whiteboikyle
-
Posts
286 -
Joined
-
Last visited
Posts posted by whiteboikyle
-
-
session_register is depreciated so don't use it now it is unneeded
Also strip tags/stripslashes is unneed if you are running mysql_real_escape
How would you register an error then to send back to the last page?
-
function login(){ global $config; ob_start(); // Define $myusername and $mypassword $myusername=$_POST['myusername']; $mypassword=$_POST['mypassword']; # Allows letters, numbers if(!preg_match('/^[a-zA-Z0-9]+$/i', $myusername)) { session_register(bad_char); $_SESSION['bad_char'] = "<center><font color='red' size='1'>Invalid Charcter; Only Letters Or Numbers Can Be Used!</font></center>"; header("location:login.php"); } // To protect MySQL injection (more detail about MySQL injection) $myusername = stripslashes($myusername); $mypassword = stripslashes($mypassword); $myusername = mysql_real_escape_string($myusername); $mypassword = mysql_real_escape_string($mypassword); $myusername = strip_tags($myusername); $mypassword = strip_tags($mypassword); $encrypt_password = md5($mypassword); $query = $config->query("SELECT * FROM members WHERE username='".$myusername."' and password='".$encrypt_password."'"); // Mysql_num_row is counting table row $count=mysql_num_rows($query); // If result matched $myusername and $mypassword, table row must be 1 row if($count==1){ // Register $myusernam session_register("myusername"); $_SESSION['myusername'] = $myusername; header("location:main.php"); } else { session_register(error); $_SESSION['error'] = "<center><font color='red' size='4'>Wrong Username or Password</font></center>"; header("location:login.php"); } ob_end_flush(); }Btw still if the Username/Password dont match it wont make a session
lol
-
$myusername = $_POST['username']; $_SESSION['myusername'] = $myusername;
The session value = the post value that is bad because I can put anything I want in there and it will set that session.
lol dude listen its a login form..
So once you put the username / password it does the mysql_real_escape string and also to checks to see if the username / password match
would you like to see the full code?
trust me you cant put "anything"
this is just an example
-
never ever ever set a session variable via a raw post data value.
I could inject any username I want via cURL and in theory be any user I want.
There is no security difference between GET and POST they are only different in their procedure of passing data
I dont understand what you mean by this..
The form for the login would look something like this
<table width="300" border="0" align="center" cellpadding="0" cellspacing="1" bgcolor=""> <tr> <form name="form1" method="post" action="process.php"> <td> <table width="100%" border="0" cellpadding="3" cellspacing="0"> <tr> <td colspan="4"><div align="center"><strong>Member Login </strong></div></td> </tr> <tr> <td width="68"><div align="right">Username</div></td> <td width="3">:</td> <td width="205"><input name="myusername" type="text" id="myusername" value=")pH("></td> <td width="205"> </td> </tr> <tr> <td><div align="right">Password</div></td> <td>:</td> <td><input name="mypassword" type="password" id="mypassword"></td> <td> </td> </tr> <tr> <td><input name="login" type="hidden" value="1"></td> <td> </td> <td><input type="submit" name="Submit" value="Login"></td> <td> </td> </tr> </table> </td> </form> </tr> </table> -
example
Class Process(){ function __constructor(){ if(isset($_POST['Login'])){ $this->Username(); } } function Login(){ global $config; $username = $_POST['username']; } }The $config would be
Class MySQLDB { var $connection; //The MySQL database connection /* Class constructor */ function MySQLDB(){ /* Make connection to database */ $this->connection = @mysql_connect(*****, *****, *****) or die(mysql_error()); @mysql_select_db(*****, $this->connection) or die(mysql_error()); } /** * query - Performs the given query on the database and * returns the result, which may be false, true or a * resource identifier. */ //Use this function as query("Query line of code"); function query($query){ return mysql_query($query, $this->connection); } }; $config = new MySQLDB;could the global $config become a problem?
-
if you want to get paranoid about it, which is never a bad idea when it comes to security, a little more security is to sanitize your POST data before using it in a query, with mysql_real_escape_string().
of course i do that but i was just doing a scenario..
Now what if you use your config in a function like Global $config
Could that become a problem?
