magebash
-
Posts
72 -
Joined
-
Last visited
Never
Posts posted by magebash
-
-
i did. I think i fixed it for good now, could you make sure?
-
ok now try.
-
im working on doing that right now
-
-
No like:
$var = mysql_real_escape_string($var);
$var = strip_tags('$var');
-
the alerts still worked. :'(
-
yes, but it seems that strip_tags didn't work...
-
jpeg, png, and gif
-
YES!
Any other issues you see?
-
i added strip tags to the rest of it. Try it now.
-
-
why not htmlentities()?
-
Oh i see the problem.
-
how? How can i block the alerts?
-
could you test it again? I think i fixed it.
-
on all $_GET things? Because I used it on $_POST
-
Should I use the htmlentities() function to do so?
-
Should I just not allow links?
-
i deleted everything in the table.
-
Go to http://possal.freehostia.com/members. From there login and go to view posts. You will see an edit option
-
You created 2000 rows with the <script> somehow.
-
Edit post for?
-
I am currently hosting this site on a free server until I get all the bugs out so I know it will be secure on a paid one. Could you please help me find some vulnerabilities and inform me about them. I know there are many still. Thanks. Here is the link: Click Here
Username: demo
Password: demo
-
Maybe:
echo "<a href='pest.php?$row[id]'>$row['Name']</a>";
But I am not sure what you are asking.
Test This Site
in Beta Test Your Stuff!
Posted
hmm... I have it so they only can upload images. I wonder why...