Content-Security-Policy

r23 · Oct 20, 2023 · 304ba27 · 304ba27
1 parent e3b46b4
commit 304ba27
Show file tree

Hide file tree

Showing 34 changed files with 382 additions and 69 deletions.
diff --git a/myoos/admin/admin_members.php b/myoos/admin/admin_members.php
@@ -647,5 +647,13 @@
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/categories.php b/myoos/admin/categories.php
@@ -1568,6 +1568,8 @@ function resetBoxes() {
 
 
     $products_count = 0;
+    $rows = 0;
+    $aDocument = [];
     if (isset($_GET['search'])) {
         $products_result = $dbconn->Execute("SELECT p.products_id, pd.products_name, p.products_quantity, p.products_reorder_level, p.products_image, p.products_price, p.products_base_price, p.products_base_unit, p.products_tax_class_id, p.products_date_added, p.products_last_modified, p.products_date_available, p.products_status, p.products_setting, p2c.categories_id, p.products_price_list, p.products_quantity_order_min, p.products_quantity_order_max, p.products_quantity_order_units, p.products_discount1, p.products_discount2, p.products_discount3, p.products_discount4, p.products_discount1_qty, p.products_discount2_qty, p.products_discount3_qty, p.products_discount4_qty, p.products_sort_order FROM " . $oostable['products'] . " p, " . $oostable['products_description'] . " pd, " . $oostable['products_to_categories'] . " p2c WHERE p.products_id = pd.products_id AND products_setting != 0 AND pd.products_languages_id = '" . intval($_SESSION['language_id']) . "' AND p.products_id = p2c.products_id AND pd.products_name like '%" . oos_db_input($_GET['search']) . "%' OR p.products_model like '%" . oos_db_input($_GET['search']) . "%' ORDER BY pd.products_name");
     } else {
@@ -1594,7 +1596,9 @@ function resetBoxes() {
         if (isset($pInfo) && is_object($pInfo) && ($products['products_id'] == $pInfo->products_id)) {
             echo '              <tr>' . "\n";
         } else {
-            echo '              <tr onclick="document.location.href=\'' . oos_href_link_admin($aContents['categories'], 'cPath=' . oos_prepare_input($cPath) . '&pID=' . $products['products_id']) . '\'">' . "\n";
+			$aDocument[] = ['id' => $rows,
+							'link' => oos_href_link_admin($aContents['categories'], 'cPath=' . oos_prepare_input($cPath) . '&pID=' . $products['products_id'])];
+			echo '                  <tr id="row-' . $rows .'">' . "\n";				
         } ?>
                 <td><?php echo '<a href="' . oos_catalog_link($aCatalog['product_info'], 'products_id=' . $products['products_id']) . '" target="_blank" rel="noopener"><button class="btn btn-white btn-sm" type="button"><i class="fa fa-search"></i></button></a>&nbsp;' . '#' . $products['products_id'] . ' ' . $products['products_name']; ?></td>
                 <td><?php echo oos_get_manufacturers_name($products['products_id']) ?></td>

diff --git a/myoos/admin/categories_slider.php b/myoos/admin/categories_slider.php
@@ -525,4 +525,13 @@ function oos_set_slider_status($slider_id, $status)
     echo '</script>' . "\n";
 }
 
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
 require 'includes/nice_exit.php';
diff --git a/myoos/admin/content_block.php b/myoos/admin/content_block.php
@@ -375,5 +375,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/content_page_type.php b/myoos/admin/content_page_type.php
@@ -336,5 +336,13 @@ function oosGetPageType()
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/countries.php b/myoos/admin/countries.php
@@ -249,5 +249,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/coupon_admin.php b/myoos/admin/coupon_admin.php
@@ -1128,7 +1128,7 @@
 
