Warning: odbc_exec() [function.odbc-exec]: SQL error: [Microsoft][ODBC SQL Server Driver][SQL Server]An object or column name is missing or empty. For SELECT INTO statements, verify each column has a name. For other statements, look for empty alias names. Aliases defined as "" or [] are not allowed. Change the alias to a valid name., SQL state 37000 in SQLExecDirect in C:\xampp\htdocs\sites\regist.php on line 69
The script could not be executed:
The account could not be written to the database.
Heres the source:
<?php if (!defined('access')) {die("Die gesuchte Ressource wurde entfernt oder umbenannt, oder sie steht vorübergehend nicht zur Verfügung.");} ?>
<h2><?php echo $_LANG['regist_siteTitle']; ?></h2>
<?php
if(isset($_POST['registSubmit'])) {
$account = cleanSqlInput($_POST['registAccountID']);
$pass1 = cleanSqlInput($_POST['registPassword']);
$pass2 = cleanSqlInput($_POST['registPasswordRepeat']);
$email = cleanSqlInput($_POST['registMail']);
$email2 = cleanSqlInput($_POST['registMailRepeat']);
$provider = preg_replace("^(.*?)@(.*?)^", "$2", $email);
$gefra = cleanSqlInput($_POST['registSecretQuestion']);
$geant = cleanSqlInput($_POST['registSecretAnswer']);
$birthday = cleanSqlInput($_POST['registBirthday']);
$md5pw = md5($_CONFIG['allg_svr_salt'].$pass1);
$strOutputErrorArray = array();
$accountcheck1 = @
c_num_rows @c_exec($odbc_connect, 'SELECT [account] FROM [' . $_CONFIG['db_databases']['acc'] . '].[dbo].[ACCOUNT_TBL] WHERE account = \''.$account.'\''));$accountcheck2 = @
c_num_rows @c_exec($odbc_connect, 'SELECT [account] FROM [' . $_CONFIG['db_databases']['web'] . '].[dbo].[VALIDATE] WHERE [type] = 0 AND [account] = \''.$account.'\''));if(!$_CONFIG['registration_enabled']) {
$strOutputErrorArray[] = $_LANG['error_registration_disabled'];
}
if(isSpamming($_POST['inputCheckTimestamp'], $_POST['inputCheckKey'], $_SESSION['inputCheckKey'])) {
$strOutputErrorArray[] = $_LANG['error_spam'];
}
if(empty($account) or empty($pass1) or empty($pass2) or empty($email) or empty($email2) or empty($gefra) or empty($geant) or empty($birthday)) {
$strOutputErrorArray[] = $_LANG['error_fill_in_all_fields'];
}
if(!isset($_POST['registCheckbox'])) {
$strOutputErrorArray[] = $_LANG['error_confirm_reading_rules'];
}
if($accountcheck1 > 0 OR $accountcheck2 > 0) {
$strOutputErrorArray[] = $_LANG['error_accountname_is_taken'];
}
if((strlen($account) > 16) || (strlen($account) < 3)) {
$strOutputErrorArray[] = $_LANG['error_account_length'];
}
if ($account != preg_replace ("/[^A-Za-z0-9]/", "", $account)) {
$strOutputErrorArray[] = $_LANG['error_no_special_characters_account'];
}
if((strlen($pass1) > 16) || (strlen($pass1) < 6)) {
$strOutputErrorArray[] = $_LANG['error_password_length'];
}
if($pass1 != $pass2) {
$strOutputErrorArray[] = $_LANG['error_passwords_indistinguishable'];
}
if($geant != preg_replace('/[^A-Za-z0-9 ]/', '', $geant)) {
$strOutputErrorArray[] = $_LANG['error_no_special_characters_secret_answer'];
}
if(strtolower($email) != strtolower($email2)) {
$strOutputErrorArray[] = $_LANG['error_mails_indistinguishable'];
}
if(!preg_match('/^[a-zA-Z0-9-_.]+@[a-zA-Z0-9-_.]+\.[a-zA-Z]{2,4}$/', $email)) {
$strOutputErrorArray[] = $_LANG['error_mail_must_be_valid'];
}
if(in_array($provider, $_CONFIG['web_mail_provider'])) {
$strOutputErrorArray[] = $_LANG['error_spam_provider'];
}
if(!strtotime($birthday)) {
$strOutputErrorArray[] = $_LANG['error_valid_birthday'];
}
if(count($strOutputErrorArray) > 0) {
echo createMessage($strOutputErrorArray, 'fail');
}
else {
if(odbc_exec($odbc_connect, '
EXEC [' . $_CONFIG['db_databases']['acc'] . '].[dbo].[usp_createAccount] @account=\'' . $account . '\', @pw=\''.$md5pw.'\', @
