Jump to content

jazzman1

Staff Alumni
  • Content Count

    2,713
  • Joined

  • Last visited

  • Days Won

    12

Everything posted by jazzman1

  1. Barand will kill me if he sees my previous reply. Try next (already tested) select u.firstname, u.surname, a.userID, X.week as 'Max Week', X.score as 'Gameweek' from POINTS a inner join (select userID, week, score from POINTS a1 where week = (select max(week) from POINTS a2 where a2.userID = a1.userID) group by userID) as X ON X.userID = a.userID and X.week = a.week inner join USERS u ON u.userID = X.userID I needed to use a subquery after the where clause or you could use another inner join inside the first join table instead!
  2. Try, SELECT u.firstname, u.surname, a.userID, max_week, gameweek FROM POINTS a inner join (select userID, max(week) as max_week, score as gameweek from POINTS group by userID) as b ON a.userID = b.userID and b.max_week = a.week inner join USERS u ON u.userID = b.userID
  3. Barry, I think he is looking for stored procedures or trigers. fastsol, stored procedures provide SQL enhancements supporting variables, comments, exceptions, conditional testing and looping as programming elements.
  4. You're trying to fetch some data without inserting it? Where is your inserting query? Re-read mac_gyver's reply few times!
  5. Try (second page): <!doctype html> <html> <head> <title>Test array attendence</title> </head> <body> <table border="1"> <?php if (!empty($_GET['member'])) { $data = $_GET['member']; foreach (array_chunk($data, 2) as $row): ?> <tr> <?php foreach ($row as $value): ?> <td><?php echo htmlentities($value); ?></td> <?php endforeach; ?> </tr> <?php endforeach; }else { echo "Fail to get data from previous"; } ?> </table> <table><tr><td><?php echo count($_GET['member']) . " are attending this meeting tonight." ?></td></tr></table> </body> </html>
  6. We have to see the whole content of the header and footer php files. You're finding too sexy to call JS via PHP, don't you?
  7. Well, I have the same problem [newuser@centos-box ~]$ whoami newuser [newuser@centos-box ~]$ touch file.php [newuser@centos-box ~]$ ls -l file.php -rwxrwxr-x. 1 newuser newuser 0 Jun 16 07:55 file.php [newuser@centos-box ~]$ ./file.php bash: Permission denied
  8. Try to run echo "Hello World"; onto your local machine and tell us what's going on. I am not sure how proper is you local setup config.
  9. Yeap, you have a problem with your local setup. What happens if you're using mysl_connect instead mysqli_connect function?
  10. Use a "top" command to see all list of the current processes to this particular user then fetch the searching text using a "grep" command and kill the PID. [lxc@lxc-centos ~]$ top -u lxc | grep sshd 775 lxc 20 0 106m 2188 1520 S 0.0 0.0 0:00.13 sshd // kill the proccess id [lxc@lxc-centos ~]$ kill -9 775
  11. Do you have any problem with some other php function or only with this one? Could you run this script and give us the output (should be mysqli_connect function is not available). Try also the old mysql_connect instead mysqli_connect. <?php if (function_exists('mysqli_connect')) { echo "mysqli_connect function is available.<br />\n"; } else { echo "mysqli_connect function is not available.<br />\n"; }
  12. Without any additional arguments to the exeftool app and some redirect output files (using just for testing purposes) everything works fine to me. Here is an example using different php command-line apps (exec, eval and shell_exec). Try to set also an absolute path to exiftool. <?php $uploaddir = '/var/www/html/public_html/lxc/uploads/'; $uploadfile = $uploaddir . basename($_FILES['fileToUpload']['name']); if (move_uploaded_file($_FILES['fileToUpload']['tmp_name'], $uploadfile)) { //echo exec('/usr/local/bin/exiftool "'.$uploadfile.'"'); // Megapixels : 0.345 //eval('$array=' . `/usr/local/bin/exiftool -php -q $uploadfile`); //print_r($array); echo shell_exec('/usr/local/bin/exiftool "'.$uploadfile.'"'); } else { echo "Upload failed"; } Outputs:
  13. I did it. You had to tell me about that So, there is no way to login using curl to this page, at least I don't know how to do this task. Sorry....maybe somebody would help you here I will try later on.
