Register for your free account! | Forgot your password?

Go Back   elitepvpers > Popular Games > Metin2 > Metin2 Private Server
Daroo SF webpage bug with Social_ID, Password, Security Question Daroo SF webpage bug with Social_ID, Password, Security Question
You last visited: Today at 13:20

  • Please register to post and access all features, it's quick, easy and FREE!

Advertisement


Advertise with us!

Daroo SF webpage bug with Social_ID, Password, Security Question

Discussion on Daroo SF webpage bug with Social_ID, Password, Security Question within the Metin2 Private Server forum part of the Metin2 category.

Reply
 
Old   #1
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Jul 2012
Posts: 3
Received Thanks: 0
Exclamation Daroo SF webpage bug with Social_ID, Password, Security Question

Hello,
Since i found that Daroo server files have webpage i am trying to fix the bug with social id, password and security question in navicat but nothing happens.
Reg form:

Result:

Here is the register page code:

PHP Code:
<div id="content">            <div class="postui2 text-title">
                    <h2>
                    Registration
                    
                    </h2>
                
                </div>
                <div class="postui2 text-con">
                <div class="con-wrap">
<?PHP
  
  $regCoins 0// Startcoins
  
  $laufZeit 365//Tage autoloot,safebox
  $calcLZ = (60*60*24)*365;
  $expireStamp time()+$calcLZ;
  $expireDate date("Y-m-d H:i:s",$expireStamp);
  
  if($serverSettings['register_on'] && (!isset($_SESSION['user_admin']) && !checkInt($_SESSION['user_admin']) && !$_SESSION['user_admin']>=0)) {
  
    if(isset($_POST['submit']) && $_POST['submit']=="registrieren") {
      if((checkAnum($_POST['account']) && strlen($_POST['account'])>=&& strlen($_POST['account'])<=16) && checkAnum($_POST['pass'])  && strlen($_POST['pass'])>=&& strlen($_POST['pass2'])<=16 && !empty($_POST['pass2']) && (checkName($_POST['uname']) && strlen($_POST['uname'])>=&& strlen($_POST['uname'])<=20) && $_POST['pass']==$_POST['pass2'] && checkMail($_POST['email']) && strlen($_POST['email'])<=40 && $_POST['email']==$_POST['email2'] && (checkAnum($_POST['sicherheitsa']) && strlen($_POST['sicherheitsa'])>=&& strlen($_POST['sicherheitsa'])<=16) && checkInt($_POST['sicherheitsf']) && (checkAnum($_POST['loeschcode']) && strlen($_POST['loeschcode'])==7)) {
        
        $sqlCmd "INSERT INTO account.account 
        (login,password,real_name,email,social_id,question1,answer1,create_time,status,coins,autoloot_expire,safebox_expire,web_aktiviert) 
        VALUES 
        ('".$_POST['account']."',PASSWORD('".$userpass."'),'".mysql_real_escape_string($_POST['uname'])."','".mysql_real_escape_string($_POST['email'])."','".$lcode."','".$sfNum."','".$hashSF."','".$sqlZeit."','OK','".$regCoins."','".$expireDate."','".$expireDate."','".$aktivHash."')";
        $sqlQry mysql_query($sqlCmd,$sqlServ);
        if($sqlQry) {
            echo'<p class="meldung">Account erfolgreich angelegt. Sie können sich nun anmelden.</p>';
        }
        else {
          echo'<p class="meldung">Registrierung fehlgeschlagen: Der Account existiert bereits.</p>';
        }
        
