chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

[svn r11115] casting $blog_id, $_user['id'], $task_id, ... and alike

Browse Source 
and using mysql_real_escape_string
to fix XSS and SQL injections
http://www.dokeos.com/forum/viewtopic.php?t=8464
skala
Patrick Cool 18 years ago
parent 6d52f5e483
commit 51f9f34b63
1 changed files with 535 additions and 485 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 292
      main/inc/lib/blog.lib.php

292
main/inc/lib/blog.lib.php
Unescape View File

@ -57,7 +57,7 @@ class Blog
$sql = "
SELECT `blog_name`
FROM " . $tbl_blogs . "
WHERE `blog_id` = " . $blog_id;
WHERE `blog_id` = " . mysql_real_escape_string((int)$blog_id);
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog = mysql_fetch_array($result);
@ -79,7 +79,7 @@ class Blog
{
// init
$tbl_blogs = Database::get_course_table(TABLE_BLOGS);
$sql = "SELECT `blog_subtitle` FROM $tbl_blogs WHERE `blog_id` =$blog_id";
$sql = "SELECT blog_subtitle FROM $tbl_blogs WHERE blog_id ='".mysql_real_escape_string((int)$blog_id)."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog = mysql_fetch_array($result);
@ -110,7 +110,7 @@ class Blog
user.lastname
FROM " . $tbl_blogs_rel_user . " blogs_rel_user
INNER JOIN " . $tbl_users . " user ON blogs_rel_user.user_id = user.user_id
WHERE blogs_rel_user.blog_id = " . $blog_id;
WHERE blogs_rel_user.blog_id = '" . mysql_real_escape_string((int)$blog_id)."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog_members = array ();
@ -144,20 +144,23 @@ class Blog
$tbl_blogs_tasks = Database::get_course_table(TABLE_BLOGS_TASKS);
// Create the blog
$sql = "INSERT INTO $tbl_blogs (`blog_name`, `blog_subtitle`, `date_creation`, `visibility` ) VALUES ('$title', '$subtitle', NOW(), '1');";
$sql = "INSERT INTO $tbl_blogs (`blog_name`, `blog_subtitle`, `date_creation`, `visibility` )
VALUES ('".mysql_real_escape_string($title)."', '".mysql_real_escape_string($subtitle)."', NOW(), '1');";
api_sql_query($sql, __FILE__, __LINE__);
$this_blog_id = Database::get_last_insert_id();
// Make first post. :)
$sql = "INSERT INTO $tbl_blogs_posts (`title`, `full_text`, `date_creation`, `blog_id`, `author_id` ) VALUES ('Welkom!', '" . get_lang('FirstPostText')."', NOW(), '$this_blog_id', '".$_user['user_id']."');";
$sql = "INSERT INTO $tbl_blogs_posts (`title`, `full_text`, `date_creation`, `blog_id`, `author_id` )
VALUES ('Welkom!', '" . get_lang('FirstPostText')."', NOW(), '".mysql_real_escape_string((int)$this_blog_id)."', '".mysql_real_escape_string((int)$_user['user_id'])."');";
api_sql_query($sql, __FILE__, __LINE__);
// Put it on course homepage
$sql = "INSERT INTO $tbl_tool (name, link, image, visibility, admin, address, added_tool) VALUES ('$title','blog/blog.php?blog_id=$this_blog_id','blog.gif','1','0','pastillegris.gif',0)";
$sql = "INSERT INTO $tbl_tool (name, link, image, visibility, admin, address, added_tool)
VALUES ('".mysql_real_escape_string($title)."','blog/blog.php?blog_id=".(int)$this_blog_id."','blog.gif','1','0','pastillegris.gif',0)";
api_sql_query($sql, __FILE__, __LINE__);
// Subscribe the teacher to this blog
Blog::set_user_subscribed($this_blog_id,$_user['user_id']);
Blog::set_user_subscribed((int)$this_blog_id,(int)$_user['user_id']);
return void;
}
@ -181,12 +184,12 @@ class Blog
$tbl_tool = Database::get_course_table(TABLE_TOOL_LIST);
// Update the blog
$sql = "UPDATE $tbl_blogs SET blog_name = '$title', blog_subtitle = '$subtitle' WHERE blog_id =$blog_id LIMIT 1";
$sql = "UPDATE $tbl_blogs SET blog_name = '".mysql_real_escape_string($title)."', blog_subtitle = '".mysql_real_escape_string($subtitle)."' WHERE blog_id ='".mysql_real_escape_string((int)$blog_id)."' LIMIT 1";
api_sql_query($sql, __FILE__, __LINE__);
$this_blog_id = Database::get_last_insert_id();
// Update course homepage link
$sql = "UPDATE $tbl_tool SET name = '$title' WHERE link = 'blog/blog.php?blog_id=$blog_id' LIMIT 1";
$sql = "UPDATE $tbl_tool SET name = '".mysql_real_escape_string($title)."' WHERE link = 'blog/blog.php?blog_id=".mysql_real_escape_string((int)$blog_id)."' LIMIT 1";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -210,23 +213,23 @@ class Blog
$tbl_blogs_rating = Database::get_course_table(TABLE_BLOGS_RATING);
// Delete posts
$sql = "DELETE FROM $tbl_blogs_posts WHERE blog_id = $blog_id";
$sql = "DELETE FROM $tbl_blogs_posts WHERE blog_id ='".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete tasks
$sql = "DELETE FROM $tbl_blogs_tasks WHERE blog_id = $blog_id";
$sql = "DELETE FROM $tbl_blogs_tasks WHERE blog_id ='".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete ratings
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id = $blog_id";
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id ='".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete blog
$sql ="DELETE FROM $tbl_blogs WHERE blog_id = $blog_id";
$sql ="DELETE FROM $tbl_blogs WHERE blog_id ='".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete from course homepage
$sql = "DELETE FROM $tbl_tool WHERE link = 'blog/blog.php?blog_id=$blog_id'";
$sql = "DELETE FROM $tbl_tool WHERE link = 'blog/blog.php?blog_id=".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -250,7 +253,8 @@ class Blog
