Issues in brokenlink.php - Fixed Issues - Inspection of "\Xmf\Request, formatting" - mambax7/wflinks - Measure and Improve Code Quality continuously with Scrutinizer

Passed
Push — master ( f493ff...9be1c2 )

by Michael
created 2020-08-14 07:04 UTC
brokenlink.php (2 issues)

Labels

Bug 2
Severity

Major 2
<?php
/**
 * Module: WF-Links
 * Version: v1.0.3
 * Release Date: 21 June 2005
 * Developer: John N
 * Team: WF-Projects
 * Licence: GNU
 */

use XoopsModules\Wflinks;

require_once __DIR__ . '/header.php';

/** @var Wflinks\Helper $helper */
$helper = Wflinks\Helper::getInstance();

$op      = Wflinks\Utility::cleanRequestVars($_REQUEST, 'op', '');
$lid     = Wflinks\Utility::cleanRequestVars($_REQUEST, 'lid', 0);
$lid     = (int)$lid;
$buttonn = _MD_WFL_SUBMITBROKEN;
$buttonn = mb_strtolower($buttonn);

switch (mb_strtolower($op)) {
    case $buttonn:
        global $xoopsUser;

        $sender = (is_object($xoopsUser) && null !== $xoopsUser) ? $xoopsUser->getVar('uid') : 0;
        $ip     = getenv('REMOTE_ADDR');
        $title  = Wflinks\Utility::cleanRequestVars($_REQUEST, 'title', '');
        $title  = $myts->addSlashes($title);
        $time   = time();

        // Check if REG user is trying to report twice.
        $result = $xoopsDB->query('SELECT COUNT(*) FROM ' . $xoopsDB->prefix('wflinks_broken') . ' WHERE lid=' . $lid);
        list($count) = $xoopsDB->fetchRow($result);
        if ($count > 0) {
            redirect_header('index.php', 2, _MD_WFL_ALREADYREPORTED);
        } else {
            $reportid = 0;
            $sql      = sprintf('INSERT INTO `%s` (reportid, lid, sender, ip, DATE, confirmed, acknowledged, title ) VALUES ( %u, %u, %u, %s, %u, %u, %u, %s)', $xoopsDB->prefix('wflinks_broken'), $reportid, $lid, $sender, $xoopsDB->quoteString($ip), $time, 0, 0, $xoopsDB->quoteString($title));
            if (!$result = $xoopsDB->query($sql)) {
                $error[] = _MD_WFL_ERROR;
            }
            $newid = $xoopsDB->getInsertId();

            // Send notifications
            $tags                      = [];
            $tags['BROKENREPORTS_URL'] = XOOPS_URL . '/modules/' . $xoopsModule->getVar('dirname') . '/admin/main.php?op=listBrokenlinks';
            $notificationHandler       = xoops_getHandler('notification');
            $notificationHandler->triggerEvent('global', 0, 'link_broken', $tags);
                                  triggerEvent('global', 0, 'link_broken', $tags);

            // Send email to the owner of the linkload stating that it is broken
            $sql      = 'SELECT * FROM ' . $xoopsDB->prefix('wflinks_links') . ' WHERE lid=' . $lid . ' AND published > 0 AND published <= ' . time() . ' AND (expired = 0 OR expired > ' . time() . ')';
            $link_arr = $xoopsDB->fetchArray($xoopsDB->query($sql));
            unset($sql);

            $memberHandler = xoops_getHandler('member');
            $submit_user   = $memberHandler->getUser($link_arr['submitter']);
            $submit_user   = $memberHandler->getUser($link_arr['submitter']);
            if (is_object($submit_user) && !empty($submit_user)) {
                $subdate = formatTimestamp($link_arr['date'], $helper->getConfig('dateformat'));
                $cid     = $link_arr['cid'];
                $title   = htmlspecialchars($link_arr['title']);
                $subject = _MD_WFL_BROKENREPORTED;

                $xoopsMailer = xoops_getMailer();
                $xoopsMailer->useMail();
                $template_dir = XOOPS_ROOT_PATH . '/modules/' . $xoopsModule->getVar('dirname') . '/language/' . $xoopsConfig['language'] . '/mail_template';