-
Okay so if i had a login form of
Username:__________Password:__________
[Login]
and it went to a process.php
and if the login/password matched the query and it stored their session like so
$myusername = $_POST['username']; $_SESSION['myusername'] = $myusername;
the $_POST['username'] being the value of the username..
and when they go to the main.php and it checks to see if the $_SESSION['myusername'] isset()
Could it become they use some sort of main.php?PHPSESSID=theusername
or is that secure?
-
oooh shit i didn't know that.. i thought it erased all teh other values..
like [sep]1[sep]
i thought it just voided out the [sep] like they weren't even their.
so it would just be 1
-
listen i know what you guys are saying.. but my function ISN't WORKING
the foreach comes out BLANK
there is no value..
unless the return would make a value for the
die("--->".$themedal."<---");
????
-
die() STOPS PHP execution of a script completely and prints the argument given to it. It's usually used for certain errors. It's an alias of exit().
Also, I see you're checking for $medal1, but I can't figure out where you initialized that variable at all.
That doesn;t matter right now i am testing the foreach and its still echoing nothing so atm that doesn't matter
-
I am 17 and my friend is 18.. lol for a 17 year i make good money at my job.. $20 an hour..
-
die() STOPS PHP execution of a script completely and prints the argument given to it. It's usually used for certain errors. It's an alias of exit().
Also, I see you're checking for $medal1, but I can't figure out where you initialized that variable at all.
duhh lol?
after
$dispmedals
add:
<?php return $dispmedals;
I dont need to do that it wont echo if $medalsid wont work?
-
function GetMedals($username){ global $config; $getNum = $config->query("SELECT * FROM `members` WHERE username = '$username'"); $getMedals = mysql_fetch_array($getNum); $medals = $getMedals['award']; $medalid = explode("[sep]", $medals); foreach($medalid as $themedal) { die("--->".$themedal."<---"); if($medal1 != "" AND ctype_digit($medal1)) { $getMedalInfo = $config->query("SELECT * FROM awards WHERE ID = '$medal'"); $medalInfo = mysql_fetch_array($getMedalInfo); $medalname = $medalInfo['award_name']; $medaldesc = $medalInfo['description']; $dispmedals .= "<img src='image.php?id=$medal' onmouseover=\"return overlib('<br><br>\[".$medaldesc."\]', CAPTION,'".$medalname."', WIDTH, 400, BGCOLOR, '#1B428F', FGCOLOR, '#EEE9BF');\" onmouseout=\"return nd();\">  "; } } }if i do that the die function comes out ----><---- so there is no values..
if i do
function GetMedals($username){ global $config; $getNum = $config->query("SELECT * FROM `members` WHERE username = '$username'"); $getMedals = mysql_fetch_array($getNum); $medals = $getMedals['award']; die("--->".$medals."<---"); $medalid = explode("[sep]", $medals); foreach($medalid as $themedal) { if($medal1 != "" AND ctype_digit($medal1)) { $getMedalInfo = $config->query("SELECT * FROM awards WHERE ID = '$medal'"); $medalInfo = mysql_fetch_array($getMedalInfo); $medalname = $medalInfo['award_name']; $medaldesc = $medalInfo['description']; $dispmedals .= "<img src='image.php?id=$medal' onmouseover=\"return overlib('<br><br>\[".$medaldesc."\]', CAPTION,'".$medalname."', WIDTH, 400, BGCOLOR, '#1B428F', FGCOLOR, '#EEE9BF');\" onmouseout=\"return nd();\">  "; } } }it echos ---->[sep]1[sep]<----
and if i do this
function GetMedals($username){ global $config; $getNum = $config->query("SELECT * FROM `members` WHERE username = '$username'"); $getMedals = mysql_fetch_array($getNum); $medals = $getMedals['award']; $medalid = explode("[sep]", $medals); die("--->".$medalid."<---"); foreach($medalid as $themedal) { if($medal1 != "" AND ctype_digit($medal1)) { $getMedalInfo = $config->query("SELECT * FROM awards WHERE ID = '$medal'"); $medalInfo = mysql_fetch_array($getMedalInfo); $medalname = $medalInfo['award_name']; $medaldesc = $medalInfo['description']; $dispmedals .= "<img src='image.php?id=$medal' onmouseover=\"return overlib('<br><br>\[".$medaldesc."\]', CAPTION,'".$medalname."', WIDTH, 400, BGCOLOR, '#1B428F', FGCOLOR, '#EEE9BF');\" onmouseout=\"return nd();\">  "; } } }it echos ----->Array<-----
of course
but what i dont understand is why the foreach function is not working and not letting me echo out the Array's
Any help?