$tbl_blogs_posts = Database::get_course_table(TABLE_BLOGS_POSTS);
// Create the post
$sql = "INSERT INTO " . $tbl_blogs_posts." (`title`, `full_text`, `date_creation`, `blog_id`, `author_id` ) VALUES ('$title', '$full_text', NOW(), '$blog_id', '".$_user['user_id']."');";
$sql = "INSERT INTO " . $tbl_blogs_posts." (`title`, `full_text`, `date_creation`, `blog_id`, `author_id` )
VALUES ('".mysql_real_escape_string($title)."', '".mysql_real_escape_string($full_text)."', NOW(), '".(int)$blog_id."', '".(int)$_user['user_id']."');";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -273,7 +277,7 @@ class Blog
$tbl_blogs_posts = Database::get_course_table(TABLE_BLOGS_POSTS);
// Create the post
$sql = "UPDATE $tbl_blogs_posts SET title = '" . $title."', full_text = '" . $full_text."' WHERE post_id =$post_id AND blog_id =$blog_id LIMIT 1 ;";
$sql = "UPDATE $tbl_blogs_posts SET title = '" . mysql_real_escape_string($title)."', full_text = '" . mysql_real_escape_string($full_text)."' WHERE post_id ='".(int)$post_id."' AND blog_id ='".(int)$blog_id."' LIMIT 1 ;";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -296,15 +300,15 @@ class Blog
$tbl_blogs_rating = Database::get_course_table(TABLE_BLOGS_RATING);
// Delete ratings on this comment
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $post_id AND rating_type = 'post'";
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id = '".(int)$blog_id."' AND item_id = '".(int)$post_id."' AND rating_type = 'post'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete the post
$sql = "DELETE FROM $tbl_blogs_posts WHERE `post_id` = $post_id";
$sql = "DELETE FROM $tbl_blogs_posts WHERE `post_id` = '".(int)$post_id."'";
api_sql_query($sql, __FILE__, __LINE__);
// Delete the comments
$sql = "DELETE FROM $tbl_blogs_comments WHERE `post_id` = $post_id AND `blog_id` = $blog_id";
$sql = "DELETE FROM $tbl_blogs_comments WHERE `post_id` = '".(int)$post_id."' AND `blog_id` = '".(int)$blog_id."'";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -330,7 +334,8 @@ class Blog
$tbl_blogs_comments = Database::get_course_table(TABLE_BLOGS_COMMENTS);
// Create the comment
$sql = "INSERT INTO $tbl_blogs_comments (`title`, `comment`, `author_id`, `date_creation`, `blog_id`, `post_id`, `parent_comment_id`, `task_id` ) VALUES ('$title', '$full_text', '".$_user['user_id']."', NOW(), '$blog_id', '$post_id', '$parent_id', $task_id)";
$sql = "INSERT INTO $tbl_blogs_comments (`title`, `comment`, `author_id`, `date_creation`, `blog_id`, `post_id`, `parent_comment_id`, `task_id` )
VALUES ('".mysql_real_escape_string($title)."', '".mysql_real_escape_string($full_text)."', '".(int)$_user['user_id']."', NOW(), '".(int)$blog_id."', '".(int)$post_id."', '".(int)$parent_id."', '".(int)$task_id."')";
api_sql_query($sql, __FILE__, __LINE__);
// Empty post values, or they are shown on the page again
@ -356,11 +361,11 @@ class Blog
$tbl_blogs_rating = Database::get_course_table(TABLE_BLOGS_RATING);
// Delete ratings on this comment
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $comment_id AND rating_type = 'comment'";
$sql = "DELETE FROM $tbl_blogs_rating WHERE blog_id = '".(int)$blog_id."' AND item_id = '".(int)$comment_id."' AND rating_type = 'comment'";
api_sql_query($sql, __FILE__, __LINE__);
// select comments that have the selected comment as their parent
$sql = "SELECT comment_id FROM $tbl_blogs_comments WHERE parent_comment_id = $comment_id";
$sql = "SELECT comment_id FROM $tbl_blogs_comments WHERE parent_comment_id = '".(int)$comment_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
// Delete them recursively
@ -370,7 +375,7 @@ class Blog
}
// Finally, delete the selected comment to
$sql = "DELETE FROM $tbl_blogs_comments WHERE `comment_id` = $comment_id";
$sql = "DELETE FROM $tbl_blogs_comments WHERE `comment_id` = '".(int)$comment_id."'";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -394,7 +399,8 @@ class Blog
$tbl_tasks_permissions = Database::get_course_table(TABLE_BLOGS_TASKS_PERMISSIONS);
// Create the task
$sql = "INSERT INTO $tbl_blogs_tasks (`blog_id`, `title`, `description`, `color`, `system_task` ) VALUES ('$blog_id', '" . $title."', '" . $description."', '" . $color."', '0');";
$sql = "INSERT INTO $tbl_blogs_tasks (`blog_id`, `title`, `description`, `color`, `system_task` )
VALUES ('".(int)$blog_id."', '" . mysql_real_escape_string($title)."', '" . mysql_real_escape_string($description)."', '" . mysql_real_escape_string($color)."', '0');";
api_sql_query($sql, __FILE__, __LINE__);
$task_id = mysql_insert_id();
@ -408,8 +414,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_delete'
)";
@ -424,8 +430,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_edit'
)";
@ -440,8 +446,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_comments_delete'
)";
@ -469,14 +475,18 @@ class Blog
$tbl_tasks_permissions = Database::get_course_table(TABLE_BLOGS_TASKS_PERMISSIONS);
// Create the task
$sql = "UPDATE $tbl_blogs_tasks SET title = '$title', description = '$description', color = '$color' WHERE task_id =$task_id LIMIT 1";
$sql = "UPDATE $tbl_blogs_tasks SET
title = '".mysql_real_escape_string($title)."',
description = '".mysql_real_escape_string($description)."',
color = '".mysql_real_escape_string($color)."'
