Retard... filter in uberCMS does mysql_real_escape_string(stripslashes(trim($input))).Quote:
Originally Posted by ησвяαιη
Printable View
Retard... filter in uberCMS does mysql_real_escape_string(stripslashes(trim($input))).Quote:
Originally Posted by ησвяαιη
Oh yeaaaah, facepalm for me :(Quote:
Originally Posted by Hejula
Feel free to slap me if you want...
Sick release Dave, Ill be sure to check it out in my downtime. Cheers :thumbup:
Thanks Connor,
Update: fixed Articles Exploit Only badgeshop left :)
Awesome sauce David! :ott1:Quote:
Originally Posted by Subway
Yeah Jak, just gotta escape $_GET in badgeshop :sleep:
:o I wished for a fixed zCms and I got it xD GG man I love it.
Edit : The db your provided, got errors =\
You will have to fix the ACH_ SQl if not.
Use this method: uber-phoenx2 (12).sql Upload that DB
Then Add SQL codes I provided in the release& upload this badgeshop SQL:
You can always change values_ ;]PHP Code:/*
Navicat MySQL Data Transfer
Source Server : localhost
Source Server Version : 50511
Source Host : 10.4.28.54:41752
Source Database : test
Target Server Type : MYSQL
Target Server Version : 50511
File Encoding : 65001
Date: 2011-04-12 23:51:13
*/
SET FOREIGN_KEY_CHECKS=0;
-- ----------------------------
-- Table structure for `badge_shop`
-- ----------------------------
DROP TABLE IF EXISTS `badge_shop`;
CREATE TABLE `badge_shop` (
`id` int(2) NOT NULL AUTO_INCREMENT,
`badge_id` varchar(6) NOT NULL,
`cost` int(1) NOT NULL,
PRIMARY KEY (`id`)
) ENGINE=InnoDB AUTO_INCREMENT=15 DEFAULT CHARSET=latin1;
-- ----------------------------
-- Records of badge_shop
-- ----------------------------
INSERT INTO `badge_shop` VALUES ('1', 'BOT', '2');
INSERT INTO `badge_shop` VALUES ('2', 'HS1', '1');
INSERT INTO `badge_shop` VALUES ('3', 'RU3', '2');
INSERT INTO `badge_shop` VALUES ('4', 'MTV02\r', '2');
INSERT INTO `badge_shop` VALUES ('5', 'VA014', '2');
INSERT INTO `badge_shop` VALUES ('6', 'EXE000', '2');
INSERT INTO `badge_shop` VALUES ('7', 'BRA08', '2');
INSERT INTO `badge_shop` VALUES ('8', 'BR131', '2');
INSERT INTO `badge_shop` VALUES ('9', 'BR137', '2');
INSERT INTO `badge_shop` VALUES ('10', 'NOC', '1');
INSERT INTO `badge_shop` VALUES ('11', 'SG4', '2');
INSERT INTO `badge_shop` VALUES ('13', 'FAN', '6');
INSERT INTO `badge_shop` VALUES ('14', 'LLL', '2');
Not a bad release man, at least it has all the essentials required 10/10.
Maybe try to add your own uber plugins just a suggestion?
Lol that would be nice If I had ideas :grr:
Good job. Good to see the auto WebBuild is still being used. :)
Maybe Give a working DB fully Working? Register wont work, Something about Field list
You didn't do what I tell you do in thread^ UPLOAD THE SQL's :sneaky2:
Follow the steps in the release and you'll find out how to fix db. :glare:
Oo, I filtered the 2 $_GET exploits, I'm a big man. // http://forum.ragezone.com/f353/zcms-...it-fix-784502/Quote:
Originally Posted by Subway
Bro, really... All you done was filter some stuff, any person who's not retarded could do this. I'm not hating, I'm just saying. You should look into filtering everything properly, so that UberCMS s super secure, you know what I mean. :D:
I liikee this