Enano CMS (1.1.x): comparison includes/functions.php

equal deleted inserted replaced

-:fdd6b9dd42c3
+:ce6053bb48d8
 * @return array
 */
 function enano_str_split($text, $inc = 1)
 {
-if($inc < 1) return false;
+if($inc < 1)
-if($inc >= strlen($text)) return Array($text);
+{
+return false;
+}
+if($inc >= strlen($text))
+{
+return Array($text);
+}
 $len = ceil(strlen($text) / $inc);
 $ret = Array();
-for($i=0;$i<strlen($text);$i=$i+$inc)
+for ( $i = 0; $i < strlen($text); $i = $i + $inc )
 {
 $ret[] = substr($text, $i, $inc);
 }
 return $ret;
 }
 }
 return $arr;
 }
 /**
+* Recursive function to remove all NUL bytes from a string
+* @param array
+* @return array
+*/
+function strip_nul_chars($arr)
+{
+foreach($arr as $k => $xxxx_unused)
+{
+$val =& $arr[$k];
+if(is_string($val))
+$val = str_replace("\000", '', $val);
+elseif(is_array($val))
+$val = strip_nul_chars($val);
+}
+return $arr;
+}
+/**
 * If magic_quotes_gpc is on, calls stripslashes() on everything in $_GET/$_POST/$_COOKIE
-* @ignore - this doesn't work
+* @ignore - this doesn't work too well in my tests
 * @todo port version from the PHP manual
 * @return void
 */
 function strip_magic_quotes_gpc()
 {
 {
 $_POST   = stripslashes_recurse($_POST);
 $_GET    = stripslashes_recurse($_GET);
 $_COOKIE = stripslashes_recurse($_COOKIE);
 }
+$_POST   = strip_nul_chars($_POST);
+$_GET    = strip_nul_chars($_GET);
+$_COOKIE = strip_nul_chars($_COOKIE);
 }
 /**
 * A very basic single-character compression algorithm for binary strings/bitfields
 * @param string $bits the text to compress