Bravo List
Register
Go Back   > Bravo List > Source Code > Archived Trackers > Torrent Trader
Reply
  #11  
Old 4th September 2019, 20:35
Napon's Avatar
Napon Napon is offline
Senior Member
 
Join Date: Feb 2016
P2P
Posts: 417
Default
Quote:
Originally Posted by fireknight View Post
@ Napon


Not getting into a fight with you - but it could be changed to work with TBDev 08.
If that's what you wanted to do.
Hell any code can be changed to work with any source.
Just depends on your time frame and coding skills.


Yes TBDev 08 is old code.
But end of day - it comes down to the site owners call - to use what ever code they want.


We ( coders ) do not like Xam or his code - because he uses others peoples code - claim it for his code - then encrypts it for his own gain.


But we do not blame people for using his source - Such is life.

Bump:

@fireknight im a coder like your self make my own code for a start i do not want the crap code above...if i want to make this mod it would not look like the above..i do not neeed any of it as ive made my own cores 2 of then..also the users on here think i have not think again there is one members on here who as seen my core and on the core so shoot the fuck up the want to be coders
__________________
https://uploadfiles.io/lgekz
Reply With Quote
The Following User Says Thank You to Napon For This Useful Post:
BamBam0077 (11th September 2019)
  #12  
Old 8th September 2019, 17:56
LeeHowarth's Avatar
LeeHowarth LeeHowarth is offline
TT
 
Join Date: Nov 2008
Posts: 100
Default
Quote:
Originally Posted by BamBam0077 View Post
Share your takelogin.php script please.

@LeeHowarth
For someone who developed TT you sure seem to either sound like your mum kicked your head in or simply your dad forgot to wear a condom
It is clear that i offended you, if your going to spit your dummy out at abit of criticism then you 100% are not a developer.
Reply With Quote
The Following User Says Thank You to LeeHowarth For This Useful Post:
BamBam0077 (11th September 2019)
  #13  
Old 10th September 2019, 13:09
BamBam0077's Avatar
BamBam0077 BamBam0077 is offline
Support
 
Join Date: Jul 2013
P2P
Posts: 303
Default
PHP Code:
<?php 

require_once("include/bittorrent.php"); 

if (!
mkglobal("username:password")) 
    die(); 

dbconn(); 

function 
bark($text "Username or password incorrect"

  
stderr("<center>Login failed !</center>"$text); 


$res mysql_query("SELECT id, passhash, secret, enabled FROM users WHERE username = " sqlesc($username) . " AND status = 'confirmed'"); 
$row mysql_fetch_array($res); 

if (!
$row
    
bark(); 

if (
$row["passhash"] != md5($row["secret"] . $password $row["secret"])) 
    
bark(); 

if (
$row["enabled"] == "no"
    
bark("<center>This account has been disabled.</center>"); 

// ADN MOD  PERMANENT LOGIN 
$expires = (int) $_POST["expires"]; 

if (!
$expires or $expires <= or $expires 31556926) { 
 
$expires 0x7fffffff
} else { 
 
$expires time() + $expires


logincookie($row["id"], $row["passhash"], 1$expires);   
// END MOD  PERMANENT LOGIN 

/// and mod login return  
if (!empty($_POST["returnto"])) {  
 
header("Location: $BASEURL$_POST[returnto]"); 
} else {  
 
$successful true;  
 if(
$successful === true){   
   echo 
"<div style='background-color: #353939;border: 1px solid #666;color:green;'>  
           <text>Successful Message</text>  
           </div> <div style='padding: 0.1em;'></div>  
           <text>Thank You!, Accessing Account </text>   
            
           <script>  
            setTimeout(function () { window.location.href= 'my.php'; // the redirect goes here   
},5000); // 5 seconds   
</script>"
;   
} else {    
 
header("Location: $BASEURL/my.php");  

///* end mod login return 
?>
https://www.bvlist.com/showthread.php?t=9784
__________________
\sudo,yum/

Last edited by BamBam0077; 10th September 2019 at 13:14. Reason: *missing link
Reply With Quote
  #14  
Old 10th September 2019, 15:02
Napon's Avatar
Napon Napon is offline
Senior Member
 
Join Date: Feb 2016
P2P
Posts: 417
Default
still shit coder
__________________
https://uploadfiles.io/lgekz
Reply With Quote
The Following User Says Thank You to Napon For This Useful Post:
BamBam0077 (11th September 2019)
  #15  
Old 10th September 2019, 18:34
LeeHowarth's Avatar
LeeHowarth LeeHowarth is offline
TT
 
Join Date: Nov 2008
Posts: 100
Default
Quote:
Originally Posted by BamBam0077 View Post
PHP Code:
<?php 

require_once("include/bittorrent.php"); 

if (!
mkglobal("username:password")) 
    die(); 

dbconn(); 

function 
bark($text "Username or password incorrect"

  
stderr("<center>Login failed !</center>"$text); 


$res mysql_query("SELECT id, passhash, secret, enabled FROM users WHERE username = " sqlesc($username) . " AND status = 'confirmed'"); 
$row mysql_fetch_array($res); 

if (!
$row
    
bark(); 

if (
$row["passhash"] != md5($row["secret"] . $password $row["secret"])) 
    
bark(); 

if (
$row["enabled"] == "no"
    
bark("<center>This account has been disabled.</center>"); 

// ADN MOD  PERMANENT LOGIN 
$expires = (int) $_POST["expires"]; 

if (!
$expires or $expires <= or $expires 31556926) { 
 
$expires 0x7fffffff
} else { 
 
$expires time() + $expires


logincookie($row["id"], $row["passhash"], 1$expires);   
// END MOD  PERMANENT LOGIN 

/// and mod login return  
if (!empty($_POST["returnto"])) {  
 
header("Location: $BASEURL$_POST[returnto]"); 
} else {  
 
$successful true;  
 if(
$successful === true){   
   echo 
"<div style='background-color: #353939;border: 1px solid #666;color:green;'>  
           <text>Successful Message</text>  
           </div> <div style='padding: 0.1em;'></div>  
           <text>Thank You!, Accessing Account </text>   
            
           <script>  
            setTimeout(function () { window.location.href= 'my.php'; // the redirect goes here   
},5000); // 5 seconds   
</script>"
;   
} else {    
 
header("Location: $BASEURL/my.php");  

///* end mod login return 
?>
https://www.bvlist.com/showthread.php?t=9784
That code is not secure. On older versions of PHP a header injection will be possible e.g:

%0DLocation:%20http://google.com/%0D

Last edited by LeeHowarth; 10th September 2019 at 18:40. Reason: Typo
Reply With Quote
The Following User Says Thank You to LeeHowarth For This Useful Post:
BamBam0077 (11th September 2019)
  #16  
Old 10th September 2019, 21:24
antimidas's Avatar
antimidas antimidas is offline
Senior Member
 
Join Date: Mar 2011
P2P
Posts: 31
Default
Quote:
Originally Posted by Napon View Post
still shit coder
better coder than you
Reply With Quote
The Following User Says Thank You to antimidas For This Useful Post:
BamBam0077 (11th September 2019)
  #17  
Old 11th September 2019, 00:42
BamBam0077's Avatar
BamBam0077 BamBam0077 is offline
Support
 
Join Date: Jul 2013
P2P
Posts: 303
Default
Secure $msg inside queries duh
https://www.php.net/manual/en/functi...ape-string.php

Update template system to avoid std's

*sqlesc($username,$id)
__________________
\sudo,yum/
Reply With Quote
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump



All times are GMT +2. The time now is 06:30. vBulletin skin by ForumMonkeys. Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2019, vBulletin Solutions Inc.