phillips321 Posted January 1, 2008 Share Posted January 1, 2008 Hi guys, I have made some modifications to my picture hosting site. Please will you guys test it and advise things that you (dis)like, and also any more ideas or things you think i should consider changing/adding. http://www.forumpix.co.uk Many thanks Link to comment https://forums.phpfreaks.com/topic/84030-wwwforumpixcouk-please-test-and-give-feedback/ Share on other sites More sharing options...
agentsteal Posted January 2, 2008 Share Posted January 2, 2008 Full Path Disclosure: There is Full Path Disclosure if you upload an invalid image. Warning: imagecreatefromjpeg() [function.imagecreatefromjpeg]: gd-jpeg: JPEG library reports unrecoverable error: in C:\Public\www\Matt\www.forumpix.co.uk\index.php on line 86 Warning: imagecreatefromjpeg() [function.imagecreatefromjpeg]: 'C:\WINDOWS\TEMP\php60.tmp' is not a valid JPEG file in C:\Public\www\Matt\www.forumpix.co.uk\index.php on line 86 Warning: Cannot modify header information - headers already sent by (output started at C:\Public\www\Matt\www.forumpix.co.uk\index.php:86) in C:\Public\www\Matt\www.forumpix.co.uk\index.php on line 212 Warning: Cannot modify header information - headers already sent by (output started at C:\Public\www\Matt\www.forumpix.co.uk\index.php:86) in C:\Public\www\Matt\www.forumpix.co.uk\index.php on line 213 Warning: Cannot modify header information - headers already sent by (output started at C:\Public\www\Matt\www.forumpix.co.uk\index.php:86) in C:\Public\www\Matt\www.forumpix.co.uk\index.php on line 214 Link to comment https://forums.phpfreaks.com/topic/84030-wwwforumpixcouk-please-test-and-give-feedback/#findComment-427752 Share on other sites More sharing options...
darkfreaks Posted July 9, 2008 Share Posted July 9, 2008 Vulnerability description By this form input is possible to upload a file to the server. The impact of this vulnerability User may upload malicious files to server How to fix this vulnerability Check if the script inputs are properly validated. Vulnerability description One or more email addresses have been found on this page. The majority of spam comes from email addresses harvested off the internet. The spam-bots (also known as email harvesters and email extractors) are programs that scour the internet looking for email addresses on any website they come across. Spambot programs look for strings like myname@mydomain.com and then record any addresses found. This vulnerability affects /. The impact of this vulnerability Email addresses posted on Web sites may attract spam. Attack details We found contact@forumpix.co.uk Link to comment https://forums.phpfreaks.com/topic/84030-wwwforumpixcouk-please-test-and-give-feedback/#findComment-585614 Share on other sites More sharing options...
olie122333 Posted July 9, 2008 Share Posted July 9, 2008 I LOVE IT!!! How did you make it put the credits around the edge of the picture ? NICE!!! Link to comment https://forums.phpfreaks.com/topic/84030-wwwforumpixcouk-please-test-and-give-feedback/#findComment-585680 Share on other sites More sharing options...
LooieENG Posted July 9, 2008 Share Posted July 9, 2008 Hmm, the captcha and "accept T&Cs" checkbox would stop me using the site again. Much nicer to have "one-click uploading". And the watermarks around the pic too. Link to comment https://forums.phpfreaks.com/topic/84030-wwwforumpixcouk-please-test-and-give-feedback/#findComment-585714 Share on other sites More sharing options...
Recommended Posts