PATH: var / www / clients / client1 / web1 / web / wp-content / plugins / wp-optimize / includes

<?php
if (!defined('ABSPATH')) die('No direct access allowed');

if (!class_exists('WP_Optimize_404_Detector')) :

class WP_Optimize_404_Detector {

/**
	 * Suspicious requests threshold
	 *
	 * @var int
	 */
	private $suspicious_request_count_threshold = 50;

/**
	 * Remove trivial requests older than hours
	 *
	 * @var int
	 */
	private $suspicious_trivial_request_ttl_in_hours = 24;

/**
	 * Remove suspicious requests older than hours
	 *
	 * @var int
	 */
	private $suspicious_request_ttl_in_hours = 672;
	
	/**
	 * How many suspicious requests count in total to show in the dashboard?
	 *
	 * @var int
	 */
	private $dashboard_alert_request_count_threshold = 100;
	
	/**
	 * Store the total count for each url, to be able to sort it later
	 *
	 * @var array
	 */
	private $total_count_per_url = array();

/**
	 * Class constructor
	 */
	private function __construct() {
		add_action('wpo_prune_404_log', array($this, 'prune_404_log'));
	}
	
	/**
	 * Initialize the class as a singleton
	 *
	 * @return WP_Optimize_404_Detector
	 */
	public static function get_instance() {
		static $_instance = null;
		if (null === $_instance) {
			$_instance = new self();
		}
		return $_instance;
	}

/**
	 * Handle 404 requests
	 *
	 * @return void
	 */
	public function handle_request() {
		$now = current_datetime()->getTimestamp();
		$request_timestamp = $now - ($now % 3600);

$url_data = isset($_SERVER['REQUEST_URI']) ? $this->parse_url(esc_url_raw(wp_unslash($_SERVER['REQUEST_URI']))) : false;

if (!$url_data || !isset($url_data['path']) || ('/' === $url_data['path'])) {
			return;
		}

$url = home_url($url_data['path']);
		
		$this->save_request_hour_row($request_timestamp, $url);
	}

/**
	 * Log an entry for 404 errors
	 *
	 * @param string $request_timestamp The moment the request is happening
	 * @param string $url			    Relative url to the URL being analyzed
	 * @return void
	 */
	private function save_request_hour_row($request_timestamp, $url) {
		global $wpdb;
		
		$log_table_name = esc_sql($this->get_table_name());

$referrer = isset($_SERVER['HTTP_REFERER']) ? esc_url_raw(wp_unslash($_SERVER['HTTP_REFERER'])) : "";

$safe_referrer = '';
		if ('' !== $referrer) {
			$referrer_parsed = $this->parse_url($referrer);
			$safe_referrer = (isset($referrer_parsed['scheme']) ? $referrer_parsed['scheme'] . '://' : '') .
							($referrer_parsed['host'] ?? '') .
							(isset($referrer_parsed['port']) ? ':' . $referrer_parsed['port'] : '') .
							($referrer_parsed['path'] ?? '') .
							(isset($referrer_parsed['query']) ? '?' . $referrer_parsed['query'] : '');
		}

$wpdb->query($wpdb->prepare("INSERT INTO `{$log_table_name}` SET `url` = %s, request_timestamp = %d, referrer = %s, request_count = 1 ON DUPLICATE KEY UPDATE request_count = request_count + 1", $url, $request_timestamp, $safe_referrer)); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2
	}

/**
	 * Remove trivial requests older than 24 hours, and suspicious requests after 4 weeks
	 *
	 * @return void
	 */
	public function prune_404_log() {
		global $wpdb;

$log_table_name = esc_sql($this->get_table_name());

// Remove old trivial requests
		$hs_to_remove_older = $this->suspicious_trivial_request_ttl_in_hours * 3600;
		$remove_date = time() - $hs_to_remove_older;

$wpdb->query($wpdb->prepare("DELETE FROM `$log_table_name` WHERE request_timestamp < %d AND request_count < %d", $remove_date, $this->suspicious_request_count_threshold)); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2

// Remove any type of old request
		$hs_to_remove_older = $this->suspicious_request_ttl_in_hours * 3600;
		$remove_date = time() - $hs_to_remove_older;

$wpdb->query($wpdb->prepare("DELETE FROM `$log_table_name` WHERE request_timestamp < %d", $remove_date)); // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2
	}

/**
	 * Get suspicious requests from DB grouped by url and referrer
	 *
	 * @return array
	 */
	public function get_suspicious_requests() {
		$all_suspicious_referrers = array();
		$by_referrer = $this->get_single_suspicious_requests_by_referer($all_suspicious_referrers);
		
		$by_url = $this->get_grouped_requests_by_url($all_suspicious_referrers);

