Haunted Dawg

Re: [REVIEW] Illegal-Intent - please review well i know for a fact i sign up to all games under the name kyle. I use no other username.

Re: [REVIEW] Illegal-Intent - please review Ummm yeah that's the problem, i got dynamic ip address. When searching a user on a proxy it fit's in there. I dont make multi account's. :|

Re: [REVIEW] Illegal-Intent - please review Can't really see it if im in fed jail and for the reason of same ip address. For the fact i use dynamic ip address.

Re: Enhanced Hall of fame [v2] BUMP Hello, i have updated the new post, i have made everything that is needed. So just to inform you guys: The original hall of fame: Covers 230+ lines with 10 querys to display 10 objects. My hall of fame: Covers 213 lines with 4 querys to display 16 objects. Hows that for enhanced!

Re: V2 I need to know I wont provide anything for him. :-) That is the one and iframe. etc.

Re: [Free] [v1] Scuba Diving Alot of people like antoher way to get cash, crystals.

Re: Hello Am back Welcome back.

Re: V2 I need to know The register xss inject.. figure it out :wink:

Re: Enhanced Hall of fame [v2] The problem with you is that you take the concept of something and completly change it around.

Re: V2 I need to know If you actualy add the profile signatures correctly, it cant be html exploitable.

Re: 8 Lines to secure your site from known sql injections. It is but this was not a sql inject. It was to do with the authenticate.php

Re: Bar23 [V2] Your welcome.

Re: URL Image See...

Re: URL Image A png size of 10x10 transparent bg would only be about 10kb if not ill make one now.

Re: URL Image PNG would be the best option, you can add a transparent bg to it.

Re: NEW V2 LOGIN PAGE I think he is starting to look for another fight in all the other posts.

Re: 3 Word Game so now this....   *OF TOPIC* what i would continue: topic is getting a little to dirty (masturbate)... im sure armageddondude just finished masturbating thats why he mentioned it.

Re: New improved mailbox. Yeah umm zero if it looks horrible use the original mccode one :wink:

Re: Enhanced Hall of fame [v2] Umm i use original code's dont mean that i cant use php :wink: BTW Your post is completly wrong. If i mean by original i mean by using my own codes coded from scratch.

Re: Enhanced Hall of fame [v2] Umm on the original mcv2 you dont have ASC and DESC. The non donator and donator part yes it is. But i aint going to copy other code's i prefer to use original.

Re: 3 Word Game of tea then...

Re: Enhanced Hall of fame [v2] First post updated, more security put on, old one you could check the userpass by changing the display.

