Issues in User.php (master) - Issues in master - mambax7/newbb5 - Measure and Improve Code Quality continuously with Scrutinizer

Issues (380)

Security Analysis not enabled

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

Header Injection

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

class/User.php (1 issue)

Labels

Severity

Minor 1

<?php

namespace XoopsModules\Newbb;

/**
 * NewBB 5.0x,  the forum module for XOOPS project
 *
 * @copyright      XOOPS Project (https://xoops.org)
 * @license        GNU GPL 2 or later (https://www.gnu.org/licenses/gpl-2.0.html)
 * @author         Taiwen Jiang (phppp or D.J.) <[email protected]>
 * @since          4.00
 * @package        module::newbb
 */



\defined('NEWBB_FUNCTIONS_INI') || require $GLOBALS['xoops']->path('modules/newbb/include/functions.ini.php');

/**
 * @param $RPG
 * @param $RPGDIFF
 * @return array|number
 */
function newbb_calculateLevel($RPG, $RPGDIFF)
{
    //$RPG = $user->getVar('posts');
    //$RPGDIFF = $user->getVar('user_regdate');

    $today = \time();
    $diff  = $today - $RPGDIFF;
    $exp   = \round($diff / 86400, 0);
    if ($exp <= 0) {
        $exp = 1;
    }
    $ppd       = \round($RPG / $exp, 0);
    $level     = \pow(\log10($RPG), 3);
    $ep        = \floor(100 * ($level - \floor($level)));
    $showlevel = \floor($level + 1);
    $hpmulti   = \round($ppd / 6, 1);
    if ($hpmulti > 1.5) {
        $hpmulti = 1.5;
    }
    if ($hpmulti < 1) {
        $hpmulti = 1;
    }
    $maxhp = $level * 25 * $hpmulti;
    $hp    = $ppd / 5;
    if ($hp >= 1) {
        $hp = $maxhp;
    } else {
        $hp = \floor($hp * $maxhp);
    }
    $hp    = \floor($hp);
    $maxhp = \floor($maxhp);
    $zhp   = $maxhp;
    if ($maxhp <= 0) {
        $zhp = 1;
    }
    $hpf   = \floor(100 * ($hp / $zhp)) - 1;
    $maxmp = ($exp * $level) / 5;
    $mp    = $RPG / 3;
    if ($mp >= $maxmp) {
        $mp = $maxmp;
    }
    $maxmp = \floor($maxmp);
    $mp    = \floor($mp);
    $zmp   = $maxmp;
    if ($maxmp <= 0) {
        $zmp = 1;
    }
    $mpf = \floor(100 * ($mp / $zmp)) - 1;
    if ($hpf >= 98) {
        $hpf -= 2;
    }
    if ($ep >= 98) {
        $ep -= 2;
    }
    if ($mpf >= 98) {
        $mpf -= 2;
    }

    $level              = [];
    $level['level']     = $showlevel;
    $level['exp']       = $ep;
    $level['exp_width'] = $ep . '%';
    $level['hp']        = $hp;
    $level['hp_max']    = $maxhp;
    $level['hp_width']  = $hpf . '%';
    $level['mp']        = $mp;
    $level['mp_max']    = $maxmp;
    $level['mp_width']  = $mpf . '%';

    return $level;
}

/**
 * Class User
 */
class User
{
    public $user;

    public function __construct()
    {
    }

    /**
     * @return array
     */
    public function getUserbar()
    {
        global $isAdmin;

        $userbar = [];
        if (empty($GLOBALS['xoopsModuleConfig']['userbar_enabled'])) {
            return $userbar;
        }

