Jump to content

functions working on http://www but not on http://

WeirdMystery

By WeirdMystery
in PHP Coding Help

 Share

Recommended Posts

WeirdMystery Member

WeirdMystery

Posted
Posted

Hi guys, this is really confusing  :confused:. I'm just done with my site's forums.

 

http://www.pyrohawk.net

http://.pyrohawk.net

 

On the board.php and thread.php pages, it gets the query string "id", if it isn't there, it changes the Header to the main page "forum.php". However, if there is a query string, it checks if it exists in the database, if it does, then it lists the threads or boards.

 

The number checking function (is_numeric) and the mysql_real_escape_string function all work on the www.pyrohawk.com site but does not work on the http://pyrohawk.com site.

 

When ever I try to sql inject http://pyrohawk.net, it returns MySQL syntax error, however on www.pyrohawk.net, it does what it is supposed to do and changes the Header to the main page.

 

The error returns on :

 

Have a look at my thread.php source code.

 

The part where it checks if it exists is fine.

 

<?php
$get_thread_id = mysql_real_escape_string($get_id);
if ($_GET['action'] == "delete" && isset($_GET['post']))
{
if (isset($_SESSION['moderator']) && $_SESSION['moderator'] == 1)
{
	$post_id = $_GET['post'];
	$q = mysql_query("SELECT * FROM `posts` WHERE `id` = '$post_id'");
	$r = mysql_fetch_assoc($q);
	$board_id = $r[forum_parent_id];
		if ($r[main] == 1)
		{
		$q = mysql_query("DELETE FROM threads WHERE `id` = '$get_thread_id'") or die(mysql_error()); 
		$q = mysql_query("DELETE FROM posts WHERE `parent_id` = '$get_thread_id'") or die(mysql_error());
		echo "<script type=\"text/javascript\"> window.location = \"board.php?id=$board_id\" </script>";
		}
		else
		{
		$q = mysql_query("DELETE FROM posts WHERE `id` = '$post_id'") or die(mysql_error());
		echo "<script type=\"text/javascript\"> window.location = \"thread.php?id=$get_thread_id\" </script>";
		}
}

}
if ($_GET['action'] == "pin")
{
if (isset($_SESSION['moderator']) && $_SESSION['moderator'] == 1)
{
$q = mysql_query("UPDATE `threads` SET `pinned` = '1' WHERE `id` = '$get_thread_id'");
}

}

if ($_GET['action'] == "unpin")
{
if (isset($_SESSION['moderator']) && $_SESSION['moderator'] == 1)
{
$q = mysql_query("UPDATE `threads` SET `pinned` = '0' WHERE `id` = '$get_thread_id'");
}

}


$q = mysql_query("SELECT * FROM `threads` WHERE `id` = '$get_thread_id'");
$f = mysql_fetch_assoc($q);
$title = stripslashes($f[name]);
$pin_status = $f[pinned];
echo "<div class=\"box_title\">";
echo $title;
echo "</div>";
echo "<div class=\"location\">";
echo "<a href=\"board.php?id=" . $f['parent_id'] . "\">" . board_id_to_name($f['parent_id']) . "</a>" . " > " . $title;
echo "</div>";
echo "<a href=\"newreply.php?id=$get_thread_id\">Reply</a>";
$q = mysql_query("SELECT * FROM `posts` WHERE `parent_id` = '$get_thread_id' ORDER BY `main` DESC, `timestamp` ASC");
$counter = 0;;
while ($r = mysql_fetch_assoc($q))
{
$counter = $counter + 1;
echo "<div class=\"post_box\">";
echo "	<div class=\"author_wrap\">";
echo curve("down","#E1EBF2");
echo "		<div class=\"author\">";
echo id_to_name($r['author_id']);
echo "		</div>";
echo curve("up","#E1EBF2");
echo "	</div>";
echo "	<div class=\"content_wrap\">";
echo curve("down","#E1EBF2");
echo "		<div class=\"content\">";
echo stripslashes(nl2br(bb($r['body'])));
echo "		</div>";
echo curve("up","#E1EBF2");
echo "	</div>";
echo "	<div class=\"bar_wrap\">";
echo curve("down","#E1EBF2");							
echo "		<div class=\"bar\">";
echo "<a href=\"newreply.php?id=$get_thread_id\">Reply</a>";
	if (isset($_SESSION['moderator']) && $_SESSION['moderator'] == 1)
	{
		if ($counter == 1)
		{
			echo " | <a href=\"" . $_SERVER['REQUEST_URI'] . "&action=delete&post=$r[id]\">Delete</a>";
		}

