TextScape

[Username:]

I'm making a game in PHP (I just started it yesterday, so keep in mind much isn't done) And so far I've done the following:

• Registration + Login
  
• AJAX Chat
  
• Admin CP
  

 

I'm not sure how secure I've made it, but I've patched most security holes I'm aware of/found.

 

 

If you could, please try to hack it etc. THX

 

Proof of ownership:

65.75.244.181/lolgaem/proof.txt

 

 

Site:

65.75.244.181/lolgaem/

[ttocskcaj]

On 1st visit:

Notice: Undefined index: user in C:\wamp\www\lolgaem\index.php on line 4

I'm assuming you have error reporting set to all?

 

[lastkarrde]

Not filling out the register form and clicking register gives..

 

Deprecated: Function eregi_replace() is deprecated in C:\wamp\www\lolgaem\register.php on line 11

Duplicate entry '' for key 'email'

 

I can also put an invalid email address in the register form, it seems to go through fine.

[ttocskcaj]

Trying to select a class: The class you selected () is not a valid class!

[Coreye]

Cross Site Scripting (XSS):

You can submit ">code in the subject field on the forum and it executes when viewing the forum index and the post.

http://65.75.244.181/lolgaem/forum/forum.php?board=clint

 

Cross Site Scripting (XSS):

When viewing the chats messages file directly code executes.

http://65.75.244.181/lolgaem/show-messages.php

[JeremyH]

I am at college and the site got blocked, and not many sites are blocked, I am on a text based game every day I'm here.

 

The site http://65.75.244.181/lolgaem/ is blocked. It has been classified in the category/ies Suspicious

[phpSensei]

PHP SUPER ERROR: Internet Explorer cannot display the webpage

[Username:]

Mod lock or delete this thread please?

I've discontinued the project.

 

And the site getting blocked for suspicious ads or whatever are from my host, not me.

 

Complain to ULMB with a picture of the ad if you like.

 

I've switched hosts to 000webhost anyway.