[Help] Trade Hours ми дава грешка

J

Jerico

New Member
Joined
Feb 23, 2012
Messages
46
Reaction score
2
Опитвам се да сложа trade_time.php модула от този сайт, но не ми намира функцията Hours_trade(), намерих я в тези файлове къде се намира, но не мога да разбера къде да я сложа при мен.. ползвам старият уеб на дамян, преди да го смени с този белият.. малко помощ ?

DOX.bg - Файл организатор за лесно споделяне и съхранение на файлове
 
include/funcion.user.php или нещо такова :)
 
Значи, даваше първоначално грешката:
Code: 
Fatal error: Unknown function: online_hours() in C:\Program Files\xampp\htdocs\modules\trade_time.php on line 9

След това, както каза @KR373N копирах това от /htdocs/_inc/mfs_class.php :
Code: 
// Exchange Online Time normal
function online_hours()
{
global $resethours;
global $wincredits;

$character = secure($_POST['character']);
$account = secure($_POST['login']);
$password = secure($_POST['password']);

check_inject();

$query = mssql_query("Select memb___id,OnlineHours,ConnectTM,DisConnectTM from MEMB_STAT where memb___id='$account'");
$row = mssql_fetch_row($query);

$querypass = mssql_query("Select memb___id,memb__pwd,memb_name,bloc_code,vip From MEMB_INFO where memb___id='$account' and memb__pwd='$password'");
$char = mssql_fetch_row($querypass);

$queryonline = mssql_query("Select * from MEMB_STAT where memb___id='$account' and connectstat='1'");
$onlinecheck = mssql_num_rows($queryonline);

if($account != $char[0]) { echo"<font color='red'>Your Account is incorrect!</font><br><br>"; $error=1; }
if($password != $char[1]) { echo"<font color='red'>Your Password is incorrect!</font><br><br>"; $error=1;}
else
{
if($error != 1) {

$onhourss = $char[3];
$creditshourss = $row[1] * $wincredits;

if($row[1] <= 0) { echo"Account $account must have<font color=red> minimum $resethours Online hour in game</font> !</font><br><br>"; $error=2;}
if($onlinecheck  >= 1) { echo"<font color='red'>Account $account is online!<br> Please LogOff First!</font><br><br>"; $error=2;}

else
{
if($error != 2)
{
echo"All the hours  spent in game were removed and you earned <font color='orange'>$creditshourss </font><font color='green'>credits !</font><br><br>";
$a = mssql_query("DELETE FROM MEMB_STAT Where memb___id='$account'");
$b = mssql_query("Update MEMB_CREDITS set credits = credits+$creditshourss WHERE memb___id='$account'");
}
}
}
}
}

и го сложих във файловете на уеба дето ползвам, в htdocs\includes/functions.user.php, тествах и сега се показва този ерор ?

Code: 
Fatal error: Call to undefined function secure() in C:\Program Files\xampp\htdocs\includes\functions.user.php on line 115
 
Jerico said:
и го сложих във файловете на уеба дето ползвам, в htdocs\includes/functions.user.php, тествах и сега се показва този ерор ?

Code: 
Fatal error: Call to undefined function secure() in C:\Program Files\xampp\htdocs\includes\functions.user.php on line 115
Click to expand...

Ако нямаш файл с secure() функцията я смени на : htmlspecialchars() .
Или вземи файла с функцията secure() от Web-a .
 
Code: 
// Exchange Online Time normal
function online_hours()
{
global $resethours;
global $wincredits;

$character = addslashes($_POST['character']);
$account = addslashes($_POST['login']);
$password = addslashes($_POST['password']);

$query = mssql_query("Select memb___id,OnlineHours,ConnectTM,DisConnectTM from MEMB_STAT where memb___id='$account'");
$row = mssql_fetch_row($query);

$querypass = mssql_query("Select memb___id,memb__pwd,memb_name,bloc_code,vip From MEMB_INFO where memb___id='$account' and memb__pwd='$password'");
$char = mssql_fetch_row($querypass);

$queryonline = mssql_query("Select * from MEMB_STAT where memb___id='$account' and connectstat='1'");
$onlinecheck = mssql_num_rows($queryonline);

if($account != $char[0]) { echo"<font color='red'>Your Account is incorrect!</font><br><br>"; $error=1; }
if($password != $char[1]) { echo"<font color='red'>Your Password is incorrect!</font><br><br>"; $error=1;}
else
{
if($error != 1) {

$onhourss = $char[3];
$creditshourss = $row[1] * $wincredits;

if($row[1] <= 0) { echo"Account $account must have<font color=red> minimum $resethours Online hour in game</font> !</font><br><br>"; $error=2;}
if($onlinecheck  >= 1) { echo"<font color='red'>Account $account is online!<br> Please LogOff First!</font><br><br>"; $error=2;}

else
{
if($error != 2)
{
echo"All the hours  spent in game were removed and you earned <font color='orange'>$creditshourss </font><font color='green'>credits !</font><br><br>";
$a = mssql_query("DELETE FROM MEMB_STAT Where memb___id='$account'");
$b = mssql_query("Update MEMB_CREDITS set credits = credits+$creditshourss WHERE memb___id='$account'");
}
}
}
}
}
Така ще работи ;)
 
  • Like
Reactions: Jerico
banned , така работи наистина а по този начин по който го промени, няма опасност от хакване или да си дават кредити нон-стоп, смисъл не се получава дупка нали ?
 