-
Well it wont be in OOP it will be basic coding.. It will take me probably a month max.. and its for a friend
-
Okay they want a Clan Website that has 3 usergroups.
Each have different options in their "console" (login)
Posting News
Adding Match's
Adding Win/Loss
Adding Articles
Editing The Sponsor Sections
Editing Content On Pages
-Aboutme
-Clan
-other page's
Slicing and coding template
Other basic stuff a Clan Needs
There is some Tabs that will require AJAX.
-
thanks it worked
-
the form
<form action='process.php' name='form1' method='post'> <table width='470' border='0' cellspacing='1' cellpadding='0' id='profile_table'> <tr bgcolor='#333333'> <td width='100' height='25' id='profile_table'><div align='right'>Main Game: </div></td> <td height='25' id='profile' style='padding-left:30px;'> <input name='MAX_FILE_SIZE' value='2097152' type='hidden'> <input name='image' type='file' size='34' accept='image/jpeg, image/gif, image/png'> </td> </tr> </table> </form>
process.php
if (isset($_FILES['image']) && $_FILES['image']['size'] > 0) { // Temporary file name stored on the server $tmpName = $_FILES['image']['tmp_name']; // Read the file $fp = fopen($tmpName, 'r'); $data = fread($fp, filesize($tmpName)); $data = addslashes($data); fclose($fp); $config->query("UPDATE `members` SET picture = '$data' WHERE username = '$username'"); }but the isset($_FILES['image']) is not working its saying its not set..
-
the "like" makes it search with in it?
-
if you have a query that results [sep]test[sep][sep][sep]test2[sep]
how can you do a search inside that to search for [sep]test[sep]
All the other forums get what i type except this 1.. lol i will post it on those ones..
-
okay well i have a query that goes like
"SELECT * FROM pages WHERE pages = 'news'"
well in this `pages` there is a column called class
it is a text based
the row is
pages : news
class : [sep]test[sep][sep]test2[sep]
now the user will have default [sep]test[sep]
I would like to know how i can search [sep]test[sep] in the column class?
-
yeah i found that out after thinking.. lol
i was like wait.. i gotta actually create the image.. i cant just echo it out from the blog on a informational page.. xD
So this is solved
-
