|
The admin control panel on this is just awful. I had to rewrite it just to add boards to the forums.
I'm not very good with php but I have a start on an admin cp. It is fully functional and I'll gradually improve it as I learn more about php.
The forums with a category and sub category set up.
If anybody is interested in seeing the forums completely set up you can see it Here
I asked a friend to do a vulnerability check on the website and this is what she said.
and she recommended thisCode:« « Marlz - AcidRane » » said (2:06 PM) I found an Cross Site Scripting vulnerabillity within your forums, you can inject Javascript directly into the Message boxes
Code:« « Marlz - AcidRane » » says i beleive there is a php function that youuse to parse a page before it is executed
Yep, this should be perfect for you:
PHP: htmlentities - Manual
Usage:
Code:<?php //data by user, not trusted $data = '<script>alert(\'HACKZOR\');'; //display it with HTML tags disabled echo htmlentities($data, ENT_NOQUOTES); ?>
I need some help with this I got it working on my site but I get these what are they telling me I think it wants me to go to includes/functions.ws? on line 312 how would i find that lol. What exactly is wrong with it??
Warning: mysql_fetch_row() expects parameter 1 to be resource, boolean given in /home/****/public_html/includes/functions.ws on line 312
I'm having an issue with the forums and recovering accounts. With the forums, I cannot add any Categories, or Forums. As for recovering accounts, it says "Seems like you have missed a field" or something like that. Could you please help?
Downloaded in case I ever might need it in the future, thanks.
« Previous Thread | Next Thread » |
Thread Information |
Users Browsing this ThreadThere are currently 1 users browsing this thread. (0 members and 1 guests) |