        $user               = $this->user;
        $userbar['profile'] = [
            'link' => XOOPS_URL . '/userinfo.php?uid=' . $user->getVar('uid'),
            'name' => _PROFILE,
        ];

        if (\is_object($GLOBALS['xoopsUser'])) {
            $userbar['pm'] = [
                'link' => "javascript:void openWithSelfMain('" . XOOPS_URL . '/pmlite.php?send2=1&amp;to_userid=' . $user->getVar('uid') . "', 'pmlite', 450, 380);",
                'name' => \_MD_NEWBB_PM,
            ];
        }
        if ($user->getVar('user_viewemail') || $isAdmin) {
            $userbar['email'] = [
                'link' => "javascript:void window.open('mailto:" . $user->getVar('email') . "', 'new');",
                'name' => \_MD_NEWBB_EMAIL,
            ];
        }
        $url = $user->getVar('url');
        if ($url) {
            $userbar['url'] = [
                'link' => "javascript:void window.open('" . $url . "', 'new');",
                'name' => \_MD_NEWBB_WWW,
            ];
        }
        $icq = $user->getVar('user_icq');
        if ($icq) {
            $userbar['icq'] = [
                'link' => "javascript:void window.open('http://wwp.icq.com/scripts/search.dll?to=" . $icq . "', 'new');",
                'name' => \_MD_NEWBB_ICQ,
            ];
        }
        $aim = $user->getVar('user_aim');
        if ($aim) {
            $userbar['aim'] = [
                'link' => "javascript:void window.open('aim:goim?screenname=" . $aim . '&amp;message=Hi+' . $aim . '+Are+you+there?' . "', 'new');",
                'name' => \_MD_NEWBB_AIM,
            ];
        }
        $yim = $user->getVar('user_yim');
        if ($yim) {
            $userbar['yim'] = [
                'link' => "javascript:void window.open('http://edit.yahoo.com/config/send_webmesg?.target=" . $yim . '&.src=pg' . "', 'new');",
                'name' => \_MD_NEWBB_YIM,
            ];
        }
        $msn = $user->getVar('user_msnm');
        if ($msn) {
            $userbar['msnm'] = [
                'link' => "javascript:void window.open('http://members.msn.com?mem=" . $msn . "', 'new');",
                'name' => \_MD_NEWBB_MSNM,
            ];
        }

        return $userbar;
    }

    /**
     * @return string
     */
    public function getLevel()
    {
        global $forumUrl;

        $level = newbb_calculateLevel($this->user->getVar('posts'), $this->user->getVar('user_regdate'));
        $info  = '';
        if (2 == $GLOBALS['xoopsModuleConfig']['user_level']) {
            static $rpg_images;
            if (null === $rpg_images) {
                $iconHandler = \newbbGetIconHandler();
                $rpg_path    = $iconHandler->getPath('rpg');
                foreach (['img_left', 'img_backing', 'img_right', 'blue', 'green', 'orange'] as $img) {
                    // irmtfan fix: double "/" removed
                    $rpg_images[$img] = XOOPS_URL . $rpg_path . '/' . $img . '.gif';
                }
            }
            // irmtfan hardcore removed align="left"
            $table = "<table class='userlevel'><tr><td class='end'><img src='"
                     . $rpg_images['img_left']
                     . "' alt='' ></td><td class='center' background='"
                     . $rpg_images['img_backing']
                     . "'><img src='%s' width='%d' alt='' class='icon_left' ></td><td><img src='"
                     . $rpg_images['img_right']
                     . "' alt='' ></td></tr></table>";

            $info = \_MD_NEWBB_LEVEL . ' ' . $level['level'] . '<br><span title="' . \_MD_NEWBB_HP_DESC . '">' . \_MD_NEWBB_HP . ' ' . $level['hp'] . ' / ' . $level['hp_max'] . '</span><br>' . \sprintf($table, $rpg_images['orange'], $level['hp_width']);
            $info .= '<span title="' . \_MD_NEWBB_MP_DESC . '">' . \_MD_NEWBB_MP . ' ' . $level['mp'] . ' / ' . $level['mp_max'] . '</span><br>' . \sprintf($table, $rpg_images['green'], $level['mp_width']);
            $info .= '<span title="' . \_MD_NEWBB_EXP_DESC . '">' . \_MD_NEWBB_EXP . ' ' . $level['exp'] . '</span><br>' . \sprintf($table, $rpg_images['blue'], $level['exp_width']);
        } else {
            $info = \_MD_NEWBB_LEVEL . ' ' . $level['level'] . '; <span title="' . \_MD_NEWBB_EXP_DESC . '">' . \_MD_NEWBB_EXP . ' ' . $level['exp'] . '</span><br>';
            $info .= '<span title="' . \_MD_NEWBB_HP_DESC . '">' . \_MD_NEWBB_HP . ' ' . $level['hp'] . ' / ' . $level['hp_max'] . '</span><br>';
            $info .= '<span title="' . \_MD_NEWBB_MP_DESC . '">' . \_MD_NEWBB_MP . ' ' . $level['mp'] . ' / ' . $level['mp_max'] . '</span>';
        }

