Username:    Password:        Click Here To Signup     Forgotten Password
Main Menu
Online
Members: 0

Guests: 20

159.89.x.x guestbook
212.237.x.x signup
216.244.x.x forum
3.80.x.x forum
35.192.x.x forum
35.241.x.x forum
46.229.x.x dilbertplus
46.229.x.x dilbertplus
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
46.229.x.x forum
54.36.x.x lgsl

Last Seen

85filip58 Tue 15:15
4Rsercom Thu 21:49
Apophis01 Fri 10:15
Bommel Wed 09:39
frob Sat 21:14

Newest Members

Forums
Enyby
Thu Sep 30 2010, 04:07PM Quote
Guest
$query = "SELECT * FROM lgsl WHERE (UPPER(ip) LIKE '%".strtoupper($_POST['ip'])."%')AND(UPPER(c_port) LIKE '%".strtoupper($_POST['c_port'])."%')";

Зменить на:
$query = "SELECT * FROM lgsl WHERE (UPPER(ip) LIKE '%".strtoupper(mysql_real_escape_string($_POST['ip']))."%')AND(UPPER(c_port) LIKE '%".strtoupper(mysql_real_escape_string($_POST['c_port']))."%')";

Иначе вам базу взломают вместе с сайтом и сервером.
 

Jump:     Back to top

Begin New Thread

Quick Reply:

 


You are not logged in - Click Here To Signup

Username:    Password:   

Mini Buttons

.... © GreyCube.com - Richard Perry - Powered by e107.org