Changeset 2742433
- Timestamp:
- 06/14/2022 06:58:29 PM (4 years ago)
- Location:
- simple-click-tracker-lite
- Files:
-
- 6 edited
-
tags/1.0/app/sites/public/actions/funnel_save.php (modified) (5 diffs)
-
tags/1.0/app/sites/public/actions/group_save.php (modified) (1 diff)
-
tags/1.0/app/sites/public/actions/link_save.php (modified) (10 diffs)
-
trunk/app/sites/public/actions/funnel_save.php (modified) (5 diffs)
-
trunk/app/sites/public/actions/group_save.php (modified) (1 diff)
-
trunk/app/sites/public/actions/link_save.php (modified) (10 diffs)
Legend:
- Unmodified
- Added
- Removed
-
simple-click-tracker-lite/tags/1.0/app/sites/public/actions/funnel_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['funnel_id'] = intval(@ self::$form_vars['funnel_id']);3 $form_vars['name'] = trim(@ self::$form_vars['name']);2 $form_vars['funnel_id'] = intval(@$_REQUEST['form_vars']['funnel_id']); 3 $form_vars['name'] = trim(@$_REQUEST['form_vars']['name']); 4 4 5 5 if (!$form_vars['name']) … … 13 13 { 14 14 $form_vars['funnel_id'] = sanitize_text_field($_REQUEST['funnel_id']); 15 $form_vars['no_of_up'] = trim(@ self::$form_vars['no_of_up']);16 $form_vars['no_of_dw'] = trim(@ self::$form_vars['no_of_dw']);17 $form_vars['no_of_t'] = trim(@ self::$form_vars['no_of_t']);15 $form_vars['no_of_up'] = trim(@$_REQUEST['form_vars']['no_of_up']); 16 $form_vars['no_of_dw'] = trim(@$_REQUEST['form_vars']['no_of_dw']); 17 $form_vars['no_of_t'] = trim(@$_REQUEST['form_vars']['no_of_t']); 18 18 $form_vars['start_date'] = trim(sanitize_text_field($_REQUEST['start_date'])); 19 19 $form_vars['end_date'] = trim(sanitize_text_field($_REQUEST['end_date'])); 20 $form_vars['funnel_type'] = trim(@ self::$form_vars['funnel_type']);20 $form_vars['funnel_type'] = trim(@$_REQUEST['form_vars']['funnel_type']); 21 21 $form_vars['c_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['c_cost'])); 22 22 $form_vars['f_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['f_cost'])); … … 27 27 $form_vars['user_id'] = Sct_Base::getActorUserId(); 28 28 $form_vars['funnel_id'] = $_REQUEST['funnel_id']; 29 $form_vars['no_of_up'] = trim(@ self::$form_vars['no_of_up']);30 $form_vars['no_of_dw'] = trim(@ self::$form_vars['no_of_dw']);31 $form_vars['no_of_t'] = trim(@ self::$form_vars['no_of_t']);29 $form_vars['no_of_up'] = trim(@$_REQUEST['form_vars']['no_of_up']); 30 $form_vars['no_of_dw'] = trim(@$_REQUEST['form_vars']['no_of_dw']); 31 $form_vars['no_of_t'] = trim(@$_REQUEST['form_vars']['no_of_t']); 32 32 $form_vars['start_date'] = trim(sanitize_text_field($_REQUEST['start_date'])); 33 33 $form_vars['end_date'] = trim(sanitize_text_field($_REQUEST['end_date'])); 34 $form_vars['funnel_type'] = trim(@ self::$form_vars['funnel_type']);34 $form_vars['funnel_type'] = trim(@$_REQUEST['form_vars']['funnel_type']); 35 35 $form_vars['c_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['c_cost'])); 36 36 $form_vars['f_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['f_cost'])); … … 57 57 $record['link_id'] = rtrim($record['link_id'],'/'); 58 58 $record['redirect_link'] = rtrim($record['redirect_link'],'/'); 59 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['conv_value']);59 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '',@$_REQUEST['form_vars']['conv_value']); 60 60 //$form_vars['click_cost'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['click_cost']); 61 61 … … 101 101 $record['link_id'] = rtrim($record['link_id'],'/'); 102 102 $record['redirect_link'] = rtrim($record['redirect_link'],'/'); 103 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @ self::$form_vars['conv_value']);103 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @$_REQUEST['form_vars']['conv_value']); 104 104 //$form_vars['click_cost'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['click_cost']); 105 105 -
