From 7e15ef47121117463d2e02c0056bc3fe9714bb75 Mon Sep 17 00:00:00 2001
From: Ryan Walberg <generalpf@gmail.com>
Date: Thu, 15 Nov 2012 03:33:41 +0000
Subject: [PATCH] event page done. found some SQL injection too :(

---
 src/event.php           | 241 ++++++++--------------------------------
 src/templates/event.tpl | 143 ++++++++++++++++++++++++
 2 files changed, 191 insertions(+), 193 deletions(-)
 create mode 100644 src/templates/event.tpl

diff --git a/src/event.php b/src/event.php
index b46eccf..45886a0 100644
--- a/src/event.php
+++ b/src/event.php
@@ -30,11 +30,15 @@ if (!empty($_GET["message"])) {
     $message = strip_tags($_GET["message"]);
 }
 
+if (isset($_GET["eventid"])) {
+	$eventid = (int) $_GET["eventid"];
+}
+
 // for security, let's make sure that if an eventid was passed in, it belongs
 // to $userid (or is a system event and the user is an admin).
 // all operations on this page should only be performed by the event's owner.
-if (isset($_GET["eventid"]) && $_GET["eventid"] != "") {
-	$query = "SELECT * FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"] . " AND ";
+if (isset($eventid)) {
+	$query = "SELECT * FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid AND ";
 	if ($_SESSION["admin"] == 1)
 		$query .= "(userid = " . $_SESSION["userid"] . " OR userid IS NULL)";
 	else
@@ -52,7 +56,8 @@ $action = isset($_GET["action"]) ? $_GET["action"] : "";
 if ($action == "insert" || $action == "update") {
 	/* validate the data. */
 	$description = trim($_GET["description"]);
-	$eventdate = mktime(0,0,0,$_GET["month"],$_GET["day"],$_GET["century"] . $_GET["year"]);	// may not assemble a good date.
+	$eventdate = $_GET["eventdate"];
+	$ts = strtotime($eventdate);
 	$recurring = (strtoupper($_GET["recurring"]) == "ON" ? 1 : 0);
 	$systemevent = (strtoupper($_GET["system"]) == "ON" ? 1 : 0);
 	if (!get_magic_quotes_gpc())
@@ -63,28 +68,24 @@ if ($action == "insert" || $action == "update") {
 		$haserror = true;
 		$description_error = "A description is required.";
 	}
-	if ($eventdate < 0) {
+	if ($ts < 0 || $ts == FALSE) {
 		$haserror = true;
 		$eventdate_error = "Date is out of range for this server.";
 	}
-	if (!checkdate($_GET["month"],$_GET["day"],$_GET["century"] . $_GET["year"])) {
-		$haserror = true;
-		$eventdate_error = "Invalid date.  (Check that the day of the month exists.)";
-	}
 }
 
 if ($action == "delete") {
-	$query = "DELETE FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"];
+	$query = "DELETE FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid";
 	mysql_query($query) or die("Could not query: " . mysql_error());
 	header("Location: " . getFullPath("event.php?message=Event+deleted."));
 	exit;
 }
 else if ($action == "edit") {
-	$query = "SELECT description, eventdate, recurring, userid FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"];
+	$query = "SELECT description, eventdate, recurring, userid FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid";
 	$rs = mysql_query($query) or die("Could not query: " . mysql_error());
 	if ($row = mysql_fetch_array($rs,MYSQL_ASSOC)) {
-		$description = htmlspecialchars($row["description"]);
-		$eventdate = strtotime($row["eventdate"]);
+		$description = $row["description"];
+		$eventdate = $row["eventdate"];
 		$recurring = $row["recurring"];
 		$systemevent = ($row["userid"] == "");
 	}
@@ -92,14 +93,14 @@ else if ($action == "edit") {
 }
 else if ($action == "") {
 	$description = "";
-	$eventdate = time();
+	$eventdate = date("m/d/Y");
 	$recurring = 1;
 	$systemevent = 0;
 }
 else if ($action == "insert") {
 	if (!$haserror) {
 		$query = "INSERT INTO {$OPT["table_prefix"]}events(userid,description,eventdate,recurring) " .
