shell bypass 403
<?php
/*
* @package Joomla
* @copyright Copyright (C) 2005 Open Source Matters. All rights reserved.
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.php
*
* @component Phoca Component
* @copyright Copyright (C) Jan Pavelka www.phoca.cz
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL
*/
defined('_JEXEC') or die();
use Joomla\CMS\MVC\View\HtmlView;
use Joomla\CMS\Factory;
use Joomla\CMS\Uri\Uri;
use Joomla\CMS\Component\ComponentHelper;
use Joomla\CMS\Language\Text;
use Joomla\CMS\HTML\HTMLHelper;
//jimport( 'joomla.application.component.view' );
use Joomla\String\StringHelper;
phocagalleryimport('phocagallery.render.renderadminviews');
class phocaGalleryViewphocaGalleryLinkImg extends HtmlView
{
var $_context = 'com_phocagallery.phocagallerylinkimg';
protected $r;
protected $t;
protected $button;
protected $user;
protected $items;
protected $request_url;
protected $lists;
function display($tpl = null) {
$app = Factory::getApplication();
$this->r = new PhocaGalleryRenderAdminViews();
$this->t = PhocaGalleryUtils::setVars('linkimg');
$uri = Uri::getInstance();
//JHtml::_('behavior.tooltip');
//JHtml::_('behavior.formvalidation');
//JHtml::_('behavior.keepalive');
//JHtml::_('formbehavior.chosen', 'select');
$editor = $app->input->getCmd('editor', '');
if (!empty($editor)) {
$this->document->addScriptOptions('xtd-phocagallery', array('editor' => $editor));
}
//Frontend Changes
$tUri = '';
$jsLink = Uri::base(true);
if (!$app->isClient('administrator')) {
$tUri = Uri::base();
phocagalleryimport('phocagallery.render.renderadmin');
phocagalleryimport('phocagallery.file.filethumbnail');
$jsLink = Uri::base(true).'/administrator';
}
$document = Factory::getDocument();
$db = Factory::getDBO();
//JHtml::stylesheet( 'media/com_phocagallery/css/administrator/phocagallery.css' );
//JHtml::stylesheet( 'media/com_phocagallery/js/jcp/picker.css' );
//$document->addScript(JUri::root(true) .'/media/com_phocagallery/js/jcp/picker.js');
HTMLHelper::_('jquery.framework', false);
HTMLHelper::stylesheet( 'media/com_phocagallery/css/administrator/phocagallery.css' );
HTMLHelper::stylesheet( 'media/plg_editors-xtd_phocagallery/css/phocagallery.css' );
$eName = $app->input->get('editor', '', 'cmd');
$this->t['ename'] = preg_replace( '#[^A-Z0-9\-\_\[\]]#i', '', $eName );
$this->t['type'] = $app->input->get( 'type', 1, 'int' );
$this->t['backlink'] = $tUri.'index.php?option=com_phocagallery&view=phocagallerylinks&tmpl=component&editor='.$this->t['ename'];
$params = ComponentHelper::getParams('com_phocagallery') ;
//Filter
$filter_published = $app->getUserStateFromRequest( $this->_context.'.filter_published', 'filter_published', '', 'word' );
$filter_catid = $app->getUserStateFromRequest( $this->_context.'.filter_catid', 'filter_catid', 0, 'int' );
$filter_order = $app->getUserStateFromRequest( $this->_context.'.filter_order', 'filter_order', 'a.ordering', 'cmd' );
$filter_order_Dir = $app->getUserStateFromRequest( $this->_context.'.filter_order_Dir', 'filter_order_Dir', '', 'word' );
$search = $app->getUserStateFromRequest( $this->_context.'.search', 'search', '', 'string' );
$search = StringHelper::strtolower( $search );
// Get data from the model
$this->items = $this->get( 'Data');
$total = $this->get( 'Total');
$this->t['pagination'] = $this->get( 'Pagination' );
// build list of categories
$javascript = 'class="form-control" size="1" onchange="Joomla.submitform( );"';
// get list of categories for dropdown filter
$filter = '';
// build list of categories
$javascript = 'class="form-select" size="1" onchange="Joomla.submitform( );"';
$query = 'SELECT a.title AS text, a.id AS value, a.parent_id as parentid'
. ' FROM #__phocagallery_categories AS a'
. ' WHERE a.published = 1'
. ' AND a.approved = 1'
. ' ORDER BY a.ordering';
$db->setQuery( $query );
$phocagallerys = $db->loadObjectList();
$tree = array();
$text = '';
$tree = PhocaGalleryCategoryhtml::CategoryTreeOption($phocagallerys, $tree, 0, $text, -1);
array_unshift($tree, HTMLHelper::_('select.option', '0', '- '.Text::_('COM_PHOCAGALLERY_SELECT_CATEGORY').' -', 'value', 'text'));
$this->lists['catid'] = HTMLHelper::_( 'select.genericlist', $tree, 'filter_catid', $javascript , 'value', 'text', $filter_catid );
//-----------------------------------------------------------------------
// state filter
$this->lists['state'] = HTMLHelper::_('grid.state', $filter_published );
// table ordering
$this->lists['order_Dir'] = $filter_order_Dir;
$this->lists['order'] = $filter_order;
// search filter
$this->lists['search'] = $search;
$this->user = Factory::getUser();
$this->request_url = $uri->toString();
/*$this->assignRef('tmpl', $t);
$this->assignRef('button', $this->button);
$this->assignRef('user', $this->user);
$this->assignRef('items', $this->items);
$this->assignRef('request_url', $this->request_url);*/
switch($this->t['type']) {
case 2:
case 5:
$i = 0;
$itemsCount = $itemsStart = array();
foreach($this->items as $key => $value) {
$itemsCount[$i] = new StdClass();
$itemsCount[$i]->value = $key;
$itemsCount[$i]->text = $key;
$itemsStart[$i] = new StdClass();
$itemsStart[$i]->value = $key;
$itemsStart[$i]->text = $key;
$i++;
}
// Don't display it if no category is selected
if($i > 0) {
$itemsCount[$i] = new StdClass();
$itemsCount[$i]->value = (int)$key + 1;
$itemsCount[$i]->text = (int)$key + 1;
}
$categoryId = $app->input->get( 'filter_catid', 0, '', 'int' );
$categoryIdList = $app->getUserStateFromRequest( $this->_context.'.filter_catid', 'filter_catid', 0, 'int' );
if ((int)$categoryId == 0 && $categoryIdList == 0) {
$itemsCount = $itemsStart = array();
}
$this->lists['limitstartparam'] = HTMLHelper::_( 'select.genericlist', $itemsStart, 'limitstartparam', 'class="form-select"' , 'value', 'text', '' );
$this->lists['limitcountparam'] = HTMLHelper::_( 'select.genericlist', $itemsCount, 'limitcountparam', 'class="form-select"' , 'value', 'text', '' );
parent::display('images');
break;
case 3:
parent::display('switchimage');
break;
case 4:
parent::display('slideshow');
break;
case 1:
default:
parent::display($tpl);
break;
}
}
}
?>