SaquCMS or PhoenixPHP..

[Timzzz]

Hi,


Everthing going to say now

'' you are nub to releas again phoenixphp edit''

No this time Danny en his mates made a nice CMS;p..


This CMS has updated it's normal phoenixphp.

- There is now a shoutbox that works automatically without refresh page. You can use :) or :(
- Your site has own avatar ( http://domain.com/avatar.php?figure=...e=sml&size=big )
- CMS is expliot Free
- If you are using your phone on site will take you to a special site before
- Habmoon header
- You can comment on news and also remove
- Housekeeping is neatly put in order / DJpaneel / Contact page
- There are other update's looking but in site!
- PixeltimeCMS style ...


Live demo : Saqu.nl
Download link : CMS :http://www.mediafire.com/?6sg6n30awdni3y6
Db : http://www.mediafire.com/?qjvdgur0vbg4kjt


100% Danny and his mates, Capostrike, Habmoon, Pixeltime owner

[MentaL]

[J4y2]

Translated English? or Still Dutch?
OT: The CMS is nice,but has exploit or not?

[Timzzz]

Translated English? or Still Dutch?
OT: The CMS is nice,but has exploit or not?

It is dutch i'm sorry for that, its expliotfree i hope soXDD

[Shoelace]

It looks quite nice however the frontpage is very crowded.

[Illumnia]

It is dutch i'm sorry for that, its expliotfree i hope soXDD

In your release notice you said that it is exploit free? Well, weird..

Again, a new PhoenixPHP edit.. Missing the old times..

[Zyntix]

Nice lie about the exploit 'free'...

[Phosfor]

Humm well, well, well,
maybe, just the style

here are some screenies :
http://i.imm.io/Eyqu.png
http://i.imm.io/EyqG.png
http://i.imm.io/EyrP.gif
http://i.imm.io/EysM.png
http://i.imm.io/Eyt2.png

Nice lie about the exploit 'free'...

Sure! All website, has exploits, ALL :D

[JordanEllis]

It tells me to update my flash player...it's already updated

And on internet explorer, it black screens

[The General]

It tells me to update my flash player...it's already updated

And on internet explorer, it black screens

Update webbuild derp.

@Zyntix You're sure?

[JordanEllis]

Could you do this for me please? I haven't done retros in a long time, and I'm tired :d

Spoiler:

<?php
require_once('./includes/core.php');
require_once('./includes/session.php');

$A = rand(10000,20000);
$B = rand(20000,30000);
$C = rand(30000,40000);
$D = "HABLUX";
$ticket = $D."-".$A.$B.$C;
$GLOBALS['serverdb']->query("UPDATE users SET auth_ticket = '".$ticket."' WHERE id = '".$user->id."'");
$myticket = $GLOBALS['serverdb']->fetch_assoc($GLOBALS['serverdb']->query("SELECT * FROM users WHERE id = '".$user->id."'"));

?>


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en" xmlns:og="http://opengraphprotocol.org/schema/" xmlns:fb="http://www.facebook.com/2008/fbml">
<head>
<meta http-equiv="content-type" content="text/html; charset=utf-8" />
<title><?php echo SHORTNAME; ?>: Client </title>

<script type="text/javascript">
var andSoItBegins = (new Date()).getTime();
</script>
<link rel="shortcut icon" href="<?php echo PATH; ?>/web-gallery/v2/favicon.ico" type="image/vnd.microsoft.icon" />
<link rel="alternate" type="application/rss+xml" title="Habbo: RSS" href="<?php echo PATH; ?>/articles/rss.xml" />
<script src="<?php echo PATH; ?>/web-gallery/static/js/libs2.js" type="text/javascript"></script>
<script src="<?php echo PATH; ?>/web-gallery/static/js/visual.js" type="text/javascript"></script>
<script src="<?php echo PATH; ?>/web-gallery/static/js/libs.js" type="text/javascript"></script>
<script src="<?php echo PATH; ?>/web-gallery/static/js/common.js" type="text/javascript"></script>
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/style.css" type="text/css" />
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/buttons.css" type="text/css" />
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/boxes.css" type="text/css" />
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/tooltips.css" type="text/css" />
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/changepassword.css" type="text/css" />



<script type="text/javascript">

var ad_keywords = "ss,xd,asd,j,gender%3Am,age%3A19";

var ad_key_value = "kvage=19;kvgender=m;kvtags=ss:j:xd:asd";

