyle);
	}

	public function setFocusable($value=true) {
		if ($value === true)
			$this->setProperty("tabindex", "0");
		else {
			$this->removeProperty("tabindex");
		}
		return $this;
	}

	public function setAnimated($content, $animation="") {
		$this->setTagName("div");
		$this->addToProperty("class", "animated " . $animation);
		$visible=new HtmlSemDoubleElement("visible-" . $this->identifier, "div");
		$visible->setClass("visible content");
		$visible->setContent($this->content);
		$hidden=new HtmlSemDoubleElement("hidden-" . $this->identifier, "div");
		$hidden->setClass("hidden content");
		$hidden->setContent($content);
		$this->content=array ($visible,$hidden );
		return $hidden;
	}

	/**
	 *
	 * @param string|HtmlIcon $icon
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function asIcon($icon) {
		$iconO=$icon;
		if (\is_string($icon)) {
			$iconO=new HtmlIcon("icon-" . $this->identifier, $icon);
		}
		$this->addToProperty("class", "icon");
		$this->content=$iconO;
		return $this;
	}

	public function asSubmit() {
		$this->setProperty("type", "submit");
		return $this->setTagName("button");
	}

	/**
	 * Add and return a button label
	 * @param string $caption
/**
 * @param array $germany
 * @param array $island
 * @param array $italy
 */
function finale($germany, $island) {
    return "2:1";
}
	 * @param string $before
	 * @param string $icon
	 * @return \Ajax\semantic\html\elements\HtmlLabel
	 */
	public function addLabel($label, $before=false, $icon=NULL) {

		$this->tagName="div";
		$this->addToProperty("class", "labeled");
		$this->content=new HtmlButton("button-" . $this->identifier, $this->content);
		$this->content->setTagName("div");
		$label=new HtmlLabel("label-" . $this->identifier, $label, "a");
		if(isset($icon))
			$label->addIcon($icon);
		$label->setBasic();
		$this->addContent($label, $before);

		return $label;
	}

	/*
	 * (non-PHPdoc)
	 * @see \Ajax\common\html\BaseHtml::fromArray()
	 */
	public function fromArray($array) {
		$array=parent::fromArray($array);
		foreach ( $array as $key => $value ) {
			$this->setProperty($key, $value);
		}
		return $array;
	}

	/**
	 * show it is currently the active user selection
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setActive() {
		return $this->addToProperty("class", "active");
	}

	/**
	 * hint towards a positive consequence
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setPositive() {
		return $this->addToProperty("class", "positive");
	}

	/**
	 * hint towards a negative consequence
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setNegative() {
		return $this->addToProperty("class", "negative");
	}

	/**
	 * formatted to toggle on/off
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setToggle() {
		return $this->addToProperty("class", "toggle");
	}

	/**
	 *
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setCircular() {
		return $this->addToProperty("class", "circular");
	}

	/**
	 * button is less pronounced
	 * @return \Ajax\semantic\html\elements\HtmlButton
	 */
	public function setBasic() {
		return $this->addToProperty("class", "basic");
	}

	public function setEmphasis($value) {
		return $this->addToPropertyCtrl("class", $value, Emphasis::getConstants());
	}

	public function setLoading() {
		return $this->addToProperty("class", "loading");
	}

	public static function social($identifier, $social, $value=NULL) {
		if ($value === NULL)
			$value=\ucfirst($social);
		$return=new HtmlButton($identifier, $value);
		$return->addIcon($social);
		return $return->addToPropertyCtrl("class", $social, Social::getConstants());
	}

	public static function labeled($identifier, $value, $icon, $before=true) {
		$result=new HtmlButton($identifier, $value);
		$result->addIcon($icon, $before, true);
		return $result;
	}

	public static function icon($identifier, $icon) {
		$result=new HtmlButton($identifier);
		$result->asIcon($icon);
		return $result;
	}

	public function asLink($href=NULL) {
		$lnk=new HtmlLink("lnk-".$this->identifier,$href,$this->content);
		$this->content=$lnk;
		return $this;
	}
}

