kawaiipunk/laipower
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

updated plugin Connect Matomo version 1.1.5

Browse Source
This commit is contained in:
KawaiiPunk
2026-06-03 21:28:54 +00:00
committed by Gitium
parent 6e8ffa6f66
commit 1f3438440f
78 changed files with 13800 additions and 5314 deletions
Download Patch File Download Diff File Expand all files Collapse all files

26
wp-content/plugins/wp-piwik/proxy/proxy.php
View File

@ -126,6 +126,10 @@ if (strpos($path, 'piwik.php') === 0 || strpos($path, 'matomo.php') === 0) {
'cip' => getVisitIp(),
'token_auth' => $TOKEN_AUTH,
);
if (!isset($_GET['token_auth']) && !isset($_POST['token_auth'])) {
sanitizeTrackingOverrideParams($_GET);
}
}
$url = $MATOMO_URL . $path;
@ -293,8 +297,14 @@ function getHttpContentAndStatus($url, $timeout, $user_agent)
// if there's POST data, send our proxy request as a POST
if (!empty($_POST)) {
$postBody = file_get_contents("php://input");
if (!isset($_GET['token_auth']) && !isset($_POST['token_auth'])) {
$didSanitizePostParams = sanitizeTrackingOverrideParams($_POST);
if ($didSanitizePostParams) {
$postBody = http_build_query($_POST);
}
}
$stream_options['http']['method'] = 'POST';
$stream_options['http']['method'] = 'POST';
$stream_options['http']['header'][] = "Content-type: application/x-www-form-urlencoded";
$stream_options['http']['header'][] = "Content-Length: " . strlen($postBody);
$stream_options['http']['content'] = $postBody;
@ -365,6 +375,20 @@ function getHttpContentAndStatus($url, $timeout, $user_agent)
}
function sanitizeTrackingOverrideParams(&$params)
{
$didSanitizeParams = false;
$queryParamsToUnset = ['cdt', 'country', 'region', 'city', 'lat', 'long', 'cip'];
foreach ($queryParamsToUnset as $queryParamToUnset) {
if (isset($params[$queryParamToUnset])) {
unset($params[$queryParamToUnset]);
$didSanitizeParams = true;
}
}
return $didSanitizeParams;
}
function sendHeader($header, $replace = true)
{
headers_sent() || header($header, $replace);