Нашли или выдавили из себя код, который нельзя назвать нормальным, на который без улыбки не взглянешь? Не торопитесь его удалять или рефакторить, — запостите его на говнокод.ру, посмеёмся вместе!
+164
$this->db->Query("DELETE FROM `u_proposal`
WHERE `id` = '%d' AND `user` = '%d'", $item, $this->user->id);
$this->db->Query("DELETE FROM `p_options`
LEFT JOIN `u_proposal` ON `p_options`.`portfolio` = `u_proposal`.`id`
WHERE `p_options`.`portfolio` = '%d' AND `p_options`.`type` = 'project' AND `u_proposal`.`user` = '%d'", $item, $this->user->id);3 часа еб**ся не мог понять почему записи из p_options не удаляются ))
Sulik78,
25 Февраля 2011
+166
function assign($params)
{
return $params[0];
}Функция с одной коммерческой cms. Можно же обойтись и без функции. Да и желательно сделать проверку на существование переменной.
codosub,
23 Февраля 2011
+171
if($nav_url=="blog.php")
{
$ahaha='2';
eval('$code["$elementtype"] .= "' . fetch_template('navbar_link') . '";');
$ahaha='';
}
else
{
eval('$code["$elementtype"] .= "' . fetch_template('navbar_link') . '";');
}Ахаха!
symbix,
23 Февраля 2011
+162
<?php
$t1 = microtime();
define('CMS_LOAD', TRUE);
require_once('./inc/config.inc.php');
require_once('./inc/main_fnc.inc.php');
cms_MysqlConnect();
unset($cms); // попутно используемые данные скрипта
unset($vars); // $_POST, $_COOKIE, $_GET данные
cms_RegVars();
$cms['page'] = !empty($vars['page']) ? $vars['page'] : 'main';
$cms['md_page'] = !empty($vars['md_page']) ? $vars['md_page'] : '';
$cms['ESTRING'] = !get_magic_quotes_gpc() ? TRUE : FALSE;
$cms['strpos'] = strpos($cms['page'], '_');
$cms['q_page'] = mysql_query("SELECT name, ptext FROM ".CMS_PREFIX."_pages WHERE page='".cms_MysqlEStr($cms['page'])."' LIMIT 1");
$cms['is_page'] = mysql_num_rows($cms['q_page']);
// если в _pages нет такой страницы, перемещаем на главную
if($cms['is_page'] > 0)
{
list($cms['page_name'], $cms['page_text']) = mysql_fetch_row($cms['q_page']);
}
else
{
header("Location: /");
}
mysql_free_result($cms['q_page']);
if($cms['strpos'] > 0 && !empty($cms['md_page']))
{
$cms['q_md_product1'] = mysql_query("SELECT name, descript2, cost FROM ".CMS_PREFIX."_productions WHERE id=".intval($cms['md_page'])." LIMIT 1");
if(mysql_num_rows($cms['q_md_product1']) > 0)
{
list($cms['page_name'], $cms['md_prod_descr2'], $cms['md_prod_cost']) = mysql_fetch_row($cms['q_md_product1']);
}
else
{
header("Location: /");
}
mysql_free_result($cms['q_md_product1']);
}
//edited by DEMIS [[email protected]]
$cms['page_text_header'] = $cms['page_name'];Index.php в самописной CMS улыбает. И это только начало +)
be3,
23 Февраля 2011
+179
$kPOST = @array_keys($_POST);
for (@$i=0;$i<@count(@$kPOST);@$i++) {
$_POST[@$kPOST[@$i]] = @htmlspecialchars(@$_POST[@$kPOST[@$i]]);
}
$kGET = @array_keys(@$_GET);
for (@$i=0;@$i<@count(@$kGET);@$i++) {
$_GET[@$kGET[@$i]] = @htmlspecialchars(@$_GET[@$kGET[@$i]]);
}Ну теперь точно без ошибок!
Sych,
23 Февраля 2011
+164
function export_global_value($begin_name,$type='POST'){
if($type=='POST')$get_array=$_POST;
else if($type=='GET')$get_array=$_GET;
else if($type=='FILES')$get_array=$_FILES;
else if($type=='SESSION')$get_array=$_SESSION;
else if($type=='COOKIE')$get_array=$_COOKIE;
else if($type=='REQUEST')$get_array=$_REQUEST;
else $get_array=$_POST;
$name_get=array_keys($get_array);
$len=strlen($begin_name);
$result_array=array();
for ($i=0;$i<=count($get_array);$i++){
$text_key=$name_get[$i];
if($begin_name==substr($text_key,0,$len)){
array_push($result_array,$text_key);
}
}
return $result_array;
}Бля.
7ion,
23 Февраля 2011
+145
function ruslat ($string) # Задаём функцию перекодировки кириллицы в транслит.
