Lapenna v - 0.1 [Advanced News System!]

Lapenna · Mar 28, 2009

Hello!
This is the first Version from my Website!

The idea of this project is to make a good Website, with all the features that can be usefull for both players and admins.

Aboult the Layout:
The Layout is simple as possible! Why? Becouse like this is easier to create skins in a easy way and with no restrictions!

Languages Useds in total : 5
[HTML - PHP - CSS - Javascript - MySQL]

Releases:
Version - 0.1 - 28/03/2009

Code:

##NEWS SYSTEM##
- Title : Show the News Title.
- Date : Show when the News have been posted.
- Content : Show the News Content.
- Icons : Displayed Before and After the Title.
- Author : Show the Author of the News.
- Edit Tool : [WYSIWYG] Edit the News.
- Delete : Delete the News [Hide Only!].

##NEWS ARCHIVE##
- Book : Show Icon, Title and Date of ALL News [Order by Date Desc].
- Specific News : Show Specific News, just like in News Page.
- Sharing Option : Display the Copy Link Option [in Javascript].

##INSERT NEWS##
- Title Field : Text field where you can put the title of the news.
- Author Field : Text field where you can put you name.
- Icons Library : Library with 32 icons for choose [will be displayed in the News Page, beside the title].
- Content : (WYSIWYG - What You See Is What You Get!)Write all your News Content in the BOX [Programmed in Javascript].

##EXTRAS##
- Breadcrumb : Show your Position in the Website. [Working with Array in Switch.php]
- Page generation time in miniseconds [Page generated in 0.0025 seconds.]

ScreenShoots!

Download Information :
File Name: Lapenna V-0.1
Size : 43,5Kb
Type : .ZIP
- Megaupload -------->

- RapidShare --------->

- Easy-Share --------->

- Speedy-Share ----->

Aboult the Next Releases.. Sunday im travelling for Turkey, and i won't be able to work on the site for 8 days, but after that releases continues!
Crédits? Goes for me..

I Hope you Guys like it.Comment please!

Master-m · Mar 28, 2009

ScanResults on the Speedyshare link:

File Info

Report generated: 28.3.2009 at 15.01.55 (GMT 1)
Filename: LapennaV-0.1.rar
File size: 43 KB
MD5 Hash: D076CFBF847322D4727B5CF6AAD77FF8
SHA1 Hash: 9F1C0E500BA29E7948E5E7C581FD6CE2096D4D21
Packer detected: Not a valid PE file
Self-Extract Archive: Nothing found
Binder Detector: Nothing found
Detection rate: 0 on 24

Detections

a-squared - Nothing found!
Avira AntiVir - Nothing found!
Avast - Nothing found!
AVG - Nothing found!
BitDefender - Nothing found!
ClamAV - Nothing found!
Comodo - Nothing found!
Dr.Web - Nothing found!
Ewido - Nothing found!
F-PROT 6 - Nothing found!
G DATA - Nothing found!
IkarusT3 - Nothing found!
Kaspersky - Nothing found!
McAfee - Nothing found!
MHR (Malware Hash Registry) - Nothing found!
NOD32 v3 - Nothing found!
Norman - Nothing found!
Panda - Nothing found!
Quick Heal - Nothing found!
Solo Antivirus - Nothing found!
Sophos - Nothing found!
TrendMicro - Nothing found!
VBA32 - Nothing found!
Virus Buster - Nothing found!

Scan report generated by
NoVirusThanks.org

Zonet · Mar 28, 2009

Very nice, keep working on the layout.

Victor · Mar 28, 2009

includes/switch.php:

PHP:

if(empty($_REQUEST['load'])) {
	$_REQUEST['load'] = "Home";
	$load = "Home";

}
switch($_REQUEST['load']) {
	case "Home":
		$list = array("Home");
		$name = "News!";
		$load = "Home";
		include("Home.php");
	break;
}

switch($_REQUEST['load']) {
	case "Insert-News":
		$list = array("Home");
		$name = "Insert News!";
		$load = "Insert-News";
		include("Insert-News.php");
	break;
}
switch($_REQUEST['load']) {
	case "News-Archive":
		$list = array("Home");
		$name = "News Archive!";
		$load = "News-Archive";
		include("News-Archive.php");
	break;
}

willbe:

