lucky3809

<div id="wrapper"> <div id="background_bg"> <div id="header"> <div class="logo"><img src="ingame_layout/images/logo.jpg" /></div> <div class="cor_box"> <div class="cor1"></div> <div class="cor2"> <div id="menu"> <ul> <li><a href="index.php" class="active">Home</a></li> <li><a href="gym.php">Gym</a></li> <li><a href="#">Newspaper</a></li> <li><a href="forums.php">Forum</a></li> <li><a href="explore.php">Explore</a></li> <li><a href="#">Protection</a></li> <li><a href="logout.php">Logout</a></li> </ul> </div> </div> <div class="cor3"></div> </div> </div> <div id="body_container"> <div class="left_container"> <div class="menu_new2"> <style="color:#ffffff;"><b><a href='viewuser.php?u={$ir['userid']}'> $gn{$u} </a> [{$ir['userid']}] $d </b><br/> <bi>Money:</span> {$fm}<br/> <span>Level:</span> {$ir['level']} <br/> <span>Points:</span> {$pm} <a href='pointstemple.php'><font color = green><b><small>[use]</small></b></font></a> <br /> <span>Steps:</span> {$sm} <a href='streets.php'><font color = green><b><small>[use]</small></b></font></a><br /> <b>Energy:</b> {$enperc}% <a href='pointstemple.php?spend=energy'><font color='yellow'>[Refill]</font></a><br /> <img src=bar_left.gif height=13><img src=bargreen.gif width=$enperc height=13><img src=barred.gif width=$enopp height=13><img src=bar_fil_end.gif height=13><br /> <b>Will:</b> {$wiperc}% <a href='pointstemple.php?spend=will'><font color='yellow'>[Refill]</font></a><br /> <img src=bar_left.gif height=13><img src=barblue.gif width=$wiperc height=13><img src=barred.gif width=$wiopp height=13><img src=bar_fil_end.gif height=13><br /> <b>Brave:</b> {$ir['brave']}/{$ir['maxbrave']}<a href='pointstemple.php?spend=brave'><font color='yellow'>[Refill]</font></a><br /> <img src=bar_left_purp.gif height=13><img src=barpurple.gif width=$brperc height=13><img src=barred.gif width=$bropp height=13><img src=bar_fil_end.gif height=13><br /> <b>EXP:</b> {$experc}%<br /> <img src=bar_left.gif height=13><img src=bargreen.gif width=$experc height=13><img src=barred.gif width=$exopp height=13><img src=bar_fil_end.gif height=13><br /> <b>Health:</b> {$hpperc}% <a href='pointstemple.php?spend=health'><font color='yellow'>[Refill]</font></a><br /> <img src=bar_left.gif height=13><img src=bargreen.gif width=$hpperc height=13><img src=barred.gif width=$hpopp height=13><img src=bar_fil_end.gif height=13><br /> <ul>   can you see what you are doing wrong? many things are wrong with your script this is just the source code...   You have a <bi> tag do not know what that means lol. never seen or heard of such... this is not the only thing I did not post the whole source code but through out it you have not closed over 5 div tags, and a few td tags and a table tag, also you have not closed your html tag or body tag... all simple html... Thus making your center table go below the menu, and not on the side of the menu in the center.

I'm glad that you are making an effort in doing this menu, as I stated before a lot of your pages on your site has open tags and tags that are not suppose to be in the places, if you go to the page you are having problems with and look at the source code, in firefox it will show you the errors in the tag, they highlight them red. Thus is why everything is down below the menu and not correctly put into place, you have not closed a tag or have stray tags...

  mainmenu is JUST links your field areas are in your header.php such as username,level,steps,points....

lol... still though why parse a string with no variable present ??? anywho do what you feel comfortable with. I like to do things the correct way as taught.

Why should I stop, since when can't I have an opinion, and state the obvious, no need for your link this one explains the routine of quotes... http://php.net/manual/en/language.types.string.php   To each their own... Better to practice the right way then the wrong way... just saying, why parse a string without a $var in it... does not makes sense, so thus is why I stated what I did, and yes it is faster, single quotes...

