Issues in group.php (master) - Issues in master - mambax7/xoops-martin - Measure and Improve Code Quality continuously with Scrutinizer

Issues (663)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

class/group.php (19 issues)

Labels

Severity

Major 19

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/**
 * $Id: group.php,v 1.42 2007/02/04 15:01:40 malanciault Exp $
 * Module:martin
 * Licence: GNU
 */

if (!defined("XOOPS_ROOT_PATH")) {
    die("XOOPS root path not defined");
}

include_once XOOPS_ROOT_PATH . '/modules/martin/include/common.php';

/**
 * Class MartinGroup
 */
class MartinGroup extends XoopsObject
{
    public function MartinGroup()
    {
        $this->initVar("group_id", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_name", XOBJ_DTYPE_TXTBOX, null, true, 255);
        $this->initVar("group_info", XOBJ_DTYPE_TXTAREA, null, false);
        $this->initVar("check_in_date", XOBJ_DTYPE_INT, null, false);
        $this->initVar("check_out_date", XOBJ_DTYPE_INT, null, false);
        $this->initVar("apply_start_date", XOBJ_DTYPE_INT, null, false);
        $this->initVar("apply_end_date", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_price", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_can_use_coupon", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_sented_coupon", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_status", XOBJ_DTYPE_INT, null, false);
        $this->initVar("group_add_time", XOBJ_DTYPE_INT, null, false);
    }

    /**
     * @return mixed
     */
    public function group_id()
    {
        return $this->getVar("group_id");
    }

    /**
     * @param string $format
     * @return mixed
     */
    public function group_name($format = 'S')
    {
        return $this->getVar("group_name", $format);
    }

    /**
     * @param string $format
     * @return mixed
     */
    public function group_info($format = 'edit')
    {
        return $this->getVar("group_info", $format);
    }

    /**
     * @return mixed
     */
    public function check_in_date()
    {
        return $this->getVar("check_in_date");
    }

    /**
     * @return mixed
     */
    public function check_out_date()
    {
        return $this->getVar("check_out_date");
    }

    /**
     * @return mixed
     */
    public function apply_start_date()
    {
        return $this->getVar("apply_start_date");
    }

    /**
     * @return mixed
     */
    public function apply_end_date()
    {
        return $this->getVar("apply_end_date");
    }

    /**
     * @return mixed
     */
    public function group_price()
    {
        return $this->getVar("group_price");
    }

    /**
     * @return mixed
     */
    public function group_can_use_coupon()
    {
        return $this->getVar("group_can_use_coupon");
    }

    /**
     * @return mixed
     */
    public function group_sented_coupon()
    {
        return $this->getVar("group_sented_coupon");
    }

    /**
     * @return mixed
     */
    public function group_status()
    {
        return $this->getVar("group_status");
    }

    /**
     * @return mixed
     */
    public function group_add_time()
    {
        return $this->getVar("group_add_time");
    }
}

/**
 * @method: groupHandler
 * @license   http://www.blags.org/
 * @created   :2010年05月21日 20时40分
 * @copyright 1997-2010 The Martin Group
 * @author    Martin <[email protected]>
 * */
class MartinGroupHandler extends XoopsObjectHandler
{
    /**
     * create a new hotel city
     * @param bool $isNew flag the new objects as "new"?
     * @return object group
     */
    public function &create($isNew = true)
    {
        $group = new MartinGroup();
        if ($isNew) {
            $group->setNew();
        }

        return $group;
    }

    /**
     * retrieve a hotel city
     *
     * @param int $id groupid of the group
     * @return mixed reference to the {@link group} object, FALSE if failed
     */
    public function &get($id)
    {
        if ((int)($id) <= 0) {
            return false;
        }

        $criteria = new CriteriaCompo(new Criteria('group_id', $id));
        $criteria->setLimit(1);
        $obj_array = $this->getObjects($criteria);
        if (count($obj_array) != 1) {
            $obj =& $this->create();

            return $obj;
        }

        return $obj_array[0];
    }

    /**
     * @get       rows
     * @license   http://www.blags.org/
     * @created   :2010年06月20日 13时09分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param      $sql
     * @param null $key
     * @return array
     */
    public function GetRows($sql, $key = null)
    {
        global $xoopsDB;
        $result = $xoopsDB->query($sql);
        $rows   = array();
        while ($row = $xoopsDB->fetchArray($result)) {
            if (is_null($key)) {
                $rows[] = $row;
            } else {
                $rows[$row[$key]] = $row;
            }
        }

        return $rows;
    }

    /**
     * @得到列表
     * @method:
     * @license   http://www.blags.org/
     * @created   :2010年05月23日 14时59分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param int    $limit
     * @param int    $start
     * @param string $sort
     * @param string $order
     * @param bool   $id_as_key
     * @return array
     */
    public function &getGroups($limit = 0, $start = 0, $sort = 'group_add_time', $order = 'DESC', $id_as_key = true)
    {
        $criteria = new CriteriaCompo();