$result = array_merge($by_url, $by_referrer);

usort($result, array($this, 'sort_suspicious_requests'));

$per_url = array();

foreach ($result as $item) {
			$per_url[$item->url][] = $item;
		}

return $per_url;
	}

/**
	 * Find requests that by themselves have a request count over the threshold
	 *
	 * @param array|null $all_suspicious_referrers Optional. By reference, will be populated with hashed referrers
	 * @return array
	 */
	private function get_single_suspicious_requests_by_referer(&$all_suspicious_referrers = null) {
		global $wpdb;
		$log_table_name = esc_sql($this->get_table_name());

$threshold = $this->suspicious_request_count_threshold;

$by_referrer = $wpdb->get_results(
			$wpdb->prepare("SELECT `url`,
									  SUM(IF(request_count < %d, 0, request_count)) AS total_count,
									  referrer,
									  MIN(request_timestamp) AS first_access,
									  MAX(request_timestamp) AS last_access,
									  COUNT(1) AS occurrences,
									  1 AS total_referrers,
									  'singles' AS row_type
									  FROM `$log_table_name` GROUP BY `url`, referrer HAVING total_count >= %d ORDER BY request_timestamp DESC", $threshold, $threshold)  // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2
		);
		
		foreach ($by_referrer as &$item) {
			$item->referrer = esc_html($item->referrer);
			$item->suspicious_referrers = 1;
			$item->non_suspicious_referrers = 0;
			
			$this->total_count_per_url[$item->url] = $item->total_count;

if (is_array($all_suspicious_referrers)) {
				$all_suspicious_referrers[] = substr(md5($item->referrer), 0, 6);
			}
		}

return $by_referrer;
	}

/**
	 * Find urls that if we sum the requests for all referrers, the result is greater than the threshold
	 *
	 * @param array $known_suspicious_referrers Hashed referrers to filter out from non-suspicious count
	 * @return array
	 */
	private function get_grouped_requests_by_url($known_suspicious_referrers) {
		global $wpdb;
		$log_table_name = esc_sql($this->get_table_name());

$threshold = $this->suspicious_request_count_threshold;

$known_suspicious_referrers = implode(',', array_unique($known_suspicious_referrers));

$by_url = $wpdb->get_results(
			$wpdb->prepare("SELECT `url`,
										SUM(request_count) AS total_count,
										'' AS referrer,
										MIN(request_timestamp) AS first_access,
										MAX(request_timestamp) AS last_access,
										COUNT(1) AS occurrences,
										(COUNT(DISTINCT(IF(%d < request_count, '--nonsuspcious--', referrer)))) AS suspicious_referrers,
										(SUM(IF(%d < request_count AND LOCATE(MD5(SUBSTRING(referrer,1,6)), %s) = 0, 1, 0))) AS non_suspicious_referrers,
										COUNT(DISTINCT(referrer)) AS total_referrers,
										'grouped' AS row_type
										FROM `$log_table_name` GROUP BY `url` HAVING 1 < occurrences AND %d <= total_count ORDER BY request_timestamp DESC", $threshold, $threshold, $known_suspicious_referrers, $threshold) // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2
		);
		
		foreach ($by_url as &$item) {
			$item->referrer = esc_html__('(any)', 'wp-optimize');

if (0 < $item->non_suspicious_referrers) {
				// Some non-suspicious referrers exist in the group, all those are grouped under `--nonsuspicious--`, so remove it from the suspicious count
				$item->suspicious_referrers = $item->suspicious_referrers - 1;
			}

$this->total_count_per_url[$item->url] = $item->total_count;
		}

return $by_url;
	}

/**
	 * Get suspicious requests from DB for a single request url, grouped by under/over threshold
	 *
	 * @param string $url The actual url we are fetching for
	 * @return array
	 */
	public function get_url_requests_by_referrer($url) {
		global $wpdb;

$log_table_name = esc_sql($this->get_table_name());

$return = array('over' => array(), 'under' => array());

$threshold = $this->suspicious_request_count_threshold;

$requests = $wpdb->get_results(
			$wpdb->prepare("SELECT SUM(request_count) AS total_count,
								referrer,
								MIN(request_timestamp) AS first_access,
								MAX(request_timestamp) AS last_access
								FROM `$log_table_name` " .  // phpcs:ignore WordPress.DB.PreparedSQL.InterpolatedNotPrepared -- $log_table_name uses esc_sql, %i not supported till WP 6.2
								"WHERE `url` = %s GROUP BY referrer, (%d < request_count)
								ORDER BY request_count DESC",
				$url,
				$threshold
			)
		);
		
		foreach ($requests as $request) {
			$group = $request->total_count >= $threshold ? 'over' : 'under';
			$return[$group][] = $request;
		}

return $return;
	}

/**
	 * Check if there are any suspicious requests logged, then return the count of unique URLs and total 404 requests
	 *
	 * @return array
	 */
	public function get_suspicious_requests_count() {
		$requests = $this->get_single_suspicious_requests_by_referer();

