NineSec Team Shell

<?php /** * Static methods for URL/hidden inputs generating */ declare(strict_types=1); namespace PhpMyAdmin; use PhpMyAdmin\Crypto\Crypto; use function base64_decode; use function base64_encode; use function htmlentities; use function htmlspecialchars; use function http_build_query; use function in_array; use function ini_get; use function is_array; use function json_encode; use function str_contains; use function strlen; use function strtr; /** * Static methods for URL/hidden inputs generating */ class Url { /** * Generates text with hidden inputs. * * @see Url::getCommon() * * @param string|array $db optional database name * (can also be an array of parameters) * @param string $table optional table name * @param int $indent indenting level * @param string|array $skip do not generate a hidden field for this parameter * (can be an array of strings) * * @return string string with input fields */ public static function getHiddenInputs( $db = '', $table = '', $indent = 0, $skip = [] ) { global $config; if (is_array($db)) { $params =& $db; } else { $params = []; if (strlen((string) $db) > 0) { $params['db'] = $db; } if (strlen((string) $table) > 0) { $params['table'] = $table; } } if (! empty($GLOBALS['server']) && $GLOBALS['server'] != $GLOBALS['cfg']['ServerDefault']) { $params['server'] = $GLOBALS['server']; } if (empty($config->getCookie('pma_lang')) && ! empty($GLOBALS['lang'])) { $params['lang'] = $GLOBALS['lang']; } if (! is_array($skip)) { if (isset($params[$skip])) { unset($params[$skip]); } } else { foreach ($skip as $skipping) { if (! isset($params[$skipping])) { continue; } unset($params[$skipping]); } } return self::getHiddenFields($params); } /** * create hidden form fields from array with name => value * * <code> * $values = array( * 'aaa' => aaa, * 'bbb' => array( * 'bbb_0', * 'bbb_1', * ), * 'ccc' => array( * 'a' => 'ccc_a', * 'b' => 'ccc_b', * ), * ); * echo Url::getHiddenFields($values); * * // produces: * <input type="hidden" name="aaa" Value="aaa"> * <input type="hidden" name="bbb[0]" Value="bbb_0"> * <input type="hidden" name="bbb[1]" Value="bbb_1"> * <input type="hidden" name="ccc[a]" Value="ccc_a"> * <input type="hidden" name="ccc[b]" Value="ccc_b"> * </code> * * @param array $values hidden values * @param string $pre prefix * @param bool $is_token if token already added in hidden input field * * @return string form fields of type hidden */ public static function getHiddenFields(array $values, $pre = '', $is_token = false) { $fields = ''; /* Always include token in plain forms */ if ($is_token === false && isset($_SESSION[' PMA_token '])) { $values['token'] = $_SESSION[' PMA_token ']; } foreach ($values as $name => $value) { if (! empty($pre)) { $name = $pre . '[' . $name . ']'; } if (is_array($value)) { $fields .= self::getHiddenFields($value, $name, true); } else { // do not generate an ending "\n" because // Url::getHiddenInputs() is sometimes called // from a JS document.write() $fields .= '<input type="hidden" name="' . htmlspecialchars((string) $name) . '" value="' . htmlspecialchars((string) $value) . '">'; } } return $fields; } /** * Generates text with URL parameters. * * <code> * $params['myparam'] = 'myvalue'; * $params['db'] = 'mysql'; * $params['table'] = 'rights'; * // note the missing ? * echo 'script.php' . Url::getCommon($params); * // produces with cookies enabled: * // script.php?myparam=myvalue&db=mysql&table=rights * // with cookies disabled: * // script.php?server=1&lang=en&myparam=myvalue&db=mysql * // &table=rights * * // note the missing ? * echo 'script.php' . Url::getCommon(); * // produces with cookies enabled: * // script.php * // with cookies disabled: * // script.php?server=1&lang=en * </code> * * @param