debug sql

Reviewed-on: #2

_func.php

@@ -6,5 +6,6 @@ include_once ('string.php');
 include_once ('numbers.php');
 include_once ('mail.php');
 include_once ('debug.php');
+include_once ('troy-api.php');
 // include_once ('markdown.php');
 ?>

ips/crawler.php

@@ -1,29 +1,32 @@
 <?php
 $_ips_crawler = array (
+        '34.79.234.76', // google
         '40.77.167.', // bing bot
+        '54.36.148.', // ahrefbot
+        '54.36.149.', // ahrefbot
         '66.249.',
         '62.138.',
         '62.210.149.60',
+        '65.21.180.26', // seekport
+        '81.209.177.145', // website-datenbank.de
+        '85.25.177.', // abuse
+        '85.25.210.', // hosteurope abuse
         '92.118.160.37', // netsystem research bot
         '104.155.85.', // google
         '114.119.1', // petalbot
-        '185.191.171.', // semrush bot
-        '207.46.13.', // bing bot
-        '54.36.148.', // ahrefbot
-        '54.36.149.', // ahrefbot
-        '216.244.66.196', // opensiteexplorer
-        '65.21.180.26', // seekport
-        '81.209.177.145', // website-datenbank.de
-        '2a01:4f8:190:4244::2', // mj12bot
         '144.76.15.153', // mj12bot
-        '192.99.5.225', // ...
-        '157.55.39.', // microsoft???
-        '2a01:4f8:162:43c5::2', // mj12bot
-        '85.25.177.', // abuse
-        '85.25.210.', // hosteurope abuse
-        '34.79.234.76', // google
         '148.251.120.201', // mj12bot
-        '205.185.115.87' //sex spam
+        '157.55.39.', // microsoft???
+        '172.217.', //google
+        '176.125.230.38', //sql inj
+        '185.191.171.', // semrush bot
+        '192.99.5.225', // ...
+        '205.185.115.87', //sex spam
+        '207.46.13.', // bing bot
+        '216.58.', //google
+        '216.244.66.196', // opensiteexplorer
+        '2a01:4f8:190:4244::2', // mj12bot
+        '2a01:4f8:162:43c5::2', // mj12bot
 );
 function checkHuman() {
   global $_ips_crawler;

mail.php

@@ -1,10 +1,15 @@
 <?php
 function send_mail($an, $betreff, $text, $ok = '', $error = '') {
-  include 'secret.php';
+  global $absender;
   $sender = 'noreply@troy-grunt.de';
+  if(isset($absender) && $absender) {
+    $sender = $absender;
+  }else{
+    include 'secret.php';
     if (isset ( $_sendermail )) {
       $sender = $_sendermail;
     }
+  }
   $header = 'From: ' . $sender . "\r\n";
   $header .= 'To: ' . $an . "\r\n";
   $header .= 'Content-Type:text/html' . "\r\n";
@@ -18,3 +23,59 @@ function send_mail($an, $betreff, $text, $ok = '', $error = '') {
   }
 }
 
+function send_html_mail($an, $betreff, $text, $ok = '', $error = '') {
+  global $absender;
+  $sender = 'noreply@troy-grunt.de';
+  if(isset($absender) && $absender) {
+    $sender = $absender;
+  }else{
+    include 'secret.php';
+    if (isset ( $_sendermail )) {
+      $sender = $_sendermail;
+    }
+  }
+  $boundary = md5($an.$betreff.$text.time());
+
+  $header = 'From: ' . $sender . "\n";
+  $header .= 'To: ' . $an . "\n";
+  $header .= 'Content-Type:multipart/alternative;boundary='.$boundary . "\n";
+  $header .= 'X-Mailer: PHP/' . phpversion ();
+  $content = "This is multipart message using MIME\n";
+  $content .= "--" . $boundary . "\n";
+  $content .= "Content-type: text/plain;charset=utf-8\n";
+  $content .= 'Content-Transfer-Encoding: 8bit' . "\n\n";
+  $content .= strip_tags($text)."\n\n";
+  $content .= "--" . $boundary . "\n";
+  $content .= "Content-type: text/html;charset=utf-8\n";
+  $content .= "Content-Transfer-Encoding: 8bit". "\n\n";
+  $content .= '<html><body>'.$text.'</body></html>'."\n\n";
+
+  if (mail ( $an, $betreff, $content, $header ) === true) {
+    echo $ok;
+  } else {
+    echo $error;
+  }
+}
+
+function send_php_mail($an, $betreff, $text, $ok = '', $error = '') {
+  global $_sendermail;
+  $sender = 'noreply@troy-grunt.de';
+  if (isset ( $_sendermail )) {
+    $sender = $_sendermail;
+  }
+  include 'php-mailer/PHPMailer.php';
+  $mail = new PHPMailer();
+
+  $mail->setFrom($sender);
+  $mail->addAddress($an);
+  $mail->Subject = $betreff;
+  $mail->msgHTML($text, __DIR__);
+  $mail->AltBody = strip_tags($text);
+
+  if (!$mail->send()) {
+    echo 'Mailer Error: ' . $mail->ErrorInfo;
+  } else {
+      echo 'Message sent!';
+  }
+}
+?>

