Posts by sander-301

sander-301

Hallo Cp,

Ik heb het volgende probleem, de profielen doen het niet van de leden.
Kan iemand me mischien helpen?
Script:

PHP

<?php 


  include("ubb.php");
  include("ubb.inc.php");
  include("_include-config.php");
  
  if(! check_login()) {
    header("Location: login.php");
    exit;
  }


  mysql_query("UPDATE `[users]` SET `online`=NOW() WHERE `login`='{$data->login}'");


 ?>


<link rel="stylesheet" type="text/css" href="<? echo $sitelink;?>/layout/layout<?php echo $page->layout; ?>/css/css.css">
</head>


<body style=" margin: 0px;">


<table width=100%>
<?php 
if(isset($_GET['x'])) {
  $dbres1 = mysql_query("SELECT * FROM `[users]` WHERE `login`='{$data->login}'");
$dbres                                = mysql_query("SELECT *,UNIX_TIMESTAMP(`online`) AS `time`,DATE_FORMAT(`online`,'%d-%m-%Y %H:%i') AS `online` FROM `[users]` WHERE `login`='{$_GET['x']}' ");
  if($data = mysql_fetch_object($dbres)) {
$com = mysql_query("SELECT * FROM `[comentaar]` WHERE `to`='$data->login' ORDER BY `datum` DESC");
      $online                = ($data->time+60*5 > time()) ? "<b>Nu</b>" : $data->online;
      $type         =  Array("","Junkies","Klonen","Agenten","Terroristen","Militairen","Bitches","Killers");
    $land1         = Array("","Belgie","Duitsland","Engeland","Frankrijk","Griekenland","Italie","Aruba","");
    $land          = $land1[$data->land];
      $type         = $type[$data->type];
    $Provincie        = $Provincie[$data->Provincie];
      $criminals      = Array("","Junkies","Klonen","Agenten");
    $criminals      = $criminals[$data->type];
      $criminals1      = Array("","<img src='images/transparant.gif' width='120' height='90'>","<img src='images/item-wetenschapper.gif' width='120' height='90'>","<img src='images/item-cop.gif' width='120' height='90'>","<img src='images/item-terrorist.gif' width='120' height='90'>","<img src='images/item-militair.gif' width='120' height='90'>");
      $criminals1      = $criminals1[$data->type];
      $power        = number_format(round(($data->attack+$data->defence)/2+$data->clicks*5),0,",",".");
      $def        = number_format(round($data->defence),0,",",".");
      $att        = number_format(round($data->attack),0,",",".");
      $bankk        = number_format(round($data->bank),0,",",".");
      $contantt        = number_format(round($data->cash),0,",",".");
      $geldd        = number_format(round($data->cash+$data->bank),0,",",".");
      $totalattacks      = $data->attwins + $data->attlosses;
      $totaldefends      = $data->defwins + $data->deflosses;
      $data->info           = opmaak($data->info);
    $avaurl            = $data->avaurl;
    $muziek            = $data->muziek;


    $health            = $data->health;


