shell bypass 403
Cubjrnet7 Shell
: /home/eklavya/backups/joomla3oldsite/administrator/components/com_rsform/views/forms/ [ drwxr-xr-x ]
<?php
/**
* @package RSForm! Pro
* @copyright (C) 2007-2019 www.rsjoomla.com
* @license GPL, http://www.gnu.org/copyleft/gpl.html
*/
defined('_JEXEC') or die('Restricted access');
class RsformViewForms extends JViewLegacy
{
protected $layouts = array();
public function display($tpl = null)
{
if (!JFactory::getUser()->authorise('forms.manage', 'com_rsform'))
{
throw new Exception(JText::_('COM_RSFORM_NOT_AUTHORISED_TO_USE_THIS_SECTION'));
}
JToolbarHelper::title('RSForm! Pro','rsform');
$layout = $this->getLayout();
$this->tooltipClass = RSFormProHelper::getTooltipClass();
if ($layout !== 'default' || $layout !== 'edit')
{
$this->formId = JFactory::getApplication()->input->getInt('formId');
}
if ($layout == 'edit')
{
JFactory::getApplication()->input->set('hidemainmenu', true);
$this->user = JFactory::getUser();
JToolbarHelper::apply('forms.apply');
JToolbarHelper::save('forms.save');
JToolbarHelper::spacer();
JToolbarHelper::custom('forms.preview', 'new tab', 'new tab', JText::_('JGLOBAL_PREVIEW'), false);
if ($this->user->authorise('submissions.manage', 'com_rsform'))
{
JToolbarHelper::custom('submissions.back', 'database', 'database', JText::_('RSFP_SUBMISSIONS'), false);
}
if ($this->user->authorise('directory.manage', 'com_rsform'))
{
JToolbarHelper::custom('forms.directory', 'folder', 'folder', JText::_('RSFP_DIRECTORY'), false);
}
JToolbarHelper::custom('components.copy', 'copy', 'copy', JText::_('RSFP_COPY_TO_FORM'), true);
JToolbarHelper::custom('components.duplicate', 'copy', 'copy', JText::_('RSFP_DUPLICATE'), true);
JToolbarHelper::deleteList(JText::_('RSFP_ARE_YOU_SURE_DELETE'), 'components.remove', JText::_('JTOOLBAR_DELETE'));
JToolbarHelper::publishList('components.publish', JText::_('JTOOLBAR_PUBLISH'));
JToolbarHelper::unpublishList('components.unpublish', JText::_('JTOOLBAR_UNPUBLISH'));
JToolbarHelper::spacer();
JToolbarHelper::cancel('forms.cancel');
$this->tabposition = JFactory::getApplication()->input->getInt('tabposition', 0);
$this->tab = JFactory::getApplication()->input->getInt('tab', 0);
$this->form = $this->get('form');
if (empty($this->form->FormId))
{
throw new Exception(JText::_('COM_RSFORM_FORM_DOES_NOT_EXIST'));
}
$this->jform = $this->get('JForm');
$this->postJForm = $this->get('PostJForm');
$this->show_previews = RSFormProHelper::getConfig('global.grid_show_previews');
$this->show_caption = RSFormProHelper::getConfig('global.grid_show_caption');
$this->hasSubmitButton = $this->get('hasSubmitButton');
JToolbarHelper::title('RSForm! Pro <small>['.JText::sprintf('RSFP_EDITING_FORM', $this->form->FormTitle).']</small>','rsform');
$this->lang = $this->get('lang');
// workaround for first time visit
$session = JFactory::getSession();
$session->set('com_rsform.form.formId'.$this->form->FormId.'.lang', $this->lang);
$this->fields = $this->get('fields');
$this->quickfields = $this->get('quickfields');
$this->pagination = $this->get('fieldspagination');
$this->calculations = $this->get('calculations');
$this->mappings = $this->get('mappings');
$this->conditions = $this->get('conditions');
$this->formId = $this->form->FormId;
$this->emails = $this->get('emails');
// layouts
$this->layouts = RSFormProHelper::getFormLayouts($this->formId);
$displayPlaceholders = RSFormProHelper::generateQuickAddGlobal('display', true);
foreach ($this->quickfields as $fields)
{
$displayPlaceholders = array_merge($displayPlaceholders, $fields['display']);
