Bravo List
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

Bravo List (http://www.bvlist.com/index.php)
-   Torrent Trader (http://www.bvlist.com/forumdisplay.php?f=29)
-   -   account-login successful redirect script (http://www.bvlist.com/showthread.php?t=12143)

Napon 4th September 2019 20:35
Quote:
Originally Posted by fireknight (Post 54058)
@ Napon


Not getting into a fight with you - but it could be changed to work with TBDev 08.
If that's what you wanted to do.
Hell any code can be changed to work with any source.
Just depends on your time frame and coding skills.


Yes TBDev 08 is old code.
But end of day - it comes down to the site owners call - to use what ever code they want.


We ( coders ) do not like Xam or his code - because he uses others peoples code - claim it for his code - then encrypts it for his own gain.


But we do not blame people for using his source - Such is life.

Bump:

@fireknight im a coder like your self make my own code for a start i do not want the crap code above...if i want to make this mod it would not look like the above..i do not neeed any of it as ive made my own cores 2 of then..also the users on here think i have not think again there is one members on here who as seen my core and on the core so shoot the fuck up the want to be coders

LeeHowarth 8th September 2019 17:56
Quote:
Originally Posted by BamBam0077 (Post 54052)
Share your takelogin.php script please.

@LeeHowarth
For someone who developed TT you sure seem to either sound like your mum kicked your head in or simply your dad forgot to wear a condom :chch:
It is clear that i offended you, if your going to spit your dummy out at abit of criticism then you 100% are not a developer.

BamBam0077 10th September 2019 13:09
PHP Code:
<?php 

require_once("include/bittorrent.php"); 

if (!mkglobal("username:password")) 
    die(); 

dbconn(); 

function bark($text "Username or password incorrect"

  stderr("<center>Login failed !</center>"$text); 


$res mysql_query("SELECT id, passhash, secret, enabled FROM users WHERE username = " sqlesc($username) . " AND status = 'confirmed'"); 
$row mysql_fetch_array($res); 

if (!$row
    bark(); 

if ($row["passhash"] != md5($row["secret"] . $password $row["secret"])) 
    bark(); 

if ($row["enabled"] == "no"
    bark("<center>This account has been disabled.</center>"); 

// ADN MOD  PERMANENT LOGIN 
$expires = (int) $_POST["expires"]; 

if (!$expires or $expires <= or $expires 31556926) { 
 $expires 0x7fffffff
} else { 
 $expires time() + $expires


logincookie($row["id"], $row["passhash"], 1$expires);   
// END MOD  PERMANENT LOGIN 

/// and mod login return  
if (!empty($_POST["returnto"])) {  
 header("Location: $BASEURL$_POST[returnto]"); 
} else {  
 $successful true;  
 if($successful === true){   
   echo "<div style='background-color: #353939;border: 1px solid #666;color:green;'>  
           <text>Successful Message</text>  
           </div> <div style='padding: 0.1em;'></div>  
           <text>Thank You!, Accessing Account </text>   
            
           <script>  
            setTimeout(function () { window.location.href= 'my.php'; // the redirect goes here   
},5000); // 5 seconds   
</script>";   
} else {    
 header("Location: $BASEURL/my.php");  

///* end mod login return 
?>
https://www.bvlist.com/showthread.php?t=9784

Napon 10th September 2019 15:02
still shit coder

LeeHowarth 10th September 2019 18:34
Quote:
Originally Posted by BamBam0077 (Post 54075)
PHP Code:
<?php 

require_once("include/bittorrent.php"); 

if (!mkglobal("username:password")) 
    die(); 

dbconn(); 

function bark($text "Username or password incorrect"

  stderr("<center>Login failed !</center>"$text); 


$res mysql_query("SELECT id, passhash, secret, enabled FROM users WHERE username = " sqlesc($username) . " AND status = 'confirmed'"); 
$row mysql_fetch_array($res); 

if (!$row
    bark(); 

if ($row["passhash"] != md5($row["secret"] . $password $row["secret"])) 
    bark(); 

if ($row["enabled"] == "no"
    bark("<center>This account has been disabled.</center>"); 

// ADN MOD  PERMANENT LOGIN 
$expires = (int) $_POST["expires"]; 

if (!$expires or $expires <= or $expires 31556926) { 
 $expires 0x7fffffff
} else { 
 $expires time() + $expires


logincookie($row["id"], $row["passhash"], 1$expires);   
// END MOD  PERMANENT LOGIN 

/// and mod login return  
if (!empty($_POST["returnto"])) {  
 header("Location: $BASEURL$_POST[returnto]"); 
} else {  
 $successful true;  
 if($successful === true){   
   echo "<div style='background-color: #353939;border: 1px solid #666;color:green;'>  
           <text>Successful Message</text>  
           </div> <div style='padding: 0.1em;'></div>  
           <text>Thank You!, Accessing Account </text>   
            
           <script>  
            setTimeout(function () { window.location.href= 'my.php'; // the redirect goes here   
},5000); // 5 seconds   
</script>";   
} else {    
 header("Location: $BASEURL/my.php");  

///* end mod login return 
?>
https://www.bvlist.com/showthread.php?t=9784
That code is not secure. On older versions of PHP a header injection will be possible e.g:

%0DLocation:%20http://google.com/%0D

antimidas 10th September 2019 21:24
Quote:
Originally Posted by Napon (Post 54080)
still shit coder
better coder than you

BamBam0077 11th September 2019 00:42
Secure $msg inside queries duh :war:
https://www.php.net/manual/en/functi...ape-string.php

Update template system to avoid std's :smack:

*sqlesc($username,$id)


All times are GMT +2. The time now is 06:42.
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.