Lines 5534-5540
Link Here
|
5534 |
$QueryString =~ s/&/&/g; |
5534 |
$QueryString =~ s/&/&/g; |
5535 |
} |
5535 |
} |
5536 |
|
5536 |
|
5537 |
$QueryString = CleanFromCSSA($QueryString); |
5537 |
$QueryString = CleanFromCSSA(&DecodeEncodedString($QueryString)); |
5538 |
|
5538 |
|
5539 |
# Security test |
5539 |
# Security test |
5540 |
if ($QueryString =~ /LogFile=([^&]+)/i) { error("Logfile parameter can't be overwritten when AWStats is used from a CGI"); } |
5540 |
if ($QueryString =~ /LogFile=([^&]+)/i) { error("Logfile parameter can't be overwritten when AWStats is used from a CGI"); } |
Lines 5542-5548
Link Here
|
5542 |
# No update but report by default when run from a browser |
5542 |
# No update but report by default when run from a browser |
5543 |
$UpdateStats=($QueryString=~/update=1/i?1:0); |
5543 |
$UpdateStats=($QueryString=~/update=1/i?1:0); |
5544 |
|
5544 |
|
5545 |
if ($QueryString =~ /config=([^&]+)/i) { $SiteConfig=&DecodeEncodedString("$1"); } |
5545 |
if ($QueryString =~ /config=([^&]+)/i) { $SiteConfig=&Sanitize(&DecodeEncodedString("$1")); } |
5546 |
if ($QueryString =~ /diricons=([^&]+)/i) { $DirIcons=&DecodeEncodedString("$1"); } |
5546 |
if ($QueryString =~ /diricons=([^&]+)/i) { $DirIcons=&DecodeEncodedString("$1"); } |
5547 |
if ($QueryString =~ /pluginmode=([^&]+)/i) { $PluginMode=&Sanitize(&DecodeEncodedString("$1"),1); } |
5547 |
if ($QueryString =~ /pluginmode=([^&]+)/i) { $PluginMode=&Sanitize(&DecodeEncodedString("$1"),1); } |
5548 |
if ($QueryString =~ /configdir=([^&]+)/i) { $DirConfig=&Sanitize(&DecodeEncodedString("$1")); } |
5548 |
if ($QueryString =~ /configdir=([^&]+)/i) { $DirConfig=&Sanitize(&DecodeEncodedString("$1")); } |
Lines 5561-5567
Link Here
|
5561 |
|
5561 |
|
5562 |
# If migrate |
5562 |
# If migrate |
5563 |
if ($QueryString =~ /(^|-|&|&)migrate=([^&]+)/i) { |
5563 |
if ($QueryString =~ /(^|-|&|&)migrate=([^&]+)/i) { |
5564 |
$MigrateStats=&DecodeEncodedString("$2"); |
5564 |
$MigrateStats=&Sanitize(&DecodeEncodedString("$2")); |
5565 |
$MigrateStats =~ /^(.*)$PROG(\d{0,2})(\d\d)(\d\d\d\d)(.*)\.txt$/; |
5565 |
$MigrateStats =~ /^(.*)$PROG(\d{0,2})(\d\d)(\d\d\d\d)(.*)\.txt$/; |
5566 |
$SiteConfig=$5?$5:'xxx'; $SiteConfig =~ s/^\.//; # SiteConfig is used to find config file |
5566 |
$SiteConfig=$5?$5:'xxx'; $SiteConfig =~ s/^\.//; # SiteConfig is used to find config file |
5567 |
} |
5567 |
} |
Lines 5591-5597
Link Here
|
5591 |
# Update with no report by default when run from command line |
5591 |
# Update with no report by default when run from command line |
5592 |
$UpdateStats=1; |
5592 |
$UpdateStats=1; |
5593 |
|
5593 |
|
5594 |
if ($QueryString =~ /config=([^&]+)/i) { $SiteConfig="$1"; } |
5594 |
if ($QueryString =~ /config=([^&]+)/i) { $SiteConfig=&Sanitize("$1"); } |
5595 |
if ($QueryString =~ /diricons=([^&]+)/i) { $DirIcons="$1"; } |
5595 |
if ($QueryString =~ /diricons=([^&]+)/i) { $DirIcons="$1"; } |
5596 |
if ($QueryString =~ /pluginmode=([^&]+)/i) { $PluginMode=&Sanitize("$1",1); } |
5596 |
if ($QueryString =~ /pluginmode=([^&]+)/i) { $PluginMode=&Sanitize("$1",1); } |
5597 |
if ($QueryString =~ /configdir=([^&]+)/i) { $DirConfig=&Sanitize("$1"); } |
5597 |
if ($QueryString =~ /configdir=([^&]+)/i) { $DirConfig=&Sanitize("$1"); } |