array<string,int|string|bool> $params optional, Contains an associative array with url params * @param string $divider optional character to use instead of '?' * @param bool $encrypt whether to encrypt URL params * * @return string string with URL parameters */ public static function getCommon(array $params = [], $divider = '?', $encrypt = true) { return self::getCommonRaw($params, $divider, $encrypt); } /** * Generates text with URL parameters. * * <code> * $params['myparam'] = 'myvalue'; * $params['db'] = 'mysql'; * $params['table'] = 'rights'; * // note the missing ? * echo 'script.php' . Url::getCommon($params); * // produces with cookies enabled: * // script.php?myparam=myvalue&db=mysql&table=rights * // with cookies disabled: * // script.php?server=1&lang=en&myparam=myvalue&db=mysql * // &table=rights * * // note the missing ? * echo 'script.php' . Url::getCommon(); * // produces with cookies enabled: * // script.php * // with cookies disabled: * // script.php?server=1&lang=en * </code> * * @param array<string|int,int|string|bool> $params optional, Contains an associative array with url params * @param string $divider optional character to use instead of '?' * @param bool $encrypt whether to encrypt URL params * * @return string string with URL parameters */ public static function getCommonRaw(array $params = [], $divider = '?', $encrypt = true) { global $config; // avoid overwriting when creating navigation panel links to servers if ( isset($GLOBALS['server']) && $GLOBALS['server'] != $GLOBALS['cfg']['ServerDefault'] && ! isset($params['server']) && ! $config->get('is_setup') ) { $params['server'] = $GLOBALS['server']; } // Can be null when the user is missing an extension. if ($config !== null && empty($config->getCookie('pma_lang')) && ! empty($GLOBALS['lang'])) { $params['lang'] = $GLOBALS['lang']; } $query = self::buildHttpQuery($params, $encrypt); if (($divider !== '?' && $divider !== '&') || strlen($query) > 0) { return $divider . $query; } return ''; } /** * @param array<int|string, mixed> $params * @param bool $encrypt whether to encrypt URL params * * @return string */ public static function buildHttpQuery($params, $encrypt = true) { global $config; $separator = self::getArgSeparator(); if (! $encrypt || ! $config->get('URLQueryEncryption')) { return http_build_query($params, '', $separator); } $data = $params; $keys = [ 'db', 'table', 'field', 'sql_query', 'sql_signature', 'where_clause', 'goto', 'back', 'message_to_show', 'username', 'hostname', 'dbname', 'tablename', 'checkprivsdb', 'checkprivstable', ]; $paramsToEncrypt = []; foreach ($params as $paramKey => $paramValue) { if (! in_array($paramKey, $keys)) { continue; } $paramsToEncrypt[$paramKey] = $paramValue; unset($data[$paramKey]); } if ($paramsToEncrypt !== []) { $data['eq'] = self::encryptQuery((string) json_encode($paramsToEncrypt)); } return http_build_query($data, '', $separator); } public static function encryptQuery(string $query): string { $crypto = new Crypto(); return strtr(base64_encode($crypto->encrypt($query)), '+/', '-_'); } public static function decryptQuery(string $query): ?string { $crypto = new Crypto(); return $crypto->decrypt(base64_decode(strtr($query, '-_', '+/'))); } /** * Returns url separator * * extracted from arg_separator.input as set in php.ini * we do not use arg_separator.output to avoid problems with & and & * * @param string $encode whether to encode separator or not, * currently 'none' or 'html' * * @return string character used for separating url parts usually ; or & */ public static function getArgSeparator($encode = 'none') { static $separator = null; static $html_separator = null; if ($separator === null) { // use separators defined by php, but prefer ';' // as recommended by W3C // (see https://www.w3.org/TR/1999/REC-html401-19991224/appendix // /notes.html#h-B.2.2) $arg_separator = (string) ini_get('arg_separator.input'); if (str_contains($arg_separator, ';')) { $separator = ';'; } elseif (strlen($arg_separator) > 0) { $separator = $arg_separator[0]; } else { $separator = '&'; } $html_separator = htmlentities($separator); } switch ($encode) { case 'html': return $html_separator; case 'text': case 'none': default: return $separator; } } /** * @param string $route Route to use * @param array $additionalParameters Additional URL parameters */ public static function getFromRoute(string $route, array $additionalParameters = []): string { return 'index.php?route=' . $route . self::getCommon($additionalParameters, '&'); } }

Name	Size	Last Modified	Owner	Permissions	Options
..	--	September 11 2024 5:18:57	readytorun	0755
Charsets	--	September 11 2024 5:18:57	readytorun	0755
Command	--	September 11 2024 5:18:57	readytorun	0755
Config	--	September 11 2024 5:18:57	readytorun	0755
ConfigStorage	--	September 11 2024 5:18:57	readytorun	0755
Controllers	--	September 11 2024 5:18:57	readytorun	0755
Crypto	--	September 11 2024 5:18:57	readytorun	0755
Database	--	September 11 2024 5:18:57	readytorun	0755
Dbal	--	September 11 2024 5:18:57	readytorun	0755
Display	--	September 11 2024 5:18:57	readytorun	0755
Engines	--	September 11 2024 5:18:57	readytorun	0755
Exceptions	--	September 11 2024 5:18:57	readytorun	0755
Export	--	September 11 2024 5:18:57	readytorun	0755
Gis	--	September 11 2024 5:18:57	readytorun	0755
Html	--	September 11 2024 5:18:57	readytorun	0755
Http	--	September 11 2024 5:18:57	readytorun	0755
Image	--	September 11 2024 5:18:57	readytorun	0755
Import	--	September 11 2024 5:18:57	readytorun	0755
Navigation	--	September 11 2024 5:18:57	readytorun	0755
Partitioning	--	September 11 2024 5:18:57	readytorun	0755
Plugins	--	September 11 2024 5:18:57	readytorun	0755
Properties	--	September 11 2024 5:18:57	readytorun	0755
Providers	--	September 11 2024 5:18:57	readytorun	0755
Query	--	September 11 2024 5:18:57	readytorun	0755
Server	--	September 11 2024 5:18:57	readytorun	0755
Setup	--	September 11 2024 5:18:57	readytorun	0755
Table	--	September 11 2024 5:18:57	readytorun	0755
Twig	--	September 11 2024 5:18:57	readytorun	0755
Utils	--	September 11 2024 5:18:57	readytorun	0755

.htaccess	0.124 KB	November 14 2025 9:26:18	readytorun	0444
Advisor.php	12.317 KB	August 28 2023 5:04:12	readytorun	0777
Bookmark.php	9.188 KB	August 28 2023 5:04:12	readytorun	0777
BrowseForeigners.php	10.644 KB	August 28 2023 5:04:12	readytorun	0777
Cache.php	1.502 KB	August 28 2023 5:04:11	readytorun	0777
Charsets.php	6.823 KB	August 28 2023 5:04:12	readytorun	0777
CheckUserPrivileges.php	11.303 KB	August 28 2023 5:04:12	readytorun	0777
Common.php	19.156 KB	August 28 2023 5:04:12	readytorun	0777
Config.php	41.534 KB	August 28 2023 5:04:12	readytorun	0777
Console.php	3.251 KB	August 28 2023 5:04:12	readytorun	0777
Core.php	29.376 KB	August 28 2023 5:04:13	readytorun	0777
CreateAddField.php	15.951 KB	August 28 2023 5:04:11	readytorun	0777
DatabaseInterface.php	71.577 KB	August 28 2023 5:04:12	readytorun	0777
DbTableExists.php	2.859 KB	August 28 2023 5:04:12	readytorun	0777
Encoding.php	8.41 KB	August 28 2023 5:04:12	readytorun	0777
Error.php	13.626 KB	August 28 2023 5:04:12	readytorun	0777
ErrorHandler.php	18.225 KB	August 28 2023 5:04:12	readytorun	0777
ErrorReport.php	8.988 KB	August 28 2023 5:04:11	readytorun	0777
Export.php	45.555 KB	August 28 2023 5:04:11	readytorun	0777
FieldMetadata.php	11.244 KB	August 28 2023 5:04:12	readytorun	0777
File.php	19.745 KB	August 28 2023 5:04:11	readytorun	0777
FileListing.php	2.877 KB	August 28 2023 5:04:12	readytorun	0777