        $criteria->setSort($sort);
        $criteria->setOrder($order);

        $criteria->setStart($start);
        $criteria->setLimit($limit);

        return $this->getObjects($criteria, $id_as_key);
    }

    /**
     * insert a new group in the database
     *
     * @param object $group reference to the {@link group} object
     * @param bool   $force
     * @return bool FALSE if failed, TRUE if already present and unchanged or successful
     */
    public function insert(&$group, $force = false)
    {
        if (strtolower(get_class($group)) !== 'martingroup') {
            return false;
        }

        if (!$group->cleanVars()) {
            return false;
        }

        foreach ($group->cleanVars as $k => $v) {
            ${$k} = $v;
        }

        if ($group->isNew()) {
            $sql = sprintf("INSERT INTO %s (
                                group_id,
                                group_name,
                                group_info,
                                check_in_date,
                                check_out_date,
                                apply_start_date,
                                apply_end_date,
                                group_price,
                                group_can_use_coupon,
                                group_sented_coupon,
                                group_status,
                                group_add_time
                            ) VALUES (
                                NULL,
                                %s,%s,%u,%u,%u,%u,%u,%u,%u,%u,%u
                            )", $this->db->prefix('martin_group'), $this->db->quoteString($group_name), $this->db->quoteString($group_info), $check_in_date, $check_out_date, $apply_start_date, $apply_end_date, $group_price, $group_can_use_coupon, $group_sented_coupon, $group_status, $group_add_time);

        } else {
            $sql = sprintf("UPDATE %s SET
                                group_name = %s,
                                group_info = %s,
                                check_in_date = %u,
                                check_out_date = %u,
                                apply_start_date = %u,
                                apply_end_date = %u,
                                group_price = %u,
                                group_can_use_coupon = %u,
                                group_sented_coupon = %u,
                                group_status = %u
                            WHERE group_id = %u", $this->db->prefix('martin_group'), $this->db->quoteString($group_name), $this->db->quoteString($group_info), $check_in_date, $check_out_date, $apply_start_date, $apply_end_date, $group_price, $group_can_use_coupon, $group_sented_coupon, $group_status, $group_id);

        }
        //echo $sql;exit;
        if (false != $force) {
            $result = $this->db->queryF($sql);
        } else {
            $result = $this->db->query($sql);
        }

        return $group_id > 0 ? $group_id : $this->db->getInsertId();
    }

    /**
     * @删除一个城市
     * @method:delete(group_id)
     * @license   http://www.blags.org/
     * @created   :2010年05月21日 20时40分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param object $group
     * @param bool   $force
     * @return bool|void
     */
    public function delete(&$group, $force = false)
    {
        if (strtolower(get_class($group)) !== 'martingroup') {
            return false;
        }

        $sql = "DELETE FROM " . $this->db->prefix("martin_group") . " WHERE group_id = " . $group->group_id();

        if (false != $force) {
            $result = $this->db->queryF($sql);
        } else {
            $result = $this->db->query($sql);
        }

        $sql = "DELETE FROM " . $this->db->prefix("martin_group_room") . " WHERE group_id = " . $group->group_id();

        if (false != $force) {
            $result = $this->db->queryF($sql);
        } else {
            $result = $this->db->query($sql);
        }

        if (!$result) {
            return false;
        }

        return true;
    }

    /**
     * delete hotel cities matching a set of conditions
     *
     * @param object $criteria {@link CriteriaElement}
     * @return bool FALSE if deletion failed
     */
    public function deleteAll($criteria = null)
    {
        $sql = 'DELETE FROM ' . $this->db->prefix('martin_group');
        if (isset($criteria) && is_subclass_of($criteria, 'criteriaelement')) {

            $sql .= ' ' . $criteria->renderWhere();
        }
        if (!$result = $this->db->query($sql)) {
            return false;
        }

        return true;
    }

    /**
     * count hotel cities matching a condition
     *
     * @param object $criteria {@link CriteriaElement} to match
     * @return int count of categories
     */
    public function getCount($criteria = null)
    {
        $sql = 'SELECT COUNT(*) FROM ' . $this->db->prefix('martin_group');
        if (isset($criteria) && is_subclass_of($criteria, 'criteriaelement')) {

