2 $getget=isset($HTTP_GET_VARS["_getget"]);
3 $wherename=($getget ? "_getget" : "_postget");
4 $where=$HTTP_GET_VARS[$wherename];
5 unset($HTTP_GET_VARS[$wherename]);
7 foreach ($HTTP_GET_VARS as $key=>$val) {
8 if (ereg("^_priv_(postget.*)\$",$val,$matched)) {
9 if ($HTTP_SERVER_VARS["REMOTE_ADDR"]!="127.0.0.1")
11 ." REMOTE_ADDR=".htmlspecialchars($HTTP_SERVER_VARS["REMOTE_ADDR"])
12 .",key=".htmlspecialchars($key)
13 .",val=".htmlspecialchars($val)
17 $HTTP_GET_VARS[$key]=chop(join(" ",file("/home/short/priv/".$matched[1],false/*use_include_path*/)));
23 foreach ($HTTP_GET_VARS as $key=>$val) {
24 $where.="${first}$key=$val";
27 header("Location: $where");
29 header("Content-type: text/html");
30 print('<?xml version="1.0" encoding="iso-8859-1"?>'."\n");
32 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
33 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
34 <head><title>postget</title></head>
39 ."<body onload=\"window.location.href=document.links[0].href;\"><p>\n"
40 ."<a href=\"".htmlspecialchars($where)."\">get</a>\n"
45 ."<body onload=\"document.forms[0].submit();\">\n"
46 ."<form action=\"".htmlspecialchars($where)."\" method=\"post\"><p>\n");
47 foreach ($HTTP_GET_VARS as $key=>$val)
48 print("<input type=\"hidden\" name=\"".htmlspecialchars($key)."\" value=\"".htmlspecialchars($val)."\" />\n");
49 print("<input type=\"submit\" />\n");
50 print("</p></form></body>\n");