Speed CMS Edited By me (Jessy) (Safer phoenixPHP)

[Fearhotel]

So i had this CMS up on fearhotel.
downloaded it.
(there was exploits),

So my hotel got Scripted i went over the CMS,
File by File.
Patched as much as i could.
this is now probz now the most safest phoenixPHP Edited on the internet.
so i am releaseing it.

Screen shot index.php



Download The Cms to see what the Rest Looks like.
i did have it on fearhotel.com

Easy to set up just edit config.php,
add your swf files And your away to go.

here is the download link also

MEGAUPLOAD - The leading online storage and
file delivery service

(important) edit in home.php (important)

Api.php to /client if you don't have a api
enjoy and this will keep your Retro Safer

-Jessy

p,s this is a SPEEDCMS Edited
50% loris for PhoenixPHP
25% to ryan for releasing the speedcms
25% to me for patching as many exploits as i could.

[MentaL]

[Emu]

I'll be testing this now!

[pamoerk]

I get a white client...

[justhin11]

I'm really thankful that you posted this il post a screen cos i use this cms to make a big project :


This is not all but i just posted those screens

[iPukeEVO]

Pretty nice.. good job

[Subway]

Nice Jessy.

[AkhaMiI]

To Mutch Errors... 2/10

[FreeZa™]

Already found Exploits, Just sayin. But Good Work :D

[Pookie]

To Mutch Errors... 2/10

I agree..

You need to fix it. I've got a white client going on and it's not loading.

[401Error]

OMG so cool

[Subway]

I agree..

You need to fix it. I've got a white client going on and it's not loading.

Funny this cms works on iWabbo.com perfectly?

[XenoGFX]

Why not make a template class to handle all of the template stuff? also the way its coded, confusing... but that's just my opinion.

Hopefully it sheds some light onto the cms.
Thanks,
Xeno

[justhin11]

in step2.php are 13 exploits

[Subway]

Then stop bitching and fix them ^

[scottstamp851]

Or find them and use them maliciously against FearHotel. I've got no issues morally with that idea.

If OP is the author of this, I wouldn't be surprised to see many, many more than 13 issues. His spelling is atrocious, he's a nobody to the community and the fact that he's working on PhoenixPHP in the first place makes me think he's utterly retarded.

Besides that... good release? 8-)

update_room.php - line 13:

Code:

$query = mysql_query("UPDATE rooms SET caption = '".$core->EscapeString($_POST['caption'])."', owner = '".$core->EscapeString($_POST['owner'])."', state = '".$core->EscapeString($_POST['state'])."', model_name = '".$core->EscapeString($_POST['model_name'])."', password = '".$_POST['password']."', users_max = '".$core->EscapeString($_POST['users_max'])."' WHERE id ='".$core->EscapeString($_POST['id'])."'");

Notice unfiltered post for 'password'. Injectable. La la la...

[iTashia]

I agree..

You need to fix it. I've got a white client going on and it's not loading.

You need to update your habbo web build LOL. and get the WORKING CLIENT CODE ON Downloads - phoenix-php - Phoenix PHP CMS - Google Project Hosting

---------- Post added at 04:04 PM ---------- Previous post was at 04:03 PM ----------

I agree..

You need to fix it. I've got a white client going on and it's not loading.

Simply Update Habbo Web Build LOL? If still not working
Get this fix one here Downloads - phoenix-php - Phoenix PHP CMS - Google Project Hosting

[Gangnam]

As people keep saying, if you want to make this exploit free, rewrite it..

The thing is riddled.
Posted via Mobile Device

[TashiaLurvesYou]

It has few exploits.
But thanks for the release.

[azaidi]

this isn't a whole new cms called speedcms, this is a edited phoenixedit.

STOP THE RENAMES!

[Jmandupree]

This is a great cms i been looking around for it good relase..