  $clan_name            = preg_replace('/-\[recruit\]/',"",$data->clan);
    $data->info                = preg_replace('/:P/',"<img src=\"images/smilies/icon_razz.gif\">",$data->info);
        $data->info               = preg_replace('/:D/',"<img src=\"images/smilies/icon_biggrin.gif\">",$data->info);
        $data->info        = preg_replace('/\:\o/',"<img src=\"images/smilies/icon_surprised.gif\">",$data->info);
        $data->info        = preg_replace('/:shock:/',"<img src=\"images/smilies/icon_eek.gif\">",$data->info);
        $data->info        = preg_replace('/:lol:/',"<img src=\"images/smilies/icon_lol.gif\">",$data->info);
        $data->info        = preg_replace('/:x/',"<img src=\"images/smilies/icon_mad.gif\">",$data->info);
        $data->info        = preg_replace('/\:\$/',"<img src=\"images/smilies/icon_redface.gif\">",$data->info);
        $data->info        = preg_replace('/\:\*\(/',"<img src=\"images/smilies/icon_cry.gif\">",$data->info);
        $data->info        = preg_replace('/:evil:/',"<img src=\"images/smilies/icon_evil.gif\">",$data->info);
        $data->info        = preg_replace('/:twisted:/',"<img src=\"images/smilies/icon_twisted.gif\">",$data->info);
        $data->info        = preg_replace('/\%\)/',"<img src=\"images/smilies/icon_rolleyes.gif\">",$data->info);
        $data->info        = preg_replace('/:!:/',"<img src=\"images/smilies/icon_exclaim.gif\">",$data->info);
        $data->info        = preg_replace('/:question:/',"<img src=\"images/smilies/icon_question.gif\">",$data->info);
        $data->info        = preg_replace('/:arrow:/',"<img src=\"images/smilies/icon_arrow.gif\">",$data->info);
        $data->info        = preg_replace('/:idea:/',"<img src=\"images/smilies/icon_idea.gif\">",$data->info);
        $data->info        = preg_replace('/:hart:/',"<img src=\"images/smilies/hart.gif\">",$data->info);
        $data->info        = preg_replace('/:o:/',"<img src=\"images/smilies/boe.gif\">",$data->info);
    $data->info        = preg_replace('/:disco:/',"<img src=\"images/smilies/zoek.gif\">",$data->info);
    $data->info        = preg_replace('/:mrgreen:/',"<img src=\"images/smilies/icon_mrgreen.gif\">",$data->info);
        $data->info        = preg_replace('/\:\)/',"<img src=\"images/smilies/icon_smile.gif\">",$data->info);
        $data->info        = preg_replace('/\:\(/',"<img src=\"images/smilies/icon_sad.gif\">",$data->info);
        $data->info        = preg_replace('/\;\)/',"<img src=\"images/smilies/icon_wink.gif\">",$data->info);
        $data->info        = preg_replace('/8\)/',"<img src=\"images/smilies/icon_cool.gif\">",$data->info);
        $data->info        = preg_replace('/\:\|/',"<img src=\"images/smilies/icon_neutral.gif\">",$data->info);
        $data->info        = preg_replace('/\:\?/',"<img src=\"images/smilies/icon_confused.gif\">",$data->info);
    $data->info        = preg_replace('_/-o_',"<img src=\"images/smilies/worshippy.gif\">",$data->info);
    $data->info        = preg_replace('-bonk-',"<img src=\"images/smilies/bonk.gif\">",$data->info);
    $data->info             = preg_replace("/\[EMAIL\](?U)((.|\n|\r)*)\[\/EMAIL\]/", "<a href=mailto:\\1 target=_blank class=content>\\1</a>", $data->info); 
    $data->info             = preg_replace("/\[b\](.+?)\[\/b\]/is",'<b>\1</b>', $data->info);  //vette text
    $data->info = preg_replace("/\[i\](.+?)\[\/i\]/is",'<i>\1</i>', $data->info);  //schuine text
    $data->info = preg_replace("/\[u\](.+?)\[\/u\]/is",'<u>\1</u>', $data->info);  //underlined
    $data->info = preg_replace("#\[s\](.*?)\[/s\]#si", "<s>\\1</s>", $data->info); // doorstreepte tekst  
        $data->info = preg_replace("/\[scroll\](.+?)\[\/scroll\]/is",'<marquee>\1</marquee>', $data->info);  //scrollende text
    $data->info = preg_replace("/\[red\](.+?)\[\/red\]/is",'<font color=red>\1</font>', $data->info);  //rood
      $data->info = preg_replace("/\[blue\](.+?)\[\/blue\]/is",'<font color=blue>\1</font>', $data->info);  //blauw
     $data->info = preg_replace("/\[green\](.+?)\[\/green\]/is",'<font color=green>\1</font>', $data->info);  //groen
      $data->info = preg_replace("/\[yellow\](.+?)\[\/yellow\]/is",'<font color=yellow>\1</font>', $data->info);  //geel
    $data->info = preg_replace ("#\[color=(\#[0-9A-F]{6}|[a-z\-]+)\](.*?)\[/color\]#si", "<font color=\"\\1\">\\2</font>", $data->info);
    $data->info = preg_replace("/\[img\](.+?)\[\/img\]/is",'<img src="\1">', $data->info);                                          
        $data->info = preg_replace("/\[img w=(.+?) h=(.+?)\](.+?)\[\/img\]/is",'<img src="\3" height="\1" width="\2">', $data->info);