            $sql .= ' ' . $criteria->renderWhere();
        }
        $result = $this->db->query($sql);
        if (!$result) {
            return 0;
        }
        list($count) = $this->db->fetchRow($result);

        return $count;
    }

    /**
     * @得到城市
     * @license   http://www.blags.org/
     * @created   :2010年05月21日 20时40分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param null $criteria
     * @param bool $id_as_key
     * @return array
     */
    public function &getObjects($criteria = null, $id_as_key = false)
    {
        $ret   = array();
        $limit = $start = 0;
        $sql   = 'SELECT * FROM ' . $this->db->prefix('martin_group');
        if (isset($criteria) && is_subclass_of($criteria, 'criteriaelement')) {

            $sql .= ' ' . $criteria->renderWhere();
            if ($criteria->getSort() != '') {
                $sql .= ' ORDER BY ' . $criteria->getSort() . ' ' . $criteria->getOrder();
            }
            $limit = $criteria->getLimit();
            $start = $criteria->getStart();
        }
        $sql .= " order by  apply_start_date DESC , group_id DESC ";
        //echo "<br />" . $sql . "<br />";
        $result = $this->db->query($sql, $limit, $start);

        if (!$result) {
            return $ret;
        }

        $theObjects = array();

        while ($myrow = $this->db->fetchArray($result)) {
            $group = new MartinGroup();
            $group->assignVars($myrow);
            $theObjects[$myrow['group_id']] =& $group;
            //var_dump($group);
            unset($group);
        }
        //var_dump($theObjects);

        foreach ($theObjects as $theObject) {
            if (!$id_as_key) {
                $ret[] =& $theObject;
            } else {
                $ret[$theObject->group_id()] =& $theObject;
            }
            unset($theObject);
        }

        return $ret;
    }

    /**
     * @get       room list
     * @license   http://www.blags.org/
     * @created   :2010年06月03日 20时05分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $group_id
     * @return array|bool
     */
    public function getRoomList($group_id)
    {
        global $xoopsDB;
        if (empty($group_id)) {
            return false;
        }
        $sql    = "SELECT gr.room_id,gr.room_count,r.room_name FROM " . $xoopsDB->prefix("martin_group_room") . " gr
            left join " . $xoopsDB->prefix("martin_room") . " r ON r.room_id = gr.room_id
            WHERE group_id = " . $group_id;
        $result = $xoopsDB->query($sql);
        $rows   = array();
        while ($row = $xoopsDB->fetchArray($result)) {
            $rows[] = $row;
        }

        return $rows;
    }

    /**
     * @param $group_id
     * @param $room_ids
     * @param $room_counts
     * @param $isNew
     * @return bool
     */
    public function InsertGroupRoom($group_id, $room_ids, $room_counts, $isNew)
    {
        global $xoopsDB;
        if (!$group_id || !is_array($room_ids)) {
            // delete data
            $sql = "delete FROM " . $xoopsDB->prefix("martin_group") . " WHERE group_id = " . $group_id;
            if ($group_id > 0) {
                $xoopsDB->query($sql);
            }

            return false;
        }
        $dsql = 'delete FROM ' . $xoopsDB->prefix("martin_group_room") . " WHERE group_id = $group_id";
        $xoopsDB->query($dsql);

        $sql = "insert INTO " . $xoopsDB->prefix("martin_group_room") . " (group_id,room_id,room_count) VALUES ";
        foreach ($room_ids as $key => $room_id) {
            $room_count = $room_counts[$key];
            $sql .= $prefix . "($group_id,$room_id,$room_count)";
function myFunction($a) {
    switch ($a) {
        case 'foo':
            $x = 1;
            break;

        case 'bar':
            $x = 2;
            break;
    }

    // $x is potentially undefined here.
    echo $x;
}
            $prefix = ",";
        }

        //echo $sql;
        return $xoopsDB->query($sql);
    }

    /**
     * @get       room by hotel
     * @license   http://www.blags.org/
     * @created   :2010年06月03日 20时05分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $hotel_id
     * @return array
     */
    public function GetRoomListByHotel($hotel_id)
    {
        global $xoopsDB;
        $sql = "SELECT room_id,room_name FROM " . $xoopsDB->prefix("martin_room");
        $sql .= $hotel_id > 0 ? " WHERE hotel_id = " . $hotel_id : " ";
        $result = $xoopsDB->query($sql);
        $rows   = array();
        while ($row = $xoopsDB->fetchArray($result)) {
            $rows[$row['room_id']] = $row['room_name'];
        }

