| View previous topic :: View next topic |
| Author |
Message |
john76
-
Joined: 16 Jun 2005
Posts: 22
Location: Middlesbrough
|
 Posted: Mon Aug 21, 2006 7:32 pm Post subject: New Voting Site |
 |
|
Here is a little project i've been working on. Its not all my code, I've just adapted it and re-wrote it.
I know there is other voting sites out there, but this is free :!:
http://hotorwhat.bounceme.net/vote/
Here is the zip file of the scripts for people to look at or use. http://tripstar.no-ip.org/downloads/PHP_Voting.zip
It still needs a lot of work doing to it, lots of bits could be improved on or totally altered. If you do make any changes, let me know so I can have a look at them.
Anyway, give it a go :D
_________________
 |
|
| Back to top |
    |
 |
cmxflash
-
Joined: 11 Dec 2004
Posts: 872
|
| Posted: Mon Aug 21, 2006 8:11 pm Post subject: |
|
|
Deface.
Your upload-script checks the extension of uploaded images on the client side. Pretty easy to decompile your flash file and create my own upload form used to upload a PHP-file.
And no, I did not touch any of your other stuff. I only replaced index.php.
Have a good day.
*Edit
My 666:th post. Of course it had to be about something evil.
*Edit2
This guy has a LOT of porno on his server. |
|
| Back to top |
|
|
TRUSTAbyss
-
Joined: 29 Oct 2003
Posts: 3752
Location: USA, GA
|
| Posted: Tue Aug 22, 2006 3:02 am Post subject: |
|
|
john76,
You should check the uploaded file extension on the Server side before
putting any upload script on the internet.
Post the code here and I might be able to help. Also tell me which file
extensions you want to allow for uploading. |
|
| Back to top |
|
|
Tom Chapman
-
Joined: 09 Jul 2005
Posts: 933
Location: Australia
|
| Posted: Tue Aug 22, 2006 9:25 am Post subject: |
|
|
| cmxflash wrote: |
*Edit2
This guy has a LOT of porno on his server. |
lol DAM! Theres a password now lol |
|
| Back to top |
|
|
loloyd
-
Joined: 03 Mar 2006
Posts: 435
Location: Philippines
|
| Posted: Tue Aug 22, 2006 10:41 am Post subject: |
|
|
Tsk tsk tsk, MrWiseOne. I thought you transcended CENSORED.
And, oh yeah, cmxflash, congrats on your 666th post. Rock on, dude!
I..I,
\X/
_________________
 http://home.loloyd.com/ is online if the logo graphic at left is showing. |
|
| Back to top |
|
|
Tom Chapman
-
Joined: 09 Jul 2005
Posts: 933
Location: Australia
|
| Posted: Tue Aug 22, 2006 11:00 am Post subject: |
|
|
| lol transcended? lol do you mean got over and if so how could anyone :D |
|
| Back to top |
|
|
john76
-
Joined: 16 Jun 2005
Posts: 22
Location: Middlesbrough
|
| Posted: Tue Aug 22, 2006 11:11 am Post subject: |
|
|
Ha Ha, well that 1 folder dedicated to 1 woman was password protected before, but I re-installed abyss and forgot to password it up. Sorry lads gonna have to find your own stuff lol
_________________
|
|
| Back to top |
|
|
PaulK
-
Joined: 26 Apr 2006
Posts: 132
Location: London, UK
|
| Posted: Tue Aug 22, 2006 11:24 am Post subject: |
|
|
| cmxflash wrote: | Deface.
Your upload-script checks the extension of uploaded images on the client side. Pretty easy to decompile your flash file and create my own upload form used to upload a PHP-file.
And no, I did not touch any of your other stuff. I only replaced index.php.
Have a good day.
*Edit
My 666:th post. Of course it had to be about something evil.
*Edit2
This guy has a LOT of porno on his server. |
Nice work! |
|
| Back to top |
|
|
loloyd
-
Joined: 03 Mar 2006
Posts: 435
Location: Philippines
|
| Posted: Tue Aug 22, 2006 11:28 am Post subject: |
|
|
| MrWiseOne wrote: | | lol transcended? lol do you mean got over and if so how could anyone :D |
That's fairly simple. Become a monk or an hermit. Hey, I never said it was easy.
| john76 wrote: | | Ha Ha, well that 1 folder dedicated to 1 woman was password protected before, but I re-installed abyss and forgot to password it up. Sorry lads gonna have to find your own stuff lol |
Next time, please lengthen the time between the act of forgetting to set up a password for your restricted directories and the time it takes for you to fix it all up. :)
_________________
http://home.loloyd.com/ is online if the logo graphic at left is showing. |
|
| Back to top |
|
|
Tom Chapman
-
Joined: 09 Jul 2005
Posts: 933
Location: Australia
|
| Posted: Tue Aug 22, 2006 11:39 am Post subject: |
|
|
| MrWiseOne wrote: | | lol transcended? lol do you mean got over and if so how could anyone :D |
| loloyd wrote: | | That's fairly simple. Become a monk or an hermit. Hey, I never said it was easy. |
A not an lol
| john76 wrote: | | Ha Ha, well that 1 folder dedicated to 1 woman was password protected before, but I re-installed abyss and forgot to password it up. Sorry lads gonna have to find your own stuff lol |
Aww come on lol |
|
| Back to top |
|
|
john76
-
Joined: 16 Jun 2005
Posts: 22
Location: Middlesbrough
|
| Posted: Tue Aug 22, 2006 11:54 am Post subject: |
|
|
lol Sorry wiseone, get your own dream girl :lol:
And I think I have sorted the upload script, welll not me, somone who is much better at coding and let people use his code did.
And the whole point of this lil topic was so people could check my voting site out, but alas I have taken it down incase of dodgy coding...but...if you want to look through the script you can, simply dail 08991..only joking, you can download a zip file of it from here http://tripstar.no-ip.org/downloads/PHP_Voting.zip
Now don't give me a hard time if it full of holes, a simple push in the right direction would be more appreciated.
John
_________________
|
|
| Back to top |
|
|
john76
-
Joined: 16 Jun 2005
Posts: 22
Location: Middlesbrough
|
| Posted: Thu Aug 24, 2006 12:01 am Post subject: ? |
|
|
anyone downloaded and tried it out?
how many faults can you pick? The most faults wins a prize!! :o
_________________
|
|
| Back to top |
|
|
Tom Chapman
-
Joined: 09 Jul 2005
Posts: 933
Location: Australia
|
| Posted: Thu Aug 24, 2006 6:45 am Post subject: |
|
|
| I won't be using cus it needs sql. :( |
|
| Back to top |
|
|
|
