/mnt/web601/b3/14/57451114/htdocs/httpdocs/inc/clean_param.inc.php

<?php
/* --------------------------------------------------------------
   clean_param.inc.php 2016-03-04
   Gambio GmbH
   http://www.gambio.de
   Copyright (c) 2016 Gambio GmbH
   Released under the GNU General Public License (Version 2)
   [http://www.gnu.org/licenses/gpl-2.0.html]
   --------------------------------------------------------------
*/

/**
 * @param string $queryString
 * @param bool   $isAdminPage
 * @param bool   $encodeAmpersand
 *
 * @return string
 */
function clean_param($queryString, $isAdminPage = false, $encodeAmpersand = true)
{
	if(empty($queryString))
	{
		return $queryString;
	}
	
	$filteredParams = array(
		'action',
		'cID',
		'coID',
		'pID',
	);
	
	$separator = '&amp;';
	
	if(!$encodeAmpersand)
	{
		$separator = '&';
	}
	elseif($isAdminPage)
	{
		$separator = strpos($queryString, '&amp;') !== false ? '&amp;' : '&';
	}
	
	$queryString = str_replace('&amp;', '&', $queryString);
	
	if($separator === '&amp;')
	{
		$queryString = str_replace('&', '&amp;', $queryString);
		
		if(substr($queryString, -6) === '&amp;=')
		{
			$queryString = substr($queryString, 0, -6);
		}
		
		if(substr($queryString, -5) === '&amp;')
		{
			$queryString = substr($queryString, 0, -5);
		}
	}
	
	if(substr($queryString, -2) === '&=')
	{
		$queryString = substr($queryString, 0, -2);
	}
	
	if(substr($queryString, -1) === '&')
	{
		$queryString = substr($queryString, 0, -1);
	}
	
	$queryString = str_replace('#', '%23', $queryString);
	
	$paramPairs = explode($separator, $queryString);
	
	$params = array();
	
	foreach($paramPairs as $paramPair)
	{
		preg_match('/(.*?)=(.*)/', $paramPair, $matches);
		
		// if GET-parameter has a value
		if(isset($matches[2]))
		{
			$params[] = array($matches[1], $matches[2]);
		}
		else
		{
			$params[] = array($paramPair, null);
		}
	}
	
	foreach($params as $key => $param)
	{
		if($param[0] === '' && ($param[1] === '' || $param[1] === null))
		{
			unset($params[$key]);
			
			continue;
		}
		
		if(in_array($param[0], $filteredParams) && preg_match("/[<>\"]/", $param[1]))
		{
			$param[1] = '';
		}
		
		if($param[1] !== null)
		{
			$params[$key] = implode('=', $param);
		}
		else
		{
			$params[$key] = $param[0];
		}
	}
	
	$cleanedQueryString = implode($separator, $params);
	