WHERE task_id ='".(int)$task_id."' LIMIT 1";
api_sql_query($sql, __FILE__, __LINE__);
$tool = 'BLOG_' . $blog_id;
$sql = "
DELETE FROM " . $tbl_tasks_permissions . "
WHERE `task_id` = " . $task_id;
WHERE `task_id` = '" . (int)$task_id."'";
api_sql_query($sql, __FILE__, __LINE__);
@ -488,8 +498,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_delete'
)";
@ -504,8 +514,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_edit'
)";
@ -520,8 +530,8 @@ class Blog
`tool`,
`action`
) VALUES (
" . $task_id . ",
'" . $tool . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($tool) . "',
'article_comments_delete'
)";
@ -543,7 +553,7 @@ class Blog
$tbl_blogs_tasks = Database::get_course_table(TABLE_BLOGS_TASKS);
// Delete posts
$sql = "DELETE FROM $tbl_blogs_tasks WHERE `blog_id` = $blog_id AND `task_id` = $task_id";
$sql = "DELETE FROM $tbl_blogs_tasks WHERE `blog_id` = '".(int)$blog_id."' AND `task_id` = '".(int)$task_id."'";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -564,7 +574,7 @@ class Blog
$user_id = $parameters[1];
// Delete posts
$sql = "DELETE FROM $tbl_blogs_tasks_rel_user WHERE `blog_id` = $blog_id AND `task_id` = $task_id AND `user_id` = $user_id";
$sql = "DELETE FROM $tbl_blogs_tasks_rel_user WHERE `blog_id` = '".(int)$blog_id."' AND `task_id` = '".(int)$task_id."' AND `user_id` = '".(int)$user_id."'";
api_sql_query($sql, __FILE__, __LINE__);
return void;
@ -590,7 +600,7 @@ class Blog
$sql = "SELECT task_rel_user.*, task.title, blog.blog_name FROM $tbl_blogs_tasks_rel_user task_rel_user
INNER JOIN $tbl_blogs_tasks task ON task_rel_user.task_id = task.task_id
INNER JOIN $tbl_blogs blog ON task_rel_user.blog_id = blog.blog_id
WHERE task_rel_user.user_id = ".$_user['user_id']." ORDER BY `target_date` ASC";
WHERE task_rel_user.user_id = ".(int)$_user['user_id']." ORDER BY `target_date` ASC";
$result = api_sql_query($sql, __FILE__, __LINE__);
if(mysql_numrows($result) > 0)
@ -629,7 +639,7 @@ class Blog
$tbl_tool = Database::get_course_table(TABLE_TOOL_LIST);
// Get blog properties
$sql = "SELECT blog_name, visibility FROM $tbl_blogs WHERE blog_id=$blog_id";
$sql = "SELECT blog_name, visibility FROM $tbl_blogs WHERE blog_id='".(int)$blog_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog = mysql_fetch_array($result);
$visibility = $blog['visibility'];
@ -638,19 +648,20 @@ class Blog
if($visibility == 1)
{
// Change visibility state, remove from course home.
$sql = "UPDATE $tbl_blogs SET `visibility` = '0' WHERE `blog_id` =$blog_id LIMIT 1";
$sql = "UPDATE $tbl_blogs SET `visibility` = '0' WHERE `blog_id` ='".(int)$blog_id."' LIMIT 1";
$result = api_sql_query($sql, __FILE__, __LINE__);
$sql = "DELETE FROM $tbl_tool WHERE name = '$title' LIMIT 1";
$sql = "DELETE FROM $tbl_tool WHERE name = '".mysql_real_escape_string($title)."' LIMIT 1";
$result = api_sql_query($sql, __FILE__, __LINE__);
}
else
{
// Change visibility state, add to course home.
$sql = "UPDATE $tbl_blogs SET `visibility` = '1' WHERE `blog_id` =$blog_id LIMIT 1";
$sql = "UPDATE $tbl_blogs SET `visibility` = '1' WHERE `blog_id` ='".(int)$blog_id."' LIMIT 1";
$result = api_sql_query($sql, __FILE__, __LINE__);
$sql = "INSERT INTO $tbl_tool (`name`, `link`, `image`, `visibility`, `admin`, `address`, `added_tool`, `target` ) VALUES ('$title', 'blog/blog.php?blog_id=$blog_id', 'blog.gif', '1', '0', 'pastillegris.gif', '0', '_self')";
$sql = "INSERT INTO $tbl_tool (`name`, `link`, `image`, `visibility`, `admin`, `address`, `added_tool`, `target` )
VALUES ('".mysql_real_escape_string($title)."', 'blog/blog.php?blog_id=".(int)$blog_id."', 'blog.gif', '1', '0', 'pastillegris.gif', '0', '_self')";
$result = api_sql_query($sql, __FILE__, __LINE__);
}
@ -673,7 +684,11 @@ class Blog
global $dateFormatLong;
// Get posts and authors
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post INNER JOIN $tbl_users user ON post.author_id = user.user_id WHERE post.blog_id = $blog_id AND $filter ORDER BY post_id DESC LIMIT 0,$max_number_of_posts";
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post
INNER JOIN $tbl_users user ON post.author_id = user.user_id
WHERE post.blog_id = '".(int)$blog_id."