  14. You are still continue to teach me how the server and client works. No problem, no offense is taken by me Now, I already know that there is not way php to detect if javascript is enabled / disabled in my browser when I make an ajax call to the server. So, back to the OP problem, here is the logic credentials: #!/bin/bash NAME='user' PASS='pass' referer='http%3a%2f%2fwww.bet365.com%2fxtra%2fen%2f' #curl --cookie-jar cjar --output /dev/null 'https://members.bet365.com/Members/lp/default.aspx' curl --cookie cjar --cookie-jar cjar 'https://members.bet365.com/Members/lp/default.aspx' --data "ctl00_AjaxScriptManager_HiddenField=&__EVENTTARGET=ctl00%24HeaderPlaceHolder%24HeaderControl%24Login%24Go&__EVENTARGUMENT=&__VIEWSTATE=%2FwEPDwULLTE0OTk1NjUxNDBkZM%2F826rAqHRdNx1mZCnaiwnKJMB7&__PREVIOUSPAGE=b_rpb_GyZeP1TGPyzN2vQPsEv-IJbnLMMZcHunMJW9JgkSoJrqm6glz93dN4lmrcFcwnZGiTdwRvEiEWZLRm3YVm7wU1&__EVENTVALIDATION=%2FwEWDQKgifDsDwLBpdiBBQKF1rTBCwKg14akCAL%2FnP6QCgK6iKG3CgLx%2BNLkCwLk5KvOAwLBnamGCALUi53qCALxrtCaBwLNvuHaCQK24aRbEcr2XoX5okTIDQsKsnM8zQd6ypk%3D&ctl00%24HeaderPlaceHolder%24ctl00%24hidSessionTimestamp=&ctl00%24HeaderPlaceHolder%24ctl00%24hidSessionHashvalue=&ctl00%24HeaderPlaceHolder%24ctl00%24hidSessionTimeoutDuration=&ctl00%24HeaderPlaceHolder%24ctl00%24hidSessionAppPath=&ctl00%24HeaderPlaceHolder%24HeaderControl%24Login%24Username=${NAME}&ctl00%24HeaderPlaceHolder%24HeaderControl%24Login%24InitialPassword=Password&ctl00%24HeaderPlaceHolder%24HeaderControl%24Login%24ProtectedPassword=${PASS}&txtPassword=${PASS}&txtUserName=${NAME}&txtTKN=7EDA0805C01A4AD3AA96165DA59A4461000003&txtLH=0f740fa6750303c821740356981f2e1123e37676&txtTS=20140919204322079&txtType=2&txtSTKN=695060f20f99447ea7406c3d37a75491&txtScreenSize=1280+x+800&txtFlashVersion=11.2.202" --referer=${referer} curl --cookie cjar --output ~/bet365.html 'http://www.bet365.com/extra/en/' I'm not finding myself in login action using curl. Ideas instead of teaching each others what is AJAX?
  15. Ok, do it for me and send me the login credentials.
  16. Jacques, who is talking about how the server treats the http post/get form? I am talking about that there is no way to make an ajax call without javascript and this could be easily checked (if js is enabled/disabled by php ( php is cross-side language)) CroNiX in the official docs of cURL, there is nothing about js and curl implementation. I don't think your example is possible to send data in this way by curl. muppet77, what is your username and password. Send me a PM if you want it, to check if it's possible to use curl and lately I'll post the solution to the forum.
  17. Ok, how will you send an ajax request (if the script is required) without javascript?
  18. This login page requires javascript to be enabled in your browser. No way to use cURL.
  19. In the process_applicants.php file you also need to call start_secure_session() before using login_check(), otherwise you will get a notice of undefined variables, only the start_secure_session() function contains session_start() itself in your script. Even the both function are in the same file, any variable used inside a function is by default limited to the local function scope. Also, when using a php header function you need to call an exit command at the end. header('Location:http://main_function_page.htm'); exit;
  20. Before looking the script into the login_check function, check first, if your login is being successful (or not) inside the login function and the both $_SESSION['user_name'] and $_SESSION['login_string'] variables are being defined. function login($user_name, $password, $mysqli) { // Using prepared statements means that SQL injection is not possible. if ($stmt = $mysqli->prepare("SELECT user_name, password, salt FROM user_profiles WHERE user_name = ? ")) { $stmt->bind_param('s', $user_name); // Bind "$user_name" to parameter. $stmt->execute(); // Execute the prepared query. $stmt->store_result(); // get variables from result. $stmt->bind_result($user_name, $database_password, $salt); $stmt->fetch(); // hash the password with the unique salt. $password = hash('sha512', $password . $salt); if ($stmt->num_rows == 1) { // Check if the password in the database matches // the password the user submitted. $short_password = substr($password,0,80); if ($database_password == $short_password) { // Password is correct! //echo "password is correct <br/>"; // Get the user-agent string of the user. $user_browser = $_SERVER ['HTTP_USER_AGENT']; // XSS protection as we might print this value $user_name = preg_replace("/[^a-zA-Z0-9_\-]+/", "", $user_name); $_SESSION['user_name'] = $user_name; $_SESSION['login_string'] = hash('sha512', $password . $user_browser); // echo "In login function user name: " . $_SESSION['user_name'] . "<br/>"; //echo "In login function login string: " . $_SESSION['login_string'] . "<br/>"; // Login successful. return true; } else { echo ("Password is incorrect!!!"); return false; } } else { // No user exists. echo "No user exists!!!"; return false; } } // end of if ($stmt = $mysqli->prepare.......) } EDIT: For debugging your database errors you need to use mysqli::$error function.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.