if ($data->clanlevel == 1){
$clanrank    = "Member <IMG BORDER=\"0\" src=\"images/icons/1star.gif\">";
}
if ($data->clanlevel == 2){
$clanrank    = "Recruiter<IMG BORDER=\"0\" src=\"images/icons/2stars.gif\">";
}
if ($data->clanlevel == 3){
$clanrank    = "Member<IMG BORDER=\"0\" src=\"images/icons/1star.gif\">";
}
if ($data->clanlevel == 4){
$clanrank    = "Member<IMG BORDER=\"0\" src=\"images/icons/1star.gif\">";
}
if ($data->clanlevel == 5){
$clanrank    = "Member<IMG BORDER=\"0\" src=\"images/icons/1star.gif\">";
}
if ($data->clanlevel == 6){
$clanrank    = "Manager<IMG BORDER=\"0\" src=\"images/icons/3stars.gif\">";
}
if ($data->clanlevel == 7){
$clanrank    = "Generaal<IMG BORDER=\"0\" src=\"images/icons/4stars.gif\">";
}
if ($data->clanlevel == 8){
$clanrank    = "Leader<IMG BORDER=\"0\" src=\"images/icons/5stars.gif\">";
}
if ($data->clanlevel == 9){
$clanrank    = "Owner<img src=\"images/icons/6stars.gif\">";
}
$rank1	                  	= array("","Empty-Suit","Deliveryboy","Picciotto","Shoplifter","Pickpocket","Thief","Associate","Mobster","Soldier","Swindler","Assassin","Local Chief","Chief","Bruglione","Godfather","Legendary Godfather");
$rank = $rank1[$data->rank];




}
$money = $data->cash+$data->bank;
if ($money <= 1999999) {
    $mrank = "Straydog";
} elseif ($money > 2000000 AND $money <= 5000000) {
    $mrank = "Lower Class";
} elseif ($money > 5000000 AND $money <= 10000000) {
    $mrank = "Respectable Man";
} elseif ($money > 10000000 AND $money <= 15000000) {
    $mrank = "Middle Class";
} elseif ($money > 15000000 AND $money <= 20000000) {
    $mrank = "Wealthy";
} elseif ($money > 20000000 AND $money <= 50000000) {
    $mrank = "Upper Class";
} elseif ($money > 50000000 AND $money <= 100000000) {
    $mrank = "Rich";
} elseif ($money > 100000000 AND $money <= 200000000) {
    $mrank = "Very Rich";
} elseif ($money > 200000000 AND $money <= 400000000) {
    $mrank = "Dangerously Rich";
} elseif ($money > 400000000) {
    $mrank = "Notoriously Rich";
}
$hhealth = round(100-$data->health);
if ($data->health <= 25) {
    $healthcolor = "red";
} elseif ($data->health > 25 AND $data->health <= 50) {
    $healthcolor = "orange";
} elseif ($data->health > 50 AND $data->health <= 75) {
    $healthcolor = "yellow";
} elseif ($data->health > 75 AND $data->health <= 100) {
    $healthcolor = "green";
}
if ($data->level >= 255) {
    $status = "Admin";
} elseif ($data->level < 255) {
    $status= "Lid";
}


  if($data->vip == 0) {
    $vip = "Geen VIP";
  } 
  
  if($data->vip >= 1) {
    $vip = "<b>VIP lid</b>+";
  } 


  if($data->VI4P == 2) {
    $vip = "<font color=gold><b>GOLD</b>";
  }




      $clan_name      = preg_replace('/-\[recruit\]/',"",$data->clan);
      $avatarurl            = $data->avatarurl;
      $data->info      = preg_replace('/\n/',"<br>\n",$data->info);
    $data->allies      = preg_replace('/\n/',"<br>\n",$data->allies);
    $data->enemies    = preg_replace('/\n/',"<br>\n",$data->enemies);


if(isset($_SESSION['login']))
              mysql_query("INSERT INTO `[wannabe]`(`time`,`login`,`person`,`code`,`area`) values(NOW(),'{$_SESSION['login']}','{$data->login}',{$data->clicks},'click')");




   if(mysql_num_rows($dbres_paying) == 100) {
   $medaille = " <tr><td width=125>Medaille:</td>  <td align=\"right\"><img src=\"images/medaille.gif\"></td></tr>";
   }
   else {
   $medaille = "";
   }
      print <<<ENDHTML