Re: New improved mailbox. Well i coded this to fit my mainmenu.php

Re: New improved mailbox. Here is a new updated version:   <?php include("globals.php"); ?> <script type="text/javascript"> function insertSmiley(smiley) { var currentText = document.getElementById("message"); var smileyWithPadding = " " + smiley + " "; currentText.innerHTML += smileyWithPadding; } </script> <?php if($ir['mailban']) { echo '<font color="red">You have been mail baned for '.$ir['mailban'].' days. [b]Reason:[/b] '.$ir['mbreason']; $h->endpage(); exit; } $emos_toggle = <<<EOF [b]Note: Images are clickable.[/b] <table border="0" cellpacing="0" class="table" width="50%"> <tr> <th>Image</th> <th>Code</th> <th>Image</th> <th>Code</th> <th>Image</th> <th>Code</th> </tr> <tr> <td>[img=images/smileys/happy.gif]</td><td>:]</td> <td>[img=images/smileys/biggrin.gif]</td><td>:D</td> <td>[img=images/smileys/cool.gif]</td><td>:oo:</td> </tr> <tr> <td>[img=images/smileys/blink.gif]</td><td>O.o</td> <td>[img=images/smileys/dry.gif]</td><td>:/</td> <td>[img=images/smileys/angry.gif]</td><td>:angry:</td> </tr> <tr> <td>[img=images/smileys/huh.gif]</td><td>:?:</td> <td>[img=images/smileys/laugh.gif]</td><td>:lol:</td> <td>[img=images/smileys/mellow.gif]</td><td>:-:</td> </tr> <tr> <td>[img=images/smileys/ohmy.gif]</td><td>:O</td> <td>[img=images/smileys/sad.gif]</td><td>:(</td> <td>[img=images/smileys/ph34r.gif]</td><td>O.O</td> </tr> <tr> <td>[img=images/smileys/rolleyes.gif]</td><td>:roll:</td> <td>[img=images/smileys/sleep.gif]</td><td>:zzz:</td> <td>[img=images/smileys/smile.gif]</td><td>:)</td> </tr> <tr> <td>[img=images/smileys/tongue.gif]</td><td>:P</td> <td>[img=images/smileys/unsure.gif]</td><td>:S</td> <td>[img=images/smileys/wacko.gif]</td><td>:nut:</td> </tr> <tr> <td>[img=images/smileys/wink.gif]</td><td>;)</td> <td>[img=images/smileys/wub.gif]</td><td>:heart:</td> <td>[img=images/smileys/XD.gif]</td><td>XD</td> </tr> </table> EOF; if($_GET['ID']) { $ID = abs(@intval($_GET['ID'])); } if($_GET['act']) { $_GET['act'] = htmlentities(mysql_real_escape_string($_GET['act'])); } echo '<h2>Mailbox</h2> <table border="0" width="100%" cellspacing="0" class="table"> <tr> <th>[url="'.$_SERVER['PHP_SELF'].'"]Inbox[/url]</th> <th>[url="?act=outbox"]Outbox[/url]</th> <th>[url="?act=compose"]Compose[/url]</th> <th>[url="?act=del"]Delete Message\'s[/url]</th> <th>[url="?act=archive"]Archive Message\'s[/url]</th> </tr> </table>'; switch($_GET['act']) { case 'outbox': outbox(); break; case 'compose': compose(); break; case 'del': del(); break; case 'delb': delb(); break; case 'archive': archive(); break; case 'read': read(); break; default: inbox(); break; } function inbox() { global $ir,$h; echo ' <table border="0" width="100%" cellspacing="0" class="table"> <tr> <th>From</th> <th>Subject</th> <th>Time Sent</th> <th>Actions</th> </tr> <tr>'; $v = mysql_query("SELECT * FROM mail WHERE mail_to='{$ir['userid']}' ORDER BY mail_time DESC LIMIT 10") or die(mysql_error()); while($in = mysql_fetch_assoc($v)) { $whos = mysql_query("SELECT * FROM users WHERE userid='{$in['mail_from']}'") or die(mysql_error()); $who = mysql_fetch_assoc($whos); if($in['mail_read'] == 0) { $read = '<font color="red">New!</font>'; } else { $read = ''; } echo '<td>[url="viewuser.php?u='.$who['userid'].'"]'.$who['username'].'[/url] '.$read.'</td> <td>'.$in['mail_subject'].'</td> <td>'.date("F j, Y, g:i:s a", $in['mail_time']).'</td> <td>[[url="?act=delb&ID='.$in['mail_id'].'"]<font color="red">Delete</font>[/url]] [[url="?act=read&ID='.$in['mail_id'].'"]