Not only does it matter if you use echo or print lets not leave out the double quotes and single quotes .... Double quotes should not be placed on a string that has no $vars... because what it is doing is taking time to parse that string. It's much easier and faster to use single quotes when there is no $vars present if you are using double through out your script... over all it's a persons preference on what they feel comfortable using, however if your wanting your stuff to come up faster then single quotes should be used in an echo statement in IMO.

Could be an open statement somewhere, where you forgot to properly close it. Mind posting the page, the part that you posted will not help solving your problem, it's better to post the complete error code page.

No one will give you the codes to sql injection, unless you pay them to do so. And there are very few on here that knows of them... Have you though searched google "sql injection examples" ??? You may find a few things about them on there. And for the one that said mres will secure it, think again mres is used for alpha fields not for numeric so it is not really securing everything in a script...

Why not take the time to learn the coding it is not that hard... And seriously asking someone to invest $5,000 and they see only 50%??? Good Luck in that...

There is NO UPDATE OR INSERT query in those two files, so why would it reward anything? You need to post your attack pages those two has nothing to do with it not rewarding you. Edit: As per Seker's thread he DID state this: And, in any of your attacking files (attackhosp, attackmug, etc.) add this wherever your queries are: mysql_query("UPDATE users SET datotal=datotal+1 WHERE userid=$userid", $c);   Maybe you forgot, or you did and forgot to add datotal field to you database...

Nope Mccodes do NOT have inspectors. And mccodes would been using @mccodes.com not hotmail or any free mail for that matter. And they would not make spelling mistakes... just saying.. such as this line: Report Yes I Know, But On Our Data Base It Says That In The Feuture Thers Gonna Be Problems, So Please Send Me The Installer.php file just 2 check If it is working proprely and also Contact me with   LOL someone on a phone, or just stupid. Also they would have a backup of the installer so why would they want yours?   Haha too bad you don't know how to send a virus, if I ever gotten mail like that I would send them one and then have on the file OPEN AT YOUR OWN RISK lol But that's all it would say, they wouldnt get the actual file, just the virus ;-)

technically I use the die statement in an ifstatement such as die('blah'); but some like to use the echo statement...

it does look mccode-ish lol

single quotes are faster, but not by much you would barely see it, if you're not using $vars in an echo statement with double quotes, then you should use single, because double parses the string, what i have read long time ago forgot the name of the website, but they did the test on it. @raven if ($ir['hospital']) { echo '<a href= 'hospital.php'> Hospital ($hc)</a>' '<a href='inventory.php'>Inventory</a>' '; } do you see the error? there are quotes around ' <a href= 'hospital.php'> Hospital ($hc)</a> ' ' <a href='inventory.php'>Inventory</a> ' it should be : if ($ir['hospital']) { echo '<a href="hospital.php"> Hospital ('.$hc.')</a> <a href="inventory.php">Inventory</a>'; }   echo statement should look like this: echo ' '; (if using this one then you would use double quotes in the statement such as :<a href="inventory.php"> For $vars it would be '.$var.'). OR echo " "; (if using this one then you would use single quotes in the statement such as :<a href='inventory.php'> For $vars it would be {$var} or just $var just depends).

Anyone who hacks to find security holes in bigger corporations only do so to gain attention from POLITICS such the government, and to gain POWER, and MONEY. That's how I see hackers that are hacking these corporations. I personally would not support this behavior, because what if it was your business they hacked into? Sure they are doing a favor in finding the security holes/flaws however they are also damaging your business by doing so, because the media plays on it also, so that ruins rep when the public learns of the hack. Even when they release personal things, such as when Sarah Palins email was hacked into and they spread her info everywhere.

lol ... that is a good find.