simple-click-tracker-lite/tags/1.0/app/sites/public/actions/group_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['group_id'] = intval(@ self::$form_vars['group_id']);3 $form_vars['name'] = trim(@ self::$form_vars['name']);2 $form_vars['group_id'] = intval(@$_REQUEST['form_vars']['group_id']); 3 $form_vars['name'] = trim(@$_REQUEST['form_vars']['name']); 4 4 if (!$form_vars['name']) 5 5 { -
simple-click-tracker-lite/tags/1.0/app/sites/public/actions/link_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['link_id'] = intval(@ self::$form_vars['link_id']);3 $form_vars['goal_link_id'] = intval(@ self::$form_vars['goal_link_id']);4 $form_vars['group_id'] = intval(@ self::$form_vars['group_id']);5 $form_vars['name'] = @sanitize_text_field(trim(@ self::$form_vars['name']));6 $form_vars['domain_id'] = intval(@ self::$form_vars['domain_id']);7 $form_vars['path'] = trim(@ self::$form_vars['path']);8 $form_vars['url'] = trim(@ self::$form_vars['url']);9 $form_vars['type'] = trim(@ self::$form_vars['type']);2 $form_vars['link_id'] = intval(@$_REQUEST['form_vars']['link_id']); 3 $form_vars['goal_link_id'] = intval(@$_REQUEST['form_vars']['goal_link_id']); 4 $form_vars['group_id'] = intval(@$_REQUEST['form_vars']['group_id']); 5 $form_vars['name'] = @sanitize_text_field(trim(@$_REQUEST['form_vars']['name'])); 6 $form_vars['domain_id'] = intval(@$_REQUEST['form_vars']['domain_id']); 7 $form_vars['path'] = trim(@$_REQUEST['form_vars']['path']); 8 $form_vars['url'] = trim(@$_REQUEST['form_vars']['url']); 9 $form_vars['type'] = trim(@$_REQUEST['form_vars']['type']); 10 10 $form_vars['path'] = trim(trim($form_vars['path']), '/'); 11 11 $form_vars['path'] = preg_replace('/[^0-9a-zA-Z\_\-\ \/]+/is', '', trim($form_vars['path'])); 12 12 $form_vars['path'] = str_replace(' ', '-', $form_vars['path']); 13 $form_vars['description'] = sanitize_text_field(trim(@self::$form_vars['description'])); 14 13 $form_vars['description'] = sanitize_text_field(trim(@$_REQUEST['form_vars']['description'])); 15 14 if(!isset($_REQUEST['query_string'])){ 16 15 $form_vars['query_string'] = 1; … … 18 17 $form_vars['query_string'] = trim(sanitize_text_field($_REQUEST['query_string'])); 19 18 } 20 21 22 19 $handle = @fopen($form_vars['url'],'r'); 23 20 $er = 0; 24 25 21 if (!$form_vars['name']) 26 22 { 27 23 self::$errors['name'] = 'Name is required'; 28 24 } 29 30 25 if (!$form_vars['path']) 31 26 { 32 27 self::$errors['path'] = 'Path is required'; 33 28 } 34 35 29 if (!$form_vars['path']) 36 30 { … … 44 38 { 45 39 $o_link_id = (int)$wpdb->get_var('SELECT * FROM '.self::$table['link'].' WHERE link_id != '.(int)$form_vars['link_id'].' AND domain_id = '.(int)$form_vars['domain_id'].' AND (path = "'.addslashes($form_vars['path']).'" OR path = "/'.addslashes($form_vars['path']).'")'); 46 47 40 if ($o_link_id) 48 41 { … … 50 43 } 51 44 } 52 53 45 if($er==1){ 54 46 self::$errors['name'] = 'Please Enter a valid Destination URL.'; 55 47 } 56 57 48 if (!$form_vars['url']) 58 49 { … … 63 54 self::$errors['url'] = 'Invalid or incomplete'; 64 55 } 65 66 56 if (!self::$errors) 67 57 { … … 77 67 $form_vars['is_dead'] = 0; 78 68 $form_vars['user_id'] = Sct_Base::getActorUserId(); 79 80 69 $wpdb->insert(self::$table['link'], $form_vars); 81 82 70 $form_vars['link_id'] = $wpdb->insert_id; 83 84 71 $sql = ' 85 72 SELECT … … 89 76 WHERE 90 77 user_id = "'.addslashes(Sct_Base::getActorUserId()).'"'; 91 92 78 $link_count = $wpdb->get_var($sql); 93 94 79 if ($link_count == 1) 95 80 { … … 97 82 if(count($domain)>0){ 98 83 $response = wp_remote_get('http://'.$domain['domain'].'/sct/ping'); 99 100 84 if (Sct_Base::$is_full_access && (is_wp_error($response) || !(int)$response['body'])) 101 85 { … … 112 96 ) 113 97 ); 114 115 98 $back_url = $base_url.'action=link_edit&link_id='.$form_vars['link_id'].'&saved=1'; 116 117 99 $save_new_url = $base_url.'action=link_edit'; 118 100 if (@$_REQUEST['save'] == 'Save') … … 124 106 header('Location: '.$base_url); 125 107 } 126 127 108 exit(); 128 109 } 129 130 110 self::$action = 'link_edit'; -
