Register for your free account! | Forgot your password?

Go Back   elitepvpers > MMORPGs > Rappelz > Rappelz Private Server
[Release] Register Form [Release] Register Form
You last visited: Today at 13:17

  • Please register to post and access all features, it's quick, easy and FREE!

Advertisement


Advertise with us!

[Release] Register Form

Discussion on [Release] Register Form within the Rappelz Private Server forum part of the Rappelz category.

Reply
 
Old   #1
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Mar 2019
Posts: 118
Received Thanks: 108
[Release] Register Form

Nulled.
Nove240 is offline  
Thanks
1 User
Old 04/14/2020, 09:01   #2

 
Musta²'s Avatar
 
elite*gold: 1
The Black Market: 2/0/0
Join Date: May 2011
Posts: 542
Received Thanks: 424
The code is vulnerable in its current state, you'll need to prepare the first statement as well similar to the second, like this:

PHP Code:
if($password1 == $password2){
        $rs odbc_prepare($connq"SELECT Count(*) AS counter FROM Auth.dbo.Accounts WHERE login_name=?");
        if(odbc_execute($rs, array($user))) {
            $arr odbc_fetch_array($rs);
        } else {
            echo "An error occured, please try again later.";
        } 
Musta² is offline  
Old 04/14/2020, 10:50   #3
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Dec 2014
Posts: 29
Received Thanks: 3
Sql injection sends its regards to you
1nternalError is offline  
Old 04/14/2020, 11:21   #4
 
YamatosDeath's Avatar
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Feb 2020
Posts: 59
Received Thanks: 69
slightly interesting
YamatosDeath is offline  
Old 04/14/2020, 18:29   #5


 
Ghost Informatics's Avatar
 
elite*gold: 6190
The Black Market: 0/0/0
Join Date: Sep 2014
Posts: 349
Received Thanks: 953
Good job as a beginner, keep trying and doing what you do and you'll do something great in the future.
Ghost Informatics is offline  
Thanks
2 Users
Old 04/15/2020, 13:01   #6
 
elite*gold: 0
The Black Market: 0/0/0
Join Date: Mar 2019
Posts: 118
Received Thanks: 108
I saw the SQL injection problem i will try to fix it

Think that if fixed, if you saw error please report it

Code:
<?php

if(isset($_POST['register'])){
  include 'Auth.php';
  $user = $_POST['User'];
  $password1 = $_POST['Pass1'];
  $password2 = $_POST['pass2'];

  if(!empty($user) && !empty($password2) && !empty($password1)){

      if($password1 == $password2){

    $rs = odbc_prepare($connq, "SELECT Count(*) AS counter FROM Auth.dbo.Accounts WHERE login_name = ? ");
        $rss = odbc_execute($rs, array($user));
        $arr = odbc_fetch_array($rs); 

    if($arr['counter'] == 0){

        $newpass = md5("2011".$password1);


      $req = odbc_prepare($connq, "INSERT INTO Auth.dbo.Accounts (login_name,password,referral_id,referral_code,pcbang,block,withdraw_remain_time,age,auth_ok,last_login_server_idx,event_code,server_list_mask,result,ip,game_code,gamecode,login_event,email) VALUES(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)");
      $rep = odbc_execute($req, array($user,$newpass,'0','0','0','0','0','0','1','1','0','0','0','0','0','0','0 ','Mailed'));

      echo "Compte crée avec succès";

}else{
  echo "<br/>Ce compte existe déja, Désolé !";
}

  }else{
    echo "Les mots de passe ne correspondent pas !";
  }



  }else{


    echo "Les champs doivent etre tous remplis !";
  }


    

}

?>
Nove240 is offline  
Reply

« Do not trust 9.6 files [backdoor] | some questions for choosing a server hosting »

Similar Threads Similar Threads
[C#] Variable aus Form 2 in Form 3
11/27/2013 - .NET Languages - 9 Replies
Hallo, ich bin gerade dabei ein kleinen Bot zu schreiben.. Dabei habe ich eine Form 1 wo mein Browser ( also das Spiel ) drauf läuft. Nun habe ich einen Button, der eine 2 Form öffnet wo man seine Logindaten eingeben kann. Diese daten sollen in string´s gespeichert werden und dann an die Form 3 ( die sich nachdem man Save auf der Form2 gedrückt hat ) gesendet werden und dort dann wieder ausgegeben werden. Doch leider bekomme ich das einfach nicht hin. In google stehen viele verschiedene sachen,...
Druid Cat Form -> FireLands Cat Form
08/01/2011 - World of Warcraft - 2 Replies
Hallo Leute, hat jemand die Möglichkeiten mir eine Tauren Katze zur Firelands Katze zu swappen - sofern dies in 4.2 FIRELANDS noch möglich ist. Wobei die Vergangenheit uns gelehrt hat, das es immer Mittel und Wege gibt. (: http://manaflask.com/images/galleries/scaled_1307 971939_flamecat.jpg LG Windkirsche
Von Form Zu Form Wechseln.
04/14/2011 - AutoIt - 2 Replies
Hallo Erstmal! Ich wollte mal etwas machen das von einer form zur anderen wechselt jetzt wollt ich das aber auch so machen das wenn man auf einen zurück button klickt es wieder zur ersten form kommt und dann alles neu einstellen kann. also bis zu dem zurück und neu einstellen hab ich geschafft aber wenn man dann wieder auf weiter klickt passiert nix ... Könntet ihr mir helfen? Hier ist ein beispiel script #include <ButtonConstants.au3> #include <GUIConstantsEx.au3> #include...
Druid Tree form buff without tree Form
11/11/2007 - WoW Exploits, Hacks, Tools & Macros - 5 Replies
My buddy and i were screwing around the other day in Mech and we figured out a way to have a working tree form buff for the party but not be in tree form. Which if anyone knows about druids allows them to cast all their other high healing spells. Anyway follow the instructions below its a bit tricky 1. Change your chest item to something else 2. Get into Combat.. Queue your chestpiece to switch back to your original 3. When the fights finishing, Get ready.. The second the...



All times are GMT +1. The time now is 13:18.

elitepvpers - play less, get more - Top

Powered by vBulletin®
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Support | Contact Us | FAQ | Advertising | Privacy Policy | Terms of Service | Abuse
Copyright ©2025 elitepvpers All Rights Reserved.