        return $info;
    }

    /**
     * @param \XoopsUser $user
     * @return mixed
     */
    public function getInfo($user)
    {
        global $myts;
        static $name_anonymous;

        if (!\is_object($user) || !$user->isActive()) {
            if (null === $name_anonymous) {
                $name_anonymous = $myts->htmlSpecialChars($GLOBALS['xoopsConfig']['anonymous']);
            }

            return ['name' => $name_anonymous, 'link' => $name_anonymous];
        }

        $this->user = $user;

        $userinfo['uid'] = $user->getVar('uid');


        $name             = empty($GLOBALS['xoopsModuleConfig']['show_realname']) ? $user->getVar('uname') : $user->getVar('name');
        $userinfo['name'] = $name ?: $user->getVar('uname');

        $userinfo['link'] = '<a href=\'' . XOOPS_URL . '/userinfo.php?uid=' . $user->getVar('uid') . '\'>' . $userinfo['name'] . '</a>';

        $userinfo['avatar'] = $user->getVar('user_avatar');
        // START hacked by irmtfan - easier rank getting - consistency with previous version back rank.title and rank.image
        $userrank         = $user->rank();
        $userinfo['rank'] = [];
        if (isset($userrank['image']) && $userrank['image']) {
            $userinfo['rank']['image'] = $userrank['image'];
            $userinfo['rank']['title'] = $userrank['title'];
        }
        // END hacked by irmtfan - easier rank getting  - a little correctness dot removed
        // START hacked by irmtfan - easier groups getting - can we use $_SESSION['xoopsUserGroups']???
        //checks for user's groups
        $userinfo['groups'] = [];
        /** @var \XoopsMemberHandler $memberHandler */
        $memberHandler = \xoops_getHandler('member');
        $usergroups    = $memberHandler->getGroupsByUser($userinfo['uid'], true);
        foreach ($usergroups as $group) {
            $userinfo['groups'][] = $group->getVar('name');
        }
        // END hacked by irmtfan - easier groups getting - can we use $_SESSION['xoopsUserGroups']???
        $userinfo['from'] = $user->getVar('user_from');

        require_once \dirname(__DIR__) . '/include/functions.time.php';
        $userinfo['regdate']    = \newbbFormatTimestamp($user->getVar('user_regdate'), 'reg');
        $userinfo['last_login'] = \newbbFormatTimestamp($user->getVar('last_login')); // irmtfan add last_login

        $userinfo['posts'] = $user->getVar('posts');

        if (!empty($GLOBALS['xoopsModuleConfig']['user_level'])) {
            $userinfo['level'] = $this->getLevel();
        }

        if (!empty($GLOBALS['xoopsModuleConfig']['userbar_enabled'])) {
            $userinfo['userbar'] = $this->getUserbar();
        }

