Nicholas Posted March 2, 2010 Posted March 2, 2010 i know this has most probably been made before but i just made myself one. first of all... add the sql... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. right then next... open up jail.php and find... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. or whatever yours is... replace it with... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. after that find... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. replace with... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. after that find... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. replace with... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. once you have done the jail part... time to add the file. call it -- bust.php You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. change the energy taken thing to whatever you want. my games max energy is 10, so i put the jail busting as taking away 1 (10%). right then finally! the perferences.php bit... find... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. under it put... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. then find... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. put under it... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. then add this on top of $h->endpage( ); You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. hope you like it :) if you get any errors (some might) tell me/us. or change... echo ' into echo " or print " and '; into "; and see if that fixes your problem. EDITED SECTION! in header.php find You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. under it put... You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Quote
Nicholas Posted March 2, 2010 Author Posted March 2, 2010 oop sorry posted in wrong place. can you move it to free modifications please. sorry about that. Quote
Jordan Palmer Posted March 2, 2010 Posted March 2, 2010 Well I don't like it, However I'll be nice and give you some suggestions Remove all die(""); - Make it show endpage function then exit; ;) Format the {$ir['username']} Instead off using "\${$ir['rescue']}" Use money_formatter Change some off those queries, Make them all one ;) It could be made much more better :) Quote
Nicholas Posted March 2, 2010 Author Posted March 2, 2010 edited the post, is that better verison Jordan? NOTE: edited verison isnt tested lol. Quote
Jordan Palmer Posted March 2, 2010 Posted March 2, 2010 Might wanna add the noXSS function in as not everyone will have it >,< Check your GET[] too And there still are a few {$ir['username']} left open ;) Quote
Zero-Affect Posted March 2, 2010 Posted March 2, 2010 And there still are a few {$ir['username']} left open ;)What exactly do you think is the issue? change You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. into You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. maybe? Quote
Nicholas Posted March 2, 2010 Author Posted March 2, 2010 like that mate? (not tested, so idk if it works now lol) Quote
Jordan Palmer Posted March 2, 2010 Posted March 2, 2010 And there still are a few {$ir['username']} left open ;)What exactly do you think is the issue? change You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. into You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. maybe? Most people don't filter it in preferences so xss can be used.. Quote
Zero-Affect Posted March 2, 2010 Posted March 2, 2010 most people do filter on register and preferences (who have more than one brain cell) so if you filter the output and input your doubling the load time? Quote
Nicholas Posted March 2, 2010 Author Posted March 2, 2010 is the script fine? on how ive coded it? Quote
wrx Posted March 2, 2010 Posted March 2, 2010 is the script fine? on how ive coded it? Although i dont need this +1 for wanting something different and writing it yourself. wrx Quote
Jordan Palmer Posted March 2, 2010 Posted March 2, 2010 most people do filter on register and preferences (who have more than one brain cell) so if you filter the output and input your doubling the load time? Quite a few new comer's wont even know how so to be honest it's easier to filter it Quote
Djkanna Posted March 3, 2010 Posted March 3, 2010 Well I mean if you strip the tags of say username there is really no point in htmlspecialchars/htmlentities them on output now is there? Quote
Nicholas Posted March 4, 2010 Author Posted March 4, 2010 updated the 1st post with a small modification. helps block players from going into $-1 or lower. also what do you mean Djkanna? Quote
Jordan Palmer Posted March 4, 2010 Posted March 4, 2010 DJK; Quite a lot off new comers to PHP/MCCodes wont filter the username at all, I think its safer to do it in any free/paid mod just incase someone else dont Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.