Last edited:
сложи най-горе в фунцийте ти този код

PHP: 
function secure($str){
	// Case of an array
	if (is_array($str)) {
		foreach($str AS $id => $value) {
			$str[$id] = secure($value);
		}
	}
	else
		$str = xw_sanitycheck($str);

	return $str;
}

и след това си ползвай твоя Modul с secure() :)
 
ти от къде го намери тоя модул?
 
KR373N said:
сложи най-горе в фунцийте ти този код

PHP: 
function secure($str){
	// Case of an array
	if (is_array($str)) {
		foreach($str AS $id => $value) {
			$str[$id] = secure($value);
		}
	}
	else
		$str = xw_sanitycheck($str);

	return $str;
}

и след това си ползвай твоя Modul с secure() :)
Click to expand...

То тва не работи според мен :D
 
Aragorn said:
ти от къде го намери тоя модул?
Click to expand...


Намерих го в MFS Team Web-а в R-e Z-ne нз позволено ли е да давам линкове към съпернически сайтове :D

После ще го пробвам, като добавя това за секур да видим, то какво му е важното на това иначе да е със secure() а не с друго ?
 
KR373N said:
сложи най-горе в фунцийте ти този код

PHP: 
function secure($str){
	// Case of an array
	if (is_array($str)) {
		foreach($str AS $id => $value) {
			$str[$id] = secure($value);
		}
	}
	else
		$str = xw_sanitycheck($str);

	return $str;
}

и след това си ползвай твоя Modul с secure() :)
Click to expand...

Сложих го модула в Functions.php върнах самия модул на Secure и 3-те реда и като пробвах излезе това:
Code: 
Fatal error: Call to undefined function xw_sanitycheck() in C:\Program Files\xampp\htdocs\includes\functions.php on line 23
 
Пробвай с това :

include("secure.php");


PHP: 
// Exchange Online Time normal
function online_hours()
{
global $resethours;
global $wincredits;

$character = clean_var($_POST['character']);
$account = clean_var($_POST['login']);
$password = clean_var($_POST['password']);

$query = mssql_query("Select memb___id,OnlineHours,ConnectTM,DisConnectTM from MEMB_STAT where memb___id='$account'");
$row = mssql_fetch_row($query);

$querypass = mssql_query("Select memb___id,memb__pwd,memb_name,bloc_code,vip From MEMB_INFO where memb___id='$account' and memb__pwd='$password'");
$char = mssql_fetch_row($querypass);

$queryonline = mssql_query("Select * from MEMB_STAT where memb___id='$account' and connectstat='1'");
$onlinecheck = mssql_num_rows($queryonline);

if($account != $char[0]) { echo"<font color='red'>Your Account is incorrect!</font><br><br>"; $error=1; }
if($password != $char[1]) { echo"<font color='red'>Your Password is incorrect!</font><br><br>"; $error=1;}
else
{
if($error != 1) {

$onhourss = $char[3];
$creditshourss = $row[1] * $wincredits;

if($row[1] <= 0) { echo"Account $account must have<font color=red> minimum $resethours Online hour in game</font> !</font><br><br>"; $error=2;}
if($onlinecheck  >= 1) { echo"<font color='red'>Account $account is online!<br> Please LogOff First!</font><br><br>"; $error=2;}

else
{
if($error != 2)
{
echo"All the hours  spent in game were removed and you earned <font color='orange'>$creditshourss </font><font color='green'>credits !</font><br><br>";
$a = mssql_query("DELETE FROM MEMB_STAT Where memb___id='$account'");
$b = mssql_query("Update MEMB_CREDITS set credits = credits+$creditshourss WHERE memb___id='$account'");
}
}
}
}
}
 

Attachments

  • secure.rar
    229 bytes · Views: 13
Last edited:
  • Like
Reactions: Jerico
Стана благодаря на всички ви !
 
