Putako CMS

[Putako]

PutakoCMS

Hello ragezone'rs, I would like to introduce putakoCMS V1. This was made out of bordom and is not much but scripts. I personally think its pretty cool and useful. It is not much. I coded this 70% myself, it is pretty useful to some people who need something like this. Anyways here is the demo Simple CMS feel free to test it, because I know you guys are gunna post some fucked' up shit. For some reason the twitter had errors I think they changed there XML but no biggie I am working on it.. This is more of a shoutbox CMS but I am going to convert it into a blogging CMS. That will be in v2 of course.

COMING IN V2
Security - Deletion Notices - Deletion Tools - Account Management - Trash Bin - Add Ons - User friendly installer - Fixing exploits

• Me (Coding)
• Brandon (Suggestions + help coding v2)
• TopErwin (Fixing many OBVIUS errors)
• iPixelHotel (being a fag and hacking my account)

DOWNLOAD

http://www.freefilehosting.net/putako
Multiupload.com - upload your files to multiple file hosting sites!

EVERYONE GO INTO _class and open up simplecms.php and edit

PHP Code:

if ( $_POST['title'] )
      $title = mysql_real_escape_string($_POST['title']);
    if ( $_POST['bodytext'])
      $bodytext = mysql_real_escape_string($_POST['bodytext']);
    if ( $title && $bodytext ) {
      $created = time();
      $sql = "INSERT INTO testDB VALUES('$title','$bodytext','$created')";
      return mysql_query($sql);
    } else {
      return false; 


to :

PHP Code:

if ( $_POST['title'] )
      $title = strip_tags(mysql_real_escape_string($_POST['title']));
    if ( $_POST['bodytext'])
      $bodytext = strip_tags(mysql_real_escape_string($_POST['bodytext']));
    if ( $title && $bodytext ) {
      $created = time();
      $sql = "INSERT INTO testDB VALUES('$title','$bodytext','$created')";
      return mysql_query($sql);
    } else {
      return false; 


THIS IS TO PREVENT EXPLOITERS FROM REDIRECTING OR ANYTHING IT DISABLES TAGS.





upload more mirrors and i will give you candy

[MentaL]

[Livar]

Mirror's;

Multiupload.com - upload your files to multiple file hosting sites!

[Putako]

Mirror's;

Multiupload.com - upload your files to multiple file hosting sites!

Thanks whatta' ya think?

[Hexadecimal]

Live Demo - Offline.

[Putako]

Live Demo - Offline.

I appoligize, I am scripting with V2 and everyones fucking with exploits atm.. I am working on it :(

[I<3Bass]

No problem bro, it took you a bit/lot of your time away, and you released it.

[Putako]

No problem bro, it took you a bit/lot of your time away, and you released it.

I love to do it for the community, even if everyone hates it I just love PHP and the positive comments give me a self esteem boost.

---------- Post added at 01:53 PM ---------- Previous post was at 01:49 PM ----------

***************demo is back up i have disabled html and am adding a ragezone like text editor*****************************

[Hexadecimal]

I love the coding. It's almost like the way I code it. I don't use public functions though. I use (sometimes) classes, and I always use functions.

Looks nice. Well done.

-Apixen

[Putako]

Thanks.

---------- Post added at 02:25 PM ---------- Previous post was at 02:23 PM ----------

If you like it, just hit the like button

---------- Post added at 03:36 PM ---------- Previous post was at 02:25 PM ----------

Not trying to bump or anything.. but..bump ;p

[Aaron]

Nice CMS, if you're still trying to get rid of exploits, or learn new methods, you should look into MySQLi, it works wonders (if you use it correctly).

Aaron

[Putako]

Nice CMS, if you're still trying to get rid of exploits, or learn new methods, you should look into MySQLi, it works wonders (if you use it correctly).

Aaron

Yes this is mysql if you cared to go through the files ;p but I am bringing a new security concept in new v2 i will hash with sha5 and cd5
thanks for the post btw.

**EDIT**
LMFAO my bad, I didn't see the I.

[Putako]

If you guys enjoy my release, Please post and like !