</script>

<script type="text/javascript">
document.habboLoggedIn = true;
var habboName = "cristiand";
var habboId = 4662389;
var facebookUser = true;
var habboReqPath = "";
var habboStaticFilePath = "<?php echo PATH; ?>/web-gallery";
var habboImagerUrl = "<?php echo PATH; ?>/habbo-imaging/";
var habboPartner = "";
var habboDefaultClientPopupUrl = "<?php echo PATH; ?>//client";
window.name = "d61bd4dc711d95b7e85b86bc2c1ce2a5a6a6286e";
if (typeof HabboClient != "undefined") { HabboClient.windowName = "d61bd4dc711d95b7e85b86bc2c1ce2a5a6a6286e"; }


</script>

<meta property="fb:app_id" content="163345683587" />

<noscript>
<meta http-equiv="refresh" content="0;url=/client/nojs" />
</noscript>
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/habboclient.css" type="text/css" />
<link rel="stylesheet" href="<?php echo PATH; ?>/web-gallery/v2/styles/habboflashclient.css" type="text/css" />
<script src="<?php echo PATH; ?>/web-gallery/static/js/habboflashclient.js" type="text/javascript"></script>
<script src="<?php echo PATH; ?>/web-gallery/static/js/identity.js" type="text/javascript"></script>
<script type="text/javascript">
FlashExternalInterface.loginLogEnabled = true;

FlashExternalInterface.logLoginStep("web.view.start");

if (top == self) {
FlashHabboClient.cacheCheck();
}
var flashvars = {
"client.allow.cross.domain" : "0",
"client.notify.cross.domain" : "1",
"connection.info.host" : "<?php echo $settings->find("hotel_ip"); ?>",
"connection.info.port" : "<?php echo $settings->find("hotel_port"); ?>",
"site.url" : "<?php echo PATH; ?>/",
"url.prefix" : "<?php echo PATH; ?>/",
"client.reload.url" : "<?php echo PATH; ?>/reauthenticate.php",
"client.fatal.error.url" : "<?php echo PATH; ?>/clientutils.php?key=error",
"client.connection.failed.url" : "<?php echo PATH; ?>/clientutils.php?key=error",
"external.variables.txt" : "<?php echo $settings->find("client_external_variables"); ?>",
"external.texts.txt" : "<?php echo $settings->find("client_external_texts"); ?>",
"productdata.load.url" : "<?php echo $settings->find("client_productdata"); ?>",
"furnidata.load.url" : "<?php echo $settings->find("client_furnidata"); ?>",
"use.sso.ticket" : "1",
"sso.ticket" : "<?php echo $myticket['auth_ticket']; ?>",
"processlog.enabled" : "1",
"account_id" : "<?php echo $user->id; ?>",
"client.starting" : "Welkom in Rabbo we zoeken de sleutel van het hotel...",
"flash.client.url" : "http://images.habbo.com/dcr/r63_none_1dc60c6d6ea6e089c6893ab4e0541ee0/",
"user.hash" : "46623892dafc35d8633b96cee565b76af2484c1",
"facebook.user" : "1",
"has.identity" : "1",
"flash.client.origin" : "popup"
};
var params = {
"base" : "<?php echo $settings->find("client_swf_path"); ?>",
"allowScriptAccess" : "always",
"menu" : "false"
};

if (!(HabbletLoader.needsFlashKbWorkaround())) {
params["wmode"] = "opaque";
}

FlashExternalInterface.signoutUrl = "https://rabbo-hotel.nl/me";

var clientUrl = "<?php echo $settings->find("client_dcr"); ?>";
swfobject.embedSWF(clientUrl, "flash-container", "100%", "100%", "10.0.0", "http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/flash/expressInstall.swf", flashvars, params);

window.onbeforeunload = unloading;
function unloading() {
var clientObject;
if (navigator.appName.indexOf("Microsoft") != -1) {
clientObject = window["flash-container"];
} else {
clientObject = document["flash-container"];
}
try {
clientObject.unloading();
} catch (e) {}
}
</script>

<meta name="description" content="Hablux Hotel: amici, divertimento, celebrità!" />
<meta name="keywords" content="habbo hotel, virtuale, mondo, social network, gratis, community, avatar, personaggio, chat, online, giovane, ragazzi, gioco di ruolo, giochi di ruolo, iscriviti, social, gruppi, forum, sicurezza, giocare, giochi, online, amici, giovani, rari, furni rari, collezione, creare, collezionare, connettersi, furni, mobili, cuccioli, animali, creazione stanze, condivisione, espressione, distintivi, badge, uscire, musica, VIP, celebrità, visite VIP, famosi, mmo, mmorpg, multiplayer" />