i added the header to the very top of the page.. now its displaying this as an error
The image “http://67.190.21.209:6969/phobia/awards.php” cannot be displayed, because it contains errors.
-
if i take off the header(); it displays this
GIF89a�H�������������jjj&("$14+-$py%r{%qz&s|$kt*u~$dl!Y_$]d/y�!SY6}�=A#MR1jqBF9u|C��$GKJ��Q��;ejg��9SV(8:#$#,-=��8;*,[�� 1HJv��9NPJqsCWXT{|`��i��������V��T��P��G``KeeAJJ!!dqq���=CC^dd���jpp���������KNN��������Դ���������� 譲�������rtt���Z[[�����������������¬�����������Rkj���������w��gxw��CPO������ 311CAA$###"""!!! *)))((('''&&&%%%$$3221000///...---,,,+++**ljj?>>>===<<<;;;:::99988877766655544433TSSSRRRQQPOOLKKKJJHGGFEEDCCCBBA@@@??vuupookjjjiihgggfffeedcccbbbaaa```__^]]\[[[ZZZYYXWWVUU�����ٸ����������������������������������������������������������������������ǿ�����������������������������|||zzzwwwtttrrrmmmiiiddd___\\\YYYWWWVVVTTTQQQNNNMMMLLLIIIHHHGGGDDD���!�����,�����H����� H���U�������F���?�Q��lY2d �-s&m�T����E"ć_(�Š͛8s��ɳ�ϟ@� J��ѣH�*]Jt�ӧP����aąW<���5eU%�+�4n��没B�W�I�K��ݻx���˷�߿� L���È�Y̸��U/��t`K�Ś�-;9�C�b����[���~q̺��װc˞M���۸s��ͻ�����=�v��W�*�6k�jb�F�6��j������`����O�����ӫ/_\6+�O`&o11e.�*�/9z|��Ȳ�(���_U[���6��F��Th��R��2�>���[��GY1�'�6l���ED�4�h�8��<���@)�Di�H&�$��XH2mQ��T� ��y6�2�T�ŗ-�ቓI��:#�gWͲ�p�)�t�i���Q�"�L� *�bO=�j��r *�LbI&�@�� x̡?�����t��y<�Z� -3J?�H��a���$��v|20�\��[� L?�p�r#ʬ�&���6���F+��Vk��f��ղ�*�J=��k�覫.=� &�$�G>m�����.k�geB�G?�`�2^(�,���*��1+"ߌZ�s�#�� ��w��� �,��$��|�AH#�p�I%�� �=�R��欮=�0�o�A���m�,�7M�lA�wψs)�r��M���1�X�E=F��KtO/� ?�t�F����p�-��t�m��x����|���߀�7��F�ܑ� � #�dB ���;��g�y�XIA�=���N��M�4�gӝBʌS��p剸3%���(�Y���B�����̳Q� !��� p�$���ܓ��t/��-�p� 㧯���ފB��/����o���O>��H$�*�a�Q��L�H�J����7 ���o��C�r�t���F�&ʈ�`�$���nlpZg�rE�z'`��C8�������� l(�X��P\�$��*Z�X��>�@8B���ǘ�{8�⛠���4#np�" A��i#�8S��,Cvl�Ë�Ðd8� -�O|�Q?x |�S�@�0�~!��$��0�lX6��,����L�*W�ʓy��0 � D��{؇.w�(�Q!�h�>�a�pc��S�� -lC��|�:*D�78��f�a�aUCʱ�r���(ѹ<�`�<�\`����@�L�CͨF5:�E�C�h�HG*���m���2f�^��Q�c5�p�7��mp�*��=.c"�1H�m��C͊D���:�"��?��P� ��V����n�#ݧ p����hM+X ����p��\�J�t��HE<����zjHo����!Uh�q��d�B��PfU���]�!�p�BK���r"u�I�,`d�U�՟f��0��J5�u}�AW�j��֕��ͭnw��ނu�Ы_�+�B\֩p�r���oXĘB� 媔,Y��r�0x|!Ԉ�1�lx�|خ�QM�`C���UX�� 7�ͅ�z��_7����E��X��=���+[�`����'�]�:��ΰ�7��{��w`)���T܁�Ї��26���Gڲr{��+ Њ��j$d�Ū�8,�bD8�iZP�*��}(bC��+VL�*[Y���`���>�끠<�r���, f2�/(��e��x�?