SwiftCMS ★ Groups ★ Homes ★ MUS ★ Phoenix 3.9.1 ★ R63B ★ Automated Shop ★ Bot Maker ★

[Atomcraft]

Now I just need a phoenix license^^

 

[Akimbo]

lol, another holocms EDIT. Don't call it your own cms then. get to bed.

 

[Eronisch]

I've looked in the source for a bit and found a file that seems to have some exploits, not really sure as i am still a beginner with php.

File: Roomshop

 

[Syndr0m]

The Register don't work? ._.

 

[Leon]

The Register don't work? ._.


View attachment 118131

I also fixed that for someone, make sure you give things in the users table default values, or turn off strict in your MySQL.ini. :

 

[Eronisch]

Register.php:

<?php $r = $_GET['r']; ?>
<?php $sql = mysql_query("SELECT * FROM users WHERE ip_last='$_SERVER[REMOTE_ADDR]'");

Exploit?

 

[abrooksie123]

Does it work it butterfly? what about butterstorm?

 

[iLayD]

Hi, i'm new, so sorry for this 'maybe awfull' question.
Client works, everything works... But when i go to the navigator and clicks on ´Me´ or ´My rooms´ i only get Loading...
And my emu looks like this:


Can anybody help me, please?

thanks alot, :blush:

 

[xHosts]

Would just advise people do not waste your time and bandwidth of this cms, heap of crap full of exploits, very buggy as for translated maybe visible text but none of the holocms has been translated

 

[abrooksie123]

Would just advise people do not waste your time and bandwidth of this cms, heap of crap full of exploits, very buggy as for translated maybe visible text but none of the holocms has been translated

What CMS should I use then?

 

[Durex]

Serious stop, its all scam, sure fun and interesting for noobs or to laugh for us, lol. But not really useful so it's CRAP...

 

[Rexstah]

Just thought I'd let you know as the main owner of Habtoon which ran on this CMS. That Ace/Krypt has a backdoor in this release so later on he can duck with hotels that use it. Remove: /templates/login/ses.php

Thank me later, I took the time to register here just to say that, lmao.

 

[Matthew]

Skimmed through the code. Very insecure and inefficient CMS, on one page I counted 26 mysql queries. Also noted 'mysql_real_escape_string' is thrown around alot, which does not ensure security. There's several ways around that function its self.

If you want to use this CMS, my recommendation is too re-write every query to MySQLi or PDO and prepair every query where a user-entered value is required to be input into the database, and look into either memcached or APC. Both work. Or do the right thing, and simply not use it.

 

[xHosts]

What CMS should I use then?

Well i would say any other cms including ubercms 2.0 is more secure and coded in a more user and server friendly way, Yes uber 2.0 had back doors but alot less than this.

 

[Emily]

A question: how can a CMS be R63 Old crypto or new crypto? I thought only emulators had something like that.
Anyways, looking good.

 

[Cemil Tanir]

Good release,
but where can i change with how many credits you start,

Sorry for my bad english.

 

[xHosts]

My advise to users : If you want (Ace) dropping your hotels database then proceed to use this cms if you want your hotel to be safe I would suggest REVCMS it may have less features but its safter

 

[Gangnam]

A question: how can a CMS be R63 Old crypto or new crypto? I thought only emulators had something like that.
Anyways, looking good.

They can't technically.. but they can support post/new-crypto.

 

[FullmetalPride]

Has lime fixed this yet? :O omg I hope so (Not)! I wanna take down my first retro ;]

 

[CookieMonst]

Ug... Another holo edit.