-					"VALUES(" . ($systemevent ? "NULL" : $userid) . ",'$description','" . strftime("%Y-%m-%d",$eventdate) . "',$recurring)";
+					"VALUES(" . ($systemevent ? "NULL" : $userid) . ",'$description','" . strftime("%Y-%m-%d", $ts) . "',$recurring)";
 		mysql_query($query) or die("Could not query: " . mysql_error());
 		header("Location: " . getFullPath("event.php?message=Event+added."));
 		exit;
@@ -110,9 +111,9 @@ else if ($action == "update") {
 		$query = "UPDATE {$OPT["table_prefix"]}events SET " .
 				"userid = " . ($systemevent ? "NULL" : $userid) . ", " .
 				"description = '$description', " .
-				"eventdate = '" . strftime("%Y-%m-%d",$eventdate) . "', " .
+				"eventdate = '" . strftime("%Y-%m-%d", $ts) . "', " .
 				"recurring = $recurring " . 
-				"WHERE eventid = " . $_GET["eventid"];
+				"WHERE eventid = $eventid";
 		mysql_query($query) or die("Could not query: " . mysql_error());
 		header("Location: " . getFullPath("event.php?message=Event+updated."));
 		exit;		
@@ -123,188 +124,42 @@ else {
 	exit;
 }
 
-echo "<?xml version=\"1.0\" encoding=\"UTF-8\" ?>\r\n";
-?>
-<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
-<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
-<head>
-<title>Gift Registry - Manage Events</title>
-<link href="styles.css" type="text/css" rel="stylesheet" />
-</head>
-<body>
-<?php
-if (isset($message)) {
-    echo "<span class=\"message\">" . $message . "</span>";
-}
-
 $query = "SELECT eventid, userid, description, eventdate, recurring " .
 			"FROM {$OPT["table_prefix"]}events " .
 			"WHERE userid = $userid";
 if ($_SESSION["admin"] == 1)
 	$query .= " OR userid IS NULL";		// add in system events
 $query .= " ORDER BY userid, eventdate";
-$events = mysql_query($query) or die("Could not query: " . mysql_error());
-
-if ($OPT["show_helptext"]) {
-	?>
-	<p class="helptext">
-		Here you can specify events <strong>of your own</strong>, like your birthday or your anniversary.  When the event occurs within <?php echo $OPT["event_threshold"]; ?> days, an event reminder will appear in the display of everyone who shops for you.
-		<?php if ($_SESSION["admin"] == 1) echo "<strong>System events</strong> are events which belong to no one -- like Christmas -- and will appear on everyone's display."; ?>
-		Marking an item as <strong>Recurring yearly</strong> will cause them to show up year after year.
