|
You last visited: Today at 07:27
Advertisement
[New]MummYOnline V 5095
Discussion on [New]MummYOnline V 5095 within the CO2 PServer Archive forum part of the CO2 PServer Advertising category.
12/12/2010, 16:43
|
#16
|
elite*gold: 0 
Join Date: Nov 2007
Posts: 21
Received Thanks: 2
|
Quote:
Originally Posted by Infictus
Yes u can see the IP, if u go to Account_Zf and look netbar_ip, it says the ip that the account was loging in.
|
yes bro you are right i do the same for ip checking,,, 
and now i am working on the new voting page which some hacked it form MR_POP ^^ it will be awesome for voting it's auto detect ips and gives cps to chars automatic after writing char name and click vote, here it is you can have a look 
Code:
?><FORM action="vote.php" method="post">
<div align="center">
<p>Please Enter Your AccountID Below, <br /><br />
After You Vote Please Relogin And Check Your Inventory You will Find Your CPs Increased(<?php require_once('config.php'); echo $emoney ?>CPs )</p>
<p>Please Vote Every 12 Hours Thanks<br />
Cracked by Eddie (base 64 is noob biatch<br />
</p>
<div align="center"><br />
<br />
</div>
<div align="center">AccountID: </div>
<input type="text" name='accid'><br>
<br />
<input type="submit" name="submit" value="Vote">
</div>
</form>
<div align="center">
<?php
require_once('config.php');
$MySQL=mysql_connect($myhost,$myuser,$mypass);
mysql_select_db($accdb);
$name = $_POST['accid'];
$datetime = date('Y-m-d H:i:s');
$ip = $_SERVER['REMOTE_ADDR'];
if($_POST['submit'])
{
if ($name==false)
{
echo 'Please Type In Your Account ID!';
}
else
{
$idchk=mysql_query("SELECT * FROM account WHERE `name`='".$name."'") or die (mysql_error());
$mail=mysql_fetch_assoc($idchk);
mysql_select_db($gamedb);
$user=mysql_query("SELECT * FROM `cq_user` WHERE `account_id`='".$mail['id']."'") or die (mysql_error());
$id=mysql_fetch_assoc($user);
if(mysql_num_rows($idchk)== 0)
{
echo 'This AccountID Does Not Exist!';
}
else
{
$voteip=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."'") or die (mysql_error());
if(mysql_num_rows($voteip)== 0)
{
$votemail=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."'") or die (mysql_error());
if(mysql_num_rows($votemail)==0)
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("INSERT INTO vote SET `email`='".$mail['email']."',`ip`='".$ip."', `timestamp`='".date('Y-m-d H:i:s')."' ") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
else
{
$votemail2=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($votemail2)==0)
{
echo 'You Have Already Voted!';
}
else
{
$voteip2=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($voteip2)== 0)
{
echo 'You Have Already Voted!';
}
else
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("UPDATE vote SET `ip`='".$ip."',`timestamp`='".date('Y-m-d H:i:s')."' WHERE `email`='".$mail['email']."'") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
}
}
}
else
{
$votemail2=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($votemail2)==0)
{
echo 'You Have Already Voted!';
}
else
{
$voteip2=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($voteip2)== 0)
{
echo 'You Have Already Voted!';
}
else
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("UPDATE vote SET `ip`='".$ip."',`timestamp`='".date('Y-m-d H:i:s')."' WHERE `email`='".$mail['email']."'") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
}
}
}
}
}
?>
</div>
|
|
|
|
12/12/2010, 17:12
|
#17
|
elite*gold: 0
Join Date: Nov 2007
Posts: 73
Received Thanks: 8
|
Quote:
Originally Posted by ZeroCooL-ViP
yes bro you are right i do the same for ip checking,,,
and now i am working on the new voting page which some hacked it form MR_POP ^^ it will be awesome for voting it's auto detect ips and gives cps to chars automatic after writing char name and click vote, here it is you can have a look
|
And that is still flawed because people can click submit, and close the page when it wants them to vote?
