anyone knows how? thanks!
Attachment 126032
anyone knows how? thanks!
Attachment 126032
what is that? can you please explained it clearly.
when i try to click my game login from htmessage its pointing to "2"
when i checked the game login of Rom its pointing to "1"
where did you get this .php files?
Post up the .php file for us to see dude.
I got it from Development TantraOriginally Posted by Harrison
Was it this WebZoneGamerz.rar ?
If you could open up the gamelogin.php file and post the contents here that might be easier, I can't seem to find it from here. If not I'll try and keep looking around.
yes its there the gamelogin.php
hmmmmm, post the .php source code,
for your convenience gamelogin.php credit to ZoneGame
Attachment 126271
this is a patch, you will have to find some instruction on how to edit and use this file.
@marcuel
gamelogin.php is different from patch.php
Seriously? post the source not the file.
@marcuel
gamelogin.php
<?php
require '../config.php';
function antiinjection($str) {
$banwords = array ("'", ",", ";", "--");
if ( eregi ( "[a-zA-Z0-9]+", $str ) ) {
$str = str_replace ( $banwords, '', $str );
} else {
$str = NULL;
}
return $str;
}
$user_id = antiinjection($_GET['user_id']);
$user_pass = antiinjection($_GET['user_pass']);
$conn = mssql_pconnect($host,$user,$pass);
mssql_select_db($db,$conn);
$sql = "SELECT * FROM ACCOUNT WITH (NOLOCK) WHERE UserId = '$user_id' AND Activated = 1";
$res = mssql_query($sql,$conn);
if (mssql_num_rows($res)>0)
{
$sql = "SELECT isUserCreated,Password,ID,UserKey,Email,BlockedEndDate FROM ACCOUNT WITH (NOLOCK) WHERE UserId = '$user_id'";
$r2 = mssql_query($sql);
$userPass = mssql_result($r2,0,1);
$ID = mssql_result($r2,0,2);
$userKey = mssql_result($r2,0,3);
$email = mssql_result($r2,0,4);
$sql = "SELECT DATEDIFF(day, getdate(), BlockedEndDate) FROM ACCOUNT WITH (NOLOCK) WHERE UserId = '$user_id'";
$r3 = mssql_query($sql);
if (mssql_result($r3,0,0) >= 0)
{
$result = -100;
}
else
{
$sql = "UPDATE ACCOUNT SET Blocked = 0 WHERE UserId = '$user_id'";
mssql_query($sql);
$result = 0;
}
$result = mssql_result($r2,0,0);
mssql_close($conn);
}
else
{
$result = -99;
}
if (($result == -100) || ($result == -99))
{
echo '2';
die();
}
$user_pass_ok = strtolower($userPass);
//echo $user_pass_ok."<br>";
$user_pass_ok = "@".substr($user_pass_ok,0,1)."^".substr($user_pass_ok,1);
//echo $user_pass_ok."<br>";
$user_pass_ok = md5($user_pass_ok);
//echo $user_pass_ok."<br>";
if ($user_pass != $user_pass_ok)
{
echo '1';
die();
}
echo '0';
$AccDir = "D:\\Servers\\Kathana5\\DBSRV\\Account";
$password2 = strtolower(md5(strtolower($userPass)));
$ini=substr($user_id,0,1);
if (ereg("^[a-zA-Z]$",$ini)) {
$initial=strtoupper($ini);
}
else
{
$initial="etc";
}
$f=@fopen($AccDir."\\".$initial."\\".$user_id.".TAD",r) or die("Error");
$acc = @fread($f,7124);
$demopass=substr($acc,52,32);
$acc = str_replace($demopass,$password2,$acc);
$f2=@fopen($AccDir."\\".$initial."\\".$user_id.".TAD",w);
@fwrite($f2,$acc) or die("Error");
@fclose($f);
?>