$result = array(
			'unique_urls'    => 0,
			'total_requests' => 0,
		);

if (empty($requests)) {
			return $result;
		}

if (!is_multisite() || (is_multisite() && is_network_admin())) {
			$result = $this->handle_single_site_or_network_admin_requests($requests, $result);
		} elseif (is_multisite() && defined('SUBDOMAIN_INSTALL') && SUBDOMAIN_INSTALL) {
			$result = $this->handle_subdomain_multisite_requests($requests, $result);
		} elseif (is_multisite()) {
			$result = $this->handle_subdirectory_multisite_requests($requests, $result);
		}
		return $result;
	}

/**
	 * This method run to count total 404 requests and unique URLs for single site and multi site network admin.
	 *
	 * @param array $requests requests save in db
	 * @param array $result   result array containing unique urls and total request count default values (zero)
	 *
	 * @return array
	 */
	private function handle_single_site_or_network_admin_requests($requests, $result) {

foreach ($requests as $req) {
			$result = $this->increment_result($req->total_count, $result);
		}

return $result;
	}

/**
	 * This method run to count total 404 requests and unique URLs for multi site sub-domain setup only (not for network admin).
	 *
	 * @param array $requests requests save in db
	 * @param array $result   result array containing unique urls and total request count default values (zero)
	 *
	 * @return array
	 */
	private function handle_subdomain_multisite_requests($requests, $result) {

$current_blog_id  = get_current_blog_id();
		$current_site_url = get_site_url($current_blog_id);
		$current_host     = $this->parse_url($current_site_url, PHP_URL_HOST);

foreach ($requests as $req) {
			$req_host = $this->parse_url($req->url, PHP_URL_HOST);

if ($req_host === $current_host) {
				$result = $this->increment_result($req->total_count, $result);
			}
		}

return $result;
	}

/**
	 * This method run to count total 404 requests and unique URLs for multi site sub-directory setup only.
	 *
	 * @param array $requests requests save in db
	 * @param array $result   result array containing unique urls and total request count default values (zero)
	 *
	 * @return array
	 */
	private function handle_subdirectory_multisite_requests($requests, $result) {

$current_blog_id  = get_current_blog_id();
		$current_site_url = get_site_url($current_blog_id);
		$current_host     = $this->parse_url($current_site_url, PHP_URL_HOST);
		$current_path     = trim((string) $this->parse_url($current_site_url, PHP_URL_PATH), '/');
		$other_paths      = array();
		$all_sites        = get_sites(array('fields' => 'ids'));

foreach ($all_sites as $site_id) {
			if ($site_id === $current_blog_id) {
				continue;
			}
			$site_path = trim((string) $this->parse_url(get_site_url($site_id), PHP_URL_PATH), '/');
			if (!empty($site_path)) {
				$other_paths[] = '/' . $site_path;
			}
		}

foreach ($requests as $req) {

$req_host = $this->parse_url($req->url, PHP_URL_HOST);
			$req_path = trim((string) $this->parse_url($req->url, PHP_URL_PATH), '/');

if ($req_host !== $current_host) {
				continue;
			}

if (empty($current_path)) {
				$is_sub_site_request = false;
				foreach ($other_paths as $sub_path) {
					if (0 === strpos('/' . $req_path, $sub_path)) {
						$is_sub_site_request = true;
						break;
					}
				}
				if ($is_sub_site_request) {
					continue;
				}
			} else {
				if (0 !== strpos('/' . $req_path, '/' . $current_path)) {
					continue;
				}
			}
			$result = $this->increment_result($req->total_count, $result);
		}

return $result;
	}

/**
	 * Returns the incremented result for unique urls and total requests
	 *
	 * @param int   $total_count total requests count (didn't type cast as $wpdb->get_results() doesn't guarantee it)
	 * @param array $result      result array containing unique urls and total request count
	 *
	 * @return array
	 */
	private function increment_result($total_count, $result) {
		$result['unique_urls']++;
		$result['total_requests'] += (int) $total_count;
		return $result;
	}

/**
	 * Returns the dashboard alert request count
	 *
	 * @return int
	 */
	public function get_dashboard_alert_request_count_threshold() {
		return $this->dashboard_alert_request_count_threshold;
	}

/**
	 * Returns the suspicious request count threshold
	 *
	 * @return int
	 */
	public function get_suspicious_request_count_threshold() {
		return $this->suspicious_request_count_threshold;
	}
	