      }
      else {
        echo'<p class="meldung">Registrierung fehlgeschlagen: bitte alle Felder richtig angeben</p>';
      }
    }
  ?>
    <p>Alle Felder sind Pflichtfelder und müssen ausgefüllt werden.</p>
    <form action="index.php?s=register" method="POST">
      <table>
        <tr>
          <th class="topLine">Account:</th>
          <td class="tdunkel"><input type="text" name="account" maxlength="16" size="16"/> 8-16 Zeichen (nur a-Z,0-9)</td>
        </tr>
        <tr>
          <th class="topLine">Name:</th>
          <td class="thell"><input type="text" name="uname" maxlength="16" size="16"/> 3-20 Zeichen (nur a-Z,0-9)</td>
        </tr>
        <tr>
          <th class="topLine">Password:</th>
          <td class="tdunkel"><input type="password" name="pass" maxlength="16" size="16"/> 4-16 Zeichen (nur a-Z,0-9)</td>
        </tr>
        <tr>
          <th class="topLine">Password wiederholen:</th>
          <td class="thell"><input type="password" name="pass2" maxlength="16" size="16"/></td>
        </tr>
        <tr>
          <th class="topLine">E-Mail:</th>
          <td class="tdunkel"><input type="text" name="email" maxlength="50" size="25"/> max. 40 Zeichen</td>
        </tr>
        <tr>
          <th class="topLine">E-Mail wiederholen:</th>
          <td class="thell"><input type="text" name="email2" maxlength="50" size="25"/></td>
        </tr>
        <tr>
          <th class="topLine">Löschcode:</th>
          <td class="tdunkel"><input type="text" name="loeschcode" maxlength="7" size="7"/> 7 Zeichen (nur a-Z,0-9)</td>
        </tr>
        <tr>
          <th class="topLine">Sicherheitsfrage:</th>
          <td class="thell">
            <select name="sicherheitsf">
              <?PHP
                foreach($sFrage AS $fragew => $frage) {
                  echo'<option value="'.$fragew.'">'.$frage.'</option>';
                }
              ?>
            </select>
            <input type="text" name="sicherheitsa" maxlength="16" size="16"/> 3-16 Zeichen (nur a-Z,0-9)
          </td>
        </tr>
        <tr>
          <th class="topLine" style="text-align:center;" colspan="2"><input type="submit" name="submit" value="registrieren"/> &bull; <input type="reset" value="zurücksetzen"/></th>
        </tr>
      </table>
    </form>
  <?PHP
  }
  else {
    echo'<p class="meldung">Die Registration ist deaktiviert oder Sie sind bereits angemeldet. Es kann kein weiterer Account erstellt werden.</p>';
  }
?>

                </div>

  </div> 
                <div class="postui2 text-end">
             
                
                  
    </div></div>
Dr.Lorax is offline  
Old 12/25/2012, 19:47   #2
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Jul 2012
Posts: 3
Received Thanks: 0
bump*
Dr.Lorax is offline  
Reply

Tags
bug, daroo files, password, social_id, website

« unsichtbare Textur | Das Geheimnis Ascarias - name im FTP? »

Similar Threads Similar Threads
Security vulnerability in MySQL/MariaDB sql/password.c
06/15/2012 - Metin2 PServer Guides & Strategies - 10 Replies
Something very important for all that article is not mine i am just sharing information "Hi We have recently found a serious security bug in MariaDB and MySQL. So, here, we'd like to let you know about what the issue and its impact is. At the end you can find a patch, in case you need to patch an older unsuported MySQL version.
This looks like fun (RoM password security)
06/18/2010 - General Gaming Discussion - 26 Replies
Seems like a bunch of people are raging now on both EU and US forums after this video was made about unencrypted passwords. Looks like fun to me lol EU thread: IMba security for our accounts? Yea hacked by any 10 yo who learned some CCNA. - Forum Video: YouTube - Runes of Magic - Login security I so do love how secure Runes of Magic is. :D
NCsoft Password Security Update
05/13/2010 - Aion - 1 Replies
As of May 12, 2010, the NCsoft Account Management and game account password features were updated to provide better security for our customers. For customers with existing accounts, these updates will take effect after you have logged into your NCsoft master account to update your NCsoft master account password and password hints. For customers creating new accounts, the new features will automatically take effect. The new features include: Removal of date of birth verification for the...
NCsoft Password Security Update
05/13/2010 - Lineage 2 - 1 Replies
As of May 12, 2010, the NCsoft Account Management and game account password features were updated to provide better security for our customers. For customers with existing accounts, these updates will take effect after you have logged into your NCsoft master account to update your NCsoft master account password and password hints. For customers creating new accounts, the new features will automatically take effect. The new features include: Removal of date of birth verification for the...
Change Password without Security Question???
06/16/2008 - Silkroad Online - 4 Replies
Hi guys; is it possible to change my password in Silkroad without answering the Security Question (i forgot the answer, so long ago:().



All times are GMT +1. The time now is 13:21.

elitepvpers - play less, get more - Top

Powered by vBulletin®
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Terms of Service | Abuse
Copyright ©2025 elitepvpers All Rights Reserved.