        $userinfo['signature'] = $user->getVar('user_sig');

        return $userinfo;
    }
}


1			<?php
2
3			namespace XoopsModules\Newbb;
4
5			/**
6			* NewBB 5.0x, the forum module for XOOPS project
7			*
8			* @copyright XOOPS Project (https://xoops.org)
9			* @license GNU GPL 2 or later (https://www.gnu.org/licenses/gpl-2.0.html)
10			* @author Taiwen Jiang (phppp or D.J.) <[email protected]>
11			* @since 4.00
12			* @package module::newbb
13			*/
14
15
16
17			\defined('NEWBB_FUNCTIONS_INI') \|\| require $GLOBALS['xoops']->path('modules/newbb/include/functions.ini.php');
18
19			/**
20			* @param $RPG
21			* @param $RPGDIFF
22			* @return array\|number
23			*/
24			function newbb_calculateLevel($RPG, $RPGDIFF)
25			{
26			//$RPG = $user->getVar('posts');
27			//$RPGDIFF = $user->getVar('user_regdate');
28
29			$today = \time();
30			$diff = $today - $RPGDIFF;
31			$exp = \round($diff / 86400, 0);
32			if ($exp <= 0) {
33			$exp = 1;
34			}
35			$ppd = \round($RPG / $exp, 0);
36			$level = \pow(\log10($RPG), 3);
37			$ep = \floor(100 * ($level - \floor($level)));
38			$showlevel = \floor($level + 1);
39			$hpmulti = \round($ppd / 6, 1);
40			if ($hpmulti > 1.5) {
41			$hpmulti = 1.5;
42			}
43			if ($hpmulti < 1) {
44			$hpmulti = 1;
45			}
46			$maxhp = $level * 25 * $hpmulti;
47			$hp = $ppd / 5;
48			if ($hp >= 1) {
49			$hp = $maxhp;
50			} else {
51			$hp = \floor($hp * $maxhp);
52			}
53			$hp = \floor($hp);
54			$maxhp = \floor($maxhp);
55			$zhp = $maxhp;
56			if ($maxhp <= 0) {
57			$zhp = 1;
58			}
59			$hpf = \floor(100 * ($hp / $zhp)) - 1;
60			$maxmp = ($exp * $level) / 5;
61			$mp = $RPG / 3;
62			if ($mp >= $maxmp) {
63			$mp = $maxmp;
64			}
65			$maxmp = \floor($maxmp);
66			$mp = \floor($mp);
67			$zmp = $maxmp;
68			if ($maxmp <= 0) {
69			$zmp = 1;
70			}
71			$mpf = \floor(100 * ($mp / $zmp)) - 1;
72			if ($hpf >= 98) {
73			$hpf -= 2;
74			}
75			if ($ep >= 98) {
76			$ep -= 2;
77			}
78			if ($mpf >= 98) {
79			$mpf -= 2;
80			}
81
82			$level = [];
83			$level['level'] = $showlevel;
84			$level['exp'] = $ep;
85			$level['exp_width'] = $ep . '%';
86			$level['hp'] = $hp;
87			$level['hp_max'] = $maxhp;
88			$level['hp_width'] = $hpf . '%';
89			$level['mp'] = $mp;
90			$level['mp_max'] = $maxmp;
91			$level['mp_width'] = $mpf . '%';
92
93			return $level;
94			}
95
96			/**
97			* Class User
98			*/
99			class User
100			{
101			public $user;
102
103			public function __construct()
104			{
105			}
106
107			/**
108			* @return array
109			*/
110			public function getUserbar()
111			{
112			global $isAdmin;
113
114			$userbar = [];
115			if (empty($GLOBALS['xoopsModuleConfig']['userbar_enabled'])) {
116			return $userbar;
117			}
118
119			$user = $this->user;
120			$userbar['profile'] = [
121			'link' => XOOPS_URL . '/userinfo.php?uid=' . $user->getVar('uid'),
122			'name' => _PROFILE,
123			];
124
125			if (\is_object($GLOBALS['xoopsUser'])) {
126			$userbar['pm'] = [
127			'link' => "javascript:void openWithSelfMain('" . XOOPS_URL . '/pmlite.php?send2=1&to_userid=' . $user->getVar('uid') . "', 'pmlite', 450, 380);",
128			'name' => \_MD_NEWBB_PM,
129			];
130			}
131			if ($user->getVar('user_viewemail') \|\| $isAdmin) {
132			$userbar['email'] = [
133			'link' => "javascript:void window.open('mailto:" . $user->getVar('email') . "', 'new');",