simple-click-tracker-lite/trunk/app/sites/public/actions/funnel_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['funnel_id'] = intval(@ self::$form_vars['funnel_id']);3 $form_vars['name'] = trim(@ self::$form_vars['name']);2 $form_vars['funnel_id'] = intval(@$_REQUEST['form_vars']['funnel_id']); 3 $form_vars['name'] = trim(@$_REQUEST['form_vars']['name']); 4 4 5 5 if (!$form_vars['name']) … … 13 13 { 14 14 $form_vars['funnel_id'] = sanitize_text_field($_REQUEST['funnel_id']); 15 $form_vars['no_of_up'] = trim(@ self::$form_vars['no_of_up']);16 $form_vars['no_of_dw'] = trim(@ self::$form_vars['no_of_dw']);17 $form_vars['no_of_t'] = trim(@ self::$form_vars['no_of_t']);15 $form_vars['no_of_up'] = trim(@$_REQUEST['form_vars']['no_of_up']); 16 $form_vars['no_of_dw'] = trim(@$_REQUEST['form_vars']['no_of_dw']); 17 $form_vars['no_of_t'] = trim(@$_REQUEST['form_vars']['no_of_t']); 18 18 $form_vars['start_date'] = trim(sanitize_text_field($_REQUEST['start_date'])); 19 19 $form_vars['end_date'] = trim(sanitize_text_field($_REQUEST['end_date'])); 20 $form_vars['funnel_type'] = trim(@ self::$form_vars['funnel_type']);20 $form_vars['funnel_type'] = trim(@$_REQUEST['form_vars']['funnel_type']); 21 21 $form_vars['c_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['c_cost'])); 22 22 $form_vars['f_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['f_cost'])); … … 27 27 $form_vars['user_id'] = Sct_Base::getActorUserId(); 28 28 $form_vars['funnel_id'] = $_REQUEST['funnel_id']; 29 $form_vars['no_of_up'] = trim(@ self::$form_vars['no_of_up']);30 $form_vars['no_of_dw'] = trim(@ self::$form_vars['no_of_dw']);31 $form_vars['no_of_t'] = trim(@ self::$form_vars['no_of_t']);29 $form_vars['no_of_up'] = trim(@$_REQUEST['form_vars']['no_of_up']); 30 $form_vars['no_of_dw'] = trim(@$_REQUEST['form_vars']['no_of_dw']); 31 $form_vars['no_of_t'] = trim(@$_REQUEST['form_vars']['no_of_t']); 32 32 $form_vars['start_date'] = trim(sanitize_text_field($_REQUEST['start_date'])); 33 33 $form_vars['end_date'] = trim(sanitize_text_field($_REQUEST['end_date'])); 34 $form_vars['funnel_type'] = trim(@ self::$form_vars['funnel_type']);34 $form_vars['funnel_type'] = trim(@$_REQUEST['form_vars']['funnel_type']); 35 35 $form_vars['c_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['c_cost'])); 36 36 $form_vars['f_cost'] = preg_replace('/[^0-9\.]+/is', '', sanitize_text_field($_REQUEST['f_cost'])); … … 57 57 $record['link_id'] = rtrim($record['link_id'],'/'); 58 58 $record['redirect_link'] = rtrim($record['redirect_link'],'/'); 59 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['conv_value']);59 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '',@$_REQUEST['form_vars']['conv_value']); 60 60 //$form_vars['click_cost'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['click_cost']); 61 61 … … 101 101 $record['link_id'] = rtrim($record['link_id'],'/'); 102 102 $record['redirect_link'] = rtrim($record['redirect_link'],'/'); 103 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @ self::$form_vars['conv_value']);103 $form_vars['conv_value'] = preg_replace('/[^0-9\.]+/is', '', @$_REQUEST['form_vars']['conv_value']); 104 104 //$form_vars['click_cost'] = preg_replace('/[^0-9\.]+/is', '', @self::$form_vars['click_cost']); 105 105 -
simple-click-tracker-lite/trunk/app/sites/public/actions/group_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['group_id'] = intval(@ self::$form_vars['group_id']);3 $form_vars['name'] = trim(@ self::$form_vars['name']);2 $form_vars['group_id'] = intval(@$_REQUEST['form_vars']['group_id']); 3 $form_vars['name'] = trim(@$_REQUEST['form_vars']['name']); 4 4 if (!$form_vars['name']) 5 5 { -
