\x20\40\x20\40 HEX
HEX
Server: Apache
System: Linux web1.jenscom.net 4.18.0-553.111.1.el8_10.x86_64 #1 SMP Sun Mar 8 20:06:07 EDT 2026 x86_64
User: sps (1059)
PHP: 8.3.30
Disabled: NONE
$ pwd: /home/sps/www/wp-content/plugins/nextgen-gallery/src/DynamicStylesheets/
Upload Files
File: /home/sps/www/wp-content/plugins/nextgen-gallery/src/DynamicStylesheets/Controller.php
<?php

namespace Imagely\NGG\DynamicStylesheets;

use Imagely\NGG\Display\View;
use Imagely\NGG\Util\Sanitization;

/**
 * Controller for dynamic stylesheets.
 */
class Controller {

	/**
	 * Handle dynamic stylesheet generation.
	 *
	 * @param bool $return_output Whether to return the output or print it.
	 * @return string|void The generated CSS if $return_output is true.
	 */
	public function index_action( $return_output = false ) {
		header( 'Content-Type: text/css; charset=' . get_option( 'blog_charset' ), true );

		if ( \C_NextGEN_Bootstrap::get_pro_api_version() < 4.0 ) {
			$manager = Manager::get_instance( 'all' );
			$manager->register( 'nextgen_pro_film', 'photocrati-nextgen_pro_film#nextgen_pro_film_dyncss' );
			$manager->register( 'nextgen_pro_grid_album', 'photocrati-nextgen_pro_albums#nextgen_pro_grid_album_dyncss' );
			$manager->register( 'nextgen_pro_list_album', 'photocrati-nextgen_pro_albums#nextgen_pro_list_album_dyncss' );
			$manager->register( 'nextgen_pro_blog', 'photocrati-nextgen_pro_blog_gallery#nextgen_pro_blog_dyncss' );
			$manager->register( 'nextgen_pro_thumbnail_grid', 'photocrati-nextgen_pro_thumbnail_grid#nextgen_pro_thumbnail_grid_dyncss' );
		}

		// Nonce verification is not necessary: this is not form data, but generated by NextGEN as part of its displayed
		// gallery customization for style.
		//
        // phpcs:disable WordPress.Security.NonceVerification.Recommended, WordPress.Security.ValidatedSanitizedInput.InputNotValidated, WordPress.Security.ValidatedSanitizedInput.MissingUnslash, WordPress.Security.ValidatedSanitizedInput.InputNotSanitized
		$data = isset( $_REQUEST['data'] ) ? Sanitization::recursive_stripslashes( wp_unslash( $_REQUEST['data'] ) ) : null;
		$name = isset( $_REQUEST['name'] ) ? Sanitization::recursive_stripslashes( wp_unslash( $_REQUEST['name'] ) ) : null;
		// phpcs:enable WordPress.Security.NonceVerification.Recommended, WordPress.Security.ValidatedSanitizedInput.InputNotValidated, WordPress.Security.ValidatedSanitizedInput.MissingUnslash, WordPress.Security.ValidatedSanitizedInput.InputNotSanitized

		if ( isset( $data ) && isset( $name ) ) {
			$manager = Manager::get_instance( 'all' );

			if ( \C_NextGEN_Bootstrap::get_pro_api_version() < 4.0 ) {
				$view = new \C_MVC_View( $manager->get_css_template( $name ), $manager->decode( $data ) );
			} else {
				$view = new View( $manager->get_css_template( $name ), $manager->decode( $data ) );
			}

			return $view->render( $return_output );
		}
	}
}
@ Telegram