It really depends on how many hours you put into it a day, as for me it's taking me a long time over the 2 year mark I am very limited to timing and only put in 3 hours at the most, and that is not an everyday occurrence, so a_bertrand timing seems about correct even for someone putting 3 hours in it every single day or more without missing days in coding it. It also depends on if you are working in a team, or doing it all by yourself also. It's not about how fast you get it done, it's about what the quality of it is after it is finished, why rush into it? Seems stupid to do so, so many errors can happen when you rush a development. Edit: For instance MCCODES!! Look at all the errors in that engine, and even after whomever recoded it in redux there are STILL errors. Perhaps these errors were from rushing the development of it. If you spent longer time on it, and went through everything and tested it, there would not be errors, or security flaws for that matter. With what i have seen with a_bertrand demo engine, it was well put together with no errors at all, and you can tell he took his time to get it right, it has quality that mccodes do not have!

There was a list of helpful sites that showed how you secure, but can't remember whom posted it. As for me it took me time, but it was really simple after i read up about security... If you happen to want to secure a form google "php form security", and millions of results pop up...

lol someone is mad... It's just a forum everyone is going to have an opinion, or criticism so why be mad? Don't make any sense. It's not like you both will ever meet face to face, I think a lot of people on here are di**s, but you don't see me wasting my time on getting mad or telling them where to go... Sometime the harsh reality is the truth rather you despise it or not.

You do NOT necessarily need tokens in the URL there is other ways to fix the problem. Just saying... We all have our ways of coding, many different techniques can be done to prevent a hacker from hacking. As for mccodes you would think whatever the price you paid would also get you a full security script, and that you do not need to add security such as his blocker he added. You can't really be upset with him, because he is using a legal copy of mccodes, and he is not using an illegal copy like most usually do that are new, give him that credit. I doubt he knew he was going to be paying for a engine that had security flaws, as for he is new, and stated he did not know how to code. His spelling on the other hand that is irritating which probably made this thread what it is now lol... I am still wondering, and trying to understand what the hell hipsterizing means lol. I have never heard of that word, tried to look it up, and got nothing. The only advice I would recommend is do not release your game if you have not learned the coding to it,or made any effort in making it a game. Anyone can buy mccodes and make the same thing by adding just a logo, and believe me there are many that do, and are like you... If you only bought the engine for yourself or for learning then i could understand why you only have a logo, but what makes it not for those purposes is that you released it on this forum so evidently it is a game for public, which criticism is going to happen, even if you had the best game you still get the criticism. So that is why people say why just a logo? Nothing is making it stand out as a game, there is no storyline, let alone it is still in engine mode lol...

All I want to know is what the hell is "hipsterizing " you yet have told us, and sadly it is still on your menu area all over. Not a good thing to have if you can't explain to your players what it means and why it's there. You can make a pretty decent game off mccodes if you know how to. just adding a logo and not really doing nothing exciting to the engine, does not make it different.

I didn't care if it was mccodes or not. However I am sick of the same people bitching about other peoples games, and saying that they are ran off mccodes, and they never had the prove, but yet when they are caught red handed themselves, they try to cover it up.. hypocrites if you ask me... I barely know any of you, only know a few outside this forum, I been a member since 09' and all I have seen is the very same selective individuals arguing over what engine others use for their game, when it all comes down to it, it should not matter what engine anyone uses it's their business what engine they want to use for their game, but do not go around being a hypocrite if your doing the same thing you are accusing others of doing... Sorry that I was off topic, it's nothing against anyone i promise you that. I stated a few facts that was the obvious, without reading where they still had the old game up and not the new one.

check your path to file. and also check path to include file in that file... you have view_profile.php in first post then files/view_profile.php in second. your include config or whatever page is included that connects to your database the path is not correct, in the file you have in the FILES directory.

What you posted... I use same thing you do, got it from this forum I believe POG posted it, but i may be wrong... You can also use this method add to css file: .alt:nth-child(even) {background: red} .alt:nth-child(odd) {background: blue}   then in your tr tags add class="alt"

  That was an example of what is in HIS script that is working with his so called BLOCKER... it's nothing to do with security.. was explaining just because he has that in his script it is not going to stop a hacker...