{
$string = ereg_replace("ж","zh",$string);
$string = ereg_replace("ё","yo",$string);
$string = ereg_replace("й","i",$string);
$string = ereg_replace("ю","yu",$string);
$string = ereg_replace("ь","'",$string);
$string = ereg_replace("ч","ch",$string);
$string = ereg_replace("щ","sh",$string);
$string = ereg_replace("ц","c",$string);
$string = ereg_replace("у","u",$string);
$string = ereg_replace("к","k",$string);
$string = ereg_replace("е","e",$string);
$string = ereg_replace("н","n",$string);
$string = ereg_replace("г","g",$string);
$string = ereg_replace("ш","sh",$string);
$string = ereg_replace("з","z",$string);
$string = ereg_replace("х","h",$string);
$string = ereg_replace("ъ","''",$string);
$string = ereg_replace("ф","f",$string);
$string = ereg_replace("ы","y",$string);
$string = ereg_replace("в","v",$string);
$string = ereg_replace("а","a",$string);
$string = ereg_replace("п","p",$string);
$string = ereg_replace("р","r",$string);
$string = ereg_replace("о","o",$string);
$string = ereg_replace("л","l",$string);
$string = ereg_replace("д","d",$string);
$string = ereg_replace("э","yе",$string);
$string = ereg_replace("я","jа",$string);
$string = ereg_replace("с","s",$string);
$string = ereg_replace("м","m",$string);
$string = ereg_replace("и","i",$string);
$string = ereg_replace("т","t",$string);
$string = ereg_replace("б","b",$string);
$string = ereg_replace("Ё","yo",$string);
$string = ereg_replace("Й","I",$string);
$string = ereg_replace("Ю","YU",$string);
$string = ereg_replace("Ч","CH",$string);
$string = ereg_replace("Ь","'",$string);
$string = ereg_replace("Щ","SH'",$string);
$string = ereg_replace("Ц","C",$string);
$string = ereg_replace("У","U",$string);
$string = ereg_replace("К","K",$string);
$string = ereg_replace("Е","E",$string);
$string = ereg_replace("Н","N",$string);
$string = ereg_replace("Г","G",$string);
$string = ereg_replace("Ш","SH",$string);
$string = ereg_replace("З","Z",$string);
$string = ereg_replace("Х","H",$string);
$string = ereg_replace("Ъ","''",$string);
$string = ereg_replace("Ф","F",$string);
$string = ereg_replace("Ы","Y",$string);
$string = ereg_replace("В","V",$string);
$string = ereg_replace("А","A",$string);
$string = ereg_replace("П","P",$string);
$string = ereg_replace("Р","R",$string);
$string = ereg_replace("О","O",$string);
$string = ereg_replace("Л","L",$string);
$string = ereg_replace("Д","D",$string);
$string = ereg_replace("Ж","Zh",$string);
$string = ereg_replace("Э","Ye",$string);
$string = ereg_replace("Я","Ja",$string);
$string = ereg_replace("С","S",$string);
$string = ereg_replace("М","M",$string);
$string = ereg_replace("И","I",$string);
$string = ereg_replace("Т","T",$string);
$string = ereg_replace("Б","B",$string);
return $string;
}
Sulik78,
23 Февраля 2011
+165
<?php
function Test()
{
if (isset($this->session->login) && isset($this->session->password)) {
if ($this->session->ip != $_SERVER["REMOTE_ADDR"]) {
$this->db->Query("INSERT INTO `hackers`
SET `ip` = '%s', `get` = '%s'", $_SERVER['REMOTE_ADDR'], $_SERVER["REQUEST_METHOD"]." | ".$_SERVER["REQUEST_URI"]);
exit("Critical error! Stopping...");
} else {
$this->db->Query("SELECT *
FROM `users`
WHERE `login` = '%s' AND password = '%s' LIMIT 1", $this->session->login, $this->session->password);
if ($this->db->Num()) {
return $this->db->Fetch();
} else {
return false;
}
}
} else {
return false;
}
}
qbasic,
23 Февраля 2011
+159
//старт сессии
function Sessions_Start () {
global $SecureKey, $SecureCookieName, $NumIPRanks, $AuthSalt;
$LifeTime = 0;
$Path = '/';
$Domain = '';
$Secure = FALSE;
$HttpOnly = TRUE;
session_set_cookie_params($LifeTime, $Path, $Domain, $Secure, $HttpOnly);
session_start ();
if (!isset ($_SESSION['UserData'])) {
$_SESSION['UserData'] = array ();
$_SESSION['UserData']['UserType'] = 'guest';
}
else{
$Type = $_SESSION['UserData']['UserType'];
$SessionValidator = 0;
if ($Type == 'member') {
if (!isset ($_SESSION['UserData']['UserID']) or !isset ($_SESSION['UserData']['UserName']) or!isset ($_SESSION['UserData']['GroupID']) or!isset ($_SESSION['UserData'][$SecureKey]) or!isset ($_SESSION['UserData'][$SecureCookieName])) {