AND $filter
ORDER BY post_id DESC LIMIT 0,".(int)$max_number_of_posts;
$result = api_sql_query($sql, __FILE__, __LINE__);
// Display
@ -682,7 +697,7 @@ class Blog
while($blog_post = mysql_fetch_array($result))
{
// Get number of comments
$sql = "SELECT COUNT(1) as number_of_comments FROM $tbl_blogs_comments WHERE blog_id = $blog_id AND post_id = " . $blog_post['post_id'];
$sql = "SELECT COUNT(1) as number_of_comments FROM $tbl_blogs_comments WHERE blog_id = '".(int)$blog_id."' AND post_id = '" . (int)$blog_post['post_id']."'";
$tmp = api_sql_query($sql, __FILE__, __LINE__);
$blog_post_comments = mysql_fetch_array($tmp);
@ -800,12 +815,16 @@ class Blog
global $dateFormatLong;
// Get posts and author
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post INNER JOIN $tbl_users user ON post.author_id = user.user_id WHERE post.blog_id = $blog_id AND post.post_id = $post_id ORDER BY post_id DESC";
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post
INNER JOIN $tbl_users user ON post.author_id = user.user_id
WHERE post.blog_id = '".(int)$blog_id."'
AND post.post_id = '".(int)$post_id."'
ORDER BY post_id DESC";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog_post = mysql_fetch_array($result);
// Get number of comments
$sql = "SELECT COUNT(1) as number_of_comments FROM $tbl_blogs_comments WHERE blog_id = $blog_id AND post_id = $post_id";
$sql = "SELECT COUNT(1) as number_of_comments FROM $tbl_blogs_comments WHERE blog_id = '".(int)$blog_id."' AND post_id = '".(int)$post_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog_post_comments = mysql_fetch_array($result);
@ -871,12 +890,17 @@ class Blog
$tbl_blogs_rating = Database::get_course_table(TABLE_BLOGS_RATING);
// Check if the user has already rated this post/comment
$sql = "SELECT rating_id FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $item_id AND rating_type = '$type' AND user_id = '".$_user['user_id']."'";
$sql = "SELECT rating_id FROM $tbl_blogs_rating
WHERE blog_id = '".(int)$blog_id."'
AND item_id = '".(int)$item_id."'
AND rating_type = '".mysql_real_escape_string($type)."'
AND user_id = '".(int)$_user['user_id']."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
if(mysql_num_rows($result) == 0) // Add rating
{
$sql = "INSERT INTO $tbl_blogs_rating ( `blog_id`, `rating_type`, `item_id`, `user_id`, `rating` ) VALUES ('$blog_id', '$type', '$item_id', '".$_user['user_id']."', '$rating')";
$sql = "INSERT INTO $tbl_blogs_rating ( `blog_id`, `rating_type`, `item_id`, `user_id`, `rating` )
VALUES ('".(int)$blog_id."', '".mysql_real_escape_string($type)."', '".(int)$item_id."', '".(int)$_user['user_id']."', '".mysql_real_escape_string($rating)."')";
$result = api_sql_query($sql, __FILE__, __LINE__);
return true;
}
@ -892,7 +916,7 @@ class Blog
$tbl_blogs_rating = Database::get_course_table(TABLE_BLOGS_RATING);
// Calculate rating
$sql = "SELECT AVG(rating) as rating FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $item_id AND rating_type = '$type' ";
$sql = "SELECT AVG(rating) as rating FROM $tbl_blogs_rating WHERE blog_id = '".(int)$blog_id."' AND item_id = '".(int)$item_id."' AND rating_type = '".mysql_real_escape_string($type)."' ";
$result = api_sql_query($sql, __FILE__, __LINE__);
$result = mysql_fetch_array($result);
@ -918,7 +942,11 @@ class Blog
if($type == 'post')
{
// Check if the user has already rated this post
$sql = "SELECT rating_id FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $post_id AND rating_type = '$type' AND user_id = '".$_user['user_id']."'";
$sql = "SELECT rating_id FROM $tbl_blogs_rating
WHERE blog_id = '".(int)$blog_id."'
AND item_id = '".(int)$post_id."'
AND rating_type = '".mysql_real_escape_string($type)."'
AND user_id = '".(int)$_user['user_id']."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
if(mysql_num_rows($result) == 0) // Add rating
@ -933,7 +961,11 @@ class Blog
if($type = 'comment')
{
// Check if the user has already rated this comment
$sql = "SELECT rating_id FROM $tbl_blogs_rating WHERE blog_id = $blog_id AND item_id = $comment_id AND rating_type = '$type' AND user_id = '".$_user['user_id']."'";
$sql = "SELECT rating_id FROM $tbl_blogs_rating
WHERE blog_id = '".(int)$blog_id ."'
AND item_id = '".(int)$comment_id."'
AND rating_type = '".mysql_real_escape_string($type)."'
