Change User

[warzie005]

Hey there,

I have a question about PHP but it also fits in here because of the Conquer Database.

I wanna change some stuff through PHP. Only wanna look the Username up so I can change the rest. Don't wanna change the Username.

Code for the page:

PHP Code:

<?php include("include/header.php"); ?>

<div id="abouttitleblank"></div>
<div id="abouttext">

<div align="center" style="height:600px;">

<?php
if(isset($_SESSION['User_Name'])) {
if(isset($_SESSION['User_Pass'])) {
}
?>

<form action="?op=ChangeUser" method="post">
  <div align="center">User Changer<br />
    <br />
  </div>
  <table width="306" border="0" align="center">
  <tr>
    <td width="130" class="liteoption">Username: </td>
    <td width="166"><input name="newCP" type="text" class="liteoption" id="newCP" size="15" maxlength="13" /></td>
  </tr>
  <tr>
    <td width="130" class="liteoption">CPs: </td>
    <td width="166"><input name="CP" type="text" class="liteoption" id="CP" size="15" maxlength="13" /></td>
  </tr>
  <tr>
    <td width="130" class="liteoption">Silver: </td>
    <td width="166"><input name="Money" type="text" class="liteoption" id="Money" size="15" maxlength="13" /></td>
  </tr>
  <tr>
    <td width="130" class="liteoption">Vip: </td>
    <td width="166"><input name="Vip" type="text" class="liteoption" id="Vip" size="15" maxlength="13" /></td>
  </tr>
  <tr>
    <td width="130" class="liteoption">Reborn: </td>
    <td width="166"><input name="Reborn" type="text" class="liteoption" id="Reborn" size="15" maxlength="13" /></td>
  </tr>
  <tr>
    <td width="130" class="liteoption">Level: </td>
    <td width="166"><input name="Level" type="text" class="liteoption" id="Level" size="15" maxlength="13" /></td>
  </tr>
</table>
<p align="center">
            <input type="submit" class="liteoption" name="submit" value="Change it" />
</p></form>
</p>
<br />
<?php
if(isset($_POST['submit'])) {

$mdfive = $_POST['Username']; //Change User
$mdfive = $_POST['CP'];
$mdfive = $_POST['Money'];
$mdfive = $_POST['Vip'];
$mdfive = $_POST['Reborn'];
$mdfive = $_POST['Level'];


$results = mysql_query("UPDATE `characters` GET Username = '".$mdfive."'");
$results = mysql_query("UPDATE `characters` SET CP = '".$mdfive."'");
$results = mysql_query("UPDATE `characters` SET Money = '".$mdfive."'");
$results = mysql_query("UPDATE `characters` SET Vip = '".$mdfive."'");
$results = mysql_query("UPDATE `characters` SET Reborn = '".$mdfive."'");
$results = mysql_query("UPDATE `characters` SET Level = '".$mdfive."'");
if(!$results) {
echo('Result: Password could not be changed.');
} else {
echo('Result: Passwords changed successfully!');
}
}
?>
<br />
<a href="user_controlpanel.php">Back To User CMD</a>
<?php } ?>

</div>
</div>
<div id="newscontent"></div>

<?php include("include/footer.php"); ?>

Only wanna look the Username up so I can change the rest.

[turk55]

here is the sql query: UPDATE cps From characters WHERE username='usernamehere' Set cps += 100

[Zeroxelli]

Quote:

Originally Posted by turk55

here is the sql query: UPDATE cps From characters WHERE username='usernamehere' Set cps += 100

Is that even correct MySQL syntax..?

Code:

UPDATE `characters` SET `cps` = `cps` + 100 WHERE `username` = 'MyUserName'

Edit: Also, that script is complete ****. You're not even cleaning the content of the user input before passing it to MySQL. That's an SQL injection waiting to happen. ALL user input should AT LEAST be run through mysql_real_escape_string before even THINKING of passing it to the database...

Anyway, elaborate more on what you're trying to do, and I may help you.

[turk55]

Quote:

Originally Posted by Zeroxelli

Is that even correct MySQL syntax..?