secret.php.example

@@ -5,8 +5,14 @@ $_m['host'] = 'localhost';
 $_m['user'] = '';
 $_m['pass'] = '';
 $_m['data'] = '';
-$_m['pre']  = 'efcms2_';
+$_m['pre']  = '';
 $_m['salt'] = '';
 
-$_sendermail = 'noreply@troy-grunt.de';
+$_sendermail = 'noreply@.de';
+$_smtp['srv'] = 'mail.seemsleg.it';
+$_smtp['user'] = 'noreply@.de';
+$_smtp['pw'] = '';
+
+$_i['host'] = '';
+$_i['secret'] = '';
 ?>

sql.php

@@ -1,4 +1,6 @@
 <?php
+$__idata = [];
+
 class SQL {
     private $h;
     private $res = false;
@@ -8,8 +10,11 @@ class SQL {
     public $cnt_get = 0;
     public $cnt_set = 0;
     public function __construct() {
+        global $__idata;
         require_once ('secret.php');
 
+        $__idata = $_i;
+
         $this->m = $_m;
         $this->pre = $_m ['pre'];
         $this->salt = $_m ['salt'];
@@ -166,6 +171,12 @@ class SQL {
           case 10 :
             $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9] );
             break;
+          case 11 :
+            $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10] );
+            break;
+          case 12 :
+            $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11] );
+            break;
         }
       } else {
         $statement->bind_param ( $t, $p );

troy-api.php

@@ -13,4 +13,70 @@ function sendToTroy($data) {
         $context = stream_context_create ( $options );
         return file_get_contents ( $url, false, $context );
     }
+
+    function sendIssue($service, $text, $data = []) {
+        global $__idata;
+
+        $url = 'https://issues.troy-grunt.de/api';
+
+        // Basisdaten für den POST-Request
+        $postData = [
+            'host'   => $__idata['host'],
+            'secret' => $__idata['secret'],
+            'typ'    => $service,
+            'text'   => $text,
+            'data'   => json_encode($data) // Falls 'data' ein Array ist, wird es als JSON gesendet
+        ];
+
+        // cURL initialisieren
+        $ch = curl_init($url);
+        curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
+        curl_setopt($ch, CURLOPT_POST, true);
+        curl_setopt($ch, CURLOPT_HTTPHEADER, ['Content-Type: application/x-www-form-urlencoded']);
+        curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($postData));
+
+        // Anfrage senden & Antwort erhalten
+        $response = curl_exec($ch);
+        curl_close($ch);
+
+        return $response;
+    }
+
+
+    //TODO
+    function sendSimpleIssue($text,$url){
+        $apiUrl = 'https://issues.troy-grunt.de/api/simple';
+
+        // Die notwendigen Daten
+        $data = [
+            'domain' => 'example.com', // Ersetze mit deiner registrierten Domain
+            'secret' => 'geheimes-passwort', // Ersetze mit deinem Secret
+            'text'   => $text,
+            'url'    => $url
+        ];
+
+        $options = [
+            'http' => [
+                'header'  => "Content-Type: application/json\r\n",
+                'method'  => 'POST',
+                'content' => json_encode($data)
+            ]
+        ];
+
+        $context  = stream_context_create($options);
+        $response = file_get_contents($apiUrl, false, $context);
+
+        if ($response === FALSE) {
+            die('Fehler bei der API-Anfrage');
+        }
+
+        // Antwort dekodieren
+        $result = json_decode($response, true);
+
+        if (isset($result['success']) && $result['success']) {
+            echo "Issue erfolgreich erstellt. ID: " . $result['issue_id'];
+        } else {
+            echo "Fehler: " . ($result['error'] ?? 'Unbekannter Fehler');
+        }
+    }//TODO nutzen
 ?>