}
$this->fieldGroups = $this->get('FieldGroups');
$this->document->addScriptDeclaration('RSFormPro.Placeholders = ' . json_encode(array_values($displayPlaceholders)) . ';');
}
elseif ($layout == 'component_copy')
{
JToolbarHelper::custom('components.copyprocess', 'copy', 'copy', JText::_('RSFP_DO_COPY'), false);
JToolbarHelper::cancel('components.copycancel');
$this->cids = JFactory::getApplication()->input->get('cid', array(), 'array');
$this->lists = array(
'forms' => JHtml::_('select.genericlist', $this->get('formlist'), 'toFormId', array('class' => 'form-select'), 'value', 'text')
);
}
elseif ($layout == 'edit_mappings')
{
$this->mappings = $this->get('mappings');
}
elseif ($layout == 'edit_conditions')
{
$this->conditions = $this->get('conditions');
}
elseif ($layout == 'edit_emails')
{
$this->emails = $this->get('emails');
$this->lang = $this->get('lang');
}
elseif ($layout == 'edit_calculations')
{
$this->calculations = $this->get('calculations');
}
elseif ($layout == 'show')
{
JFactory::getLanguage()->load('com_rsform', JPATH_SITE);
$this->setToolbarTitle();
}
else
{
$this->addToolbar();
JToolbarHelper::addNew('wizard.stepfinal', JText::_('JTOOLBAR_NEW'));
JToolbarHelper::custom('wizard.add', 'play', 'play', JText::_('COM_RSFORM_NEW_FORM_WIZARD'), false);
JToolbarHelper::spacer();
JToolbarHelper::custom('forms.copy', 'copy', 'copy', JText::_('RSFP_DUPLICATE'), true);
JToolbarHelper::spacer();
JToolbarHelper::deleteList(JText::_('RSFP_ARE_YOU_SURE_DELETE'), 'forms.delete', JText::_('JTOOLBAR_DELETE'));
JToolbarHelper::spacer();
JToolbarHelper::publishList('forms.publish', JText::_('JTOOLBAR_PUBLISH'));
JToolbarHelper::unpublishList('forms.unpublish', JText::_('JTOOLBAR_UNPUBLISH'));
$this->user = JFactory::getUser();
$this->items = $this->get('forms');
$this->pagination = $this->get('Pagination');
$this->sortColumn = $this->get('sortColumn');
$this->sortOrder = $this->get('sortOrder');
$this->month = JFactory::getDate('now', JFactory::getUser()->getTimezone());
$this->month->setDate($this->month->year, $this->month->month, 1);
$this->month->setTime(0, 0, 0);
$this->month = $this->month->format('Y-m-d');
$this->today = JHtml::_('date', 'now', 'Y-m-d');
$this->disable_multilanguage = RSFormProHelper::getConfig('global.disable_multilanguage');
$this->state = $this->get('State');
$this->filterForm = $this->get('FilterForm');
$this->activeFilters = $this->get('ActiveFilters');
}
parent::display($tpl);
}
protected function triggerEvent($event, $params = array()) {
JFactory::getApplication()->triggerEvent($event, $params);
}
protected function addToolbar() {
static $called;
// this is a workaround so if called multiple times it will not duplicate the buttons
if (!$called) {
// set title
JToolbarHelper::title('RSForm! Pro', 'rsform');
require_once JPATH_COMPONENT.'/helpers/toolbar.php';
RSFormProToolbarHelper::addToolbar('forms');
$called = true;
}
}
protected function setToolbarTitle()
{
$db = JFactory::getDbo();
$query = $db->getQuery(true)
->select($db->qn('FormTitle'))
->from($db->qn('#__rsform_forms'))
->where($db->qn('FormId') . ' = ' . $db->q($this->formId));
$title = $db->setQuery($query)->loadResult();
$lang = RSFormProHelper::getCurrentLanguage($this->formId);
if ($translations = RSFormProHelper::getTranslations('forms', $this->formId, $lang))
{
if (isset($translations['FormTitle']))
{
$title = $translations['FormTitle'];
}
}
JToolbarHelper::title($title,'rsform');
}
protected function buildGrid()
{
$rows = array();