<!--[if IE 8]>
<link rel="stylesheet" href="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/v2/styles/ie8.css" type="text/css" />
<![endif]-->
<!--[if lt IE 8]>
<link rel="stylesheet" href="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/v2/styles/ie.css" type="text/css" />
<![endif]-->
<!--[if lt IE 7]>
<link rel="stylesheet" href="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/v2/styles/ie6.css" type="text/css" />
<script src="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/static/js/pngfix.js" type="text/javascript"></script>
<script type="text/javascript">
try { document.execCommand('BackgroundImageCache', false, true); } catch(e) {}
</script>

<style type="text/css">
body { behavior: url(/js/csshover.htc); }
</style>
<![endif]-->
<meta name="build" content="63-BUILD108 - 09.12.2010 11:58 - it" />
</head>

<body id="client" class="flashclient">
<div id="overlay"></div>
<img src="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/v2/images/page_loader.gif" style="position:absolute; margin: -1500px;" />

<div id="overlay"></div>
<div id="client-ui" >
<div id="flash-wrapper">
<div id="flash-container">
<div id="content" style="width: 400px; margin: 20px auto 0 auto; display: none">
<div class="cbb clearfix">
<h2 class="title">Aggiorna Flash Player all'ultima versione disponibile</h2>
<div class="box-content">
<p>Puoi scaricare e istallare Adobe Flash Player <a href="http://get.adobe.com/flashplayer/">da questa URL</a>. Puoi trovare le istruzioni di istallazione <a href="http://www.adobe.com/products/flashplayer/productinfo/instructions/">cliccando qui</a>.</p>
<p><a href="http://www.adobe.com/go/getflashplayer"><img src="http://images.habbo.com/habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/217/web-gallery/v2/images/client/get_flash_player.gif" alt="Get Adobe Flash player" /></a></p>
</div>
</div>
</div>
<script type="text/javascript">
$('content').show();
</script>
<noscript>
<div style="width: 400px; margin: 20px auto 0 auto; text-align: center">
<p>If you are not automatically redirected, please <a href="/client/nojs">click here</a></p>
</div>
</noscript>
</div>
</div>
<div id="content" class="client-content"></div>
</div>
<div style="display: none">
<div id="habboCountUpdateTarget">
4,727 Habbo in Hotel
</div>
<script language="JavaScript" type="text/javascript">
setTimeout(function() {
HabboCounter.init(600);
}, 20000);
</script>
</div>
<script type="text/javascript">
RightClick.init("flash-wrapper", "flash-container");
if (window.opener && window.opener != window && typeof window.opener.location.href != "undefined") {
window.opener.location.replace(window.opener.location.href);
}
$(document.body).addClassName("js");
HabboClient.startPingListener();
</script>

<div id="FB_HiddenIFrameContainer" style="display:none; position:absolute; left:-100px; top:-100px; width:0px; height: 0px;"></div>
<div id="fb-root"></div>

<script type="text/javascript">

window.fbAsyncInit = function() {

Cookie.erase("fbs_163345683587");

FB.init({appId: '163345683587', status: true, cookie: true, xfbml: true});

$(document).fire("fbevents:scriptLoaded");



};

window.assistedLogin = function(FBobject, optresponse) {



Cookie.erase("fbs_163345683587");

FB.init({appId: '163345683587', status: true, cookie: true, xfbml: true});



permissions = 'user_birthday,email';

defaultAction = function(response) {

fbConnectUrl = "/facebook?connect=true";

if (response.session) {

window.location.replace(fbConnectUrl);

}

};



if (typeof optresponse == 'undefined')

FBobject.login(defaultAction, {perms:permissions});

else

FBobject.login(optresponse, {perms:permissions});



};

(function() {

var e = document.createElement('script');

e.async = true;

e.src = document.location.protocol + '//connect.facebook.net/it_IT/all.js';

document.getElementById('fb-root').appendChild(e);

}());