		if ($pin_status == 0)
		{
		echo " | <a href=\"" . $_SERVER['REQUEST_URI'] . "&action=pin\">Pin Thread</a>";
		}
		else
		{
		echo " | <a href=\"" . $_SERVER['REQUEST_URI'] . "&action=unpin\">Unpin Thread</a>";
		}
	}
$post_id = $r[id];
echo "<div style=\"float:right;\">#$post_id, #$counter</div>";
echo "		</div>";
echo "		<div style=\"clear:both;\"></div>";
echo curve("up","#E1EBF2");	
echo "	</div>";
echo "</div>";
echo "<div class=\"post_spacing\"></div>";

}
$views_update = mysql_query("UPDATE threads SET views = views + 1 WHERE `id` = '$get_thread_id'");

?>

 

Everything looks fine to me. I am NOT sure if this is actually an PHP related error or an Apache related error. Since I have two virtual hosts setup that handle (www).pyrohawk.com/.net.

 

Everything works fine on the .com domain but on the .net domain the http://pyrohawk.com does not work.

 

For example: http://pyrohawk.net/board.php?id='\'\'\, returns an MySQL syntax error. Actually, every page on http://pyrohawk.net, none of the MySQL injection functions work.

 

I'm looking foward for a solution to this one. Thanks guys.  :)

 

WeirdMystery Member

WeirdMystery

Posted
  • Author
Posted

I looked through you board with http://pyrohawk.net and I could find any errors. Everything worked fine. I Couldn't post though(because I don't have an account).

 

Can you set up a dummy account to allow post to check that?

 

"everything worked fine." thats weird... I'm sure that " http://pyrohawk.net/board.php?id='\'\'\ " errors...

 

Dummy

User: test

Pass: password

WeirdMystery Member

WeirdMystery

Posted
  • Author
Posted

That is really weird, I just used a proxy on http://pyrohawk.net/board.php?id='\'\'\ and sure enough, it changed the header to the forums.php. Why am I just seeing this? I'm really confused.  :wtf:

 

ATTACHED IS AN IMAGE.

 

 

 

[attachment deleted by admin]

oni-kun Member

oni-kun

Posted
Posted

Remove all cache and restart your browser. What error possible 'injection' error can you be seeing?

  http://pyrohawk.net/board.php?id='\'\'\

Would become:

  http://pyrohawk.net/board.php?id=\'\\'\\'\

 

And shouldn't return much, as the DB wouldn't know what record that is, AS LONG AS YOU ARE USING mysql_real_escape_string.

WeirdMystery Member

WeirdMystery

Posted
  • Author
Posted

Remove all cache and restart your browser. What error possible 'injection' error can you be seeing?

  http://pyrohawk.net/board.php?id='\'\'\

Would become:

  http://pyrohawk.net/board.php?id=\'\\'\\'\

 

And shouldn't return much, as the DB wouldn't know what record that is.

 

Thanks, Restarted the browser, and it worked liked a charm, however I am still unsure of what caused this.

 

I've created other Dynamic sites that dealt with MySQL before. I've never seen an SQL Syntax error on this site before, I've always added the mysql_real_escape_char($input) to input before.

 

Thanks guys.

This thread is more than a year old. Please don't revive it unless you have something important to add.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.