-	</p>
-	<?php
+$rs = mysql_query($query) or die("Could not query: " . mysql_error());
+$events = array();
+while ($row = mysql_fetch_array($rs, MYSQL_ASSOC)) {
+	$row['eventdate'] = strftime("%m/%d/%Y", strtotime($row['eventdate']));
+	$events[] = $row;
 }
+mysql_free_result($events);
+
+define('SMARTY_DIR',str_replace("\\","/",getcwd()).'/includes/Smarty-3.1.12/libs/');
+require_once(SMARTY_DIR . 'Smarty.class.php');
+$smarty = new Smarty();
+if (isset($message)) {
+	$smarty->assign('message', $message);
+}
+$smarty->assign('action', $action);
+$smarty->assign('haserror', $haserror);
+$smarty->assign('events', $events);
+$smarty->assign('eventdate', strftime("%m/%d/%Y", strtotime($eventdate)));
+if (isset($eventdate_error)) {
+	$smarty->assign('eventdate_error', $eventdate_error);
+}
+$smarty->assign('description', $description);
+if (isset($description_error)) {
+	$smarty->assign('description_error', $description_error);
+}
+$smarty->assign('recurring', $recurring);
+$smarty->assign('systemevent', $systemevent);
+$smarty->assign('eventid', $eventid);
+$smarty->assign('userid', $userid);
+$smarty->assign('isadmin', $_SESSION['admin']);
+$smarty->assign('opt', $OPT);
+$smarty->display('event.tpl');
 ?>
-<p>
-	<table class="partbox" width="100%" cellspacing="0">
-		<tr class="partboxtitle">
-			<td colspan="<?php echo 4 + $_SESSION["admin"]; ?>" align="center">Events</td>
-		</tr>
-		<tr>
-			<th class="colheader">Event date</th>
-			<th class="colheader">Description</th>
-			<th class="colheader">Recurring?</th>
-			<?php 
-			if ($_SESSION["admin"] == 1) {
-				?>
-				<th class="colheader">System event?</th>
-				<?php
-			}
-			?>
-			<th>&nbsp;</th>
-		</tr>
-		<?php
-		$i = 0;
-		while ($row = mysql_fetch_array($events,MYSQL_ASSOC)) {
-			?>
-			<tr class="<?php echo (!($i++ % 2)) ? "evenrow" : "oddrow" ?>">
-				<td><?php echo strftime("%B %d, %Y",strtotime($row["eventdate"])); ?></td>
-				<td><?php echo htmlspecialchars($row["description"]); ?></td>
-				<td><?php echo ($row["recurring"] == 1 ? "Yes" : "No"); ?></td>
-				<?php
-				if ($_SESSION["admin"] == 1) {
-					?>
-					<td><?php echo ($row["userid"] == "" ? "Yes" : "No"); ?></td>
-					<?php
-				}
-				?>
-				<td align="right">
-					<a href="event.php?action=edit&eventid=<?php echo $row["eventid"]; ?>">Edit</a>
-					/
-					<a href="event.php?action=delete&eventid=<?php echo $row["eventid"]; ?>">Delete</a>
-				</td>
-			</tr>
-			<?php
-		}
-		mysql_free_result($events);
-		?>
-	</table>
-</p>
-<p>
-	<a href="event.php">Add a new event</a> / <a href="index.php">Back to main</a>
-</p>
-<form name="event" method="get" action="event.php">	
-	<?php 
-	if ($action == "edit" || (isset($haserror) && $action == "update")) {
-		?>
-		<input type="hidden" name="eventid" value="<?php echo $_GET["eventid"]; ?>">
-		<input type="hidden" name="action" value="update">
-		<?php
-	}
-	else if ($action == "" || (isset($haserror) && $action == "insert")) {
-		?>
-		<input type="hidden" name="action" value="insert">
-		<?php
-	}
-	?>
-	<div align="center">
-		<TABLE class="partbox">
-			<tr class="partboxtitle">
-				<td align="center" colspan="2"><?php echo ($action == "edit" ? "Edit Event '" . $description . "'" : "Add New Event"); ?></td>
-			</tr>
-			<TR valign="top">
-				<TD>Description</TD>
-				<TD>
-					<input name="description" type="text" value="<?php echo htmlspecialchars(stripslashes($description)); ?>" maxlength="255" size="50"/>
-					<?php
-					if (isset($description_error)) {
-						?><br /><font color="red"><?php echo $description_error ?></font><?php
-					}
-					?>
-				</TD>
-			</TR>
-			<?php
-			$dateparts = getdate($eventdate);
-			$eventmonth = $dateparts["mon"];
-			$eventday = $dateparts["mday"];
-			$eventyear = $dateparts["year"];
-			?>
-			<tr valign="top">
-				<td>Date</td>
-				<td>
-					<select name="month">
-						<?php
-						for ($i = 1; $i <= 12; $i++) {