����Z�G���h ��{�>�7�A�c���Zҁ^17�QiXyḆX��=dZ�ḒDHmj}��TV�9���*�hD�S-�m�������M�b[�oD*D��f;;��r�W,�6��ȅ�&s�[��� T� o�p�{$�*Vl�FD�ƨ� }��� i������T�� r�C@����2���9��'�@F�x@�^�v����Y����^p X` �r�APpZ���2f�g@��^�X���NW��sTȯ�l�_�Z�؈u�x����A��p�g�1�c[��žC���{��]���u��N�(!�7����)$�Ϋx��������#`@�R ߢ 8�� �6����co���P�[���k3y��/8��$����(0`~���:�X��� �H��(`�D�y�f���� n��^���5@|��@p��/�Og,� )���z�g�(F#2�a C��B�1�B� ���^�� ��W0��v��;�� ��v��X�P�W�x����P�� �"��p �� �`h~sp ��0���y`y��o�c21 n�����n� �B�0 ��P �� ���0BU���v� , A�c�� op�f"��n{��WU~���y `��z��y4`|�7��e�gy�7|vh{��O��y�@ڇy�4~q�ypU)`y&�=��v)��p��~�@��'� �`~�0��jS� ��P��'СW���� !f�������x���� x �o`����4��8Hds�� �@��q�����L QY`�������p_ a���y�H� �0Qr}��R"S� � �Z ��@�C��0�� �� ����� ��(p���;$��ɑ��R�"�W�����U � Y�����-�P���"���Q�x%Ѐ� ) B��!�� ��&�W� ?А����p���E9�dY�fِ{` ɸ�l) �� rp���p��p 9�q�E#�4�ۤ気͵T�����e��������P<���_ �0�l4%�s�0�c�0��NP C{#t��U�/���01��i�}�;p��|�r=������C�e��i�� йlK�C�C�� �|��Kٹ� ��k0��KS�H�+�vW�0�����x�搻S»���R<�w� �@3X��Z��Y\���{s���kg�0W�1U0�0*Ős�e��0s0 cHx��]���0�*��}Y }��Ex�:Uȷ�\�0VpXZ�ǘ�ɘ츘\�����@�ɦ�ǡ��c�ǃ[ʧ��2�{���ɜ�ǭ�ʙ��} |�����`s��}��W� �\�ƜɈ�AW0��</r �,��˺k̽;�������z {��|����l�}��` ���<��< ��� ��͜ƪBBK7,Հ�x������ӠɅ`�� � �ؠA�� ��ԀǕˀ�Rw�s�?&�ͷ��� ���P��Ǥ��s�|0=��$���%`������7�̃�����O=�� pU���0%����1 ���͛a�}����۬���d]�fP�Lϣ��|� ���x�Q�w�O� wp�����~�+�p }}�}���^���U` 3�Y��} �a}]�� wP��wpdJ��}ڈ�� �����ڲm������d��}�1�I�� \���}��ʻ��$�e(p���$��w��o�ږ��܇�Ɍ���}�����Q=Ĉ�ջ���ݻ������=߈m �p��}�m-�}� ���p ձ�{� ���� v` 2� v`�����^� GU� N ��ZP�� ~�U�vp 2��`�� >��3�� ~�:�4�2��%@�M�%pU���]%� n�^9��J��,��^VW�0�@=V^�2��W��ܽ � gn� �ˠ v�� �g.,�P��AWnW��� o^�~舞�J������n z��|�>�y'%�z��z�� �{�{p;WP��ꬮ��YBh "�^���`XW` zp �|�. �\�P��굍��p��2�� ��Nw�>Ӭn� I�z@sW*��Wz����� ��#�C(��e���l�z�'0�� ���Kv���_�������������;%�������� ��������"?�"�� �jaAQ yP�U�y���1� A 1��:��Pwd� ;��^�Q�Y���41 A?�1?�S������ �TO�:����=N�4�C��-�C[��V��]�T?� �;O pT����m� �9o�j�{���� Aߞ�T;��@������9��臟��?�_�?� �������p�?Y(��U� \�� \w�Kv G(� �_��\'jU�1x�a�x�P�̀����ۊ��W�_���Z�u#�W`7}��P�\#p�� �u+���uܯ��G�@0��a �4P���%�xx�`������F�%W (��b$.p��[������ZL���-��5c� �����o(��r��S�U�^�Z��J]�~�k�Q�؝E���m-�4�ˠ_�<���[�>���M�=�� V�l�Ki���,h1F}�� ��+5]�3�wq^d�?