1		<?php
2
3		namespace Ajax\semantic\html\elements;
4
5		use Ajax\semantic\html\base\HtmlSemDoubleElement;
6		use Ajax\semantic\html\base\traits\LabeledIconTrait;
7		use Ajax\semantic\html\base\constants\Emphasis;
8		use Ajax\semantic\html\base\constants\Social;
9		use Ajax\semantic\html\elements\html5\HtmlLink;
10
11		/**
12		* Semantic Button component
13		* @see http://semantic-ui.com/elements/button.html
14		* @author jc
15		* @version 1.001
16		*/
17		class HtmlButton extends HtmlSemDoubleElement {
18		use LabeledIconTrait;
19
20		/**
21		* Constructs an HTML Semantic button
22		* @param string $identifier HTML id
23		* @param string $value value of the Button
24		* @param string $cssStyle btn-default, btn-primary...
25		* @param string $onClick JS Code for click event
26		*/
27	View Code Duplication	public function __construct($identifier, $value="", $cssStyle=null, $onClick=null) {
		0 ignored issues – show Duplication introduced 2016-04-04 01:15 UTC by Report Bug Copy Issue Report Show Similar Issues like this This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
28		parent::__construct($identifier, "button", "ui button");
29		$this->content=$value;
30		if (isset($cssStyle)) {
31		$this->setStyle($cssStyle);
32		}
33		if (isset($onClick)) {
34		$this->onClick($onClick);
35		}
36		}
37
38		/**
39		* Set the button value
40		* @param string $value
41		* @return \Ajax\semantic\html\HtmlButton
42		*/
43		public function setValue($value) {
44		$this->content=$value;
45		return $this;
46		}
47
48		/**
49		* define the button style
50		* @param string\|int $cssStyle
51		* @return \Ajax\semantic\html\HtmlButton default : ""
52		*/
53		public function setStyle($cssStyle) {
54		return $this->addToProperty("class", $cssStyle);
55		}
56
57		public function setFocusable($value=true) {
58		if ($value === true)
59		$this->setProperty("tabindex", "0");
60		else {
61		$this->removeProperty("tabindex");
62		}
63		return $this;
64		}
65
66		public function setAnimated($content, $animation="") {
67		$this->setTagName("div");
68		$this->addToProperty("class", "animated " . $animation);
69		$visible=new HtmlSemDoubleElement("visible-" . $this->identifier, "div");
70		$visible->setClass("visible content");
71		$visible->setContent($this->content);
72		$hidden=new HtmlSemDoubleElement("hidden-" . $this->identifier, "div");
73		$hidden->setClass("hidden content");
74		$hidden->setContent($content);
75		$this->content=array ($visible,$hidden );
76		return $hidden;
77		}
78
79		/**
80		*
81		* @param string\|HtmlIcon $icon
82		* @return \Ajax\semantic\html\elements\HtmlButton
83		*/
84		public function asIcon($icon) {
85		$iconO=$icon;
86		if (\is_string($icon)) {
87		$iconO=new HtmlIcon("icon-" . $this->identifier, $icon);
88		}
89		$this->addToProperty("class", "icon");
90		$this->content=$iconO;
91		return $this;
92		}
93
94		public function asSubmit() {
95		$this->setProperty("type", "submit");
96		return $this->setTagName("button");
97		}
98
99		/**
100		* Add and return a button label
101		* @param string $caption
		0 ignored issues – show Bug introduced 2016-06-01 01:21 UTC by Report Bug Copy Issue Report Show Similar Issues like this There is no parameter named `$caption`. Was it maybe removed? This check looks for PHPDoc comments describing methods or function parameters that do not exist on the corresponding method or function. Consider the following example. The parameter `$italy` is not defined by the method `finale(...)`. /** * @param array $germany * @param array $island * @param array $italy */ function finale($germany, $island) { return "2:1"; } The most likely cause is that the parameter was removed, but the annotation was not. Loading history...
102		* @param string $before
103		* @param string $icon
104		* @return \Ajax\semantic\html\elements\HtmlLabel
105		*/
106	View Code Duplication	public function addLabel($label, $before=false, $icon=NULL) {