AND user_id = '".(int)$_user['user_id']."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
if(mysql_num_rows($result) == 0) // Add rating
@ -970,14 +1002,18 @@ class Blog
INNER JOIN $tbl_users user ON comments.author_id = user.user_id
LEFT JOIN $tbl_blogs_tasks task ON comments.task_id = task.task_id
WHERE parent_comment_id = $current
AND comments.blog_id = $blog_id
AND comments.post_id = $post_id";
AND comments.blog_id = '".(int)$blog_id."'
AND comments.post_id = '".(int)$post_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
while($comment = mysql_fetch_array($result))
{
// Select the children recursivly
$tmp = "SELECT comments.*, user.lastname, user.firstname FROM $tbl_blogs_comments comments INNER JOIN $tbl_users user ON comments.author_id = user.user_id WHERE comment_id = $current AND blog_id = $blog_id AND post_id = $post_id";
$tmp = "SELECT comments.*, user.lastname, user.firstname FROM $tbl_blogs_comments comments
INNER JOIN $tbl_users user ON comments.author_id = user.user_id
WHERE comment_id = $current
AND blog_id = '".(int)$blog_id."'
AND post_id = '".(int)$post_id."'";
$tmp = api_sql_query($tmp, __FILE__, __LINE__);
$tmp = mysql_fetch_array($tmp);
$parent_cat = $tmp['parent_comment_id'];
@ -1121,7 +1157,7 @@ class Blog
$oFCKeditor->ToolbarSet = "Blog";
$TBL_LANGUAGES = Database::get_main_table(TABLE_MAIN_LANGUAGE);
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".$_SESSION["_course"]["language"]."'";
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".mysql_real_escape_string($_SESSION["_course"]["language"])."'";
$result_sql=api_sql_query($sql);
$isocode_language=mysql_result($result_sql,0,0);
$oFCKeditor->Config['DefaultLanguage'] = $isocode_language;
@ -1159,7 +1195,11 @@ class Blog
$tbl_users = Database::get_main_table(TABLE_MAIN_USER);
// Get posts and author
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post INNER JOIN $tbl_users user ON post.author_id = user.user_id WHERE post.blog_id = $blog_id AND post.post_id = $post_id ORDER BY post_id DESC";
$sql = "SELECT post.*, user.lastname, user.firstname FROM $tbl_blogs_posts post
INNER JOIN $tbl_users user ON post.author_id = user.user_id
WHERE post.blog_id = '".(int)$blog_id ."'
AND post.post_id = '".(int)$post_id."'
ORDER BY post_id DESC";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog_post = mysql_fetch_array($result);
@ -1186,7 +1226,7 @@ class Blog
$oFCKeditor->ToolbarSet = "Blog";
$TBL_LANGUAGES = Database::get_main_table(TABLE_MAIN_LANGUAGE);
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".$_SESSION["_course"]["language"]."'";
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".mysql_real_escape_string($_SESSION["_course"]["language"])."'";
$result_sql=api_sql_query($sql);
$isocode_language=mysql_result($result_sql,0,0);
$oFCKeditor->Config['DefaultLanguage'] = $isocode_language;
@ -1199,7 +1239,7 @@ class Blog
<td>
<input type="hidden" name="action" value="" />
<input type="hidden" name="edit_post_submit" value="true" />
<input type="hidden" name="post_id" value="' . $_GET['post_id'] . '" />
<input type="hidden" name="post_id" value="' . (int)$_GET['post_id'] . '" />
<input type="submit" name="Submit" value="' . get_lang('Ok') . '" />
</td>
</tr>
@ -1244,7 +1284,7 @@ class Blog
`color`,
`system_task`
FROM " . $tbl_blogs_tasks . "
WHERE `blog_id` = " . $blog_id . "
WHERE `blog_id` = " . (int)$blog_id . "
ORDER BY
`system_task`,
`title`";
@ -1307,7 +1347,7 @@ class Blog
$sql = "SELECT task_rel_user.*, task.title, user.firstname, user.lastname FROM $tbl_blogs_tasks_rel_user task_rel_user
INNER JOIN $tbl_blogs_tasks task ON task_rel_user.task_id = task.task_id
INNER JOIN $tbl_users user ON task_rel_user.user_id = user.user_id
WHERE task_rel_user.blog_id = $blog_id ORDER BY `target_date` ASC";
WHERE task_rel_user.blog_id = '".(int)$blog_id."' ORDER BY `target_date` ASC";
$result = api_sql_query($sql, __FILE__, __LINE__);
@ -1421,7 +1461,7 @@ class Blog
$tbl_blogs_tasks = Database::get_course_table(TABLE_BLOGS_TASKS);
$colors = array('FFFFFF','FFFF99','FFCC99','FF9933','FF6699','CCFF99','CC9966','66FF00', '9966FF', 'CF3F3F', '990033','669933','0033FF','003366','000000');
$sql = "SELECT blog_id, task_id, title, description, color FROM $tbl_blogs_tasks WHERE task_id = $task_id";
$sql = "SELECT blog_id, task_id, title, description, color FROM $tbl_blogs_tasks WHERE task_id = '".(int)$task_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$task = mysql_fetch_array($result);
@ -1449,7 +1489,7 @@ class Blog
`id`,
`action`
FROM " . $tbl_tasks_permissions . "
WHERE `task_id` = " . $task_id;
WHERE `task_id` = '" . (int)$task_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$arrPermissions = array();
@ -1522,7 +1562,10 @@ class Blog
global $MonthsLong;
// Get users in this blog / make select list of it
$sql = "SELECT user.user_id, user.firstname, user.lastname FROM $tbl_users user INNER JOIN $tbl_blogs_rel_user blogs_rel_user on user.user_id = blogs_rel_user.user_id WHERE blogs_rel_user.blog_id = $blog_id";
$sql = "SELECT user.user_id, user.firstname, user.lastname FROM $tbl_users user
INNER JOIN $tbl_blogs_rel_user blogs_rel_user
ON user.user_id = blogs_rel_user.user_id
WHERE blogs_rel_user.blog_id = '".(int)$blog_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$select_user_list = '<select name="task_user_id">';
while($user = mysql_fetch_array($result))
@ -1543,7 +1586,7 @@ class Blog
`color`,
`system_task`
FROM " . $tbl_blogs_tasks . "
WHERE `blog_id` = " . $blog_id . "
WHERE `blog_id` = " . (int)$blog_id . "
ORDER BY
`system_task`,
`title`";
@ -1665,10 +1708,9 @@ class Blog
$sql = "
SELECT target_date
FROM $tbl_blogs_tasks_rel_user
WHERE
blog_id = $blog_id AND
user_id = $user_id AND
task_id = $task_id";
WHERE blog_id = '".(int)$blog_id."'