[vLife]

Yes this is mysql if you cared to go through the files ;p but I am bringing a new security concept in new v2 i will hash with sha5 and cd5
thanks for the post btw.

No what he was saying that you should look into using MySQLi
This!
Btw the CMS looks great.

[Putako]

No what he was saying that you should look into using MySQLi
This!
Btw the CMS looks great.

Oh excuse my bad eyes ;P Thanks vlife!

---------- Post added at 05:00 PM ---------- Previous post was at 04:54 PM ----------

I have decided on something, I will make some reqquired things before you post eg email name lastname etc. Also it will log ips into the database along with the other information security reasons only of course. And I will be adding a WYSIWYG editor on the posting and the adminastrator has to approve before any posts are accepted. If you want in on the devolopment message me.

[SuperCode]

I'm currently working with Potaku to develop Version two. But in the meantime this is just a simple release. If you do not wish to have this layout around it. Here is the main required Code:

<?php

include_once('_class/simpleCMS.php');
$obj = new simpleCMS();

/* CHANGE THESE SETTINGS FOR YOUR OWN DATABASE */
$obj->host = 'localhost';
$obj->username = 'root';
$obj->password = '3124bk123';
$obj->table = 'phoenix';
$obj->connect();

if ( $_POST )
$obj->write($_POST);

if (isset($_GET['admin'])){
echo ( $_GET['admin'] == 1 ) ? $obj->display_admin() : $obj->display_public();
} else {
echo $obj->display_public();
}

?>

You'll also need another code of which is Simple CMS.php ( You'll have to create the file simpleCMS.php in a directory called _class

<?php

class simpleCMS {

var $host;
var $username;
var $password;
var $table;

public function display_public() {
$q = "SELECT * FROM testDB ORDER BY created DESC LIMIT 3";
$r = mysql_query($q);
$entry_display = null;
if ( $r !== false && mysql_num_rows($r) > 0 ) {
while ( $a = mysql_fetch_assoc($r) ) {
$title = stripslashes($a['title']);
$bodytext = stripslashes($a['bodytext']);

$entry_display .= <<<ENTRY_DISPLAY

<div class="post">
<h2>
$title
</h2>
<p>
$bodytext
</p>
</div>

ENTRY_DISPLAY;
}
} else {
$entry_display = <<<ENTRY_DISPLAY

<h2> This Page Is Under Construction </h2>
<p>
No entries have been made on this page.
Please check back soon, or click the
link below to add an entry!
</p>

ENTRY_DISPLAY;
}
$entry_display .= <<<ADMIN_OPTION

<p class="admin_link">
<a href="{$_SERVER['PHP_SELF']}?admin=1">Add a New Entry</a>
</p>

ADMIN_OPTION;

return $entry_display;
}

public function display_admin() {
return <<<ADMIN_FORM

<form action="{$_SERVER['PHP_SELF']}" method="post">

<label for="title">Title:</label><br />
<input name="title" id="title" type="text" maxlength="150" />
<div class="clear"></div>

<label for="bodytext">Body Text:</label><br />
<textarea name="bodytext" id="bodytext"></textarea>
<div class="clear"></div>

<input type="submit" value="Create This Entry!" />
</form>

<br />

<a href="display.php">Back to Home</a>

ADMIN_FORM;
}

public function write($p) {
if ( $_POST['title'] )
$title = mysql_real_escape_string($_POST['title']);
if ( $_POST['bodytext'])
$bodytext = mysql_real_escape_string($_POST['bodytext']);
if ( $title && $bodytext ) {
$created = time();
$sql = "INSERT INTO testDB VALUES('$title','$bodytext','$created')";
return mysql_query($sql);
} else {
return false;
}
}

public function connect() {
mysql_connect($this->host,$this->username,$this->password) or die("Could not connect. " . mysql_error());
mysql_select_db($this->table) or die("Could not select database. " . mysql_error());

return $this->buildDB();
}

private function buildDB() {
$sql = <<<MySQL_QUERY
CREATE TABLE IF NOT EXISTS content (
title VARCHAR(150),
bodytext TEXT,
created VARCHAR(100)
)
MySQL_QUERY;

return mysql_query($sql);
}

}

?>