		0 ignored issues – show Duplication introduced 2016-06-01 01:21 UTC by Report Bug Copy Issue Report Show Similar Issues like this This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
107		$this->tagName="div";
108		$this->addToProperty("class", "labeled");
109		$this->content=new HtmlButton("button-" . $this->identifier, $this->content);
110		$this->content->setTagName("div");
111		$label=new HtmlLabel("label-" . $this->identifier, $label, "a");
112		if(isset($icon))
113		$label->addIcon($icon);
114		$label->setBasic();
115		$this->addContent($label, $before);
		0 ignored issues – show Bug introduced 2016-04-04 01:15 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like `$before` defined by parameter `$before` on line 106 can also be of type `string`; however, `Ajax\common\html\HtmlDoubleElement::addContent()` does only seem to accept `boolean`, maybe add an additional type check? This check looks at variables that have been passed in as parameters and are passed out again to other methods. If the outgoing method call has stricter type requirements than the method itself, an issue is raised. An additional type check may prevent trouble. Loading history...
116		return $label;
117		}
118
119		/*
120		* (non-PHPdoc)
121		* @see \Ajax\common\html\BaseHtml::fromArray()
122		*/
123		public function fromArray($array) {
124		$array=parent::fromArray($array);
125		foreach ( $array as $key => $value ) {
126		$this->setProperty($key, $value);
127		}
128		return $array;
129		}
130
131		/**
132		* show it is currently the active user selection
133		* @return \Ajax\semantic\html\elements\HtmlButton
134		*/
135		public function setActive() {
136		return $this->addToProperty("class", "active");
137		}
138
139		/**
140		* hint towards a positive consequence
141		* @return \Ajax\semantic\html\elements\HtmlButton
142		*/
143		public function setPositive() {
144		return $this->addToProperty("class", "positive");
145		}
146
147		/**
148		* hint towards a negative consequence
149		* @return \Ajax\semantic\html\elements\HtmlButton
150		*/
151		public function setNegative() {
152		return $this->addToProperty("class", "negative");
153		}
154
155		/**
156		* formatted to toggle on/off
157		* @return \Ajax\semantic\html\elements\HtmlButton
158		*/
159		public function setToggle() {
160		return $this->addToProperty("class", "toggle");
161		}
162
163		/**
164		*
165		* @return \Ajax\semantic\html\elements\HtmlButton
166		*/
167		public function setCircular() {
168		return $this->addToProperty("class", "circular");
169		}
170
171		/**
172		* button is less pronounced
173		* @return \Ajax\semantic\html\elements\HtmlButton
174		*/
175		public function setBasic() {
176		return $this->addToProperty("class", "basic");
177		}
178
179		public function setEmphasis($value) {
180		return $this->addToPropertyCtrl("class", $value, Emphasis::getConstants());
181		}
182
183		public function setLoading() {
184		return $this->addToProperty("class", "loading");
185		}
186
187		public static function social($identifier, $social, $value=NULL) {
188		if ($value === NULL)
189		$value=\ucfirst($social);
190		$return=new HtmlButton($identifier, $value);
191		$return->addIcon($social);
192		return $return->addToPropertyCtrl("class", $social, Social::getConstants());
193		}
194
195		public static function labeled($identifier, $value, $icon, $before=true) {
196		$result=new HtmlButton($identifier, $value);
197		$result->addIcon($icon, $before, true);
198		return $result;
199		}
200
201		public static function icon($identifier, $icon) {
202		$result=new HtmlButton($identifier);
203		$result->asIcon($icon);
204		return $result;
205		}
206
207		public function asLink($href=NULL) {
208		$lnk=new HtmlLink("lnk-".$this->identifier,$href,$this->content);
209		$this->content=$lnk;
210		return $this;
211		}
212		}

jcheron / phalcon-jquery

Issues (277)

Security Analysis not enabled

Ajax/semantic/html/elements/HtmlButton.php (4 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like