PHP:

switch($_REQUEST['load']) {
	case "Insert-News":
		$list = array("Home");
		$name = "Insert News!";
		$load = "Insert-News";
		include("Insert-News.php");
	break;
	case "News-Archive":
		$list = array("Home");
		$name = "News Archive!";
		$load = "News-Archive";
		include("News-Archive.php");
	break;
        default:
		$list = array("Home");
		$name = "News!";
		$load = "Home";
		include("Home.php");
	break;
}

In php code better is using <?php not, <?.
<br> it's old html, better is using <br />

In insert-news is a lot of code appling injections like:

PHP:

$REQUEST = $_REQUEST["edit_id"];
if ($NEWS_NUM == 0 and $_REQUEST["edit_id"] !==NULL) {

Why not $REQUEST in if ;(?

PHP:

if ($_POST['icon'] == 1 ) {$icon_t = "001"; }
if ($_POST['icon'] == 2 ) {$icon_t = "002"; }
if ($_POST['icon'] == 3 ) {$icon_t = "003"; }
if ($_POST['icon'] == 4 ) {$icon_t = "004"; }
if ($_POST['icon'] == 5 ) {$icon_t = "005"; }
if ($_POST['icon'] == 6 ) {$icon_t = "006"; }
if ($_POST['icon'] == 7 ) {$icon_t = "007"; }
if ($_POST['icon'] == 8 ) {$icon_t = "008"; }
if ($_POST['icon'] == 9 ) {$icon_t = "009"; }
if ($_POST['icon'] == 10 ) {$icon_t = "010"; }
if ($_POST['icon'] == 11 ) {$icon_t = "011"; }
if ($_POST['icon'] == 12 ) {$icon_t = "012"; }
if ($_POST['icon'] == 13 ) {$icon_t = "013"; }
if ($_POST['icon'] == 14 ) {$icon_t = "014"; }
if ($_POST['icon'] == 15 ) {$icon_t = "015"; }
if ($_POST['icon'] == 16 ) {$icon_t = "016"; }
if ($_POST['icon'] == 17 ) {$icon_t = "017"; }
if ($_POST['icon'] == 18 ) {$icon_t = "018"; }
if ($_POST['icon'] == 19 ) {$icon_t = "019"; }
if ($_POST['icon'] == 20 ) {$icon_t = "020"; }
if ($_POST['icon'] == 21 ) {$icon_t = "021"; }
if ($_POST['icon'] == 22 ) {$icon_t = "022"; }
if ($_POST['icon'] == 23 ) {$icon_t = "023"; }
if ($_POST['icon'] == 24 ) {$icon_t = "024"; }
if ($_POST['icon'] == 25 ) {$icon_t = "025"; }
if ($_POST['icon'] == 26 ) {$icon_t = "026"; }
if ($_POST['icon'] == 27 ) {$icon_t = "027"; }
if ($_POST['icon'] == 28 ) {$icon_t = "028"; }
if ($_POST['icon'] == 29 ) {$icon_t = "029"; }
if ($_POST['icon'] == 30 ) {$icon_t = "030"; }
if ($_POST['icon'] == 31 ) {$icon_t = "031"; }
if ($_POST['icon'] == 32 ) {$icon_t = "032"; }

:blink:

PHP:

$icon_f = (int)$_POST['icon'];
if ($icon_f > 0 && $icon_f < 33) {
    $icon_t = $icon_f;
}

PHP:

if($EDIT_STATUS == "yes") {$INSERT_NEWS =( "UPDATE $DB_Name.`news` SET `title` = '$title', `author` = '$author', `content` = '$content',`icon` = '$icon_t', `last_edit` = '$creation_date' WHERE( `news`.`id` ) = '$REQUEST' ");}

Better is using tabulate and enters, and don't using phpmyadmin's ``````````````.

PHP:

echo "<META HTTP-EQUIV=refresh CONTENT=4;URL=index.php?load=Home>";

header(...); with obflush :thumbup:

PHP:

<input name="author" value="<?php if($EDIT_STATUS == "yes") {echo"$SQL_GET_INFO->author";} ?>" style="border: 1px solid gray; width: 200px;" type="text" />

Why "$variable"? Just $variable...

