Joshua

Highly suggest you remove that link. Your game is highly unsecure and can be destroyed in minutes >,< Pm me.

I went through the class/class.db file and configured it there, was a bit more indepth ><

same for me >,< codes and notepad, then found CE :P

Just the same zero, if you getimagesize even if it's an offsite link, it won't upload, at least it shouldnt.

Told me so what? :P

yep, and that's been changed to something else.

The users of this forum can look at that link and your statements and Make up their own mind. As for hacking, you more than just proved you do. And I'm not scared of some kid who has nothing better to do than hack others games, Look me up in houston if you want to know what scared is :)

Try using getimagesize :P Validate that it's an image

Find function safe_1() { global $ir,$c,$h,$userid,$db;   Under add if($ir['safetries'] < 1) { print "You have already used your 10 tries today, come back tomorrow"; $h-endpage(); exit; } That will let them only try 10 times on the free safe, and the other 2 unlimited :D

This hack goes along the same lines of the display pic hack / session hi-jack.

mysql_real_escape_string the spot where they Input the Data Then the place that the data is Output htmlentities. Secure your scripts and shouldnt have a prob :D Also if you have MTG's Forums they already stop that as the output is secured. Gl

The differance between myself and others, and I can have 20-30 people post to verify this. I try injections to check games out. I don't "hack" them and ruin them. Once I discover a weak spot I inform the Owners of the game with how to properly fix it. I don't even "offer" to fix it for money, even though that's what I do. It's jsut something I do when I get bored and for the most part am thanked, though there are a few who get pissy. Lazy-T, You're so full of it it's ridiculous. Who did I try to "hurt" that you know, and it serves them right for being associated with you if it's true. Why don't you ask around before you point the finger. :)

Whoops sorry about that guys I'll fix it.

Do you know what a variable is? ;)

Specify plz :P

Gucci how long did u play ps? I was one of the first 20 users :O

Shows what you know. I have no mysql_errors() and though I havent been able to cause any to show since i updated a few things, they were. Mysql errors tend to show when .....kids...Like you try sql injections. I want it to send a blank page or no error at all. Don't want you guys knowing my tables after i Re-name them. Going to secure and re-name for extra security.

I'm compiling a list of Known Hackers and Malicious users that frequent the boards. If you know of any and have some form of proof please provide.   1. Crazy-T / Lazy-T 2. Eternal Referance Link 1 Link 1 Referance Link 2 Link Ref2 3. hawk Ref Link 1. ref link 4. Markwick Link1   Will add more later.

Yeeeeh no :P   I may give it a try later, gonna sit here and have my coffee and see if anyone joins my connect 4 game :P

Oh god i'm no good with htaccess, i'd prolly stick it in the wrong spot >,<

Thought so, I'll give it a shot and see what happens >,<   Wanna get your butt kicked in connect 4? :O lawl.

I do not see a php.ini file Would this go in header? error_reporting(0) ?

lol try and redeem yourself child. When you hit adult hood come talk to an adult and let me welcome you.   You tried, you failed, get over it. rtfm? I have. Maybe you should re-educate yourself on it instead of trying to hack people's sites all the time or use bots. Get a girlfriend, maybe you'd be better off. But then I doubt a female would go for a 12 year who can't pry himself off the computer. Copying another games layout? really now? Lmao. Why don't you ask around and see what i'm doing with a purchased layout. Noob.

Not ready to turn it on yet, but will be once i re-open my site. Curious how i Can stop sql errors from displaying?

Valid point.