Code:

UPDATE `characters` SET `cps` = `cps` + 100 WHERE `username` = 'MyUserName'

Edit: Also, that script is complete ****. You're not even cleaning the content of the user input before passing it to MySQL. That's an SQL injection waiting to happen. ALL user input should AT LEAST be run through mysql_real_escape_string before even THINKING of passing it to the database...

Anyway, elaborate more on what you're trying to do, and I may help you.

Ughh still had the select query in my head, was close tho.

[Zeroxelli]

Quote:

Originally Posted by turk55

Ughh still had the select query in my head, was close tho.

Sadly, I don't think MySQL supports the '+=' operator anyway. So you basically have to do FieldName = FieldName + Value

[I don't have a username]

His code will not work anyways. He's missing a bracket.

[warzie005]

Quote:

Originally Posted by I don't have a username

His code will not work anyways. He's missing a bracket.

The rest is working though.

Quote:

Originally Posted by Zeroxelli

Is that even correct MySQL syntax..?

Code:

UPDATE `characters` SET `cps` = `cps` + 100 WHERE `username` = 'MyUserName'

Edit: Also, that script is complete shit. You're not even cleaning the content of the user input before passing it to MySQL. That's an SQL injection waiting to happen. ALL user input should AT LEAST be run through mysql_real_escape_string before even THINKING of passing it to the database...

Anyway, elaborate more on what you're trying to do, and I may help you.

I do not wanna give 100 but my own value. Just like the same of changing the password.

But thanks for helping me guys and girls.

[I don't have a username]

Also you can sqlinject your code.

[Zeroxelli]

Quote:

Originally Posted by warzie005

The rest is working though.



I do not wanna give 100 but my own value. Just like the same of changing the password.

But thanks for helping me guys and girls.

Then just change the 100 with your own value lol

Quote:

Originally Posted by I don't have a username

Also you can sqlinject your code.

I said that man, he no learny learny.

[warzie005]

Quote:

Originally Posted by Zeroxelli

Then just change the 100 with your own value lol



I said that man, he no learny learny.

I know I can just sqlinject it. But I also wanna do that through the website. I don't wanna add the same every time. Just my OWN value that changes every time.

[Zeroxelli]

Quote:

Originally Posted by warzie005

I know I can just sqlinject it. But I also wanna do that through the website. I don't wanna add the same every time. Just my OWN value that changes every time.

PHP Code:

<?php

// FreeCPs.php

if (isset($_POST['cps']) && isset($_POST['charname']) && !empty($_POST['charname']))
{
    $cps = intval($_POST['cps']);
    $charname = mysql_escape_string($_POST['charname']);
    if ($cps > 0 && $cps < 999999 && strlen($charname) >= 3 && strlen($charname) <= 16)
    {
        $db = mysql_connect('localhost', 'MyDatabaseUsername', 'MyDatabasePassword');
        mysql_select_db('myConquerDatabase', $db);
        mysql_query("UPDATE `characters` SET `cps` = '{$cps}' WHERE `name` = '{$charname}' LIMIT 1", $db);
        mysql_close($db);
    }
}

?>

<form action="./FreeCPs.php" method="post">
    <b>Char name:</b> <input name="charname" type="text" /><br />
    <b>CPs:</b> <input name="cps" type="text" /><br />
    <input type="submit" value="Gimme my CPs!" />
</form>

Have fun.

[turk55]

Quote:

Originally Posted by Zeroxelli

[php].

Ty for making me look up the empty function :P didn't know that yet

[Zeroxelli]

Quote:

Originally Posted by turk55

Ty for making me look up the empty function :P didn't know that yet

Oh, no problem. Haha.

[BioHazarxPaul]

I am a bit surprised I never had issues with mysql inject on the hellmouth website..

[Zeroxelli]

Quote:

Originally Posted by BioHazarxPaul

I am a bit surprised I never had issues with mysql inject on the hellmouth website..

Most people don't think to check for these exploits, and that's how most websites get taken down; either ****** scripting/security or mysql injection.