-							?>
-							<option value="<?php echo $i; ?>" <?php if ((!isset($eventdate_error) && ($i == $eventmonth)) || (isset($eventdate_error) && ($i == $_GET["month"]))) echo "SELECTED"; ?>><?php echo strftime("%B",mktime(0,0,0,$i,1,2000)); ?></option>
-							<?php
-						}
-						?>
-					</select>
-					<select name="day">
-						<?php
-						for ($i = 1; $i <= 31; $i++) {
-							?>
-							<option value="<?php echo $i; ?>" <?php if ((!isset($eventdate_error) && ($i == $eventday)) || (isset($eventdate_error) && ($i == $_GET["day"]))) echo "SELECTED"; ?>><?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?></option>
-							<?php
-						}
-						?>
-					</select>
-					,
-					<select name="century">
-						<option value="19" <?php if ((!isset($eventdate_error) && $eventyear < 2000) || (isset($eventdate_error) && $_GET["century"] == "19")) echo "SELECTED"; ?>>19</option>
-						<option value="20" <?php if ((!isset($eventdate_error) && $eventyear >= 2000) || (isset($eventdate_error) && $_GET["century"] == "20")) echo "SELECTED"; ?>>20</option>
-					</select>
-					<select name="year">
-						<?php
-						for ($i = 0; $i < 100; $i++) {
-							?>
-							<option value="<?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?>" <?php if (!isset($eventdate_error) && ($eventyear % 100 == $i) || (isset($eventdate_error) && $i == $_GET["year"])) echo "SELECTED"; ?>><?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?></option>
-							<?php
-						}
-						?>
-					</select>
-					<?php
-	 				if (isset($eventdate_error)) {
-						?><br /><font color="red"><?php echo $eventdate_error ?></font><?php
-					}
-					?>
-				</td>
-			</tr>
-			<tr>
-				<td colspan="2">
-					<input type="checkbox" name="recurring" <?php if ($recurring == 1) echo "CHECKED"; ?>>Recurring yearly
-					&nbsp;
-					<?php
-					if ($_SESSION["admin"] == 1) {
-						?>
-						<input type="checkbox" name="system" <?php if ($systemevent == 1) echo "CHECKED"; ?>>System event
-						<?php
-					}
-					else {
-						echo "&nbsp;";
-					}
-					?>
-				</td>
-			</tr>
-		</TABLE>
-	</div>
-	<P>
-		<div align="center">
-			<input type="submit" value="<?php if ($action == "" || $action == "insert") echo "Add"; else echo "Update"; ?>"/>
-			<input type="button" value="Cancel" onClick="document.location.href='event.php';">
-		</div>
-	</P>
-</form>
-</body>
-</html>
diff --git a/src/templates/event.tpl b/src/templates/event.tpl
new file mode 100644
index 0000000..43c5334
--- /dev/null
+++ b/src/templates/event.tpl
@@ -0,0 +1,143 @@
+{*
+This program is free software; you can redistribute it and/or modify
+it under the terms of the GNU General Public License as published by
+the Free Software Foundation; either version 2 of the License, or
+(at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+GNU General Public License for more details.
+
+You should have received a copy of the GNU General Public License
+along with this program; if not, write to the Free Software
+Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
+*}
+
+<!DOCTYPE html>
+<html lang="en">
+<head>
+	<title>Gift Registry - Manage Events</title>
+	<meta name="viewport" content="width=device-width, initial-scale=1.0">
+	<link href="bootstrap/css/bootstrap.min.css" rel="stylesheet">
+	<link href="bootstrap/css/bootstrap-responsive.css" rel="stylesheet">
+</head>
+<body>
+	<div class="container">
+	{if isset($message)}
+		<div class="row">
+			<div class="span12">
+    			<div class="alert alert-info">
+					{$message|escape:'htmlall'}
+				</div>
+			</div>
+		</div>
+	{/if}
+	{if $opt.show_helptext}
+		<div class="row">
+			<div class="span12">
+				<div class="alert alert-info">
+					Here you can specify events <strong>of your own</strong>, like your birthday or your anniversary.  When the event occurs within {$opt.event_threshold} days, an event reminder will appear in the display of everyone who shops for you.