 <?php
 
-            $heading = [];
+		$heading = [];
         $contents = [];
 
         switch ($action) {
@@ -1235,5 +1235,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
 ?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/currencies.php b/myoos/admin/currencies.php
@@ -340,5 +340,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/customers.php b/myoos/admin/customers.php
@@ -929,5 +929,13 @@ function check_form() {
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
 ?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/customers_status.php b/myoos/admin/customers_status.php
@@ -286,7 +286,7 @@
               </tr>
             </table></td>
 <?php
-  $heading = [];
+$heading = [];
 $contents = [];
 
 switch ($action) {
@@ -396,5 +396,13 @@
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
 ?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/geo_zones.php b/myoos/admin/geo_zones.php
@@ -455,5 +455,13 @@ function update_zone(theForm) {
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/gv_queue.php b/myoos/admin/gv_queue.php
@@ -232,7 +232,7 @@
               </tr>
             </table></td>
 <?php
-    $unique_id = $gInfo->unique_id ?? '';
+$unique_id = $gInfo->unique_id ?? '';
 $date_created = $gInfo->date_created ?? '';
 $amount = $gInfo->amount ?? 0;
 
@@ -283,5 +283,13 @@
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/gv_sent.php b/myoos/admin/gv_sent.php
@@ -135,7 +135,7 @@
               </tr>
             </table></td>
 <?php
-    $coupon_id = $gInfo->coupon_id ?? '';
+$coupon_id = $gInfo->coupon_id ?? '';
 $coupon_amount = $gInfo->coupon_amount ?? 0;
 $customer_id_sent = $gInfo->customer_id_sent ?? '';
 $date_sent = $gInfo->date_sent ?? '';
@@ -197,5 +197,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/includes/classes/class_split_page_results.php b/myoos/admin/includes/classes/class_split_page_results.php
@@ -106,7 +106,7 @@ public function display_links($query_numrows, $max_rows_per_page, $max_page_link
                 $display_links .= PREVNEXT_BUTTON_PREV . '&nbsp;&nbsp;';
             }
 
-            $display_links .= sprintf(TEXT_RESULT_PAGE, oos_draw_pull_down_menu($page_name, '', $pages_array, '', 'onChange="this.form.submit();"'), $num_pages);
+            $display_links .= sprintf(TEXT_RESULT_PAGE, oos_draw_pull_down_menu($page_name, 'page', $pages_array, ''), $num_pages);
 
             if (($current_page_number < $num_pages) && ($num_pages != 1)) {
                 $display_links .= '&nbsp;&nbsp;<a href="' . oos_href_link_admin(basename($php_self), $parameters . $page_name . '=' . ($current_page_number + 1)) . '" class="splitPageLink">' . PREVNEXT_BUTTON_NEXT . '</a>';

diff --git a/myoos/admin/information.php b/myoos/admin/information.php
@@ -466,5 +466,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/languages.php b/myoos/admin/languages.php
@@ -924,5 +924,13 @@
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/manual_loging.php b/myoos/admin/manual_loging.php
@@ -201,7 +201,7 @@ function oos_set_login_status($man_info_id, $status)
                </table></td></tr>
            </table></td>
 <?php
-  $heading = [];
+$heading = [];
 $contents = [];
 
 switch ($action) {
@@ -256,5 +256,13 @@ function oos_set_login_status($man_info_id, $status)
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
 ?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/manufacturers.php b/myoos/admin/manufacturers.php
@@ -423,4 +423,13 @@ function oos_get_manufacturer_url($manufacturer_id, $language_id = '')
     echo '</script>' . "\n";
 }
 
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
 require 'includes/nice_exit.php';
diff --git a/myoos/admin/newsletters.php b/myoos/admin/newsletters.php
@@ -458,5 +458,13 @@
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/orders.php b/myoos/admin/orders.php
@@ -708,5 +708,13 @@ function oos_get_languages_id($iso_639_2)
 
 <?php
     require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';
diff --git a/myoos/admin/orders_status.php b/myoos/admin/orders_status.php
@@ -372,5 +372,13 @@ function oos_get_orders_status()
 
 <?php
 require 'includes/bottom.php';
-require 'includes/nice_exit.php';
-?>
+?>
+<script nonce="<?php echo NONCE; ?>">
+// Add an event listener to the select element
+document.getElementById('page').addEventListener('change', function() { 
+	// Submit the form 
+	this.form.submit(); 
+}); 
+</script>
+<?php
+require 'includes/nice_exit.php';