$hidden = array();
$row_index = 0;
if (strlen($this->form->GridLayout))
{
$used = array();
$data = json_decode($this->form->GridLayout, true);
// If decoding is successful, we should have $rows and $hidden
if (is_array($data) && isset($data[0], $data[1]))
{
$rows = $data[0];
$hidden = $data[1];
}
// Actual layout (rows and columns)
if ($rows)
{
foreach ($rows as $row_index => &$row)
{
foreach ($row['columns'] as $column_index => $fields)
{
foreach ($fields as $position => $id)
{
if (isset($this->fields[$id]))
{
// Pages have a special property
if ($this->fields[$id]->type_id == RSFORM_FIELD_PAGEBREAK)
{
$row['has_pagebreak'] = true;
}
$row['columns'][$column_index][$position] = $this->fields[$id];
$used[] = $id;
}
else
{
// Field doesn't exist, remove it from grid
unset($row['columns'][$column_index][$position]);
}
}
}
}
unset($row);
}
// This array just holds hidden fields so we can sort them separately
if ($hidden)
{
foreach ($hidden as $hidden_index => $id)
{
if (isset($this->fields[$id]))
{
$hidden[$hidden_index] = $this->fields[$id];
$used[] = $id;
}
else
{
// Field doesn't exist, remove it from grid
unset($hidden[$hidden_index]);
}
}
}
// Let's see if we've added new fields in the meantime
$diff = array();
if ($array_diff = array_diff(array_keys($this->fields), $used))
{
foreach ($array_diff as $id)
{
$diff[] = $this->fields[$id];
}
// Must not be a page container
$row = end($rows);
if (!empty($row['has_pagebreak']))
{
$row_index++;
}
}
}
else
{
$diff = $this->fields;
}
$hiddenComponents = array(
RSFORM_FIELD_HIDDEN,
RSFORM_FIELD_TICKET
);
JFactory::getApplication()->triggerEvent('onRsformDefineHiddenComponents', array(&$hiddenComponents));
// Let's add fields to rows, keeping pages on a separate row
foreach ($diff as $field)
{
// These are hidden fields and should be sorted separately in the $hidden array
if (in_array($field->type_id, $hiddenComponents) || $field->type_name == 'hidden')
{
$hidden[] = $field;
continue;
}
if (!isset($rows[$row_index]))
{
$rows[$row_index] = array(
'columns' => array(array()),
'sizes' => array(12)
);
}
// Pages are the only item on a row, they can't be resized
if ($field->type_id == RSFORM_FIELD_PAGEBREAK)
{
if (!count($rows[$row_index]['columns'][0]))
{
$rows[$row_index]['has_pagebreak'] = true;
$rows[$row_index]['columns'][0][] = $field;
$row_index++;
}
else
{
// Add new row with just this page
$rows[++$row_index] = array(
'columns' => array(array($field)),
'sizes' => array(12),
'has_pagebreak' => true
);
$row_index++;
}
}
else
{
$rows[$row_index]['columns'][0][] = $field;
}
}
return array($rows, $hidden);
}
protected function adjustPreview($preview, $useDivs = true)
{
if (preg_match_all('/<td(.*?)>(.*?)<\/td>/is', $preview, $matches, PREG_SET_ORDER))
{
if (isset($matches[1]))
{
if ($useDivs)
{
$preview = '<div' . $matches[1][1] . '>' . $matches[1][2] . '</div>';
}
else
{
$preview = $matches[1][2];
}
}
}
else
{
if ($useDivs)
{
$preview = '<div>' . $preview . '</div>';
}
}
if (function_exists('mb_convert_encoding'))
{
$preview = mb_convert_encoding($preview, 'HTML-ENTITIES', 'UTF-8');
}
if (class_exists('DOMDocument'))
{
$doc = new DOMDocument();
$errors = libxml_use_internal_errors(true);
$doc->loadHTML('<?xml version="1.0" encoding="UTF-8"?><html_tags>' . $preview . '</html_tags>');
$doc->encoding = 'UTF-8';
libxml_clear_errors();
$preview = substr($doc->saveHTML($doc->getElementsByTagName('html_tags')->item(0)), strlen('<html_tags>'), -strlen('</html_tags>'));
libxml_use_internal_errors($errors);
}
return $preview;
}
}