<font color="green">Read</font>[/url]]</td><tr>'; } echo '</tr></table>'; } function read() { global $ir,$h,$ID,$emos_toggle; if($_POST['subject']) { $msg = $_POST['message']; $msg = str_replace(array("\n"),array(" "),strip_tags($msg)); $subject = $_POST['subject']; $who = abs(@intval($_POST['towho'])); $subject = str_replace(array("\n"),array(" "),strip_tags($subject)); $emos_code = array( ':]', ':D', ':oo:', 'O.o', ':/', ':angry:', ':?:', ':lol:', ':-:', ':O', ':(', 'O.O', ':roll:', ':zzz:', ':)', ':P', ':S', ':nut:', ';)', ':heart:', 'XD', ); $emos_images = array( '[img=images/smileys/happy.gif]', '[img=images/smileys/biggrin.gif]', '[img=images/smileys/cool.gif]', '[img=images/smileys/blink.gif]', '[img=images/smileys/dry.gif]', '[img=images/smileys/angry.gif]', '[img=images/smileys/huh.gif]', '[img=images/smileys/laugh.gif]', '[img=images/smileys/mellow.gif]', '[img=images/smileys/ohmy.gif]', '[img=images/smileys/sad.gif]', '[img=images/smileys/ph34r.gif]', '[img=images/smileys/rolleyes.gif]', '[img=images/smileys/sleep.gif]', '[img=images/smileys/smile.gif]', '[img=images/smileys/tongue.gif]', '[img=images/smileys/unsure.gif]', '[img=images/smileys/wacko.gif]', '[img=images/smileys/wink.gif]', '[img=images/smileys/wub.gif]', '[img=images/smileys/XD.gif]', ); $completed_msg = str_replace($emos_code,$emos_images,$msg); mysql_query("INSERT INTO mail (mail_time,mail_from,mail_to,mail_read,mail_subject,mail_text) VALUES(unix_timestamp(),'{$ir['userid']}','{$who}','0','{$subject}','{$completed_msg}')") or die(mysql_error()); mysql_query("UPDATE users SET new_mail=new_mail+1 WHERE userid='{$who}'") or die(mysql_error()); echo 'Mail sent successfuly.'; $h->endpage(); exit; } $y = mysql_query("SELECT * FROM mail WHERE mail_id='{$ID}'") or die(mysql_error()); $f = mysql_fetch_assoc($y); if($f['mail_to'] == $ir['userid']) { mysql_query("UPDATE users SET new_mail=new_mail-1 WHERE userid='{$ir['userid']}'") or die(mysql_error()); mysql_query("UPDATE mail SET mail_read=1 WHERE mail_id='{$ID}'") or die(mysql_error()); } $sl_users = mysql_query("SELECT * FROM users WHERE userid='{$f['mail_from']}'") or die(mysql_error()); $sl = mysql_fetch_assoc($sl_users); $to_users = mysql_query("SELECT * FROM users WHERE userid='{$f['mail_to']}'") or die(mysql_error()); $tl = mysql_fetch_assoc($to_users); if($f['mail_from'] == $ir['userid']) { $pass = 1; } else { $pass = 0; } if($f['mail_to'] != $ir['userid']) { if($pass != 1) { echo 'This mail is not yours!'; $h->endpage(); exit; } } if($f['mail_from'] == $ir['userid']) { $ton = $f['mail_to']; } else { $ton = $f['mail_from']; } echo ' <h2>From: '.$sl['username'].' To: '.$tl['username'].'</h2> <table border="0" cellspacing="0" class="table" width="100%"> <tr> <th>Subject</th> <th>Mail</th> </tr> <tr> <td width="20%">'.$f['mail_subject'].'</td> <td width="80%">'.$f['mail_text'].'</td> </tr> </table> <h2>Quick Response</h2> <form action="?act=read" method="post"> To: <input type="text" value="'.$ton.'" name="towho" readonly> Subject: <input type="text" name="subject" value="No Subject"> Mail: <textarea name="message" cols="50" rows="10" id="message"></textarea> <input type="submit" value="Send"> </form> '.$emos_toggle; } function compose() { global $ir,$h,$emos_toggle; if($_POST['towho']) { $msg = $_POST['message']; $msg = str_replace(array("\n"),array(" "),strip_tags($msg)); $subject = $_POST['subject']; $who = abs(@intval($_POST['towho'])); $subject = str_replace(array("\n"),array(" "),strip_tags($subject)); $emos_code = array( ':]', ':D', ':oo:', 'O.o', ':/', ':angry:', ':?:', ':lol:', ':-:', ':O', ':(', 'O.O', ':roll:', ':zzz:', ':)', ':P', ':S', ':nut:', ';)', ':heart:', 'XD', ); $emos_images = array( '[img=images/smileys/happy.gif]', '[img=images/smileys/biggrin.gif]', '[img=images/smileys/cool.gif]', '[img=images/smileys/blink.gif]', '[img=images/smileys/dry.gif]', '[img=images/smileys/angry.gif]', '[img=images/smileys/huh.gif]', '[img=images/smileys/laugh.gif]', '[img=images/smileys/mellow.gif]', '[img=images/smileys/ohmy.gif]', '[img=images/smileys/sad.gif]', '[img=images/smileys/ph34r.gif]', '[img=images/smileys/rolleyes.gif]', '[img=images/smileys/sleep.gif]', '[img=images/smileys/smile.gif]', '[img=images/smileys/tongue.gif]', '[img=images/smileys/unsure.gif]', '[img=images/smileys/wacko.gif]', '[img=images/smileys/wink.gif]', '[img=images/smileys/wub.gif]', '[img=images/smileys/XD.gif]', ); $completed_msg = str_replace($emos_code,$emos_images,$msg); mysql_query("INSERT INTO mail (mail_time,mail_from,mail_to,mail_read,mail_subject,mail_text) VALUES(unix_timestamp(),'{$ir['userid']}','{$who}','0','{$subject}','{$completed_msg}')") or die(mysql_error()); mysql_query("UPDATE users SET new_mail=new_mail+1 WHERE userid='{$who}'") or die(mysql_error()); echo 'Mail sent successfuly.'; $h->endpage(); exit; } if($_GET['ID']) { $value = $_GET['ID']; } else { $value = ""; } echo '<form action="?act=compose" method="post"> Who To: <input type="text" name="towho" value="'.$value.'"> Subject: <input type="text" name="subject" value="No Subject"> Message: <textarea name="message" cols="50" rows="10" id="message"></textarea> <input type="submit" value="Send"> </form> '.$emos_toggle; } function outbox() { global $ir,$h; echo ' <table border="1" width="100%" cellspacing="0" class="table"> <tr> <th>To</th> <th>Subject</th> <th>Time Sent</th> <th>Actions</th> </tr> <tr>'; $v = mysql_query("SELECT * FROM mail WHERE mail_from='{$ir['userid']}' ORDER BY mail_time DESC LIMIT 10") or die(mysql_error()); while($in = mysql_fetch_assoc($v)) { $whos = mysql_query("SELECT * FROM users WHERE userid='{$in['mail_to']}'") or die(mysql_error()); $who = mysql_fetch_assoc($whos); echo '<td>[url="viewuser.php?u='.$who['userid'].'"]'.$who['username'].'[/url]</td> <td>'.$in['mail_subject'].'</td> <td>'.date("F j, Y, g:i:s a", $in['mail_time']).'</td> <td>[[url="?act=read&ID='.$in['mail_id'].'"]<font color="green">Read</font>[/url]]</td><tr>'; } echo '</tr></table>'; } function delb() { global $ir,$h,$ID; $t = mysql_query("SELECT * FROM mail WHERE mail_id='{$ID}'") or die(mysql_error()); $r = mysql_fetch_assoc($t); if($r['mail_to'] != $ir['userid']) { echo 'This mail is not yours!'; $h->endpage(); exit; } mysql_query("DELETE FROM mail WHERE mail_id='{$ID}'") or die(mysql_error()); echo 'Mail deleted successfuly.'; inbox(); } function del() { global $ir,$h; if($_POST['gohome']) { header("location: index.php"); exit; } if($_POST['yes']) { $q = mysql_query("SELECT * FROM mail WHERE mail_to='{$ir['userid']}'") or die(mysql_error()); $f = mysql_num_rows($q); mysql_query("DELETE FROM mail WHERE mail_to='{$ir['userid']}'") or die(mysql_error()); echo $f.' mails deleted.'; $h->endpage(); exit; } echo 'Are you sure you want to delete all your mails? <form action="?act=del" method="post"> <input type="submit" value="Yes" name="yes"> | <input type="submit" value="No" name="gohome"> </form>'; } function archive() { echo 'This tool allows you to download your mails to your computer. [url="dlarchive.php?a=inbox"]Download Inbox Messages[/url] [url="dlarchive.php?a=outbox"]Download Outbox Messages[/url] Select a link above.'; } $h->endpage(); ?>   Whats included: Smileys clickable. Adds a line break when needed.

Re: Enhanced Hall of fame [v2] Oh forgot to mention in first post. This mod will be able to be used as a hall of shame and a hall of fame. The mod will also be able to choose wether donator only viewed, all users viewed or just non donators.