134			'name' => \_MD_NEWBB_EMAIL,
135			];
136			}
137			$url = $user->getVar('url');
138			if ($url) {
139			$userbar['url'] = [
140			'link' => "javascript:void window.open('" . $url . "', 'new');",
141			'name' => \_MD_NEWBB_WWW,
142			];
143			}
144			$icq = $user->getVar('user_icq');
145			if ($icq) {
146			$userbar['icq'] = [
147			'link' => "javascript:void window.open('http://wwp.icq.com/scripts/search.dll?to=" . $icq . "', 'new');",
148			'name' => \_MD_NEWBB_ICQ,
149			];
150			}
151			$aim = $user->getVar('user_aim');
152			if ($aim) {
153			$userbar['aim'] = [
154			'link' => "javascript:void window.open('aim:goim?screenname=" . $aim . '&message=Hi+' . $aim . '+Are+you+there?' . "', 'new');",
155			'name' => \_MD_NEWBB_AIM,
156			];
157			}
158			$yim = $user->getVar('user_yim');
159			if ($yim) {
160			$userbar['yim'] = [
161			'link' => "javascript:void window.open('http://edit.yahoo.com/config/send_webmesg?.target=" . $yim . '&.src=pg' . "', 'new');",
162			'name' => \_MD_NEWBB_YIM,
163			];
164			}
165			$msn = $user->getVar('user_msnm');
166			if ($msn) {
167			$userbar['msnm'] = [
168			'link' => "javascript:void window.open('http://members.msn.com?mem=" . $msn . "', 'new');",
169			'name' => \_MD_NEWBB_MSNM,
170			];
171			}
172
173			return $userbar;
174			}
175
176			/**
177			* @return string
178			*/
179			public function getLevel()
180			{
181			global $forumUrl;
182
183			$level = newbb_calculateLevel($this->user->getVar('posts'), $this->user->getVar('user_regdate'));
184			$info = '';
185			if (2 == $GLOBALS['xoopsModuleConfig']['user_level']) {
186			static $rpg_images;
187			if (null === $rpg_images) {
188			$iconHandler = \newbbGetIconHandler();
189			$rpg_path = $iconHandler->getPath('rpg');
190			foreach (['img_left', 'img_backing', 'img_right', 'blue', 'green', 'orange'] as $img) {
191			// irmtfan fix: double "/" removed
192			$rpg_images[$img] = XOOPS_URL . $rpg_path . '/' . $img . '.gif';
193			}
194			}
195			// irmtfan hardcore removed align="left"
196			$table = "<table class='userlevel'><tr><td class='end'><img src='"
197			. $rpg_images['img_left']
198			. "' alt='' ></td><td class='center' background='"
199			. $rpg_images['img_backing']
200			. "'><img src='%s' width='%d' alt='' class='icon_left' ></td><td><img src='"
201			. $rpg_images['img_right']
202			. "' alt='' ></td></tr></table>";
203
204			$info = \_MD_NEWBB_LEVEL . ' ' . $level['level'] . '<br><span title="' . \_MD_NEWBB_HP_DESC . '">' . \_MD_NEWBB_HP . ' ' . $level['hp'] . ' / ' . $level['hp_max'] . '</span><br>' . \sprintf($table, $rpg_images['orange'], $level['hp_width']);
205			$info .= '<span title="' . \_MD_NEWBB_MP_DESC . '">' . \_MD_NEWBB_MP . ' ' . $level['mp'] . ' / ' . $level['mp_max'] . '</span><br>' . \sprintf($table, $rpg_images['green'], $level['mp_width']);
206			$info .= '<span title="' . \_MD_NEWBB_EXP_DESC . '">' . \_MD_NEWBB_EXP . ' ' . $level['exp'] . '</span><br>' . \sprintf($table, $rpg_images['blue'], $level['exp_width']);
207			} else {
208			$info = \_MD_NEWBB_LEVEL . ' ' . $level['level'] . '; <span title="' . \_MD_NEWBB_EXP_DESC . '">' . \_MD_NEWBB_EXP . ' ' . $level['exp'] . '</span><br>';
209			$info .= '<span title="' . \_MD_NEWBB_HP_DESC . '">' . \_MD_NEWBB_HP . ' ' . $level['hp'] . ' / ' . $level['hp_max'] . '</span><br>';