	return $cleanedQueryString;
}

[F]clean_numeric_input.inc.php
[F]clean_param.inc.php
[F]cookie_consent_panel_is_installed.php
[F]cookie_purpose_is_active.php
[F]cookie_purpose_is_enabled.php
[F]country_eu_status_by_country_id.inc.php
[F]create_coupon_code.inc.php
[F]fetch_email_template.inc.php
[F]generate_withdrawal_link.inc.php
[F]get_checkout_information.inc.php
[F]get_cross_sell_name.inc.php
[F]get_href_link.inc.php
[F]get_locale_by_language_id.inc.php
[F]get_payment_title.inc.php
[F]get_products_vpe_array.inc.php
[F]get_shipping_title.inc.php
[F]get_transfer_charge_text.inc.php
[F]get_usermod.inc.php
[F]html_entity_decode_wrapper.inc.php
[F]htmlentities_wrapper.inc.php
[F]htmlspecialchars_wrapper.inc.php
[F]index.html
[F]parse_str_wrapper.inc.php
[F]set_mailbeez_env.inc.php
[F]set_memory_limit.inc.php
[F]strlen_wrapper.inc.php
[F]strpos_wrapper.inc.php
[F]strrpos_wrapper.inc.php
[F]strtolower_wrapper.inc.php
[F]strtoupper_wrapper.inc.php
[F]substr_count_wrapper.inc.php
[F]substr_wrapper.inc.php
[F]update_customer_b2b_status.inc.php
[F]utf8_encode_wrapper.inc.php
[F]xtc_activate_banners.inc.php
[F]xtc_add_tax.inc.php
[F]xtc_address_format.inc.php
[F]xtc_address_label.inc.php
[F]xtc_banner_exists.inc.php
[F]xtc_break_string.inc.php
[F]xtc_browser_detect.inc.php
[F]xtc_calculate_tax.inc.php
[F]xtc_category_link.inc.php
[F]xtc_check_agent.inc.php
[F]xtc_check_categories_status.inc.php
[F]xtc_check_stock.inc.php
[F]xtc_check_stock_attributes.inc.php
[F]xtc_cleanName.inc.php
[F]xtc_count_cart.inc.php
[F]xtc_count_customer_address_book_entries.inc.php
[F]xtc_count_customer_orders.inc.php
[F]xtc_count_modules.inc.php
[F]xtc_count_payment_modules.inc.php
[F]xtc_count_products_in_category.inc.php
[F]xtc_count_shipping_modules.inc.php
[F]xtc_create_password.inc.php
[F]xtc_create_random_value.inc.php
[F]xtc_currency_exists.inc.php
[F]xtc_customer_greeting.inc.php
[F]xtc_date_long.inc-link.php
[F]xtc_date_long.inc.php
[F]xtc_date_raw.inc.php
[F]xtc_date_short.inc.php
[F]xtc_db_close.inc.php
[F]xtc_db_connect.inc.php
[F]xtc_db_connect_installer.inc.php
[F]xtc_db_data_seek.inc.php
[F]xtc_db_error.inc.php
[F]xtc_db_fetch_array.inc.php
[F]xtc_db_fetch_fields.inc.php
[F]xtc_db_free_result.inc.php
[F]xtc_db_input.inc.php
[F]xtc_db_insert_id.inc.php
[F]xtc_db_install.inc.php
[F]xtc_db_num_rows.inc.php
[F]xtc_db_output.inc.php
[F]xtc_db_perform.inc.php
[F]xtc_db_prepare_input.inc.php
[F]xtc_db_query.inc.php
[F]xtc_db_query_installer.inc.php
[F]xtc_db_select_db.inc.php
[F]xtc_db_test_connection.inc.php
[F]xtc_db_test_create_db_permission.inc.php
[F]xtc_display_banner.inc.php
[F]xtc_display_tax_value.inc.php
[F]xtc_draw_checkbox_field.inc.php
[F]xtc_draw_form.inc.php
[F]xtc_draw_hidden_field.inc.php
[F]xtc_draw_hidden_field_installer.inc.php
[F]xtc_draw_input_field.inc.php
[F]xtc_draw_input_field_installer.inc.php
[F]xtc_draw_password_field.inc.php
[F]xtc_draw_pull_down_menu.inc.php
[F]xtc_draw_radio_field.inc.php
[F]xtc_draw_selection_field.inc.php
[F]xtc_draw_separator.inc.php
[F]xtc_draw_textarea_field.inc.php
[F]xtc_encrypt_password.inc.php
[F]xtc_exit.inc.php
[F]xtc_expire_banners.inc.php
[F]xtc_expire_specials.inc.php
[F]xtc_filesize.inc.php
[F]xtc_findTitle.inc.php
[F]xtc_format_filesize.inc.php
[F]xtc_format_price.inc.php
[F]xtc_format_price_order.inc.php
[F]xtc_get_address_format_id.inc.php
[F]xtc_get_all_get_params.inc.php
[F]xtc_get_attributes_model.inc.php
[F]xtc_get_categories.inc.php
[F]xtc_get_category_path.inc.php
[F]xtc_get_countries.inc.php
[F]xtc_get_country_list.inc.php
[F]xtc_get_country_name.inc.php
[F]xtc_get_currencies_values.inc.php
[F]xtc_get_customers_statuses.inc.php
[F]xtc_get_download.inc.php
[F]xtc_get_geo_zone_code.inc.php
[F]xtc_get_ip_address.inc.php
[F]xtc_get_manufacturers.inc.php
[F]xtc_get_parent_categories.inc.php
[F]xtc_get_path.inc.php
[F]xtc_get_prid.inc.php
[F]xtc_get_product_path.inc.php
[F]xtc_get_products.inc.php
[F]xtc_get_products_mo_images.inc.php
[F]xtc_get_products_name.inc.php
[F]xtc_get_products_stock.inc.php
[F]xtc_get_qty.inc.php
[F]xtc_get_short_description.inc.php
[F]xtc_get_subcategories.inc.php
[F]xtc_get_tax_class_id.inc.php
[F]xtc_get_tax_description.inc.php
[F]xtc_get_tax_rate.inc.php
[F]xtc_get_uprid.inc.php
[F]xtc_get_vpe_name.inc.php
[F]xtc_get_zone_code.inc.php
[F]xtc_get_zone_name.inc.php
[F]xtc_has_category_subcategories.inc.php
[F]xtc_has_product_attributes.inc.php
[F]xtc_href_link.inc.php
[F]xtc_href_link_admin.inc.php
[F]xtc_image.inc.php
[F]xtc_image_button.inc.php
[F]xtc_image_submit.inc.php
[F]xtc_in_array.inc.php
[F]xtc_input_validation.inc.php
[F]xtc_is_extension_file.inc.php
[F]xtc_manufacturer_link.inc.php
[F]xtc_not_null.inc.php
[F]xtc_oe_customer_infos.inc.php
[F]xtc_oe_get_options_name.inc.php
[F]xtc_oe_get_options_values_name.inc.php
[F]xtc_output_warning.inc.php
[F]xtc_parse_category_path.inc.php
[F]xtc_parse_input_field_data.inc.php
[F]xtc_parse_search_string.inc.php
[F]xtc_php_mail.inc.php
[F]xtc_precision.inc.php
[F]xtc_product_link.inc.php
[F]xtc_rand.inc.php
[F]xtc_random_charcode.inc.php
[F]xtc_random_name.inc.php
[F]xtc_random_select.inc.php
[F]xtc_recalculate_price.inc.php
[F]xtc_redirect.inc.php
[F]xtc_remove_non_numeric.inc.php
[F]xtc_render_vvcode.inc.php
[F]xtc_round.inc.php
[F]xtc_row_number_format.inc.php
[F]xtc_set_banner_status.inc.php
[F]xtc_set_specials_status.inc.php
[F]xtc_set_time_limit.inc.php
[F]xtc_unlink_temp_dir.inc.php
[F]xtc_update_banner_click_count.inc.php
[F]xtc_update_banner_display_count.inc.php
[F]xtc_update_whos_online.inc.php
[F]xtc_validate_email.inc.php
[F]xtc_validate_password.inc.php
[F]xtc_validate_vatid_status.inc.php
[F]xtc_write_user_info.inc.php
[F]xtc_wysiwyg.inc.php

Unexpected error occurred...

Class "main_ORIGIN" not found