        return $rows;
    }

    /**
     * @get       top group list
     * @license   http://www.blags.org/
     * @created   :2010年06月20日 13时09分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param int $limit
     * @return array
     */
    public function GetGroupList($limit = 6)
    {
        global $xoopsDB;
        $sql = 'SELECT * FROM ' . $xoopsDB->prefix('martin_group') . ' WHERE group_status = 1 AND apply_end_date > ' . time() . ' order by apply_end_date , group_id DESC limit ' . $limit;

        return $this->GetRows($sql);
    }

    /**
     * @get       Group rooms
     * @license   http://www.blags.org/
     * @created   :2010年06月20日 13时09分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $group_id
     * @return array
     */
    public function GetGroupRooms($group_id)
    {
        global $xoopsDB;
        if (!$group_id) {
            return $group_id;
        }
        $sql = 'SELECT gr.*,r.*,rt.room_type_info,h.* FROM ' . $xoopsDB->prefix("martin_group_room") . ' gr ';
        $sql .= ' INNER JOIN ' . $xoopsDB->prefix('martin_room') . ' r ON ( r.room_id = gr.room_id ) ';
        $sql .= ' INNER JOIN ' . $xoopsDB->prefix('martin_room_type') . ' rt ON ( r.room_type_id = rt.room_type_id ) ';
        $sql .= ' INNER JOIN ' . $xoopsDB->prefix('martin_hotel') . ' h ON ( r.hotel_id = h.hotel_id ) ';
        $sql .= ' WHERE gr.group_id = ' . $group_id;

        //echo $sql;
        return $this->GetRows($sql);
    }

    /**
     * @add       user join group
     * @method:
     * @license   http://www.blags.org/
     * @created   :2010年06月22日 20时19分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $Data
     * @return
     */
    public function AddUserGroup($Data)
    {
        global $xoopsDB;
        if (!is_array($Data) || empty($Data)) {
            return $Data;
        }
        $sql = 'INSERT INTO ' . $xoopsDB->prefix('martin_group_join') . ' (%s) VALUES (%s) ';
        foreach ($Data as $key => $value) {
            $keys .= $prefix . $key;
function myFunction($a) {
    switch ($a) {
        case 'foo':
            $x = 1;
            break;

        case 'bar':
            $x = 2;
            break;
    }

    // $x is potentially undefined here.
    echo $x;
}
            $values .= $prefix . $value;
function myFunction($a) {
    switch ($a) {
        case 'foo':
            $x = 1;
            break;

        case 'bar':
            $x = 2;
            break;
    }

    // $x is potentially undefined here.
    echo $x;
}
            $prefix = ',';
        }
        $sql = sprintf($sql, $keys, $values);
        //echo $sql;
        $xoopsDB->query($sql);

        return $xoopsDB->getInsertId();
    }

    /**
     * @get       group join list
     * @method:
     * @license   http://www.blags.org/
     * @created   :2010年06月22日 20时19分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $group_id
     * @return array|bool
     */
    public function getGroupJoinList($group_id)
    {
        if (!$group_id) {
            return false;
        }
        global $xoopsDB;
        $sql = 'SELECT j.*,u.uname FROM ' . $xoopsDB->prefix('martin_group_join') . ' j ';
        $sql .= 'INNER JOIN ' . $xoopsDB->prefix('users') . ' u ON (u.uid = j.uid) ';
        $sql .= 'WHERE j.group_id = ' . $group_id . ' ';
        $sql .= 'ORDER BY j.join_id DESC ';

        return $this->GetRows($sql);
    }

    /**
     * @check     group join exist
     * @license   http://www.blags.org/
     * @created   :2010年06月22日 20时19分
     * @copyright 1997-2010 The Martin Group
     * @author    Martin <[email protected]>
     * @param $Data
     * @return bool
     */
    public function CheckJoinExist($Data)
    {
        global $xoopsDB;
        $sql  = ' SELECT * FROM ' . $xoopsDB->prefix('martin_group_join') . " WHERE uid = {$Data['uid']}
            AND group_id = {$Data['group_id']} ";
        $rows = $this->GetRows($sql);

        return is_array($rows) && !empty($rows);
    }
}


Issues (663)

Security Analysis not enabled

class/group.php (19 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Available Fixes

Available Fixes

Available Fixes

Available Fixes

mambax7 / xoops-martin

Issues (663)

Security Analysis not enabled

class/group.php (19 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Available Fixes

Available Fixes

Available Fixes

Available Fixes

Duplication Side-by-Side

Filter issues like