Jump to content

Please test my free online profile maker

pquery

By pquery
in Beta Test Your Stuff!

 Share

Recommended Posts

pquery Member

pquery

Posted
Posted

I need some testers for my online dating profile maker, to make sure that there arn't errors being produced currently

 

[there's one I know of, because of a javascript validation on the checkboxes for the indoor and outdoor activities which I'm still looking for a solution for] -- so please check at least on indoor and one outdoor activity on the hobbies tab.

 

Please let me know if the verbage kicked out seems off at all or if you see any holder lines being kicked out

 

to go through the whole seniaro the first time only takes less then 2 mins from my friends which I had initially test it.

 

thanks for your help.

 

http://www.pquery.com/profile/maker.php

Link to comment
https://forums.phpfreaks.com/topic/83087-please-test-my-free-online-profile-maker/
Share on other sites
Coreye Member

Coreye

Posted
Posted

Block this directory: http://www.pquery.com/profile/.

 

Full Path Disclosure:

http://www.pquery.com/profile/makeprofile.php

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 122

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 161

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 122

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 161

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 355

Over 5 ' 1 " ~ Under 5 ' 1 "

 

Full Path Disclosure:

http://www.pquery.com/profile/profile2.php

Parse error: syntax error, unexpected $end in /home/buhmann/public_html/profile/profile2.php on line 229
pquery Member

pquery

Posted
  • Author
Posted

Block this directory: http://www.pquery.com/profile/.

 

Full Path Disclosure:

http://www.pquery.com/profile/makeprofile.php

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 122

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 161

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 122

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 161

Warning: Invalid argument supplied for foreach() in /home/buhmann/public_html/profile/makeprofile.php on line 355

Over 5 ' 1 " ~ Under 5 ' 1 "

 

Full Path Disclosure:

http://www.pquery.com/profile/profile2.php

Parse error: syntax error, unexpected $end in /home/buhmann/public_html/profile/profile2.php on line 229

 

do  I do that in the apache config or in the script itself? I've never been the best server guy - thanks for the tip though I didn't even think of the full path being exposed if the script hitting an error

pquery Member

pquery

Posted
  • Author
Posted

I've fixed the error logging issue what I seem to be having a problem with now is the js  validation in IE 6  ~ and it's working fine in FF.

 

Could somebody test it in IE 7 for me and safari? I have both at work but won't be there for another few days to test on my lunch break.

 

Thanks  :)

pquery Member

pquery

Posted
  • Author
Posted

thanks, I have a thread in the js form about some issues I'm having with IE not doing any validation at all.

 

I'm just amazed how much work I'm putting into this thing to make it idiot proof, lol 

 

from previous software I've made I've realised that you assume nothing and that people almost never read directions.  :D

agentsteal Newbie

agentsteal

Posted
Posted

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/craigmail.php if the craigprofile field contains </textarea>code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the status field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the outAct field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the myAge field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the myAppearance field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the inAct field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the looking field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the minAge field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the maxAge field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the minHeightFt field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the minHeightln field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the maxHeightFt field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the maxHeightln field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the flavor field contains code.

 

Cross Site Scripting:

There is Cross Site Scripting on http://www.pquery.com/profile/makeprofile.php if the theirConfidence field contains code.

 

Drop Down Menu:

If you edit the drop down menus on http://www.pquery.com/profile/maker.php you can submit arbitrary values.

 

Includes Directory:

http://www.pquery.com/profile/

 

PHP Source Code Disclosure:

http://www.pquery.com/profile/htmlparser.inc

 

User Enumeration:

http://www.pquery.com/~nobody

 

User Enumeration:

http://www.pquery.com/~root

pquery Member

pquery

Posted
  • Author
Posted
Includes Directory:

http://www.pquery.com/profile/

 

thanks, I've hidden the list of this directory especially since I'm already working on a second version with enhancements, while getting some people to test the first version.

 

 

on the issue of

Drop Down Menu:

If you edit the drop down menus on http://www.pquery.com/profile/maker.php you can submit arbitrary values.

 

how could you prevent a measure like that, and what kind of damage could that do?

 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.