AND user_id = '".(int)$user_id."'
AND task_id = '".(int)$task_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$row = mysql_fetch_assoc($result);
@ -1680,7 +1722,7 @@ class Blog
SELECT user.user_id, user.firstname, user.lastname
FROM $tbl_users user
INNER JOIN $tbl_blogs_rel_user blogs_rel_user on user.user_id = blogs_rel_user.user_id
WHERE blogs_rel_user.blog_id = $blog_id";
WHERE blogs_rel_user.blog_id = '".(int)$blog_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$select_user_list = '<select name="task_user_id">';
@ -1702,7 +1744,7 @@ class Blog
`color`,
`system_task`
FROM " . $tbl_blogs_tasks . "
WHERE `blog_id` = " . $blog_id . "
WHERE `blog_id` = " . (int)$blog_id . "
ORDER BY
`system_task`,
`title`";
@ -1804,10 +1846,9 @@ class Blog
$sql = "
SELECT COUNT(*) as 'number'
FROM " . $tbl_blogs_tasks_rel_user . "
WHERE
`blog_id` = " . $blog_id . " AND
`user_id` = " . $user_id . " AND
`task_id` = " . $task_id . "
WHERE `blog_id` = " . (int)$blog_id . "
AND `user_id` = " . (int)$user_id . "
AND `task_id` = " . (int)$task_id . "
";
$result = @api_sql_query($sql, __FILE__, __LINE__);
@ -1822,10 +1863,10 @@ class Blog
`task_id`,
`target_date`
) VALUES (
'" . $blog_id . "',
'" . $user_id . "',
'" . $task_id . "',
'" . $target_date . "'
'" . (int)$blog_id . "',
'" . (int)$user_id . "',
'" . (int)$task_id . "',
'" . mysql_real_escape_string($target_date) . "'
)";
$result = @api_sql_query($sql, __FILE__, __LINE__);
@ -1841,9 +1882,9 @@ class Blog
SELECT COUNT(*) as 'number'
FROM " . $tbl_blogs_tasks_rel_user . "
WHERE
`blog_id` = " . $blog_id . " AND
`user_id` = " . $user_id . " AND
`task_id` = " . $task_id . "
`blog_id` = " . (int)$blog_id . " AND
`user_id` = " . (int)$user_id . " AND
`task_id` = " . (int)$task_id . "
";
$result = @api_sql_query($sql, __FILE__, __LINE__);
@ -1854,14 +1895,14 @@ class Blog
$sql = "
UPDATE " . $tbl_blogs_tasks_rel_user . "
SET
`user_id` = " . $user_id . ",
`task_id` = " . $task_id . ",
`target_date` = '" . $target_date . "'
`user_id` = " . (int)$user_id . ",
`task_id` = " . (int)$task_id . ",
`target_date` = '" . mysql_real_escape_string($target_date) . "'
WHERE
`blog_id` = " . $blog_id . " AND
`user_id` = " . $old_user_id . " AND
`task_id` = " . $old_task_id . " AND
`target_date` = '" . $old_target_date . "'
`blog_id` = " . (int)$blog_id . " AND
`user_id` = " . (int)$old_user_id . " AND
`task_id` = " . (int)$old_task_id . " AND
`target_date` = '" . mysql_real_escape_string($old_target_date) . "'
";
$result = @api_sql_query($sql, __FILE__, __LINE__);
@ -1884,8 +1925,7 @@ class Blog
$sql = "
SELECT title
FROM $tbl_blogs_tasks
WHERE task_id = $task_id
";
WHERE task_id = '".(int)$task_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$row = mysql_fetch_assoc($result);
// Get posts and authors
@ -1896,7 +1936,7 @@ class Blog
user.firstname
FROM $tbl_blogs_posts post
INNER JOIN $tbl_users user ON post.author_id = user.user_id
WHERE post.blog_id = $blog_id
WHERE post.blog_id = '".(int)$blog_id."'
