Help me please

Results 1 to 4 of 4
  1. 25-04-15 #1
    wolf77
    Enthusiast wolf77 is offline
    MemberRank
    Apr 2015 Join Date
    30Posts

    Help me please

    Hi! I have error there, idk what for error i have .. mean somebody hack me with one of they code.. Can you look it on there and fix for me maybe?

    1. <?php
    2. if (isset($_SERVER["HTTP_CF_CONNECTING_IP"])) {
    3. $_SERVER['REMOTE_HOST'] = $_SERVER["HTTP_CF_CONNECTING_IP"];
    4. }


    6. define('SQL_SERVER', '127.0.0.1');
    7. define('SQL_USER', 'root');
    8. define('SQL_PASS','PASS');
    9. define('SQL_DB', 'DB');


    11. function err($errstr = 'unknown')
    12. {
    13. @ob_end_clean();
    14. die('<h1>Error</h1><hr />' . $errstr . '<hr /><i>Xabbo</i>');
    15. }


    17. $__GET = array();


    19. foreach($_GET as $key => $value)
    20. {
    21. $remv = $value;

    23. $blackwords = array("select", "update", "delete", "truncate", "insert", "drop", "create");
    24. foreach($blackwords as $word)
    25. $remv = str_replace($blackwords, "", strtolower($remv));
    26. $__GET[$key] = mysql_real_escape_string(stripslashes($remv));

    28. }


    30. mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS) or err(mysql_error());
    31. mysql_select_db(SQL_DB) or err(mysql_error());


    33. $d = mysql_query('SELECT id FROM users WHERE vk = "' . mysql_real_escape_string($_GET["viewer_id"]) . '" LIMIT 1') or err(mysql_error());


    35. if (mysql_num_rows($d) > 0) {


    38. define('SSO_TICKET', sha1(rand(1000, 9999) . mysql_real_escape_string($_GET["viewer_id"])));
    39. mysql_query('UPDATE users SET auth_ticket = "' . SSO_TICKET . '", ip_last = "' . $_SERVER['REMOTE_HOST'] . '" WHERE vk = ' . mysql_real_escape_string($_GET["viewer_id"]) . ' LIMIT 1') or err(mysql_error());

    41. header("Location: client.php?ticket=" . SSO_TICKET);
    42. die();
    43. }
    44. ?>
    45. <!doctype html>




    48. </head>
    49. <body>


    51. </head>
    52. <style>
    53. body
    54. {
    55. text-align: center;
    56. background: #C0E3F0;
    57. padding: 240px 300px;
    58. line-height: 24px;
    59. font-family: Segoe UI;
    60. }
    61. </style>
    62. <h2>Выберите имя:<br />(имя нельзя будет поменять)</h2>
    63. <?php
    64. if (isset($_GET["username"])) {
    65. $username = mysql_real_escape_string(stripslashes($_GET['username']));
    66. echo (preg_match("^[a-zA-Z0-9]*$", $username));
    67. if ($_GET["username"] != $username) {
    68. echo '<div class="msg" id="ij_msg">Имя недоступно!</div>';
    69. } else if (!preg_match("/^[a-zA-Z0-9]*$/", $username)) {
    70. echo '<div class="msg" id="ij_msg">Разрешены только латинские символы и цифры.</div>';
    71. } else if ($username != "" && strlen($username) > 2 && strlen($username) < 17) {

    73. $q2 = mysql_query('SELECT null FROM users WHERE username = "' . mysql_real_escape_string($username) . '"') or die(mysql_error());
    74. if (mysql_num_rows($q2) != 0) {
    75. echo '<div class="msg" id="ij_msg">Имя занято!</div>';
    76. } else {
    77. if (isset($_GET["gender"]) && $_GET["gender"] == "female") {
    78. $gender = "F";
    79. $figure = "lg-720-82.hd-600-1.ch-635-1408.sh-725-1408.hr-545-42";
    80. } else {
    81. $gender = "M";
    82. $figure = "lg-285-82.ch-215-1408.hd-180-1.sh-290-1408.hr-100-61";
    83. }
    84. mysql_query('INSERT INTO users (username, vk, ip_last, ip_reg, account_created, last_online, look, gender) VALUES("' . mysql_real_escape_string($username) . '", "' . mysql_real_escape_string($_GET["viewer_id"]) . '", "' . $_SERVER["REMOTE_HOST"] . '", "' . $_SERVER["REMOTE_HOST"] . '", "' . time() . '", "' . time() . '", "' . $figure . '", "' . $gender . '")') or die(err(mysql_error()));;
    85. mysql_query('INSERT INTO user_info (user_id, bans, cautions, reg_timestamp, login_timestamp, cfhs, cfhs_abusive) VALUES ((SELECT id FROM users WHERE vk = "' . $_GET["viewer_id"] . '"), "0", "0", UNIX_TIMESTAMP(), UNIX_TIMESTAMP(), "0", "0")') or die(err(mysql_error()));;

    87. header('refresh: 0;');
    88. exit();
    89. }
    90. } else {
    91. echo '<div class="msg" id="ij_msg">Имя должно быть от 3 до 16 символов длинной!</div>';
    92. }
    93. }
    94. ?>
    95. <form method="get">
    96. <div class="ij_form">
    97. <div class="ij_reg_row">
    98. <input type="text" name="username" class="big_text" id="ij_first_name" value=""><br><br>
    99. <input type="radio" name="gender" value="male">Парень
    100. <input type="radio" name="gender" value="female">Девушка
    101. </div>
    102. <br/>
    103. <input type="hidden" name="viewer_id" value="<?php echo $_GET["viewer_id"] ?>">
    104. <div class="button_blue button_big ij_button">
    105. <button id="ij_submit" type="submit">
    106. <span class="ij_with_arr">Готово</span>
    107. </button>
    108. </div>
    109. </div>
    110. </form></div>
    111. </div>
    112. </body>
    113. </html>
    Reply With Quote Reply With Quote
  2. Check out our sponsor
    Help me please
  3. 25-04-15 #2
    3M1L
    apt-get install xcowsay 3M1L is offline
    MemberRank
    Jul 2012 Join Date
    SwedenLocation
    268Posts

    Re: Help me please

    Can you post the error message you got?
    Or are you asking if this script is vurneable?
    Reply With Quote Reply With Quote
  4. 25-04-15 #3
    wolf77
    Enthusiast wolf77 is offline
    MemberRank
    Apr 2015 Join Date
    30Posts

    Re: Help me please

    Yes.. script is vurneble or? Because nobody hack me with they.. from linje 33 to 43 i have a error i think,
    Reply With Quote Reply With Quote
  5. 26-04-15 #4
    Liam
    Gamma Spamma Liam is offline
    MemberRank
    Dec 2011 Join Date
    Down UnderLocation
    2,945Posts

    Re: Help me please

    Your $_GET isn't filtered, so it's inputting raw data. CLICK HERE.
    Reply With Quote Reply With Quote


« Previous Thread | Next Thread »

Advertisement