Equinox

$sql = "INSERT INTO login SET id = '', name = '" .mysql_real_escape_string($_POST['name']). "', signup =NOW() , password = '" .mysql_real_escape_string($pass). "', state = '0', mail = '" .mysql_real_escape_string($_POST['mail']). "',location='".mysql_real_escape_string($_POST['location'])."', signup_ip='".mysql_real_escape_string($_SERVER['REMOTE_ADDR'])."',ref='".mysql_real_escape_string($_POST['ref'])."'"; $res = mysql_query($sql);   All wrong....   $sql = "INSERT INTO login (id,name,signup,password,state,mail,location,signup_ip,ref) VALUES('', '" .mysql_real_escape_string($_POST['name']). "',NOW() , '" .mysql_real_escape_string($pass). "', 0, '" .mysql_real_escape_string($_POST['mail']). "','".mysql_real_escape_string($_POST['location'])."','".mysql_real_escape_string($_SERVER['REMOTE_ADDR'])."','".mysql_real_escape_string($_POST['ref'])."')"; $res = mysql_query($sql) or die(mysql_error());   Another problem could be the quotes - but I cannot see them properly, so cannot judge. But try that.

That maybe true, and again, I'm not supporting the idea. I'm simply saying that you cannot make the assumption that something will fail and claim it as a certainty. He is taking a dump on someone's idea because he doesn't think it will work. And feels like everyone else thinks the same as he does.

But, you are wrong. There is no way you can look at something as make the assumption that it will fail and expect to be right. You can guess, yes, doesn't mean you're going to be right. Different people could see this thread and offer to help, people that only joined today or within the past week, you simply don't know. Lots of people own Google and they are all working together, and correct me if I'm mistaken, but isn't Google doing pretty damn well? So, unless you can give me proof that this will fail (this topic in particular, not saying "look at other attempts") - your comments will be null and void. You can say it will fail in a week, and you could be right, but it's not a certainty - I'm in no way saying it'll work, my feelings towards the subject are mutual, it could go either way. I'm sure as hell not putting the starter down though. So how about stepping down off of that high horse of yours, and set aside the ability to predict the future that your few years experience have given you and stop putting people down. Thanks.

I'd like nothing more. He can challenge all he likes, the fact of the matter is, he's wrong. Just because someone thinks it's not going to work, doesn't mean everyone else will think that.

It's nice to see the mentality of some of the MWG community hasn't changed. You're making an assumption. Not everyone conforms to your way of thinking.

http://www.tineye.com/search/b285dec8db0aa607b8c42cc086f35f5589118f00/

Yesterday, today and tomorrow

Yes, I know - but I was just explaining the specifics. Knowledge is power.

Actually, with the amount people use it, you'd be surprised. It's not to do with the use of variables, that would be within the quote. Double quotes will look for a variable whereas single quotes won't. They are both language constructs, and echo is better to use simply because it's shorter to write. The difference in speed is minor unless you used it millions of times in one go.

That's the one!

The one time I'm nice, and you ruin it. I keep wanting to say Dayo, but I know it's not him. I swear it begins with D?

I've just had another play, still a lot is exploitable. Check your ID's, you are clearly just making use of strip_tags() Forms can be edited via the source, I won't reveal the errors here because some people on this forum 'hack' for fun. However, feel free to contact me. Although, I doubt many people on this forum are smart enough to understand more than a simple SQL injection and a simple HTML injection, like the boy who used to troll and claim to be a hacker, I forget his name, someone remind me >.<

I just signed in, made a post in my journal with an <iframe> and it worked. This is not secure.

#C0C0C0

  He also has an example game with a "l33t" game engine, you can't see the inside though. But if you want to, give me a shout. Or, why not just have a go yourself at getting inside the game, it's mega easy.

It's not an argument, it's a fact. I wouldn't argue with him anyway, he's not worth the time. Plus, I'm sharing my experience that I've had with him, so my comments are valid. If I was to rant and starting calling names, biting, scratching, then I'd understand your comment was valid, to an extent. But yes, if you'd like me to comment something which you'd consider valid: I don't believe HD has had a bad comment said about him here in regards to trading in any type of service, and this may be the first. But still, in any circumstance this is not acceptable, even with a good reputation and a promise date/promise of payment within a certain amount of time. Not having the money, he should find other means in which to pay

Got proof of this siad source code? If not kindly keep quiet :) Yes, I tend to keep invalid source code from sites that are pretty much worthless (It uses McCodes, you can pick McCodes up for so cheap now that your site is rendered worthless) Oh, btw....if you go to www.mccodes.com you can get a new patched version of it! Just so you're ready for the big release day!

That's funny.... Everything was McCodes, right down to the source code in the header, preferences, mailbox and forums. You lie so much you have started to believe yourself.

Title, fail and success text takes about 10 minutes to do each, maybe, with a basic idea... 50 x 10 = 500 500 / 60 = 8.33 $100 / 8.33 hours = Something like $12/£7 per hour Nice pay, I'd take you up on this.

He makes a dodgy engine, which is clearly McCodes, and he scams money for a simple job of slicing and coding? Not looking good.

I've played with Ruby on rails, and the much alike cakePHP. I dislike it, the closest other than that is Metasploit in Linux, that was quite fun.

Both new staff members are awesome.

You should look into INET_ATON() and INET_NTOA()

Well, I know a lot of people use the Blackberry phone, it's very popular and I also find it's a great phone to use. However, those of you that are familiar with the "pwn2own" contest in which hackers fight to exploit certain software (like Google Chrome who added a $20,000 prize to the overall prize to hackers that could successfully exploit the google chrome browser) has successfully exploited the Blackberry platform with the use of Javascript and it is recommended that you turn Javascript off, I expect a lot of sites will be made that want to get the content from your phone. So what does it do? Using the WebKit browser engine built into the phone, attackers can design a site for people to browse that has been designed to exploit the soft spot in this engine, successful attacks will allow attackers to access data stored on the media card and built in media storage. They could steal your contact list, images or video's if they wanted. Disabling Javascript won't fix the issue completely, it will help prevent it. Blackberry are working on a patch and will release it as soon as possible! Read the full story here; http://www.enterprisemobiletoday.com/features/security/article.php/3928381/RIM-Recommends-Users-Disable-JavaScript-to-Protect-BlackBerry-OS-6-Handsets.htm

Not tested, may not work, who knows? You tell me. Less lines of code needed, does the same thing...Enjoy   <?php include(DIRNAME(__FILE__).'/globals.php'); if($ir['user_level'] != 7) { echo 'No'; exit($h->endpage()); } if(!isset($_GET['Refill']) || !is_String($_GET['Refill'])) { echo '<span style = "text-align : center;">Welcome to the admin refil centre, would you like to refill all users bars? <a href = "?Refill" title = "Yes">Yes</a></span>'; } else { mysql_query("UPDATE users SET brave = maxbrave, will = maxwill, hp = maxhp, energy = maxenergy, hospital = 0, jail = 0", $c); echo 'You have refilled all users bars'; $All = mysql_query("SELECT userid FROM users", $c); while($Do = mysql_fetch_assoc($All)) { event_add($Do['userid'], '<a href = "viewuser.php?u='.$_SESSION['userid'].'">'.mysql_real_escape_string($ir['username'], $c).'</a> Unleashes a healing aura. You suddenly feel stronger, rejuvenated and full of will and power. You see the Hospital and Jail emptying too!'); } } ?>