~��t� �p�� llpuՎ1�v`�����%,�`���~,�`m>����> �;�{���p?L��M�bF�j��1{��6����� =D0��vI�A��A^Q����k�p�>�X��b?i��"���+�b(A��������c�麧�hZ���G t���x`��3� $h �*0ұ"OsJ)10�� ��5&��4 Z۲��\�m��lR�(x�@$'@�N��.��� `�B��?��>��ϰ��[ @����n,�4���HEO?5TQG%��M��4A�/�s�0f4X�E.Nf&�$W_6W���&Xcs�& �s��dD���ςG���c��[o�7\q�%�\s�E7]u�%�zr�7^y祷^{+��nW�X���=u�h��L�� ���a�����"b�^E.p�D1��AX�(glF���Wf�e�_�9f�g��f�o�9g�w��Qp�:h��&�h���$�]^�>� ���"Ɣ`2�0F�I:d��&�li).;m�����r����7�qɦ�V�Q�o��z 駧�z��>{��]]2?��q�E�L��>������F�oj��G1�o4�?�H$D��K" H��$D!�a�Lm˟��@�uG �0�V�"aE���p'�_�T�B�P�(�a�WB����C!��C���(!�G8��XD�DOx�O�D�8E*R�G�A��T�6ȁ�8FN�BX����a�эo�#�� O,��`�# B��a G8H�А&L�!��T�B��d$oa4J�HEAHNvғ"\�ZE����V���������A�B 1�Yq�����t���\���A�a&��]P���A*��2�&4�9Mj2�+��!�!�Jd��G*2U,B �i�d��b�Ըz*a G��;�O*α�Kģ#�>�1�� 3��HDx�����!II~"��hF5�ыb��H�BE*�P�h~�z�I��4RN��D��\K �Җ�@�bv�@�*(��_�X*@8c1�1E5�M�6���T� c��VU�?$�؈$��S�DX�:V��U .Y���j�AZ�:W�n��PB7L�V*D� N�B];X�V�t�cZPD��Q�l���y�T����:4��G�"��mhQR ��C�_)�wԧ ���K5~D�.�c� ���b|������]�NEn S�B�0�υ���Cmr��F�j�� �j»�ox��� �c`��1���n��x�� L@�(�_��b�=QF4b�~�fV��%�����n&��e.w��b���A3��\N̰eР.�v�e/�� L���, &h��_�F�� xd� P�r��. z� ��P�U���\��&���E4B�}����dC�����7�[��է�Ĩe=�$��i�;�(Ki�ӚR.���9�qg`�Ŵ�*ϱ���NFD��b D�#`����mnw���w��M](�4SV"�� .�c���w��M��;6@�r�o"A�A �@�1�`q�m %�C��6Ż?1 y*A S��8��wk� FP�1Q$:�JpB�rwoY�~�":��Hز����!�`�Z8\ܔ�y-�>t],�GGz���\��âw����w��l� o��ae7�/1x���߁ v@�2��:�� �5�O�0�Y��'��З���@#�1xSx�Xx�ൡ�#|c��X�T>A�/p� �0��ߝ��x�~�`�����-nq ����>�y��w��ͷu*G)b�H��O�M_���9�_�5D)x�RP���u�$��>�Ӻ"B"Ep"�b�Lx��+=!�3 ���K@�Ё�#H�K�2���3+�s�0�@�ˆ)���S�'��ػ�&pr �lXZ��*�+hA�k9�9E 0�K �3@r��\�Z����P����&l�-����5Sb�Y��11�j��c��%d��X�s�N0B�f��f�HX?H��Ђ��A$�B4�CD�DT�EdDs;�#ZE�*,�@LB�;2�$P�����p �!�5��=�CE����K(�e0�����*x{�=�0�#�W$B#��30Z>F\�H��+�HP�F�P�i�FLB�k��l\���c��A��3������XԵf��Y@�V�Bhd�g�9 2��iG8�~���Ȁȁ$Ȃ�ǽ#"�J7��K����Ȉ�ȉ���!���C���xH1p���� ɒ,I��H�tIVXA���'x���Rx�V���Z�['��-�ɡ��K��0�ˣ�:�ȑ�����HBpF�ʬ��4tʮ�J��F�*��Sj�Q���.�K���G��X��X���Z"�V��cP.H�$��4��D��T��d��$��*����D������3���2H�{X� �DI��ā��p�)��qXA̤�'� �����s�'��'�߄$����4�Lд�G(>r��d�y����NYG������ϰ$1^��C1L�2 a��s(�hx�Ux1�\�x(� k�����FX�x����%�5�E�U���ʅ<�� J�� ���PJ0� ����@ ́��=�-PZ@Q��/h�ep Bz��qX�oh�mѯ(JL(>$�#��#MPLȅtP�%MY���3�(���)�R�\���F��^C%�ɵ��H�-��H�#G�.͋d�#H�-H�c8�e��<��=��>��?