'; print ''; if ( isset( $_POST[ "groupby$i" ] ) ) { // must only be a "checked" value if this is set. print ''; } else { print ''; } if ( isset( $_POST[ "sortby$i" ] ) ) { // must only be a 'checked" value if this is set. print ''; } else { print ''; } $what = ''; // we accept only chars, number, space and . (for ip) in search field. if ( isset( $_POST[ "what$i" ] ) ) { $what = preg_replace( '/[^A-Za-z0-9\.\s]/', '', sanitize_text_field( wp_unslash( $_POST[ "what$i" ] ) ) ); } print ' "; print ''; } $orderby = ''; if ( isset( $_POST['oderbycount'] ) ) { $orderby = sanitize_text_field( wp_unslash( $_POST['oderbycount'] ) ); } $spider = ''; if ( isset( $_POST['spider'] ) ) { $spider = sanitize_text_field( wp_unslash( $_POST['spider'] ) ); } $feed = ''; if ( isset( $_POST['feed'] ) ) { $feed = sanitize_text_field( wp_unslash( $_POST['feed'] ) ); } ?>

' . esc_html__( 'Field', 'newstatpress' ) . '

' . esc_html__( 'Group by', 'newstatpress' ) . '

' . esc_html__( 'Sort by', 'newstatpress' ) . '

, ' . esc_html__( 'if contains', 'newstatpress' ) . '

name=searchsubmit>

' . esc_html__( 'Results', 'newstatpress' ) . ''; print " "; for ( $i = 1;$i <= 3;$i++ ) { if ( isset( $_POST[ "where$i" ] ) ) { $where_i = htmlspecialchars( wp_strip_all_tags( wp_unslash( $_POST[ "where$i" ] ) ), ENT_COMPAT, 'UTF-8' ); } if ( '' !== $where_i ) { print " '; } } if ( '' !== $groupby ) { print "'; } print " "; if ( '' !== $groupby ) { if ( isset( $_POST['spider'] ) && 'checked' === $_POST['spider'] && isset( $_POST['feed'] ) && 'checked' === $_POST['feed'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip, count(*) as totale FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed <> '' AND spider <> '' GROUP BY %s ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $groupby ), sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } elseif ( isset( $_POST['spider'] ) && 'checked' === $_POST['spider'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip, count(*) as totale FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed = '' AND spider <> '' GROUP BY %s ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $groupby ), sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } elseif ( isset( $_POST['feed'] ) && 'checked' === $_POST['feed'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip, count(*) as totale FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed <> '' AND spider = '' GROUP BY %s ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $groupby ), sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } else { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip, count(*) as totale FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s AND feed = '' AND spider = '' GROUP BY %s ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $groupby ), sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } } else { if ( isset( $_POST['spider'] ) && 'checked' === $_POST['spider'] && isset( $_POST['feed'] ) && 'checked' === $_POST['feed'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed <> '' AND spider <> '' ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } elseif ( isset( $_POST['spider'] ) && 'checked' === $_POST['spider'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed = '' AND spider <> '' ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } elseif ( isset( $_POST['feed'] ) && 'checked' === $_POST['feed'] ) { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s and feed <> '' AND spider = '' ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } else { // phpcs:disable -- Use placeholders and $wpdb->prepare(); found interpolated variable $table_name at FROM `$table_name` $qry = $wpdb->get_results( $wpdb->prepare( "SELECT urlrequested, agent, referrer, search, searchengine, os, browser, spider, ip FROM `$table_name` WHERE urlrequested like %s AND agent like %s AND referrer like %s AND search like %s AND searchengine like %s AND os like %s AND browser like %s AND spider like %s AND ip like %s AND feed = '' AND spider = '' ORDER BY %s LIMIT %d", '%' . $wpdb->esc_like( $_urlrequested ) . '%', '%' . $wpdb->esc_like( $_agent ) . '%', '%' . $wpdb->esc_like( $_refferer ) . '%', '%' . $wpdb->esc_like( $_search ) . '%', '%' . $wpdb->esc_like( $_searchengine ) . '%', '%' . $wpdb->esc_like( $_os ) . '%', '%' . $wpdb->esc_like( $_browser ) . '%', '%' . $wpdb->esc_like( $_spider ) . '%', '%' . $wpdb->esc_like( $_ip ) . '%', sanitize_sql_orderby( $orderby ), $limit_num ), ARRAY_N ); // phpcs:enable } } foreach ( $qry as $rk ) { for ( $i = 1;$i <= 3;$i++ ) { print ''; } print ''; } print '

" . esc_html( ucfirst( $where_i ) ) . '	" . esc_html__( 'Count', 'newstatpress' ) . '
'; if ( isset( $_POST[ "where$i" ] ) && 'urlrequested' === $_POST[ "where$i" ] ) { print esc_html( nsp_decode_url( $rk[0] ) ); } else { switch ( $_POST[ "where$i" ] ) { case 'agent': if ( isset( $rk[1] ) ) { print esc_html( $rk[1] ); } break; case 'referrer': if ( isset( $rk[2] ) ) { print esc_html( $rk[2] ); } break; case 'search': if ( isset( $rk[3] ) ) { print esc_html( $rk[3] ); } break; case 'searchengine': if ( isset( $rk[4] ) ) { print esc_html( $rk[4] ); } break; case 'os': if ( isset( $rk[5] ) ) { print esc_html( $rk[5] ); } break; case 'browser': if ( isset( $rk[6] ) ) { print esc_html( $rk[6] ); } break; case 'spider': if ( isset( $rk[7] ) ) { print esc_html( $rk[7] ); } break; case 'ip': if ( isset( $rk[8] ) ) { print esc_html( $rk[8] ); } break; } } print esc_html( $rk[9] ); print '

" . esc_html( ucfirst( $where_i ) ) . '

" . esc_html__( 'Count', 'newstatpress' ) . '

'; if ( isset( $_POST[ "where$i" ] ) && 'urlrequested' === $_POST[ "where$i" ] ) { print esc_html( nsp_decode_url( $rk[0] ) ); } else { switch ( $_POST[ "where$i" ] ) { case 'agent': if ( isset( $rk[1] ) ) { print esc_html( $rk[1] ); } break; case 'referrer': if ( isset( $rk[2] ) ) { print esc_html( $rk[2] ); } break; case 'search': if ( isset( $rk[3] ) ) { print esc_html( $rk[3] ); } break; case 'searchengine': if ( isset( $rk[4] ) ) { print esc_html( $rk[4] ); } break; case 'os': if ( isset( $rk[5] ) ) { print esc_html( $rk[5] ); } break; case 'browser': if ( isset( $rk[6] ) ) { print esc_html( $rk[6] ); } break; case 'spider': if ( isset( $rk[7] ) ) { print esc_html( $rk[7] ); } break; case 'ip': if ( isset( $rk[8] ) ) { print esc_html( $rk[8] ); } break; } } print esc_html( $rk[9] ); print '

'; print '

sql: ' . esc_html( $wpdb->last_query ) . '