=\''.$email.'\', @t=\''.md5($_CONFIG['security_secretAnswerSalt'].$geant).'\', @=\''.date($_CONFIG['web_date_format']['date'], strtotime($birthday)).'\', @ip = \'' . $_SERVER['REMOTE_ADDR'] . '\', @=\'' . $_CONFIG['web_default_lang'] . '\'')) {
$_SESSION['user'] = strtolower($account);
$_SESSION['votepoints'] = 0;
$_SESSION['cash'] = 0;
echo createMessage('Der Account ' . cleanHtmlOutput($account) . ' wurde erfolgreich registriert.', 'success');
}
else {
echo createMessage('The account could not be written to the database.', 'fail');
}
}
}
else {
if($_CONFIG['registration_enabled']) {
if($_CONFIG['registration_verify_mail_enabled']) {
echo createMessage($_LANG['notify_registration'], 'hint');
}
}
else {
echo createMessage($_LANG['error_registration_disabled'], 'fail');
}
}
?>
<form method="post" class="generic-form">
<input type="hidden" name="inputCheckTimestamp" value="<?php echo time();?>" />
<input type="hidden" name="inputCheckKey" value="<?php echo random_string();?>" />
<fieldset>
<legend><?php echo $_LANG['regist_account_information_subTitle']; ?></legend>
<table>
<tr>
<td><?php echo $_LANG['account']; ?></td>
<td><input type="text" name="registAccountID" id="registAccountID" maxlength="16" placeholder="<?php echo $_LANG['account']; ?>" required="required"/></td>
</tr>
<tr>
<td><label class="labelRegistration" for="registPassword"><?php echo $_LANG['password']; ?></label></td>
<td><input type="password" name="registPassword" id="registPassword" placeholder="<?php echo $_LANG['password']; ?>" required="required"/></td>
<td><input type="password" name="registPasswordRepeat" id="registPasswordRepeat" class="password" placeholder="<?php echo $_LANG['repeat_password']; ?>" required="required"/></td>
</tr>
</table>
</fieldset>
<fieldset>
<legend><?php echo $_LANG['regist_security_subTitle']; ?></legend>
<table>
<tr>
<td><label class="labelRegistration" for="registMail"><?php echo $_LANG['mail']; ?> :</label></td>
<td><input type="email" name="registMail" id="registMail" class="email" placeholder="
" required="required"/></td><td><input type="email" name="registMailRepeat" id="registMailRepeat" class="email" placeholder="<?php echo $_LANG['mail_repeat']; ?>" required="required"/></td>
</tr>
<tr>
<td><label class="labelRegistration" for="registBirthday"><?php echo $_LANG['birthday']; ?> :</label></td>
<td><input type="text" name="registBirthday" id="registBirthday" class="birthday" placeholder="<?php echo $_LANG['birthday']; ?>" required="required"/></td>
</tr>
<tr>
<td><label class="labelRegistration" for="registSecretQuestion"><?php echo $_LANG['secret_question']; ?> :</label></td>
<td colspan="2">
<select name="registSecretQuestion" id="registSecretQuestion" class="frage" required="required">
<option value="" selected="selected"></option>
<?php
foreach($_CONFIG['allg_secretquestions'] as $id => $frage) {
echo '<option value="'.$id.'" >'.$frage.'</option>';
}
?>
</select>
</td>
</tr>
<tr>
<td>
<label class="labelRegistration" for="registSecretAnswer"><?php echo $_LANG['secret_answer']; ?> :</label>
</td>
<td>
<input type="text" name="registSecretAnswer" id="registSecretAnswer" class="antwort" placeholder="<?php echo $_LANG['secret_answer']; ?>" required="required"/>
</td>
</tr>
</table>
</fieldset>
<fieldset>
<legend><?php echo $_LANG['regist_rules_subTitle']; ?></legend>
<p>
I have the<a href="index.php?site=rules" target="_blank">Server Rules read and agree with them:</a>
<input type="checkbox" name="registCheckbox" id="registCheckbox" required="required"/>
</p>
<p class="text-center"><input type="submit" name="registSubmit" value="<?php echo $_LANG['button_send_registration']; ?>"/></p>
</fieldset>
</form>
