Jump to content

InoBB

Newly Registered
  • Posts

    35
  • Joined

  • Last visited

InoBB's Achievements

Newbie

Newbie (1/5)

7

Reputation

  1. Yea all stuff that I caused today with a major overhaul of the posting system. Most of it should be cleared away aside from anything inside the profile area. Changing the posting from reg text area to text editor caused a massive overhaul of code.
  2. Not sure what you did to "break" the login. Maybe you can clarify what strings were input to bypass the "email" field type. I've tried posting everything I could possibly come up with across several different browsers and if I don't at least put a "c@c" style input, all I keep getting is "Invalid E-mail." error. Only issue I've found, is if I construct different forms off-site, and change the input field types, then there were issues. Working on a better server-side validation for this. No more blank page with javascript disabled. And fixed the BBCode, tried to move the script into an external file, did not work apparently. And fixing the above issue fixed the updating of information issue in one swoop as well. Love accidental progress. Adding more than 1 page in the url does not concern me as it will only break the page for the user making the action. Maybe at a later date when I've tackled the more concerning problems. And yes, that was a nasty bug, fixed as well. Can no longer edit different posts by changing url. From over there, all issues solved as well. Not sure about how registration is broken, I registered several test accounts without issues. Maybe you could supply a screenshot of what your talking about in the FF CSS. What version of FF are you using? I've personally tested in Moz4.0.1 and Moz5.0
  3. Lol you were probably messing with it while I was in the middle of making changes The pagination works beautifully now. I went ahead with the JQuery AJAX form method, has better indication of something happening once a form is submitted. Removed the ability to use onmouseover, onmouseout, and other similar tags.
  4. Okay, so everything was much easier than I figured it was going to be. 1) XSS null from topic title 2) Need to clarify with you what options don't work except in test forum. 3) Track topic now has a redirect with notification (Looking at going into Jquery with ajax for this). 4) Profile settings still won't update, unless I refresh the page completely. I guess since in a form(Also looking into Jquery with Ajax to fix). 5) Search is getting a complete restructure. Will come back on that at a later date. 6) Users can no longer track same topic multiple times. 7) Post Numbering is correct now(Looking into setting the OP separated from replies, for the numbers sake, they need love...). 8 ) Had debug error reporting on, forgot to remove it the other night. No more notices. 9) Users can "supposedly" reply to non-existant topics, or put topics in non-existant forums BUT their posts go exactly where they are supposed to either way. Will look deeper into this issue. Your awesome.
  5. That's more like it, gives me a few things to work on. These are things(though I know of some of the bugs such as changing the url to post and reply), that I tend to overlook while coding this. Helps to have the extra set of eyes, thanks for this list SocialCloud. I'll work on it for a couple days and when it's nice and clean I'll drop another post. And what options do you speak of only working in the test forum? And the search, yea I'm actually working on a more external script for that one. I don't like the way it functions.
  6. try this: if (isset($_POST['reg'])) { if (isset($_POST['fname'])) { $fn = strip_tags($_POST['fname']); echo $fn; } elseif (empty($_POST['fname'])) { echo "Please fill out all form fields."; } }
  7. K, made it where bbcode links send http request. Seems to have stopped javascript from being able to run and throws a website unavailable page. Also used some regex to replace some items to Not Allowed, will keep looking into finding a more suitable way of dealing with this one.
  8. Actually, once I put your script up on my server and remove the error suppressors, it works fine. Aside from the values you have echo'd with php on the form. I suppose you have more to the file that has the form on it though.
  9. add error reporting to the top of your script ini_set('display_errors', 'On'); error_reporting(E_ALL | E_STRICT); then try running it again and see what errors are displayed.
  10. not sure if this is a typo, but: include('ConnectDB'); maybe you forgot to add the .php extension include('ConnectDB.php');
  11. Man, seems XSS attacks are more of a problem than sql injection now days. I think I've got the issue fixed with iframe breakage.
  12. InoBB

    PhPmyadmin query

    try this query: SELECT signup_ip FROM Bob WHERE sigup_ip IN (SELECT signup_ip FROM Bob GROUP BY signup_ip HAVING count(signup_ip ) > 1) ORDER BY signup_ip then try dumping the results in a loop, see what your results are. I think this may be what your looking for your query to do: $sql = "SELECT signup_ip FROM Bob WHERE sigup_ip IN (SELECT signup_ip FROM Bob GROUP BY signup_ip HAVING count(signup_ip ) > 1) ORDER BY signup_ip"; $res = $connection->query($sql); while ($row = $res->fetch_assoc()) { echo $row['signup_ip'] . "<br />"; } This should output all IPs grouped together on duplicate.
  13. InoBB

    PhPmyadmin query

    Yes, the query should work as you have posted. And as for changing it to fit your on table queries I suggest reading the manual for each extension to have an exact understanding of how and why they operate. HAVING - a GROUP BY extension: http://dev.mysql.com/doc/refman/5.0/en/group-by-extensions.html about JOINs: http://dev.mysql.com/doc/refman/5.0/en/join.html But, list is the table name, where the others are columns of the table. As this being a query posted from SO, You may want to read further into the comments on that thread as they explain some details that concern performance(which really as far as my tests show, are not that drastic until you start getting over 100,000 rows of data or so).Then again, each users ISP varies on upload and download rate of data. EDIT: Just remembered you could, alternatively prevent duplicates from the very beginning, something so simple it just might work.
  14. Alright, issues taken care of. No more XSS vulnerabilities as far as I can tell. The include error was just a bad cookie set. :/ solved as well.
  15. What are the errors that get thrown to the browser?
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.