</script> <script type="text/javascript">
FacebookIntegration.apiKey = "727e66fe4d5209d59d7271613cf07dc6";
FacebookIntegration.applicationId = "163345683587";
FacebookIntegration.applicationName = "habboit";
FacebookIntegration.badgeImagePath = "http://www.habbo.it/habbo-imaging/decorate/001";
FacebookIntegration.viralPresentImagePath = "http://www.habbo.it/habbo-imaging/decorate/005";
L10N.put("facebook.story.actionlink.text", "Gioca!");
L10N.put("facebook.story.name", "Messaggio da Habbo Hotel:");
L10N.put("facebook.story.registration.name", "Benvenuto in Habbo Hotel");
L10N.put("facebook.story.registration.description", "Inizia una nuova vita in Habbo Hotel!");
L10N.put("facebook.story.registration.prompt", "Ora sei un Habbo. Che ne pensi?");
L10N.put("facebook.story.achievement.prompt", "I tuoi amici muoiono dalla voglia di sapere cosa tu stia facendo!");
L10N.put("facebook.story.registration.caption", "{0} è appena entrato in Hotel!");
L10N.put("facebook.story.achievement.caption", "{0} ha appena sbloccato un Traguardo in Habbo.");
L10N.put("facebook.story.xmasviral.actionlink.text", "Open the package");
L10N.put("facebook.story.xmasviral.prompt", "Tell your friends you need their help!");
FacebookIntegration.initUI();
</script>
<iframe name="logframe" src="/logframe" width="0" height="0" frameborder="0" scrolling="no" marginwidth="0" marginheight="0" style="position: absolute; top:0; left:0"></iframe>
<iframe name="conversion-tracking" src="/conversion_tracking_frame" width="0" height="0" frameborder="0" scrolling="no" marginwidth="0" marginheight="0"></iframe>


<script src="http://www.google-analytics.com/ga.js" type="text/javascript"></script>
<script type="text/javascript">
var pageTracker = _gat._getTracker("UA-448325-20");
pageTracker._trackPageview();
window.setTimeout("pageTracker._setCustomVar(5,'facebook','client open',2);",2000);
</script>

<script type="text/javascript">
HabboView.run();
</script>

</body>
</html>

[Mininova]

Again a Rename of a Rename?

We Really need some new Ideas :D

[JordanEllis]

Update webbuild derp.

Updated webbuild to "habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/1273" yet it still white-screens.

[Zyntix]

Update webbuild derp.

@Zyntix You're sure?

I am sure, show me one website that is exploit free =]

[Mininova]

Challenge Accepted:
Look at the Hotel where im Technican (Rebbu.org) and test it for Exploits :D (Have my new Core System where every String is Checked :D)

[.::Arjan::.]

Eeumm the cms is ripped by tim.. Check for shells ;)

[sidney023]

Eeumm the cms is ripped by tim.. Check for shells ;)

Its not ripped, he stole it from the VPS.

[JordanEllis]

Updated webbuild to "habboweb/63_1dc60c6d6ea6e089c6893ab4e0541ee0/1273" yet it still white-screens.

Someone please help me out here

[tomad]

This CMS gives my mysqld proces a very high CPU, 90-100%. How is that possible?

[Illumnia]

Humm well, well, well,
maybe, just the style

here are some screenies :
http://i.imm.io/Eyqu.png
http://i.imm.io/EyqG.png
http://i.imm.io/EyrP.gif
http://i.imm.io/EysM.png
http://i.imm.io/Eyt2.png



Sure! All website, has exploits, ALL :D

Ehm, No.
I just want to remember ya, it's not hard to filter $_GET and $_POST requests of a website. That means that you're site is not vulnerable for Cross-site-scripting, SQL Injection, CSRF, Local File Inclusion etc.

The most websites are vulnerable because the server is shared (more domains on one server) that's vulnerable so you can back-connect it.

And, you will be always vulnerable because Apache is exploitable, Windows is exploitable, but not all the websites are exploitable.

[TIHOR]

''
Notice: A session had already been started - ignoring session_start() in C:\xampp\htdocs\global.php on line 36'' Staat er.

[dylanxx34]

Hello I need your cms but how do I get in housekeeping and nowhere says that the rank of systeembeerder there is not only for hotel manager?? Please put me out sorry for my english I'm Dutch

[xRichardx]

what rank i must to be have as i want admin? becouse i cant get a rank,i give myself rank 7 but than i have no rank,help me!
(sorry for my engilsch,i am real dutch)

[JohnnyW]

The design is to be desired.

[Sheldos]

So you added an imager and edited some images, and release ?
Sorry to say this, but you haven't done much, and btw no one uses phxphp anymore, so i have to say, tell your mate to work much harder next time.
Anyways, good luck in future.

[FR33Z]

Looks nice, maybe on the index align that login to the right centre instead of connected to the bottom. Good release, may translate if that's alright.