mike/wishlist
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

event page done. found some SQL injection too :(

Browse source
This commit is contained in:
Ryan Walberg 2012-11-15 03:33:41 +00:00
parent f08dba8164
commit 7e15ef4712
2 changed files with 191 additions and 193 deletions
Download patch file Download diff file Expand all files Collapse all files

241
src/event.php
View file

@ -30,11 +30,15 @@ if (!empty($_GET["message"])) {
$message = strip_tags($_GET["message"]);
}
if (isset($_GET["eventid"])) {
$eventid = (int) $_GET["eventid"];
}
// for security, let's make sure that if an eventid was passed in, it belongs
// to $userid (or is a system event and the user is an admin).
// all operations on this page should only be performed by the event's owner.
if (isset($_GET["eventid"]) && $_GET["eventid"] != "") {
$query = "SELECT * FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"] . " AND ";
if (isset($eventid)) {
$query = "SELECT * FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid AND ";
if ($_SESSION["admin"] == 1)
$query .= "(userid = " . $_SESSION["userid"] . " OR userid IS NULL)";
else
@ -52,7 +56,8 @@ $action = isset($_GET["action"]) ? $_GET["action"] : "";
if ($action == "insert" || $action == "update") {
/* validate the data. */
$description = trim($_GET["description"]);
$eventdate = mktime(0,0,0,$_GET["month"],$_GET["day"],$_GET["century"] . $_GET["year"]); // may not assemble a good date.
$eventdate = $_GET["eventdate"];
$ts = strtotime($eventdate);
$recurring = (strtoupper($_GET["recurring"]) == "ON" ? 1 : 0);
$systemevent = (strtoupper($_GET["system"]) == "ON" ? 1 : 0);
if (!get_magic_quotes_gpc())
@ -63,28 +68,24 @@ if ($action == "insert" || $action == "update") {
$haserror = true;
$description_error = "A description is required.";
}
if ($eventdate < 0) {
if ($ts < 0 || $ts == FALSE) {
$haserror = true;
$eventdate_error = "Date is out of range for this server.";
}
if (!checkdate($_GET["month"],$_GET["day"],$_GET["century"] . $_GET["year"])) {
$haserror = true;
$eventdate_error = "Invalid date. (Check that the day of the month exists.)";
}
}
if ($action == "delete") {
$query = "DELETE FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"];
$query = "DELETE FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid";
mysql_query($query) or die("Could not query: " . mysql_error());
header("Location: " . getFullPath("event.php?message=Event+deleted."));
exit;
}
else if ($action == "edit") {
$query = "SELECT description, eventdate, recurring, userid FROM {$OPT["table_prefix"]}events WHERE eventid = " . $_GET["eventid"];
$query = "SELECT description, eventdate, recurring, userid FROM {$OPT["table_prefix"]}events WHERE eventid = $eventid";
$rs = mysql_query($query) or die("Could not query: " . mysql_error());
if ($row = mysql_fetch_array($rs,MYSQL_ASSOC)) {
$description = htmlspecialchars($row["description"]);
$eventdate = strtotime($row["eventdate"]);
$description = $row["description"];
$eventdate = $row["eventdate"];
$recurring = $row["recurring"];
$systemevent = ($row["userid"] == "");
}
@ -92,14 +93,14 @@ else if ($action == "edit") {
}
else if ($action == "") {
$description = "";
$eventdate = time();
$eventdate = date("m/d/Y");
$recurring = 1;
$systemevent = 0;
}
else if ($action == "insert") {
if (!$haserror) {
$query = "INSERT INTO {$OPT["table_prefix"]}events(userid,description,eventdate,recurring) " .
"VALUES(" . ($systemevent ? "NULL" : $userid) . ",'$description','" . strftime("%Y-%m-%d",$eventdate) . "',$recurring)";
"VALUES(" . ($systemevent ? "NULL" : $userid) . ",'$description','" . strftime("%Y-%m-%d", $ts) . "',$recurring)";
mysql_query($query) or die("Could not query: " . mysql_error());
header("Location: " . getFullPath("event.php?message=Event+added."));
exit;
@ -110,9 +111,9 @@ else if ($action == "update") {
$query = "UPDATE {$OPT["table_prefix"]}events SET " .
"userid = " . ($systemevent ? "NULL" : $userid) . ", " .