                $xoopsMailer->setTemplateDir($template_dir);
                $xoopsMailer->setTemplate('linkbroken_notify.tpl');
                $xoopsMailer->setToEmails($submit_user->getVar('email'));
                $xoopsMailer->setFromEmail($xoopsConfig['adminmail']);
                $xoopsMailer->setFromName($xoopsConfig['sitename']);
                $xoopsMailer->assign('X_UNAME', $submit_user->getVar('uname'));
                $xoopsMailer->assign('SITENAME', $xoopsConfig['sitename']);
                $xoopsMailer->assign('X_ADMINMAIL', $xoopsConfig['adminmail']);
                $xoopsMailer->assign('X_SITEURL', XOOPS_URL . '/');
                $xoopsMailer->assign('X_TITLE', $title);
                $xoopsMailer->assign('X_SUB_DATE', $subdate);
                $xoopsMailer->assign('X_LINKLOAD', XOOPS_URL . '/modules/' . $xoopsModule->getVar('dirname') . '/singlelink.php?cid=' . (int)$cid . '&amp;lid=' . $lid);
                $xoopsMailer->setSubject($subject);
                $message = $xoopsMailer->send() ? _MD_WFL_BROKENREPORTED : _MD_WFL_ERRORSENDEMAIL;
            } else {
                $message = _MD_WFL_ERRORSENDEMAIL;
            }
            redirect_header('index.php', 2, $message);
        }
        break;
    default:

        $GLOBALS['xoopsOption']['template_main'] = 'wflinks_brokenlink.tpl';
        require XOOPS_ROOT_PATH . '/header.php';
        xoops_load('XoopsUserUtility');

        $catarray['imageheader'] = Wflinks\Utility::getImageHeader();
        $catarray['letters']     = Wflinks\Utility::getLetters();
        $catarray['toolbar']     = Wflinks\Utility::getToolbar();
        $xoopsTpl->assign('catarray', $catarray);

        $sql      = 'SELECT * FROM ' . $xoopsDB->prefix('wflinks_links') . ' WHERE lid=' . $lid;
        $link_arr = $xoopsDB->fetchArray($xoopsDB->query($sql));
        unset($sql);

        $sql       = 'SELECT * FROM ' . $xoopsDB->prefix('wflinks_broken') . ' WHERE lid=' . $lid;
        $broke_arr = $xoopsDB->fetchArray($xoopsDB->query($sql));

        if (is_array($broke_arr)) {
            $broken['title']        = htmlspecialchars($link_arr['title']);
            $broken['id']           = $broke_arr['reportid'];
            $broken['reporter']     = \XoopsUserUtility::getUnameFromId($broke_arr['sender']);
            $broken['date']         = formatTimestamp($broke_arr['date'], $helper->getConfig('dateformat'));
            $broken['acknowledged'] = (1 == $broke_arr['acknowledged']) ? _YES : _NO;
            $broken['confirmed']    = (1 == $broke_arr['confirmed']) ? _YES : _NO;
            $xoopsTpl->assign('broken', $broken);
            $xoopsTpl->assign('brokenreport', true);
        } else {
            if (!is_array($link_arr) || empty($link_arr)) {
                redirect_header('index.php', 0, _MD_WFL_THISFILEDOESNOTEXIST);
            }

            // file info
            $link['title']     = htmlspecialchars($link_arr['title']);
            $time              = ($link_arr['published'] > 0) ? $link_arr['published'] : $link_arr['updated'];
            $link['updated']   = formatTimestamp($time, $helper->getConfig('dateformat'));
            $is_updated        = (0 != $link_arr['updated']) ? _MD_WFL_UPDATEDON : _MD_WFL_SUBMITDATE;
            $link['publisher'] = \XoopsUserUtility::getUnameFromId($link_arr['submitter']);

            $xoopsTpl->assign('link_id', $lid);
            $xoopsTpl->assign('lang_subdate', $is_updated);
            $xoopsTpl->assign('link', $link);
        }

        if (is_object($xoTheme)) {
            $xoTheme->addMeta('meta', 'robots', 'noindex,nofollow');
        } else {
            $xoopsTpl->assign('xoops_meta_robots', 'noindex,nofollow');
        }

        $xoopsTpl->assign('module_dir', $xoopsModule->getVar('dirname'));
        require XOOPS_ROOT_PATH . '/footer.php';
        break;
} // switch

mambax7 / wflinks

Push — master ( f493ff...9be1c2 )

brokenlink.php (2 issues)

Labels

Severity

Introduced By

Duplication Side-by-Side

Filter issues like