simple-click-tracker-lite/trunk/app/sites/public/actions/link_save.php
r2689820 r2742433 1 1 <?php 2 $form_vars['link_id'] = intval(@ self::$form_vars['link_id']);3 $form_vars['goal_link_id'] = intval(@ self::$form_vars['goal_link_id']);4 $form_vars['group_id'] = intval(@ self::$form_vars['group_id']);5 $form_vars['name'] = @sanitize_text_field(trim(@ self::$form_vars['name']));6 $form_vars['domain_id'] = intval(@ self::$form_vars['domain_id']);7 $form_vars['path'] = trim(@ self::$form_vars['path']);8 $form_vars['url'] = trim(@ self::$form_vars['url']);9 $form_vars['type'] = trim(@ self::$form_vars['type']);2 $form_vars['link_id'] = intval(@$_REQUEST['form_vars']['link_id']); 3 $form_vars['goal_link_id'] = intval(@$_REQUEST['form_vars']['goal_link_id']); 4 $form_vars['group_id'] = intval(@$_REQUEST['form_vars']['group_id']); 5 $form_vars['name'] = @sanitize_text_field(trim(@$_REQUEST['form_vars']['name'])); 6 $form_vars['domain_id'] = intval(@$_REQUEST['form_vars']['domain_id']); 7 $form_vars['path'] = trim(@$_REQUEST['form_vars']['path']); 8 $form_vars['url'] = trim(@$_REQUEST['form_vars']['url']); 9 $form_vars['type'] = trim(@$_REQUEST['form_vars']['type']); 10 10 $form_vars['path'] = trim(trim($form_vars['path']), '/'); 11 11 $form_vars['path'] = preg_replace('/[^0-9a-zA-Z\_\-\ \/]+/is', '', trim($form_vars['path'])); 12 12 $form_vars['path'] = str_replace(' ', '-', $form_vars['path']); 13 $form_vars['description'] = sanitize_text_field(trim(@self::$form_vars['description'])); 14 13 $form_vars['description'] = sanitize_text_field(trim(@$_REQUEST['form_vars']['description'])); 15 14 if(!isset($_REQUEST['query_string'])){ 16 15 $form_vars['query_string'] = 1; … … 18 17 $form_vars['query_string'] = trim(sanitize_text_field($_REQUEST['query_string'])); 19 18 } 20 21 22 19 $handle = @fopen($form_vars['url'],'r'); 23 20 $er = 0; 24 25 21 if (!$form_vars['name']) 26 22 { 27 23 self::$errors['name'] = 'Name is required'; 28 24 } 29 30 25 if (!$form_vars['path']) 31 26 { 32 27 self::$errors['path'] = 'Path is required'; 33 28 } 34 35 29 if (!$form_vars['path']) 36 30 { … … 44 38 { 45 39 $o_link_id = (int)$wpdb->get_var('SELECT * FROM '.self::$table['link'].' WHERE link_id != '.(int)$form_vars['link_id'].' AND domain_id = '.(int)$form_vars['domain_id'].' AND (path = "'.addslashes($form_vars['path']).'" OR path = "/'.addslashes($form_vars['path']).'")'); 46 47 40 if ($o_link_id) 48 41 { … … 50 43 } 51 44 } 52 53 45 if($er==1){ 54 46 self::$errors['name'] = 'Please Enter a valid Destination URL.'; 55 47 } 56 57 48 if (!$form_vars['url']) 58 49 { … … 63 54 self::$errors['url'] = 'Invalid or incomplete'; 64 55 } 65 66 56 if (!self::$errors) 67 57 { … … 77 67 $form_vars['is_dead'] = 0; 78 68 $form_vars['user_id'] = Sct_Base::getActorUserId(); 79 80 69 $wpdb->insert(self::$table['link'], $form_vars); 81 82 70 $form_vars['link_id'] = $wpdb->insert_id; 83 84 71 $sql = ' 85 72 SELECT … … 89 76 WHERE 90 77 user_id = "'.addslashes(Sct_Base::getActorUserId()).'"'; 91 92 78 $link_count = $wpdb->get_var($sql); 93 94 79 if ($link_count == 1) 95 80 { … … 97 82 if(count($domain)>0){ 98 83 $response = wp_remote_get('http://'.$domain['domain'].'/sct/ping'); 99 100 84 if (Sct_Base::$is_full_access && (is_wp_error($response) || !(int)$response['body'])) 101 85 { … … 112 96 ) 113 97 ); 114 115 98 $back_url = $base_url.'action=link_edit&link_id='.$form_vars['link_id'].'&saved=1'; 116 117 99 $save_new_url = $base_url.'action=link_edit'; 118 100 if (@$_REQUEST['save'] == 'Save') … … 124 106 header('Location: '.$base_url); 125 107 } 126 127 108 exit(); 128 109 } 129 130 110 self::$action = 'link_edit';
Note: See TracChangeset
for help on using the changeset viewer.