PHP:

<span class=rightDate>$DATE_DAYS - $DATE_PRESISE</span>

in echo "..." - why don't using ".$variable.".

From me:
Keep developing, but better fix stylistic and other bugs, beacouse if you start ugly developing, then you will be write ugly code every day. :thumbup:

Xbass · Apr 1, 2009

amazing! thanks.

Artii · Apr 1, 2009

Good job man, and thanks for releasing.

kacpersky · Apr 2, 2009

im waiting for next version

Lapenna · Apr 5, 2009

Happy you liked it!
Victor:
Tanks! ;D Nice Hints.. I will certainlly fix it soon, just have no time now..
Cya!
Next Release comming..

Donio · Apr 5, 2009

Exelent!

apitis · Apr 9, 2009

Code:

if ($_POST['icon'] == 27 ) {$icon_t = "027"; } 
if ($_POST['icon'] == 28 ) {$icon_t = "028"; } 
if ($_POST['icon'] == 29 ) {$icon_t = "029"; } 
if ($_POST['icon'] == 30 ) {$icon_t = "030"; } 
if ($_POST['icon'] == 31 ) {$icon_t = "031"; } 
if ($_POST['icon'] == 32 ) {$icon_t = "032"; }

That pwn3d me.

Im sure it can be did THIS way:

Code:

if($_POST['icon'] > 0 && $_POST['icon']<33)
{
(strlen($_POST['icon'])==1) ? $icon_t = "00".$_POST['icon'] : $icon_t = "0".$_POST['icon'];
}

Victor's solution is wrong I think, bcs it will give bad variables in return;

Btw, heard about functions or OOP?

Keep Learning!
Ormin

)

Victor · Apr 10, 2009

apitis said:
Code:

if ($_POST['icon'] == 27 ) {$icon_t = "027"; } if ($_POST['icon'] == 28 ) {$icon_t = "028"; } if ($_POST['icon'] == 29 ) {$icon_t = "029"; } if ($_POST['icon'] == 30 ) {$icon_t = "030"; } if ($_POST['icon'] == 31 ) {$icon_t = "031"; } if ($_POST['icon'] == 32 ) {$icon_t = "032"; }

That pwn3d me.

Im sure it can be did THIS way:

Code:

if($_POST['icon'] > 0 && $_POST['icon']<33) { (strlen($_POST['icon'])==1) ? $icon_t = "00".$_POST['icon'] : $icon_t = "0".$_POST['icon']; }

Victor's solution is wrong I think, bcs it will give bad variables in return;

Btw, heard about functions or OOP?

Keep Learning!
Ormin )

Hehehe. Yeah. My bad

.

Lataluren · Apr 10, 2009

ejj is eror in kodak!! my no eror! yuo edit maj post mejk eror

PHP:

if($_POST['icon'] > 0 && $_POST['icon']< 33) 
    $icon_t = str_repeat("0", strlen($_POST['icon'])-1) . $_POST['icon'];

</span></span>

Lapenna · Apr 13, 2009

i fixed it,tanks ;D next vversion coming

Sherlok · Apr 13, 2009

Nice, nice !

EASY and NICE :}

Leiken · Apr 20, 2009

Sorry for my noobish question , but this is an aac maker or a news system or what? could this be implemented to gesior's aac?

widnet · Apr 20, 2009

is not good

Lapenna · Apr 21, 2009

Is News system for Now.. Just read the Title xD..
Yes, you can use it on Gesior Acc Maker.. Just change the database settings and some querys..Cya!

Lapenna v - 0.1 [Advanced News System!]

Lapenna

PHP Programmer

Master-m

Need help? Just ask!

Zonet

Web Developer

Victor

New Member

Xbass

New Member

Artii

Seldora.net

kacpersky

Mr. Brightside

Lapenna

PHP Programmer

Donio

Banned User

apitis

New Member

Victor

New Member

Lataluren

King

Lapenna

PHP Programmer

Sherlok

Active Member

Leiken

Real Tibia

widnet

Banned User

Lapenna

PHP Programmer

Similar threads