+					{if $isadmin}
+						<strong>System events</strong> are events which belong to no one -- like Christmas -- and will appear on everyone's display.
+					{/if}
+					Marking an item as <strong>Recurring yearly</strong> will cause them to show up year after year.
+				</div>
+			</div>
+		</div>
+	{/if}
+	<div class="row">
+		<div class="span12">
+			<div class="well">
+				<h1>Events</h1>
+				<table class="table table-bordered table-striped">
+					<thead>
+						<tr>
+							<th>Event date</th>
+							<th>Description</th>
+							<th>Recurring?</th>
+							{if $isadmin}
+								<th>System event?</th>
+							{/if}
+							<th>&nbsp;</th>
+						</tr>
+					</thead>
+					<tbody>
+						{foreach from=$events item=row}
+							<tr>
+								<td>{$row.eventdate}</td>
+								<td>{$row.description|escape:'htmlall'}</td>
+								<td>{if $row.recurring}Yes{else}No{/if}</td>
+								{if $isadmin}
+									<td>
+										{if $row.userid == ''}Yes{else}No{/if}
+									</td>
+								{/if}
+								<td>
+									<a href="event.php?action=edit&eventid={$row.eventid}"><img alt="Edit Event" src="images/write_obj.gif" border="0" title="Edit Event" /></a>&nbsp;<a href="event.php?action=delete&eventid={$row.eventid}"><img alt="Delete Event" src="images/remove.gif" border="0" title="Delete Event" /></a>
+								</td>
+							</tr>
+						{/foreach}
+					</tbody>
+				</table>
+				<h5><a href="event.php">Add a new event</a></h5>
+			</div>
+		</div>
+	</div>
+	<div class="row">
+		<div class="span8 offset2">
+			<form name="event" method="get" action="event.php" class="well form-horizontal">
+				<fieldset>
+					<legend>Event Details</legend>
+					{if $action == "edit" || (isset($haserror) && $action == "update")}
+						<input type="hidden" name="eventid" value="{$eventid}">
+						<input type="hidden" name="action" value="update">
+					{elseif $action == "" || (isset($haserror) && $action == "insert")}
+						<input type="hidden" name="action" value="insert">
+					{/if}
+					<div class="control-group {if isset($description_error)}warning{/if}">
+						<label class="control-label" for="description">Description</label>
+						<div class="controls">
+							<input id="description" name="description" type="text" value="{$description|escape:'htmlall'}" class="input-xlarge" maxlength="255">
+							{if isset($description_error)}
+								<span class="help-inline">{$description_error}</span>
+							{/if}
+						</div>
+					</div>
+					<div class="control-group {if isset($eventdate_error)}warning{/if}">
+						<label class="control-label" for="eventdate">Event date</label>
+						<div class="controls">
+							<input id="eventdate" name="eventdate" type="text" value="{$eventdate|escape:'htmlall'}" class="input-xlarge">
+							<p class="help-block">mm/dd/yyyy</p>
+							{if isset($eventdate_error)}
+								<span class="help-inline">{$eventdate_error}</span>
+							{/if}
+						</div>
+					</div>
+					<div class="control-group">
+						<label class="control-label" for="recurring">Recurring</label>
+						<div class="controls">
+							<input type="checkbox" name="recurring" {if $recurring}CHECKED{/if}>
+							Recurring yearly
+						</div>
+					</div>
+					{if $isadmin}
+						<div class="control-group">
+							<label class="control-label" for="systemevent">System event</label>
+							<div class="controls">
+								<input type="checkbox" name="systemevent" {if $systemevent}CHECKED{/if}>
+								System event
+							</div>
+						</div>
+					{/if}
+					<div class="form-actions">
+						<button type="submit" class="btn btn-primary">{if $action == "" || $action == "insert"}Add{else}Update{/if}</button>
+						<button type="button" onClick="document.location.href='event.php';">Cancel</button>
+					</div>
+				</fieldset>
+			</form>
+		</div>
+	</div>
+</div>
+</body>
+</html>