За да не почвам в нова тема, направо ще пиша тук, значи искам да сложа още един модул от тоя сайт, функцията която ми иска да добавя е тази:

Code: 
// Clear Vault
function clear_vaulta()
{
$character = secure($_POST['character']);
$account = secure($_POST['login']);
$password = secure($_POST['password']);

check_inject();

$queryonline = mssql_query("Select * from MEMB_STAT where memb___id='$account' and connectstat='1'");
$onlinecheck = mssql_num_rows($queryonline);

$queryaccount = mssql_query("Select * from MEMB_INFO where memb___id='$account'");
$accountcheck = mssql_num_rows($queryaccount);

$querypassword = mssql_query("Select * from MEMB_INFO where memb___id='$account' and memb__pwd='$password'");
$passwordcheck = mssql_num_rows($querypassword);

$querychar = mssql_query("Select * from Character where Name='$character'");
$charcheck = mssql_num_rows($querychar);

if(empty($character) or empty($account) or empty($password)) { echo"<font color='red'>You cannot leave any fields blank!</font><br>"; $error=1; }
elseif($accountcheck <= 0) { echo"<font color='red'>Your Login does not exist in our database. Please go back and try again!</font><br>"; $error=1; }
elseif($passwordcheck <= 0) { echo"<font color='red'>Your Password does not exist in our database. Please go back and try again!</font><br>"; $error=1; }
elseif($charcheck <= 0) { echo"<font color='red'>Your Character does not exist in our database. Please go back and try again!</font><br>"; $error=1; }
elseif($onlinecheck  >= 1) { echo"<font color='red'>Account $account is online!Please LogOff First!</font><br>"; $error=1;}

if($error != 1) {

echo"<font color='green'>Character $character Vault has been succesfully cleared.</font><br>";

$a = mssql_query("UPDATE warehouse SET [Items]=CONVERT(varbinary(1920), null) WHERE AccountID='$account'");

}
}

Това, го променям от така:
Code: 
$character = secure($_POST['character']);
$account = secure($_POST['login']);
$password = secure($_POST['password']);

На така, както OmaRuCat по горе ме инструктира:
Code: 
$character = clean_var($_POST['character']);
$account = clean_var($_POST['login']);
$password = clean_var($_POST['password']);

Само, че тоя път не намира функцията:
Code: 
Fatal error: Unknown function: check_inject() in C:\Program Files\xampp\htdocs\includes\functions.user.php on line 92

В secure.php дето го даде, трябва да добавя нещо предполагам, но нямам идея как ?
Code: 
<?PHP

function clean_var($var=NULL) {
$newvar = @preg_replace('/[^a-zA-Z0-9\_\-\.]/', '', $var);
if (@preg_match('/[^a-zA-Z0-9\_\-\.]/', $var)) { }
return $newvar;
}

?>
 
check_inject() принципно е функция която проверява дали се използва някоя от следните думи - UPDATE, DROP и т.н... може да я намериш почти във всеки един сайт който го има в darksteam
 
Ето ти файла :
 

Attachments

  • secure.rar
    799 bytes · Views: 4
Ами сложих го новия Secure.php, но пак дава грешка:

Fatal error: Unknown function: check_inject() in C:\Program Files\xampp\htdocs\includes\functions.user.php on line 91

Това е модула, който искам да подкарам за изчистване на воута
Code: 
<?
/* 
   MFS Team Web 0.5
   by Diablo
   http://*********************/
*/
?>
<?php
if(isset($_POST['submit'])) { clear_vaulta(); }
?>
<table border=0 cellspacing=5 cellpadding=0>
<td width='280'>
<form name="" method="post" action="">
<table width="100%" border="0" cellspacing="1" cellpadding="1">
<tr> 
<td width="70"><font color=>Character Name :</td><td width="100">
<input name="character" type="text" id="character" maxlength="10">
</td>
</tr>
<tr> 
<td width="70"><font color=>Login ID :</td>
<td>
<input name="login" type="text" id="login" maxlength="10">
</td>
</tr>
<tr> 
<td width="70"><font color=>Password :</td>
<td><input name="password" type="password" id="password" maxlength="16">
</td>
</tr>
<tr> 
<td width="70">&nbsp;</td>

</tr>
<tr>
<tr> 
<td width="100" align="right"><input type="submit" class=button name="submit" value="Submit"></td>
<td><input type="reset" class=button name="Submit2" value="Reset"></td>
</tr>
</table>
</form>
</div>
</td>
</table>
 
Last edited:
You must log in or register to reply here.

Similar threads

O
[Help] Trade Online Hours
Replies
15
Views
2K
Help
kulturista
kulturista
C
[Help] Change name server, add sub and time attack golden boss 97d99i, disable /party for server only trade?
Replies
0
Views
358
Help
cheduong
C
D
[Help] Trade problems in server
Replies
0
Views
590
Help
drong2
D
Bumb
[Help] Trade Zen
Replies
6
Views
1K
Help
Bumb
Bumb
Firewallcho
[Help] Online Time Trade
Replies
27
Views
4K
Help
128ve980
128ve980
Top Bottom
Back