ORDER BY post_id DESC
LIMIT 0, 100";
$result = api_sql_query($sql, __FILE__, __LINE__);
@ -1929,13 +1969,13 @@ class Blog
$tbl_user_permissions = Database::get_course_table(TABLE_PERMISSION_USER);
// Subscribe the user
$sql = "INSERT INTO $tbl_blogs_rel_user ( `blog_id`, `user_id` ) VALUES ('$blog_id', '$user_id');";
$sql = "INSERT INTO $tbl_blogs_rel_user ( `blog_id`, `user_id` ) VALUES ('".(int)$blog_id."', '".(int)$user_id."');";
$result = api_sql_query($sql, __FILE__, __LINE__);
// Give this user basic rights
$sql="INSERT INTO $tbl_user_permissions (user_id,tool,action) VALUES ('$user_id','BLOG_" . $blog_id."','article_add')";
$sql="INSERT INTO $tbl_user_permissions (user_id,tool,action) VALUES ('".(int)$user_id."','BLOG_" . (int)$blog_id."','article_add')";
$result = api_sql_query($sql, __LINE__, __FILE__);
$sql="INSERT INTO $tbl_user_permissions (user_id,tool,action) VALUES ('$user_id','BLOG_" . $blog_id."','article_comments_add')";
$sql="INSERT INTO $tbl_user_permissions (user_id,tool,action) VALUES ('".(int)$user_id."','BLOG_" . (int)$blog_id."','article_comments_add')";
$result = api_sql_query($sql, __LINE__, __FILE__);
}
@ -1953,11 +1993,11 @@ class Blog
$tbl_user_permissions = Database::get_course_table(TABLE_PERMISSION_USER);
// Unsubscribe the user
$sql = "DELETE FROM $tbl_blogs_rel_user WHERE `blog_id` = $blog_id AND `user_id` = $user_id";
$sql = "DELETE FROM $tbl_blogs_rel_user WHERE `blog_id` = '".(int)$blog_id."' AND `user_id` = '".(int)$user_id."'";
$result = @api_sql_query($sql, __FILE__, __LINE__);
// Remove this user's permissions.
$sql = "DELETE FROM $tbl_user_permissions WHERE user_id = '$user_id'";
$sql = "DELETE FROM $tbl_user_permissions WHERE user_id = '".(int)$user_id."'";
$result = api_sql_query($sql, __LINE__, __FILE__);
}
@ -1982,7 +2022,10 @@ class Blog
$properties["width"] = "100%";
// Get blog members' id.
$sql = "SELECT user.user_id FROM $tbl_users user INNER JOIN $tbl_blogs_rel_user blogs_rel_user on user.user_id = blogs_rel_user.user_id WHERE blogs_rel_user.blog_id = $blog_id";
$sql = "SELECT user.user_id FROM $tbl_users user
INNER JOIN $tbl_blogs_rel_user blogs_rel_user
ON user.user_id = blogs_rel_user.user_id
WHERE blogs_rel_user.blog_id = '".(int)$blog_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog_member_ids = array ();
while($user = mysql_fetch_array($result))
@ -1998,7 +2041,9 @@ class Blog
$column_header[] = array (get_lang('Register'), false, '');
// Get users in this course
$sql = "SELECT u.user_id, u.lastname, u.firstname, u.email FROM $tbl_users u INNER JOIN $table_course_user cu on u.user_id = cu.user_id and course_code='$currentCourse'";
$sql = "SELECT u.user_id, u.lastname, u.firstname, u.email FROM $tbl_users u
INNER JOIN $table_course_user cu
ON u.user_id = cu.user_id AND course_code='$currentCourse'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$user_data = array ();
@ -2032,9 +2077,9 @@ class Blog
$link = '';
$link .= isset ($_GET['action']) ? 'action=' . $_GET['action'] . '&amp;' : '';
$link .= "blog_id=$blog_id&amp;";
$link .= isset ($_GET['page_nr']) ? 'page_nr=' . $_GET['page_nr'] . '&amp;' : '';
$link .= isset ($_GET['per_page']) ? 'per_page=' . $_GET['per_page'] . '&amp;' : '';
$link .= isset ($_GET['column']) ? 'column=' . $_GET['column'] . '&amp;' : '';
$link .= isset ($_GET['page_nr']) ? 'page_nr=' . (int)$_GET['page_nr'] . '&amp;' : '';
$link .= isset ($_GET['per_page']) ? 'per_page=' . (int)$_GET['per_page'] . '&amp;' : '';
$link .= isset ($_GET['column']) ? 'column=' . (int)$_GET['column'] . '&amp;' : '';
$link .= isset ($_GET['direction']) ? 'direction=' . $_GET['direction'] . '&amp;' : '';;
echo '<a href="blog.php?' . $link . 'selectall=subscribe">' . get_lang('SelectAll') . '</a> - ';
echo '<a href="blog.php?' . $link . '">' . get_lang('UnSelectAll') . '</a> ';
@ -2078,9 +2123,9 @@ class Blog
$sql_query = "SELECT user.user_id, user.lastname, user.firstname, user.email
FROM $tbl_users user
INNER JOIN $tbl_blogs_rel_user blogs_rel_user on user.user_id = blogs_rel_user.user_id
WHERE blogs_rel_user.blog_id = $blog_id";
INNER JOIN $tbl_blogs_rel_user blogs_rel_user
ON user.user_id = blogs_rel_user.user_id
WHERE blogs_rel_user.blog_id = '".(int)$blog_id."'";
//$sql_result = api_sql_query($sql_query, __FILE__, __LINE__);
@ -2138,9 +2183,9 @@ class Blog
$link = '';
