debug modus fuer session daten erweitert
bugfix: problem mit lokalen variabeln und uebergaben git-svn-id: svn://svn.cccv.de/engel-system@10 29ba0400-6e00-0410-a75a-ca02368028f8
This commit is contained in:
parent
c912c19f8e
commit
50c5e06f09
|
@ -6,9 +6,12 @@ $Page["CVS"] = $_SESSION['CVS'][ $Page["Name"] ];
|
|||
|
||||
if( $DEBUG )
|
||||
{
|
||||
echo "UserID:". $_SESSION["UID"]. "<br>";
|
||||
echo "Nick:". $_SESSION["Nick"]. "<br>";
|
||||
|
||||
// echo "UserID:". $_SESSION["UID"]. "<br>";
|
||||
// echo "Nick:". $_SESSION["Nick"]. "<br>";
|
||||
|
||||
foreach( $_SESSION as $k => $v)
|
||||
echo "$k = $v<br>\n";
|
||||
|
||||
if( strlen($Page["CVS"]) == 0 )
|
||||
echo "<h1><u> CVS ERROR, on page '". $Page["Name"]. "'</u></h1>";
|
||||
else
|
||||
|
|
|
@ -5,33 +5,26 @@
|
|||
foreach ($_GET as $k => $v)
|
||||
{
|
||||
$v = htmlspecialchars($v);
|
||||
//echo "$v<br>";
|
||||
$v = mysql_escape_string($v);
|
||||
//echo "$v<br>";
|
||||
// $v = htmlentities($v);
|
||||
//echo "$v<br>";
|
||||
// if (preg_match('/([\'"`\'])/', $v, $match))
|
||||
if (preg_match('/([\"`])/', $v, $match))
|
||||
{
|
||||
print "sorry get has illegal char '$match[1]'";
|
||||
exit;
|
||||
}
|
||||
$$k = $v;
|
||||
$_GET[$k] = $v;
|
||||
}
|
||||
|
||||
foreach ($_POST as $k => $v)
|
||||
{
|
||||
$v = htmlspecialchars($v);
|
||||
//echo "$v<br>";
|
||||
$v = mysql_escape_string($v);
|
||||
//echo "$v<br>";
|
||||
// $v = htmlentities($v);
|
||||
//echo "$v<br>";
|
||||
if (preg_match('/([\'"`\'])/', $v, $match)) {
|
||||
print "sorry post has illegal char '$match[1]'";
|
||||
exit;
|
||||
}
|
||||
$$k = $v;
|
||||
$_POST[$k] = $v;
|
||||
}
|
||||
|
||||
?>
|
||||
|
|
Loading…
Reference in New Issue