"description = '$description', " .
"eventdate = '" . strftime("%Y-%m-%d",$eventdate) . "', " .
"eventdate = '" . strftime("%Y-%m-%d", $ts) . "', " .
"recurring = $recurring " .
"WHERE eventid = " . $_GET["eventid"];
"WHERE eventid = $eventid";
mysql_query($query) or die("Could not query: " . mysql_error());
header("Location: " . getFullPath("event.php?message=Event+updated."));
exit;
@ -123,188 +124,42 @@ else {
exit;
}
echo "<?xml version=\"1.0\" encoding=\"UTF-8\" ?>\r\n";
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>Gift Registry - Manage Events</title>
<link href="styles.css" type="text/css" rel="stylesheet" />
</head>
<body>
<?php
if (isset($message)) {
echo "<span class=\"message\">" . $message . "</span>";
}
$query = "SELECT eventid, userid, description, eventdate, recurring " .
"FROM {$OPT["table_prefix"]}events " .
"WHERE userid = $userid";
if ($_SESSION["admin"] == 1)
$query .= " OR userid IS NULL"; // add in system events
$query .= " ORDER BY userid, eventdate";
$events = mysql_query($query) or die("Could not query: " . mysql_error());
if ($OPT["show_helptext"]) {
?>
<p class="helptext">
Here you can specify events <strong>of your own</strong>, like your birthday or your anniversary. When the event occurs within <?php echo $OPT["event_threshold"]; ?> days, an event reminder will appear in the display of everyone who shops for you.
<?php if ($_SESSION["admin"] == 1) echo "<strong>System events</strong> are events which belong to no one -- like Christmas -- and will appear on everyone's display."; ?>
Marking an item as <strong>Recurring yearly</strong> will cause them to show up year after year.
</p>
<?php
$rs = mysql_query($query) or die("Could not query: " . mysql_error());
$events = array();
while ($row = mysql_fetch_array($rs, MYSQL_ASSOC)) {
$row['eventdate'] = strftime("%m/%d/%Y", strtotime($row['eventdate']));
$events[] = $row;
}
mysql_free_result($events);
define('SMARTY_DIR',str_replace("\\","/",getcwd()).'/includes/Smarty-3.1.12/libs/');
require_once(SMARTY_DIR . 'Smarty.class.php');
$smarty = new Smarty();
if (isset($message)) {
$smarty->assign('message', $message);
}
$smarty->assign('action', $action);
$smarty->assign('haserror', $haserror);
$smarty->assign('events', $events);
$smarty->assign('eventdate', strftime("%m/%d/%Y", strtotime($eventdate)));
if (isset($eventdate_error)) {
$smarty->assign('eventdate_error', $eventdate_error);
}
$smarty->assign('description', $description);
if (isset($description_error)) {
$smarty->assign('description_error', $description_error);
}
$smarty->assign('recurring', $recurring);
$smarty->assign('systemevent', $systemevent);
$smarty->assign('eventid', $eventid);
$smarty->assign('userid', $userid);
$smarty->assign('isadmin', $_SESSION['admin']);
$smarty->assign('opt', $OPT);
$smarty->display('event.tpl');
?>
<p>
<table class="partbox" width="100%" cellspacing="0">
<tr class="partboxtitle">
<td colspan="<?php echo 4 + $_SESSION["admin"]; ?>" align="center">Events</td>
</tr>
<tr>
<th class="colheader">Event date</th>
<th class="colheader">Description</th>
<th class="colheader">Recurring?</th>
<?php
if ($_SESSION["admin"] == 1) {
?>
<th class="colheader">System event?</th>
<?php
}
?>
<th>&nbsp;</th>
</tr>
<?php
$i = 0;
while ($row = mysql_fetch_array($events,MYSQL_ASSOC)) {
?>
<tr class="<?php echo (!($i++ % 2)) ? "evenrow" : "oddrow" ?>">
<td><?php echo strftime("%B %d, %Y",strtotime($row["eventdate"])); ?></td>
<td><?php echo htmlspecialchars($row["description"]); ?></td>
<td><?php echo ($row["recurring"] == 1 ? "Yes" : "No"); ?></td>
<?php
if ($_SESSION["admin"] == 1) {
?>
<td><?php echo ($row["userid"] == "" ? "Yes" : "No"); ?></td>
<?php
}
?>
<td align="right">
<a href="event.php?action=edit&eventid=<?php echo $row["eventid"]; ?>">Edit</a>
/
<a href="event.php?action=delete&eventid=<?php echo $row["eventid"]; ?>">Delete</a>
</td>
</tr>
<?php
}
mysql_free_result($events);
?>
</table>
</p>
<p>
<a href="event.php">Add a new event</a> / <a href="index.php">Back to main</a>
</p>