$link .= isset ($_GET['action']) ? 'action=' . $_GET['action'] . '&amp;' : '';
$link .= "blog_id=$blog_id&amp;";
$link .= isset ($_GET['page_nr']) ? 'page_nr=' . $_GET['page_nr'] . '&amp;' : '';
$link .= isset ($_GET['per_page']) ? 'per_page=' . $_GET['per_page'] . '&amp;' : '';
$link .= isset ($_GET['column']) ? 'column=' . $_GET['column'] . '&amp;' : '';
$link .= isset ($_GET['page_nr']) ? 'page_nr=' . (int)$_GET['page_nr'] . '&amp;' : '';
$link .= isset ($_GET['per_page']) ? 'per_page=' . (int)$_GET['per_page'] . '&amp;' : '';
$link .= isset ($_GET['column']) ? 'column=' . (int)$_GET['column'] . '&amp;' : '';
$link .= isset ($_GET['direction']) ? 'direction=' . $_GET['direction'] . '&amp;' : '';;
echo '<a href="blog.php?' . $link . 'selectall=unsubscribe">' . get_lang('SelectAll') . '</a> - ';
echo '<a href="blog.php?' . $link . '">' . get_lang('UnSelectAll') . '</a> ';
@ -2204,7 +2249,7 @@ class Blog
$oFCKeditor->ToolbarSet = "Blog";
$TBL_LANGUAGES = Database::get_main_table(TABLE_MAIN_LANGUAGE);
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".$_SESSION["_course"]["language"]."'";
$sql="SELECT isocode FROM ".$TBL_LANGUAGES." WHERE english_name='".mysql_real_escape_string($_SESSION["_course"]["language"])."'";
$result_sql=api_sql_query($sql);
$isocode_language=mysql_result($result_sql,0,0);
$oFCKeditor->Config['DefaultLanguage'] = $isocode_language;
@ -2220,7 +2265,7 @@ class Blog
if(isset($_GET['task_id']))
{
echo ' <input type="hidden" name="new_task_execution_submit" value="true" />';
echo ' <input type="hidden" name="task_id" value="' . $_GET['task_id'] . '" />';
echo ' <input type="hidden" name="task_id" value="' . (int)$_GET['task_id'] . '" />';
}
else
{
@ -2274,11 +2319,17 @@ class Blog
//Start the week on monday
$startdayofweek = $dayone['wday'] <> 0 ? ($dayone['wday'] - 1) : 6;
$backwardsURL = $_SERVER['PHP_SELF']."?blog_id=" . $_GET['blog_id']."&amp;filter=" . $_GET['filter']."&amp;month=". ($month == 1 ? 12 : $month -1)."&amp;year=". ($month == 1 ? $year -1 : $year);
$forewardsURL = $_SERVER['PHP_SELF']."?blog_id=" . $_GET['blog_id']."&amp;filter=" . $_GET['filter']."&amp;month=". ($month == 12 ? 1 : $month +1)."&amp;year=". ($month == 12 ? $year +1 : $year);
$backwardsURL = $_SERVER['PHP_SELF']."?blog_id=" . (int)$_GET['blog_id']."&amp;filter=" . $_GET['filter']."&amp;month=". ($month == 1 ? 12 : $month -1)."&amp;year=". ($month == 1 ? $year -1 : $year);
$forewardsURL = $_SERVER['PHP_SELF']."?blog_id=" . (int)$_GET['blog_id']."&amp;filter=" . $_GET['filter']."&amp;month=". ($month == 12 ? 1 : $month +1)."&amp;year=". ($month == 12 ? $year +1 : $year);
// Get posts for this month
$sql = "SELECT post.*, DAYOFMONTH(`date_creation`) as post_day, user.lastname, user.firstname FROM $tbl_blogs_posts post INNER JOIN $tbl_users user ON post.author_id = user.user_id WHERE post.blog_id = $blog_id AND MONTH(date_creation) = '$month' AND YEAR(date_creation) = '$year' ORDER BY date_creation";
$sql = "SELECT post.*, DAYOFMONTH(`date_creation`) as post_day, user.lastname, user.firstname FROM $tbl_blogs_posts post
INNER JOIN $tbl_users user
ON post.author_id = user.user_id
WHERE post.blog_id = '".(int)$blog_id."'
AND MONTH(date_creation) = '".(int)$month."'
AND YEAR(date_creation) = '".(int)$year."'
ORDER BY date_creation";
$result = api_sql_query($sql, __FILE__, __LINE__);
// We will create an array of days on which there are posts.
@ -2304,10 +2355,9 @@ class Blog
FROM $tbl_blogs_tasks_rel_user task_rel_user
INNER JOIN $tbl_blogs_tasks task ON task_rel_user.task_id = task.task_id
INNER JOIN $tbl_blogs blog ON task_rel_user.blog_id = blog.blog_id
WHERE
task_rel_user.user_id = ".$_user['user_id']." AND
MONTH(`target_date`) = '$month' AND
YEAR(`target_date`) = '$year'
WHERE task_rel_user.user_id = '".(int)$_user['user_id']."'
AND MONTH(`target_date`) = '".(int)$month."'
AND YEAR(`target_date`) = '".(int)$year."'
ORDER BY `target_date` ASC";
$result = api_sql_query($sql, __FILE__, __LINE__);
@ -2427,7 +2477,7 @@ class Blog
// Init
$tbl_blogs = Database::get_course_table(TABLE_BLOGS);
$sql = "SELECT blog_id, blog_name, blog_subtitle FROM $tbl_blogs WHERE blog_id = $blog_id";
$sql = "SELECT blog_id, blog_name, blog_subtitle FROM $tbl_blogs WHERE blog_id = '".(int)$blog_id."'";
$result = api_sql_query($sql, __FILE__, __LINE__);
$blog = mysql_fetch_array($result);

Write Preview
Loading…
Cancel
Save