|
|
|
|
|
12/12/2010, 19:00
|
#18
|
elite*gold: 0
Join Date: Nov 2010
Posts: 1,162
Received Thanks: 370
|
Quote:
Originally Posted by ZeroCooL-ViP
yes bro you are right i do the same for ip checking,,,
and now i am working on the new voting page which some hacked it form MR_POP ^^ it will be awesome for voting it's auto detect ips and gives cps to chars automatic after writing char name and click vote, here it is you can have a look
Code:
?><FORM action="vote.php" method="post">
<div align="center">
<p>Please Enter Your AccountID Below, <br /><br />
After You Vote Please Relogin And Check Your Inventory You will Find Your CPs Increased(<?php require_once('config.php'); echo $emoney ?>CPs )</p>
<p>Please Vote Every 12 Hours Thanks<br />
Cracked by Eddie (base 64 is noob biatch<br />
</p>
<div align="center"><br />
<br />
</div>
<div align="center">AccountID: </div>
<input type="text" name='accid'><br>
<br />
<input type="submit" name="submit" value="Vote">
</div>
</form>
<div align="center">
<?php
require_once('config.php');
$MySQL=mysql_connect($myhost,$myuser,$mypass);
mysql_select_db($accdb);
$name = $_POST['accid'];
$datetime = date('Y-m-d H:i:s');
$ip = $_SERVER['REMOTE_ADDR'];
if($_POST['submit'])
{
if ($name==false)
{
echo 'Please Type In Your Account ID!';
}
else
{
$idchk=mysql_query("SELECT * FROM account WHERE `name`='".$name."'") or die (mysql_error());
$mail=mysql_fetch_assoc($idchk);
mysql_select_db($gamedb);
$user=mysql_query("SELECT * FROM `cq_user` WHERE `account_id`='".$mail['id']."'") or die (mysql_error());
$id=mysql_fetch_assoc($user);
if(mysql_num_rows($idchk)== 0)
{
echo 'This AccountID Does Not Exist!';
}
else
{
$voteip=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."'") or die (mysql_error());
if(mysql_num_rows($voteip)== 0)
{
$votemail=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."'") or die (mysql_error());
if(mysql_num_rows($votemail)==0)
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("INSERT INTO vote SET `email`='".$mail['email']."',`ip`='".$ip."', `timestamp`='".date('Y-m-d H:i:s')."' ") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
else
{
$votemail2=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($votemail2)==0)
{
echo 'You Have Already Voted!';
}
else
{
$voteip2=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($voteip2)== 0)
{
echo 'You Have Already Voted!';
}
else
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("UPDATE vote SET `ip`='".$ip."',`timestamp`='".date('Y-m-d H:i:s')."' WHERE `email`='".$mail['email']."'") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
}
}
}
else
{
$votemail2=mysql_query("SELECT * FROM `vote` WHERE `email`='".$mail['email']."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($votemail2)==0)
{
echo 'You Have Already Voted!';
}
else
{
$voteip2=mysql_query("SELECT * FROM `vote` WHERE `ip`='".$ip."' AND UNIX_TIMESTAMP(`timestamp`) <= UNIX_TIMESTAMP('" .date('Y-m-d H:i:s', strtotime('-12 Hours'))."')") or die (mysql_error());
if(mysql_num_rows($voteip2)== 0)
{
echo 'You Have Already Voted!';
}
else
{
echo "<meta http-equiv=\"refresh\" content=\"0;url='".$url."'\" />";
mysql_query("UPDATE vote SET `ip`='".$ip."',`timestamp`='".date('Y-m-d H:i:s')."' WHERE `email`='".$mail['email']."'") ;
mysql_query("UPDATE cq_user SET `emoney`=`emoney`+'".$emoney."' where id='".$id['id']."'") ;
echo 'Your Voting Genreted Sucssesfuly';
}
}
}
}
}
}
?>
</div>
|
Peoples can change IP and then vote 100000times.
Yay!
Also they can simply use SQLi and they can vote all the times they want.
If you want to do a good voting system do it by ip, charname etc. BUT from ingame.
|
|
|
|
|
12/15/2010, 15:43
|
#19
|
elite*gold: 0
Join Date: Nov 2007
Posts: 21
Received Thanks: 2
|
Ok ppl why you all care about Voting Reward,,,i canceled it,,so if anyone wanna Vote it's his own freewill ,,,  and i make protection for servers to help the servers owners to prevent aimbots, hacks, so any one want protect his server just send to me your MSGserver&loader in privet message,, and i will help <for Free>
|
|
|
|
Similar Threads
|
[Help 5095]Can Any One Gave Me Code To Love Stone In source Binary 5095
04/18/2010 - CO2 Private Server - 1 Replies
Can Any One Gave Me Code To Love Stone In source Binary 5095 from his source
Cuz I Have problem in marriage
love stone gave u flower and when u send it nothing sent to Your Frind
And I Think Problem In This Code
400011 400012 0 124 1067
|
All times are GMT +1. The time now is 07:31.
|
|
![[New]MummYOnline V 5095](https://www.elitepvpers.com/forum/iconimages/co2-pserver-archive/new-mummyonline-v-5095-a_ltr.gif){kind=small}