<form name="event" method="get" action="event.php">
<?php
if ($action == "edit" || (isset($haserror) && $action == "update")) {
?>
<input type="hidden" name="eventid" value="<?php echo $_GET["eventid"]; ?>">
<input type="hidden" name="action" value="update">
<?php
}
else if ($action == "" || (isset($haserror) && $action == "insert")) {
?>
<input type="hidden" name="action" value="insert">
<?php
}
?>
<div align="center">
<TABLE class="partbox">
<tr class="partboxtitle">
<td align="center" colspan="2"><?php echo ($action == "edit" ? "Edit Event '" . $description . "'" : "Add New Event"); ?></td>
</tr>
<TR valign="top">
<TD>Description</TD>
<TD>
<input name="description" type="text" value="<?php echo htmlspecialchars(stripslashes($description)); ?>" maxlength="255" size="50"/>
<?php
if (isset($description_error)) {
?><br /><font color="red"><?php echo $description_error ?></font><?php
}
?>
</TD>
</TR>
<?php
$dateparts = getdate($eventdate);
$eventmonth = $dateparts["mon"];
$eventday = $dateparts["mday"];
$eventyear = $dateparts["year"];
?>
<tr valign="top">
<td>Date</td>
<td>
<select name="month">
<?php
for ($i = 1; $i <= 12; $i++) {
?>
<option value="<?php echo $i; ?>" <?php if ((!isset($eventdate_error) && ($i == $eventmonth)) || (isset($eventdate_error) && ($i == $_GET["month"]))) echo "SELECTED"; ?>><?php echo strftime("%B",mktime(0,0,0,$i,1,2000)); ?></option>
<?php
}
?>
</select>
<select name="day">
<?php
for ($i = 1; $i <= 31; $i++) {
?>
<option value="<?php echo $i; ?>" <?php if ((!isset($eventdate_error) && ($i == $eventday)) || (isset($eventdate_error) && ($i == $_GET["day"]))) echo "SELECTED"; ?>><?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?></option>
<?php
}
?>
</select>
,
<select name="century">
<option value="19" <?php if ((!isset($eventdate_error) && $eventyear < 2000) || (isset($eventdate_error) && $_GET["century"] == "19")) echo "SELECTED"; ?>>19</option>
<option value="20" <?php if ((!isset($eventdate_error) && $eventyear >= 2000) || (isset($eventdate_error) && $_GET["century"] == "20")) echo "SELECTED"; ?>>20</option>
</select>
<select name="year">
<?php
for ($i = 0; $i < 100; $i++) {
?>
<option value="<?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?>" <?php if (!isset($eventdate_error) && ($eventyear % 100 == $i) || (isset($eventdate_error) && $i == $_GET["year"])) echo "SELECTED"; ?>><?php echo str_pad($i,2,"0",STR_PAD_LEFT); ?></option>
<?php
}
?>
</select>
<?php
if (isset($eventdate_error)) {
?><br /><font color="red"><?php echo $eventdate_error ?></font><?php
}
?>
</td>
</tr>
<tr>
<td colspan="2">
<input type="checkbox" name="recurring" <?php if ($recurring == 1) echo "CHECKED"; ?>>Recurring yearly
&nbsp;
<?php
if ($_SESSION["admin"] == 1) {
?>
<input type="checkbox" name="system" <?php if ($systemevent == 1) echo "CHECKED"; ?>>System event
<?php
}
else {
echo "&nbsp;";
}
?>
</td>
</tr>
</TABLE>
</div>
<P>
<div align="center">
<input type="submit" value="<?php if ($action == "" || $action == "insert") echo "Add"; else echo "Update"; ?>"/>
<input type="button" value="Cancel" onClick="document.location.href='event.php';">
</div>
</P>
</form>
</body>
</html>

143
src/templates/event.tpl Normal file
View file

@ -0,0 +1,143 @@
{*
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*}
<!DOCTYPE html>
<html lang="en">
<head>
<title>Gift Registry - Manage Events</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<link href="bootstrap/css/bootstrap.min.css" rel="stylesheet">
<link href="bootstrap/css/bootstrap-responsive.css" rel="stylesheet">
</head>
<body>
<div class="container">
{if isset($message)}
<div class="row">
<div class="span12">
<div class="alert alert-info">
{$message|escape:'htmlall'}
</div>
</div>
</div>
{/if}
{if $opt.show_helptext}
<div class="row">
<div class="span12">
<div class="alert alert-info">
Here you can specify events <strong>of your own</strong>, like your birthday or your anniversary. When the event occurs within {$opt.event_threshold} days, an event reminder will appear in the display of everyone who shops for you.
