Changeset 601 for branches/stable/cgi-bin
- Timestamp:
- 10/04/13 16:47:32 (11 years ago)
- Location:
- branches/stable/cgi-bin
- Files:
-
- 8 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/stable/cgi-bin/IPDB.pm
r600 r601 7 7 # Last update by $Author$ 8 8 ### 9 # Copyright (C) 2004-201 0 - Kris Deugau9 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 10 10 11 11 package IPDB; -
branches/stable/cgi-bin/MyIPDB.pm
r600 r601 8 8 # Last update by $Author$ 9 9 ### 10 # Copyright (C) 2004-201 1 - Kris Deugau10 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 11 11 12 12 # don't remove! required for GNU/FHS-ish install from tarball -
branches/stable/cgi-bin/admin.cgi
r594 r601 10 10 # Last update by $Author$ 11 11 ### 12 # Copyright (C) 2004-201 1 - Kris Deugau12 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 13 13 14 14 use strict; … … 469 469 } 470 470 471 ERRJUMP: print "Content-type: text/html\n\n".$header->output; 471 ERRJUMP: 472 473 $header->param(version => $IPDB::VERSION); 474 #$header->param(addperm => $IPDBacl{$authuser} =~ /a/); 475 $header->param(webpath => $IPDB::webpath); 476 477 print "Content-type: text/html\n\n".$header->output; 478 472 479 print $page->output; 473 480 -
branches/stable/cgi-bin/extras/db2rwhois.pl
r506 r601 10 10 # Last update by $Author$ 11 11 ### 12 # Copyright (C) 2004-201 0 - Kris Deugau12 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 13 13 14 14 use strict; -
branches/stable/cgi-bin/main.cgi
r598 r601 7 7 # Last update by $Author$ 8 8 ### 9 # Copyright (C) 2004-201 1 - Kris Deugau9 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 10 10 11 11 use strict; -
branches/stable/cgi-bin/newcity.cgi
r593 r601 8 8 # Last update by $Author$ 9 9 ### 10 # Copyright (C) 2004-201 0 - Kris Deugau10 # Copyright (C) 2004-2013 Kris Deugau <kdeugau@deepnet.cx> 11 11 12 12 use strict; … … 74 74 print "Content-type: text/html\n\n"; 75 75 76 $page->param(webpath => $IPDB::webpath); 77 76 78 print $page->output; 77 79 -
branches/stable/cgi-bin/newnode.cgi
r593 r601 8 8 # Last update by $Author$ 9 9 ### 10 # Copyright (C) 2010 - Kris Deugau10 # Copyright (C) 2010-2013 Kris Deugau <kdeugau@deepnet.cx> 11 11 12 12 use strict; … … 67 67 print "Content-type: text/html\n\n"; 68 68 69 $page->param(webpath => $IPDB::webpath); 70 69 71 print $page->output; 70 72 -
branches/stable/cgi-bin/search.cgi
r594 r601 9 9 # Last update by $Author$ 10 10 ### 11 # Copyright 2005-2011 - Kris Deugau11 # Copyright (C) 2005-2013 Kris Deugau <kdeugau@deepnet.cx> 12 12 13 13 use strict; … … 76 76 if (!defined($webvar{stype})) { 77 77 $webvar{stype} = "<NULL>"; #shuts up the warnings. 78 $page = HTML::Template->new(filename => "search/compsearch.tmpl"); 78 $page = HTML::Template->new(filename => "search/compsearch.tmpl", 79 global_vars => 1); 79 80 } else { 80 $page = HTML::Template->new(filename => "search/sresults.tmpl"); 81 $page = HTML::Template->new(filename => "search/sresults.tmpl", 82 global_vars => 1); 81 83 } 84 $page->param(webpath => $IPDB::webpath); 82 85 83 86 my $header = HTML::Template->new(filename => "header.tmpl"); 84 87 $header->param(version => $IPDB::VERSION); 85 88 $header->param(addperm => $IPDBacl{$authuser} =~ /a/); 89 $header->param(webpath => $IPDB::webpath); 86 90 print "Content-type: text/html\n\n", $header->output; 87 91 … … 355 359 queryResults($sql, $webvar{page}, $count); 356 360 357 } elsif ($category eq 'cust' ) {361 } elsif ($category eq 'cust' || $category eq 'desc') { 358 362 359 363 ##fixme: this and other quick-search areas; fix up page heading title similar to first grouping above 360 print qq(<div class="heading">Searching for Customer IDs containing '$query'</div><br>\n); 361 364 print qq(<div class="heading">Searching for Customer IDs or Descriptions containing '$query'</div><br>\n); 365 366 # head off the worst of SQL injection. search really needs a big rewrite... 367 $query =~ s/'/''/g; 362 368 # Query for a customer ID. Note that we can't restrict to "numeric-only" 363 369 # as we have non-numeric custIDs in the legacy data. :/ 364 $sql = "select $cols from searchme where custid ilike '%$query%' or description like '%$query%'"; 365 my $count = countRows($sql); 366 $sql .= " order by cidr limit $RESULTS_PER_PAGE offset $offset"; 367 queryResults($sql, $webvar{page}, $count); 368 369 } elsif ($category eq 'desc') { 370 371 print qq(<div class="heading">Searching for descriptions containing '$query'</div><br>\n); 372 # Query based on description (includes "name" from old DB). 373 $sql = "select $cols from searchme where description ilike '%$query%'". 374 " or custid ilike '%$query%'"; 370 $sql = "select $cols from searchme where custid ilike '%$query%' or description ilike '%$query%'"; 375 371 my $count = countRows($sql); 376 372 $sql .= " order by cidr limit $RESULTS_PER_PAGE offset $offset";
Note:
See TracChangeset
for help on using the changeset viewer.