$SessionValidator++;
}
if (!isset ($_COOKIE[$SecureCookieName])) {
$SessionValidator++;
}
//секретная строка
$IPArray = explode ('.', $_SERVER['REMOTE_ADDR']);
$IPRanks = array ();
for ($i=0; $i < $NumIPRanks; $i++) {
$IPRanks[] = $IPArray[$i];
}
$IPFinalString = sha1 (implode ('.', $IPRanks) . $AuthSalt);
$CurUserAgent = sha1 (substr ($_SERVER['HTTP_USER_AGENT'], 0, 50) . $AuthSalt);
$SecureString = sha1 ($IPFinalString . $CurUserAgent . $AuthSalt);
if ($_SESSION['UserData'][$SecureKey] <> $SecureString) {
$SessionValidator++;
}
if ($_SESSION['UserData'][$SecureCookieName] <> $_COOKIE[$SecureCookieName]) {
$SessionValidator++;
}
if ($SessionValidator > 0) {
session_regenerate_id ();
$_SESSION['UserData'] = array ();
$_SESSION['UserData']['UserType'] = 'guest';
}
}
}
return (session_id ());
}
qbasic,
23 Февраля 2011
+160
if (isset ($_POST['SendAuthForm'])) {
//массив ошибок
$AuthError = array ();
if (!isset ($_POST['AuthLogin']) || $_POST['AuthLogin'] == '' || !isset ($_POST['AuthPass']) || $_POST['AuthPass'] == '') {
$AuthError[] = $ForumLang['AuthErrors']['WrongLoginPass'];
}
else {
$AuthLogin = trim ($_POST['AuthLogin']);
$AuthPass = trim ($_POST['AuthPass']);
$CheckUserValid = 0;
//проверка логина-пароля
$SQLCheckAuth = 'SELECT UserID, UserPassword, UserMail, GroupID
FROM users
WHERE UserLogin = \'' . Defence_EscapeString ($DBType, $AuthLogin) . '\'';
$CheckAuthQuery = DB_Query ($DBType, $SQLCheckAuth, $ForumConnection);
if (!$CheckAuthQuery) {
exit ('Error while checking auth data!');
}
$UserExists = DB_NumRows ($DBType, $CheckAuthQuery);
if ($UserExists == 0) {
$CheckUserValid++;
}
//массив
$UserRow = DB_FetchAssoc ($DBType, $CheckAuthQuery);
//данные
$UserPass = $UserRow['UserPassword'];
$UserID = intval ($UserRow['UserID']);
$UserMail = $UserRow['UserMail'];
$GroupID = intval ($UserRow['GroupID']);
if (Main_Crypt ($AuthPass) <> $UserPass) {
$CheckUserValid++;
}
if ($CheckUserValid > 0) {
$AuthError[] = $ForumLang['AuthErrors']['WrongLoginPass'];
}
else {
//удаление из гостей
$SQLDelFromGuests = 'DELETE FROM guest_activity
WHERE SessionID=\'' . $SessionID . '\'';
$DelFromGuestsQuery = DB_Query ($DBType, $SQLDelFromGuests, $ForumConnection);
if (!$DelFromGuestsQuery) {
exit ('Error while deleting user from guest table!');
}
//редактирование таблицы пользователя
$CurAction = 'main_page';
$SQLUpdateUser = 'UPDATE user_activity
SET UserLastLogin=\'' . $Now . '\', UserLastAction=\'' . $CurAction . '\', UserIsOnline=\'yes\'
WHERE UserID=\'' . $UserID . '\'';
$UpdateUserQuery = DB_Query ($DBType, $SQLUpdateUser, $ForumConnection);
if (!$UpdateUserQuery) {
exit ('Error while updating user status onto \'yes\'!');
}
//регенерация ид сессии
session_regenerate_id (TRUE);
$SecureString = '';
//ip пользователя
$CurUserIP = $_SERVER['REMOTE_ADDR'];
$IPArray = explode ('.', $CurUserIP);
$IPRanks = array ();
for ($i=0; $i < $NumIPRanks; $i++) {
$IPRanks[] = $IPArray[$i];
}
$IPFinalString = implode ('.', $IPRanks);
$IPFinalString = sha1 ($IPFinalString . $AuthSalt);
//user-agent
$CurUserAgent = $_SERVER['HTTP_USER_AGENT'];
$CurUserAgent = substr ($CurUserAgent, 0, 50);
$CurUserAgent = sha1 ($CurUserAgent . $AuthSalt);
//объединение
$SecureString = sha1 ($IPFinalString . $CurUserAgent . $AuthSalt);
//случайная строка - хеш
$RandomString = Main_GenerateRandString (10, '1');
$RandomString = sha1 ($RandomString . $AuthSalt . time ());
//данные в сессию
unset ($_SESSION['UserData']);
$_SESSION['UserData'] = array ();
$_SESSION['UserData']['UserType'] = 'member';
$_SESSION['UserData']['UserID'] = $UserID;
$_SESSION['UserData']['UserName'] = $AuthLogin;
$_SESSION['UserData']['GroupID'] = $GroupID;
$_SESSION['UserData'][$SecureKey] = $SecureString;
$_SESSION['UserData'][$SecureCookieName] = $RandomString;
//куки
setcookie($SecureCookieName,$RandomString);
//перенаправление
$_SESSION['Message'] = 'auth_sucess';
$URL = '?action=message';
Header('Location:' . $SelfName . $URL);
exit ();
}
}
//проверка
}
qbasic,
23 Февраля 2011
Follow us!