{if $isadmin}
<strong>System events</strong> are events which belong to no one -- like Christmas -- and will appear on everyone's display.
{/if}
Marking an item as <strong>Recurring yearly</strong> will cause them to show up year after year.
</div>
</div>
</div>
{/if}
<div class="row">
<div class="span12">
<div class="well">
<h1>Events</h1>
<table class="table table-bordered table-striped">
<thead>
<tr>
<th>Event date</th>
<th>Description</th>
<th>Recurring?</th>
{if $isadmin}
<th>System event?</th>
{/if}
<th>&nbsp;</th>
</tr>
</thead>
<tbody>
{foreach from=$events item=row}
<tr>
<td>{$row.eventdate}</td>
<td>{$row.description|escape:'htmlall'}</td>
<td>{if $row.recurring}Yes{else}No{/if}</td>
{if $isadmin}
<td>
{if $row.userid == ''}Yes{else}No{/if}
</td>
{/if}
<td>
<a href="event.php?action=edit&eventid={$row.eventid}"><img alt="Edit Event" src="images/write_obj.gif" border="0" title="Edit Event" /></a>&nbsp;<a href="event.php?action=delete&eventid={$row.eventid}"><img alt="Delete Event" src="images/remove.gif" border="0" title="Delete Event" /></a>
</td>
</tr>
{/foreach}
</tbody>
</table>
<h5><a href="event.php">Add a new event</a></h5>
</div>
</div>
</div>
<div class="row">
<div class="span8 offset2">
<form name="event" method="get" action="event.php" class="well form-horizontal">
<fieldset>
<legend>Event Details</legend>
{if $action == "edit" || (isset($haserror) && $action == "update")}
<input type="hidden" name="eventid" value="{$eventid}">
<input type="hidden" name="action" value="update">
{elseif $action == "" || (isset($haserror) && $action == "insert")}
<input type="hidden" name="action" value="insert">
{/if}
<div class="control-group {if isset($description_error)}warning{/if}">
<label class="control-label" for="description">Description</label>
<div class="controls">
<input id="description" name="description" type="text" value="{$description|escape:'htmlall'}" class="input-xlarge" maxlength="255">
{if isset($description_error)}
<span class="help-inline">{$description_error}</span>
{/if}
</div>
</div>
<div class="control-group {if isset($eventdate_error)}warning{/if}">
<label class="control-label" for="eventdate">Event date</label>
<div class="controls">
<input id="eventdate" name="eventdate" type="text" value="{$eventdate|escape:'htmlall'}" class="input-xlarge">
<p class="help-block">mm/dd/yyyy</p>
{if isset($eventdate_error)}
<span class="help-inline">{$eventdate_error}</span>
{/if}
</div>
</div>
<div class="control-group">
<label class="control-label" for="recurring">Recurring</label>
<div class="controls">
<input type="checkbox" name="recurring" {if $recurring}CHECKED{/if}>
Recurring yearly
</div>
</div>
{if $isadmin}
<div class="control-group">
<label class="control-label" for="systemevent">System event</label>
<div class="controls">
<input type="checkbox" name="systemevent" {if $systemevent}CHECKED{/if}>
System event
</div>
</div>
{/if}
<div class="form-actions">
<button type="submit" class="btn btn-primary">{if $action == "" || $action == "insert"}Add{else}Update{/if}</button>
<button type="button" onClick="document.location.href='event.php';">Cancel</button>
</div>
</fieldset>
</form>
</div>
</div>
</div>
</body>
</html>