fix: sanitize issue

csemazharul · csemazharul · commit 188f9c9aff51 · 2024-02-06T16:02:45.000+06:00
diff --git a/src/Http/IpTool.php b/src/Http/IpTool.php
@@ -60,7 +60,7 @@ private static function checkIP()
         } elseif (getenv('HTTP_FORWARDED')) {
             $ip = getenv('HTTP_FORWARDED');
         } else {
-            $ip = $_SERVER['REMOTE_ADDR'];
+            $ip = sanitize_text_field($_SERVER['REMOTE_ADDR']);
         }
 
         return $ip;
diff --git a/src/Http/Request/Request.php b/src/Http/Request/Request.php
@@ -103,7 +103,7 @@ public function body()
 
     public function method()
     {
-        return $_SERVER['REQUEST_METHOD'];
+        return sanitize_text_field($_SERVER['REQUEST_METHOD']);
     }
 
     public function contentType()
diff --git a/src/Http/Router/AjaxRouter.php b/src/Http/Router/AjaxRouter.php
@@ -27,30 +27,35 @@ public function registerRoutes()
 
     public function addRoute(RouteRegister $route)
     {
-        if (
-            !isset($_REQUEST['action'])
-            || strpos($_REQUEST['action'], $this->_router->getAjaxPrefix()) === false
-            || !\in_array(strtoupper($_SERVER['REQUEST_METHOD']), $route->getMethods())
+
+        $requestMethod = isset($_SERVER['REQUEST_METHOD']) ? sanitize_text_field($_SERVER['REQUEST_METHOD']) : '';
+        $action = isset($_REQUEST['action']) ? sanitize_text_field($_REQUEST['action']) : '';
+
+        if (strpos($action, $this->_router->getAjaxPrefix()) === false
+            || !\in_array(strtoupper($requestMethod), $route->getMethods())
         ) {
             return;
         }
 
-        $requestPath = str_replace($this->_router->getAjaxPrefix(), '', $_REQUEST['action']);
+        $requestPath = str_replace($this->_router->getAjaxPrefix(), '', $action);
         if (!$this->isRouteMatched($route, $requestPath)) {
             return;
         }
 
-        Hooks::addAction('wp_ajax_' . $_REQUEST['action'], [$route, 'handleRequest']);
+        Hooks::addAction('wp_ajax_' . $action, [$route, 'handleRequest']);
         if ($route->isNoAuth()) {
-            Hooks::addAction('wp_ajax_nopriv_' . $_REQUEST['action'], [$route, 'handleRequest']);
+            Hooks::addAction('wp_ajax_nopriv_' . $action, [$route, 'handleRequest']);
         }
 
         $this->_router->addRegisteredRoute($this->currentRouteName(), $route);
     }
 
     public function currentRouteName()
     {
-        return $_SERVER['REQUEST_METHOD'] . $_REQUEST['action'];
+        $requestMethod = isset($_SERVER['REQUEST_METHOD']) ? sanitize_text_field($_SERVER['REQUEST_METHOD']) : '';
+        $action = isset($_REQUEST['action']) ? sanitize_text_field($_REQUEST['action']) : '';
+        
+        return $requestMethod. $action;
     }
 
     /**

Original file line number	Diff line number	Diff line change
`@@ -60,7 +60,7 @@ private static function checkIP()`
`60`	`60`	`} elseif (getenv('HTTP_FORWARDED')) {`
`61`	`61`	`$ip = getenv('HTTP_FORWARDED');`
`62`	`62`	`} else {`
`63`		`- $ip = $_SERVER['REMOTE_ADDR'];`
	`63`	`+ $ip = sanitize_text_field($_SERVER['REMOTE_ADDR']);`
`64`	`64`	`}`
`65`	`65`
`66`	`66`	`return $ip;`
Original file line number	Diff line number	Diff line change
`@@ -103,7 +103,7 @@ public function body()`
`103`	`103`
`104`	`104`	`public function method()`
`105`	`105`	`{`
`106`		`- return $_SERVER['REQUEST_METHOD'];`
	`106`	`+ return sanitize_text_field($_SERVER['REQUEST_METHOD']);`
`107`	`107`	`}`
`108`	`108`
`109`	`109`	`public function contentType()`
Original file line number	Diff line number	Diff line change
`@@ -27,30 +27,35 @@ public function registerRoutes()`
`27`	`27`
`28`	`28`	`public function addRoute(RouteRegister $route)`
`29`	`29`	`{`
`30`		`- if (`
`31`		`- !isset($_REQUEST['action'])`
`32`		`- \|\| strpos($_REQUEST['action'], $this->_router->getAjaxPrefix()) === false`
`33`		`- \|\| !\in_array(strtoupper($_SERVER['REQUEST_METHOD']), $route->getMethods())`
	`30`	`+`
	`31`	`+ $requestMethod = isset($_SERVER['REQUEST_METHOD']) ? sanitize_text_field($_SERVER['REQUEST_METHOD']) : '';`
	`32`	`+ $action = isset($_REQUEST['action']) ? sanitize_text_field($_REQUEST['action']) : '';`
	`33`	`+`
	`34`	`+ if (strpos($action, $this->_router->getAjaxPrefix()) === false`
	`35`	`+ \|\| !\in_array(strtoupper($requestMethod), $route->getMethods())`
`34`	`36`	`) {`
`35`	`37`	`return;`
`36`	`38`	`}`
`37`	`39`
`38`		`- $requestPath = str_replace($this->_router->getAjaxPrefix(), '', $_REQUEST['action']);`
	`40`	`+ $requestPath = str_replace($this->_router->getAjaxPrefix(), '', $action);`
`39`	`41`	`if (!$this->isRouteMatched($route, $requestPath)) {`
`40`	`42`	`return;`
`41`	`43`	`}`
`42`	`44`
`43`		`- Hooks::addAction('wp_ajax_' . $_REQUEST['action'], [$route, 'handleRequest']);`
	`45`	`+ Hooks::addAction('wp_ajax_' . $action, [$route, 'handleRequest']);`
`44`	`46`	`if ($route->isNoAuth()) {`
`45`		`- Hooks::addAction('wp_ajax_nopriv_' . $_REQUEST['action'], [$route, 'handleRequest']);`
	`47`	`+ Hooks::addAction('wp_ajax_nopriv_' . $action, [$route, 'handleRequest']);`
`46`	`48`	`}`
`47`	`49`
`48`	`50`	`$this->_router->addRegisteredRoute($this->currentRouteName(), $route);`
`49`	`51`	`}`
`50`	`52`
`51`	`53`	`public function currentRouteName()`
`52`	`54`	`{`
`53`		`- return $_SERVER['REQUEST_METHOD'] . $_REQUEST['action'];`
	`55`	`+ $requestMethod = isset($_SERVER['REQUEST_METHOD']) ? sanitize_text_field($_SERVER['REQUEST_METHOD']) : '';`
	`56`	`+ $action = isset($_REQUEST['action']) ? sanitize_text_field($_REQUEST['action']) : '';`
	`57`	`+`
	`58`	`+ return $requestMethod. $action;`
`54`	`59`	`}`
`55`	`60`
`56`	`61`	`/**`