210			$info .= '<span title="' . \_MD_NEWBB_MP_DESC . '">' . \_MD_NEWBB_MP . ' ' . $level['mp'] . ' / ' . $level['mp_max'] . '</span>';
211			}
212
213			return $info;
214			}
215
216			/**
217			* @param \XoopsUser $user
218			* @return mixed
219			*/
220			public function getInfo($user)
221			{
222			global $myts;
223			static $name_anonymous;
224
225			if (!\is_object($user) \|\| !$user->isActive()) {
226			if (null === $name_anonymous) {
227			$name_anonymous = $myts->htmlSpecialChars($GLOBALS['xoopsConfig']['anonymous']);
228			}
229
230			return ['name' => $name_anonymous, 'link' => $name_anonymous];
231			}
232
233			$this->user = $user;
234
235			$userinfo['uid'] = $user->getVar('uid');
			0 ignored issues – show Comprehensibility Best Practice introduced 2018-03-16 05:13 UTC by Report Bug Copy Issue Report Show Similar Issues like this `$userinfo` was never initialized. Although not strictly required by PHP, it is generally a good practice to add `$userinfo = array();` before regardless. Loading history...
236
237			$name = empty($GLOBALS['xoopsModuleConfig']['show_realname']) ? $user->getVar('uname') : $user->getVar('name');
238			$userinfo['name'] = $name ?: $user->getVar('uname');
239
240			$userinfo['link'] = '<a href=\'' . XOOPS_URL . '/userinfo.php?uid=' . $user->getVar('uid') . '\'>' . $userinfo['name'] . '</a>';
241
242			$userinfo['avatar'] = $user->getVar('user_avatar');
243			// START hacked by irmtfan - easier rank getting - consistency with previous version back rank.title and rank.image
244			$userrank = $user->rank();
245			$userinfo['rank'] = [];
246			if (isset($userrank['image']) && $userrank['image']) {
247			$userinfo['rank']['image'] = $userrank['image'];
248			$userinfo['rank']['title'] = $userrank['title'];
249			}
250			// END hacked by irmtfan - easier rank getting - a little correctness dot removed
251			// START hacked by irmtfan - easier groups getting - can we use $_SESSION['xoopsUserGroups']???
252			//checks for user's groups
253			$userinfo['groups'] = [];
254			/** @var \XoopsMemberHandler $memberHandler */
255			$memberHandler = \xoops_getHandler('member');
256			$usergroups = $memberHandler->getGroupsByUser($userinfo['uid'], true);
257			foreach ($usergroups as $group) {
258			$userinfo['groups'][] = $group->getVar('name');
259			}
260			// END hacked by irmtfan - easier groups getting - can we use $_SESSION['xoopsUserGroups']???
261			$userinfo['from'] = $user->getVar('user_from');
262
263			require_once \dirname(__DIR__) . '/include/functions.time.php';
264			$userinfo['regdate'] = \newbbFormatTimestamp($user->getVar('user_regdate'), 'reg');
265			$userinfo['last_login'] = \newbbFormatTimestamp($user->getVar('last_login')); // irmtfan add last_login
266
267			$userinfo['posts'] = $user->getVar('posts');
268
269			if (!empty($GLOBALS['xoopsModuleConfig']['user_level'])) {
270			$userinfo['level'] = $this->getLevel();
271			}
272
273			if (!empty($GLOBALS['xoopsModuleConfig']['userbar_enabled'])) {
274			$userinfo['userbar'] = $this->getUserbar();
275			}
276
277			$userinfo['signature'] = $user->getVar('user_sig');
278
279			return $userinfo;
280			}
281			}
282

mambax7 / newbb5

Issues (380)

Security Analysis not enabled

class/User.php (1 issue)

Labels

Severity

Introduced By

Duplication Side-by-Side

Filter issues like