<link rel="stylesheet" type="text/css" href="<? echo $sitelink;?>/layout/layout<?php echo $page->layout; ?>/css/css.css">
<table width="100%">
<tr><td class="subTitle"><b>Profiel</b></td></tr>
<tr><td>
<table width="100%">
<tr>
<td width="200" class="mainTxt">
<img src="{$data->avaurl}" width="200" height="250"><BR>{$online}
</td>
<td valign="top">
<table>
<tr>
<td class="subTitle" width="100%" align=center><b>Info:</b></td>
<td width="100%"></td>


</tr>
<tr>
<td class="mainTxt" width="100%">
<table width="100%">
<tr valign="top">
<td width="150"><strong>Naam:</strong></td> <td width="150">{$data->login}</td>
</tr>
<tr valign="top"> 
<td width="150"><strong>Clan:</strong></td> <td width="150"><a href="clan.php?x=$clan_name">{$data->clan}</td>
</tr>
<tr valign="top"> 
<td width="150"><strong>Clanrank:</strong></td><td width="150">{$clanrank}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Betaald:</strong></td><td width="150">{$vip}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Rank:</strong></td><td width="150">{$rank}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Geldrank:</strong></td><td width="150">{$mrank}</td>
</tr>
</table>
</td>
</td>
</tr>
<tr>
<td width="150"></td>
<td width="4%"></td>
<td width="150"></td>
</tr>
<tr>
<td class="subTitle" width="100%" align="center"><b>Status:</b></td>
<td width="100%"></td>


</tr>
<tr>
<td class="mainTxt" width="100%">
<table width="100%">
<tr valign="top">
<td width="150"><strong>$criminals:</strong></td><td width="150">{$data->clicks}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Op de bank:</strong></td><td width="150">€{$bankk},-</td>
</tr>
<tr valign="top">
<td width="150"><strong>Contant:</strong></td><td width="150">€{$contantt},-</td>
</tr>
</table>
</td>
</td>
</tr>


<tr>
<td width="300"></td>
<td width="4%"></td>
<td width="300"></td>
</tr>
<tr>
<td class="subTitle" width="100%" align="center"><b>Power:</b></td>
<td width="100%"></td>
</tr>
<tr>
<td class="mainTxt" width="100%">
<table width="100%">
<tr valign="top">
<td width="150"><strong>Attack Power:</strong></td><td width="150">{$att}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Defence Power:</strong></td><td width="150">{$def}</td>
</tr>
<tr valign="top">
<td width="150"><strong>Totaal Power:</strong></td><td width="150">{$power}</td>
</tr>
</table>
</td>
</td>
</tr>
<tr>
<td width="300"></td>
<td width="4%"></td>
<td width="300"></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
  <tr><td class="mainTxt" width="96%"> <b>Vrienden:</b>
  {$data->allies}


     <tr><td class="mainTxt" width="96%"> <b>Vijanden:</b>
     $data->enemies
<tr>
<td valign="top">
<table align="right">
<tr>


ENDHTML;
      if($data->Mobieltje == 1)
        echo"<td class=\"mainTxt\" align=\"center\" width=100><a href=\"message.php?p=new&to={$data->login}\"><b>SMS</b></a></td>";


      print <<<ENDHTML
      <td class="mainTxt" align="center" width=100><a href="click.php?x={$data->login}"><b>Click</b></a></td>
      <td width=5> </td>
    <td class="mainTxt" align="center" width=100><a href="donate.php?x={$data->login}"><b>Doneer</b></a></td>
      <td width=5> </td>
      <td class="mainTxt" align="center" width=100><a href="attack.php?x={$data->login}"><b>Attack</b></a></td>
      <td width=5> </td>
      <td class="mainTxt" align="center" width=100><a href="garage.php?x={$data->login}"><b>Garage</b></a></td>
      <td width=5> </td>
      <td class="mainTxt" align="center" width=100><a href="message.php?p=new&to={$data->login}"><b>SMS</b></a></td>
</tr>
</table>
</td>
</tr>
<tr>
<tr><td class="subTitle"><b>Informatie</b></td></tr>
<td class="mainTxt">{$data->info}
</tr>
</table>
<table width="100%">




ENDHTML;
    }
 
 ?>
</table>


</body>




</html>

Toon Meer

en hij geeft de volgende error aan:

PHP

Fatal error: Cannot redeclare ubb() (previously declared in /home/crimewish.nl/www/ubb.php:3) in /home/crimewish.nl/www/ubb.php on line 69

sander-301

Vendetta is het makkelijkst ( vind ik persoonlijk )

sander-301

Vendetta

sander-301

als je ff doorleest dan snap je het
gegevens aanpassen, of moet ik dat ook nog voor je doen|-)

sander-301

Het lijkt leeg omdat het zo wit is.
mischien wat meer kleuren inbrengen, dan vind ik de site helemaal compleet:D

sander-301

Mischien dat je een betere ingame kan nemen, deze is iets te leeg vind ik.

sander-301

Pas je de gegevens wel goed aan?

sander-301

PHP

<?php
$host		=	"localhost";							//de host meestal gewoon localhost
$user		=	"xxx";							//je database username
$pass		=	"xxx";								//Je database wachtwoord
$tablename	=	"xxx";								//Je database naam
$sitelink  	= 	"xxx


?>

Dit werkt wel:)

sander-301

PHP

<?php
$host		=	"localhost";							//de host meestal gewoon localhost
$user		=	"xxx";							//je database username
$pass		=	"xxx";								//Je database wachtwoord
$tablename	=	"xxx";								//Je database naam
$sitelink  	= 	"xxx";   				//Je website link. GEEN v3 of een / erachter!


?>

vervang je connection (in de map v3) naar dit, wel even je gegevens invullen natuurlijk
dit zou moeten werken

sander-301

Originaliteit: 8/10
Layout: Outgame 9/10 Ingame 7/10
Overzicht: 8/10
Algemeen: 8/10

sander-301

Kan niet wachten op de source
mooie twitter trouwns

sander-301

PHP

<?PHP
$BeveiligdInteger = (int)intval($_POST['veld']);
?>

Dit werkt wel

sander-301

ik wil graag dat de leden geld krijgen die in een familie zitten
dus als de familie 6 miljoen per uur verdient
dat alle leden 6 miljoen op hun bank krijgen.

sander-301

Sql had ik ook al inderdaad.
Heb het bestandje in v3/index gezet.
Alleen als ik ban via de admin paneel van osbanditi 1.5 werkt hij niet.
Dacht gebruik het scriptje van willem (waarmee je kan bannen) maar dan word ik automatisch doorgelinkt naar inlogpagina, ook al ben ik ingelogd?

sander-301

Oke bedankt zal het oplossen.
Maar hij had namelijk prive berichten verstuurd naar iemand dat hij had ingebroken via sql injection.

sander-301

Hallo CP,

heb de banditi source nog maar net online en er is al een grappig iemand, die ff inbreek via sql injectie.
Ik denk/hoop dat ik het beveiligd heb, maar zou iemand dit mischien voor me willen/kunnen testen aangezien ik dit zelf niet kan.

Site:
http://www.crimewish.nl

alvast bedankt

[offtopic]Ook wil ik jullie graag waarschuwen voor deze hacker.
Naam: Makaveli
Aanwezig op cp: Ja[/offtopic]

sander-301

welke versie van banditi heb je.
er zit namelijk wel een admin paneel in bij 1.5, alleen bannen doet het dan niet (bij mij in ieder geval)
als ik dat heb gefixt laat ik je het wel weten, als je het nodig hebt.

sander-301

Download anders: msn discovery
is een handige programma waar je veel instellingen mee veranderen, wat je bij msn niet kan
Maar heb eigenlijk nog nooit echt last gehad van zo`n bot, meestal accepteer ik ook geen rare msn`s.

sander-301

@ vergeten, bedankt zal het gelijk aanpassen

en ik zal wel even wat meer info op google zoeken, over familie defineren, zoiets heb ik namelijk nog nooit gedaan

bedankt allemaal voor je reactie

sander-301

dus je moet dit

PHP

mysql_query("UPDATE `users` SET `bank`=`bank`+'$number' WHERE `fam`='$data->fam'");

in plaats van

PHP

mysql_query("UPDATE `families` SET `bank`=`bank`+`coffeeshop`*'1500'");
mysql_query("UPDATE `families` SET `contant`=`contant`+'500',`bank`=`bank`+'1000' WHERE UNIX_TIMESTAMP(NOW())-UNIX_TIMESTAMP(`online`) < 300");

?