FlashMessages.php	1.217 KB	August 28 2023 5:04:12	readytorun	0777
Font.php	5.54 KB	August 28 2023 5:04:12	readytorun	0777
Footer.php	8.061 KB	August 28 2023 5:04:12	readytorun	0777
Git.php	17.859 KB	August 28 2023 5:04:11	readytorun	0777
Header.php	19.871 KB	August 28 2023 5:04:12	readytorun	0777
Import.php	48.719 KB	August 28 2023 5:04:11	readytorun	0777
Index.php	14.83 KB	August 28 2023 5:04:11	readytorun	0777
IndexColumn.php	4.755 KB	August 28 2023 5:04:12	readytorun	0777
InsertEdit.php	89.076 KB	August 28 2023 5:04:11	readytorun	0777
InternalRelations.php	17.314 KB	August 28 2023 5:04:11	readytorun	0777
IpAllowDeny.php	9.13 KB	August 28 2023 5:04:11	readytorun	0777
Language.php	4.473 KB	August 28 2023 5:04:12	readytorun	0777
LanguageManager.php	22.641 KB	August 28 2023 5:04:13	readytorun	0777
Linter.php	4.988 KB	August 28 2023 5:04:12	readytorun	0777
ListAbstract.php	1.669 KB	August 28 2023 5:04:11	readytorun	0777
ListDatabase.php	4.112 KB	August 28 2023 5:04:11	readytorun	0777
Logging.php	2.691 KB	August 28 2023 5:04:13	readytorun	0777
Menu.php	20.401 KB	August 28 2023 5:04:12	readytorun	0777
Message.php	18.68 KB	August 28 2023 5:04:13	readytorun	0777
Mime.php	0.896 KB	August 28 2023 5:04:12	readytorun	0777
Normalization.php	41.575 KB	August 28 2023 5:04:12	readytorun	0777
OpenDocument.php	8.619 KB	August 28 2023 5:04:11	readytorun	0777
Operations.php	35.114 KB	August 28 2023 5:04:12	readytorun	0777
OutputBuffering.php	4.099 KB	August 28 2023 5:04:13	readytorun	0777
ParseAnalyze.php	2.337 KB	August 28 2023 5:04:11	readytorun	0777
Pdf.php	4.174 KB	August 28 2023 5:04:12	readytorun	0777
Plugins.php	21.82 KB	August 28 2023 5:04:12	readytorun	0777
Profiling.php	2.158 KB	August 28 2023 5:04:11	readytorun	0777
RecentFavoriteTable.php	11.436 KB	August 28 2023 5:04:13	readytorun	0777
Replication.php	4.81 KB	August 28 2023 5:04:12	readytorun	0777
ReplicationGui.php	21.239 KB	August 28 2023 5:04:11	readytorun	0777
ReplicationInfo.php	4.792 KB	August 28 2023 5:04:11	readytorun	0777
ResponseRenderer.php	13.495 KB	August 28 2023 5:04:11	readytorun	0777
Routing.php	5.971 KB	August 28 2023 5:04:12	readytorun	0777
Sanitize.php	11.981 KB	August 28 2023 5:04:11	readytorun	0777
SavedSearches.php	11.328 KB	August 28 2023 5:04:12	readytorun	0777
Scripts.php	3.738 KB	August 28 2023 5:04:11	readytorun	0777
Session.php	8.162 KB	August 28 2023 5:04:11	readytorun	0777
Sql.php	63.988 KB	August 28 2023 5:04:12	readytorun	0777
SqlQueryForm.php	6.742 KB	August 28 2023 5:04:12	readytorun	0777
StorageEngine.php	15.723 KB	August 28 2023 5:04:12	readytorun	0777
SystemDatabase.php	3.98 KB	August 28 2023 5:04:11	readytorun	0777
Table.php	90.179 KB	August 28 2023 5:04:13	readytorun	0777
Template.php	4.505 KB	August 28 2023 5:04:12	readytorun	0777
Theme.php	7.319 KB	August 28 2023 5:04:12	readytorun	0777
ThemeManager.php	6.999 KB	August 28 2023 5:04:12	readytorun	0777
Tracker.php	30.337 KB	August 28 2023 5:04:12	readytorun	0777
Tracking.php	36.106 KB	August 28 2023 5:04:12	readytorun	0777
Transformations.php	16.314 KB	August 28 2023 5:04:12	readytorun	0777
TwoFactor.php	6.979 KB	August 28 2023 5:04:11	readytorun	0777
Types.php	24.739 KB	August 28 2023 5:04:12	readytorun	0777
Url.php	10.608 KB	August 28 2023 5:04:12	readytorun	0777
UrlRedirector.php	1.735 KB	August 28 2023 5:04:12	readytorun	0777
UserPassword.php	6.859 KB	August 28 2023 5:04:11	readytorun	0777
UserPreferences.php	10.488 KB	August 28 2023 5:04:12	readytorun	0777
Util.php	85.741 KB	August 28 2023 5:04:12	readytorun	0777
Version.php	0.543 KB	August 28 2023 5:04:12	readytorun	0777
VersionInformation.php	7.3 KB	August 28 2023 5:04:13	readytorun	0777
ZipExtension.php	10.334 KB	August 28 2023 5:04:12	readytorun	0777

NineSec Team - 2022