	/**
	 * Returns the table name
	 *
	 * @return string
	 */
	private function get_table_name() {
		return WP_Optimize_Table_404_Detector::get_instance()->get_table_name();
	}
	
	/**
	 * Sorts the array by `url total count` DESC, `url` ASC, and `request total_count` DESC
	 *
	 * @param object $result_a
	 * @param object $result_b
	 *
	 * @return int
	 */
	private function sort_suspicious_requests($result_a, $result_b) {
		$a_url_total = $this->total_count_per_url[$result_a->url] ?? 0;
		$b_url_total = $this->total_count_per_url[$result_b->url] ?? 0;

$a = (PHP_INT_MAX - $a_url_total) . ' ' . $result_a->url . ' ' . (PHP_INT_MAX - $result_a->total_count);
		$b = (PHP_INT_MAX - $b_url_total) . ' ' . $result_b->url . ' ' . (PHP_INT_MAX - $result_b->total_count);

return $a < $b ? -1 : 1;
	}

/**
	 * Wrapper over `wp_parse_url` to handle a `false` response, in such case if component is -1 then we return empty array else empty string
	 * This wrapper always requests `wp_parse_url` the default return an array with all components found.
	 *
	 * @param string $url       The URL to be parsed
	 * @param int    $component The specific component to retrieve. Use one of the PHP predefined constants to specify which one. Defaults to -1 (= return all parts as an array).
	 *
	 * @return string|array
	 */
	private function parse_url($url, $component = -1) {
		$parsed = wp_parse_url($url, $component);

if (false !== $parsed && null !== $parsed) {
			return $parsed;
		}
		return (-1 === $component) ? array() : '';
	}
}

endif;

[-] class-updraft-logger-interface.php [edit]
[-] class-wp-optimize-updates.php [edit]
[-] class-updraft-smush-manager-commands.php [edit]
[-] class-updraft-abstract-logger.php [edit]
[-] class-wp-optimize-delay-js.php [edit]
[-] class-wp-optimize-table-management.php [edit]
[+] blockui
[-] class-wp-optimization.php [edit]
[-] class-wpo-onboarding.php [edit]
[-] class-updraft-logger.php [edit]
[-] class-updraft-ring-logger.php [edit]
[-] class-updraft-smush-manager.php [edit]
[-] class-wp-optimize-admin.php [edit]
[-] class-wp-optimizer.php [edit]
[-] class-wp-optimize-htaccess.php [edit]
[-] class-wp-optimize-transients-cache.php [edit]
[-] class-wpo-deactivation.php [edit]
[-] class-wp-optimize-utils.php [edit]
[-] class-updraft-email-logger.php [edit]
[-] class-wpo-image-utils.php [edit]
[-] class-wp-optimize-browser-cache.php [edit]
[-] class-wp-optimize-database-information.php [edit]
[-] class-wp-optimize-install-or-update-notice.php [edit]
[-] class-wpo-page-optimizer.php [edit]
[-] class-wp-optimize-performance.php [edit]
[-] class-wp-optimize-commands.php [edit]
[-] class-updraft-log-levels.php [edit]
[-] class-wp-optimize-notices.php [edit]
[-] class-wp-optimize-404-detector.php [edit]
[-] class-wpo-uninstall.php [edit]
[+] tables
[-] class-wpo-activation.php [edit]
[-] class-updraftcentral-wp-optimize-commands.php [edit]
[-] class-wp-optimize-server-information.php [edit]
[-] class-wp-optimize-options.php [edit]
[-] class-wp-optimize-preloader.php [edit]
[-] class-updraft-php-logger.php [edit]
[-] class-updraft-smush-task.php [edit]
[+] ..
[-] class-wp-optimize-http-error-codes-trait.php [edit]
[+] fragments
[-] class-re-smush-it-task.php [edit]
[-] class-updraft-file-logger.php [edit]
[-] class-wp-optimize-404-detector-cron.php [edit]
[-] class-wpo-ajax.php [edit]
[+] list-tables
[-] class-wp-optimize-system-status-report.php [edit]
[-] class-wp-optimize-gzip-compression.php [edit]
[-] updraftcentral.php [edit]
[-] class-wp-optimize-heartbeat.php [edit]
[-] backward-compatibility-functions.php [edit]

8:18 AM 12/29/2025 Vim Patior

Vim Patior

PHP Version : 7.4.30
+File +Directory

Uname : Linux web.kmline.de 5.4.59-9-rest #1 SMP Thu Aug 20 09:19:42 CEST 2020 x86_64

Path: ��/

Name	Size	PermissionAction

Coronatest.vip is under construction

Sorry, wir arbeiten gerade an der Seite

Danke für deine Geduld. Wir arbeiten gerade an der Website und sind in Kürze wieder zurück.