�@T�ξ�DJ�Ю��I`�Fu�Gu�p��p�O��F��@H�TH%`R��IH�eЂIhQ�T/��'`T $UUu�*(�[-� 튢4�NRG���?Mu`R&��zx�ae�fu�a �1K�4�w2,%�o�H����HXSo�H�FZ-g( P�C̈Ox�w��xe�BU�Ce�D��E�UO���ȁ�sT@IhT4X�{�T4��-U.�]�Tq��Ym%hH=�)�F�$��I�+0�Ԏ��}}T]��}9_%0O�Ny5 U��X�ٚ�YY��E�ٝ��>�V4��/�:�c�/m�px�.�G�ӂN�:s�Fox\�����ڭ�ڮ�گ۰۱%[�VHd@N<���#Pk ���n��#0���e\&p.���-�o���m� �U椣�uٲ�L`���XH�]��`u�������8�K)�3���Ҵ����a��kA�+J82< �g`�a��t�p�������������%��%�#Z�I�@�u�I�T������00��Կ�_5�8�4����'����M&���m�#�I�S#( .`��#�m-p��I(����ŨI@]�Ԅ�$��4�_F��X������Y�LR���a� �5�CO�D)�T-j �oh�A��)�v@��DO��E(�jh�-��.��/�0�1&�26�1��EH��܄��WF}�T�9��:��;� ּㅽc?@�D�>&d?h/�8�l�a(d0�(�d/�?h-�cn0�I�c0����. �B�9�_U`T�0aVc�<�2�]x�X��Y��Z�a�m�\��].�fS㑺�,��#^�\-bh� c�^8]s�-`���i�^��l�f^F"5�D�Z�Jx���r6�sF�tV�u.�R>�=��D�UV�mn����|��YxT�:��h.�k�i%����s .�Ǽ(�t��x�e��zp�"n�-X���.�ʒ6�F�V�f�v�n���lc ��_:F����������&�6c�5�IH�K���i5ƣ�N�M�X�笶x8�Ja��k�,�.b�Ҡ K�y�:`�k3-�����i�q �[���&�R�SK���&��6��F��V��flŎi&R_L`[�U9��>����������������&��6m��iRaJP�#������>lO�(X@������mt�w��S��M�U�&��6n�.ka^�G��K,�/��d 0��d�O�.͵c��M0*�QK����6��>o$D��f��v����''B�ɮl9��̾�����������'�7�G���Ԇ_�ga�:Z��F� ��_"L��[�����qtxZ�^��{PK����w���nn���j�V�Ȃ:�ָ.-I�O���..\0)�V2}�$W��%g�&w�'��(��)�r��Sx�[xW��.��/��WH[ЅwR0?`j F�r&�e��o�#��E(׳�c�E`�l��d��OP^���g�Fw�G��H��I��J��K��L��M��N�tO�{\Ht��SGuW@�X��Z��\`^�x��Q�S8�T��KXq ��I�q�f�!�kM�\�OH��εb�O���$M`�Dt�˂al�m��n��o�p�q'�r7�sG�tW�ug�vw�w��p�?��P`��E�V��}��~��o�Y�uX]px��L��r�s�&Z��kil�f�������O�b6k�Ђ�7�G�W�g�w�p�L�?(y�]��W������zIpY�ݗo����x2<�� o�W�V}�vx1���N�;?�k����'�7�G�W�g�w�����U�z�P�v`5Z�/|X��YP\`�O��4n�W����r�+Z$��M���2$�l�.�k�bO� җ��g��w�ׇ�ؗ�٧�ڗ{���+��vc��mȄa��ш]�/�ѯ�j�?b�����������������~7 ���5�,���J�Zw�*���M��i�Oc`�²���������������M,h� 2l��!Ĉ':`-���dԸ��ǏEr��dF�!\a5i�ɘ#1j;U�ئjO��h�ŠB�-j�(ҤJ�2m���ȍ*g���T�&��Lw�� �J�:^���S�v���q�;Mr�ҭk�.z�����/��.l�0�Ċ+0�$��dۮ,iu�Ԯ]�)�ٖ%��m��9@��W�n��5�زgӮm�6�ܺw����7���; -
Nonono sorry my misunderstandment
the actual link
http://67.190.21.209:6969/phobia/awards.php
blocks all ips except mine for security reason.. but thats not the issue
i was saying that on that page all it does is echo that link
Just a security question
in PHP Coding Help
Posted
Well on the next page i go
if(session_is_registered(error)){ echo $_SESSION['error']; }and Andy-H
i will look into the "ctype_alnum"