eval(base64_decode($desintegrate[0]));
echo '<!-- ARCHEZ AAC -->';
define('TEMP_2', true);
+1 =pDamn edit thingy..
In the controller class I see those evals as well, why can't you just write the code?
For example:
It only does:PHP:eval(base64_decode($desintegrate[0]));
PHP:echo '<!-- ARCHEZ AAC -->'; define('TEMP_2', true);
Same thing goes with the $desintegrate thing below that as well.. Are you trying to make it hard to remove your initials?
Please explain what your trying to accomplish with it.
As people mentioned earlier; what's up with all eval(base64_decode(X)) ? :s
index.php
system/lib/archez.php
system/lib/POT/OTS.php
system/lib/POT/OTS_Account.php
system/lib/recaptchalib.php
system/lib/controller.php
I, for instance, renamed such files to .inc extension, and then denied access to files of that extension through webserver conf.Instead of doing this, all the system files should be stored outside the document root and only index.php should be visible to the web browser in the first place.
Why does he use POT? I had just finished dropping POT from Gesior because I absolutely hate OOP
define( '_ROOT', realpath( dirname( __FILE__ ) ) );
People with subdomains can't register, examples are such as [email protected] or [email protected]function checkEmail($email) {
$allowed = '/[a-zA-Z0-9._-]+@[a-zA-Z0-9-]+\.[a-zA-Z]{2,4}/';
return (preg_match($allowed, $email)) ? true : false;
}
I often user . and , aswell as # or ¤%& in my passwords. Why can't I do this here?function checkPassword($password) {
$pattern = strspn($password, 'qwertyuiopasdfghjklzxcvbnmQWERTYUIOPASDFGHJKLZXCVBNM0123456789');
if ($pattern != strlen($password)) {
return false;
} else {
$allowed = "/[a-zA-Z0-9]/";
return (preg_match($allowed, $password)) ? true : false;
}
}
Homo?function getSexName($sex) {
if (array_key_exists($sex, $this->config['server']['sex']))
return $this->config['server']['sex'][$sex];
return 'homo';
}
The functions are those from Gesior, I believe [HIGHLIGHT]filter_var($email, FILTER_VALIDATE_EMAIL)[/HIGHLIGHT] can be used for checking emails easilyPeople with subdomains can't register, examples are such as [email protected] or [email protected]
I often user . and , aswell as # or ¤%& in my passwords. Why can't I do this here?
>puts makes
you wanted to say that in another way but then made up your mind forgetting to remove the word?
I was quoting this part of your postI don't even know what I was going to say.. any suggestion how to fix? There are 2 config files for some reason, I filled out both and even executed query's from database.txt and nothing helped.. I've never used smarty so I don't know where to start..
It just puts makes it even more difficult for me to work with your code.
I was quoting this part of your post