• There is NO official Otland's Discord server and NO official Otland's server list. The Otland's Staff does not manage any Discord server or server list. Moderators or administrator of any Discord server or server lists have NO connection to the Otland's Staff. Do not get scammed!

[Open-Tibia List] TopOTS

Amiroslo

Amiroslo

Excellent OT User
Joined
Jul 28, 2009
Messages
6,767
Solutions
5
Reaction score
769

Hello OTLanders,
I wasn't sure where to exactly make the thread so I just made it here.
I would like to release this Open-Tibia List for all those who want to take and improve it and use it.


Registered users can:

Vote +/-
Comment
Add servers (5 max)
Edit their server(s)
Promote their server(s) $
Upload map

Guests can:
Search for servers.
Advance search for servers by every detail.
Change language.
Change colors.
Check out Quick Statistics
Check out Featured servers
Check the FAQ


My Skype: Amir.Amoore
Download Link: https://github.com/Amiroslo/TopOTS

Enjoy :)

Kind Regards~
Amiroslo



Thanks to Naxtie for the Swedish Translation
Thanks to me for the Arabic Translation
Thanks to Zszywek for the Polish Translation
Thanks to Vanesssa for the Deutsche Translation
 
Hello, why register not working? I uploaded sql and configured site but still not working, site not create accounts :/
 
blackroose said:
Hello, why register not working? I uploaded sql and configured site but still not working, site not create accounts :/
Click to expand...

This is still happening. Just downloaded and unable to register account. It doesn't speak with SQL at all...
 
mohamedharon said:
There is a wrong in mysql register I can't find a fix
Click to expand...
here
TopOTS/master/pages/login.php
PHP: 
<?php


if(!is_logged() and isset($_POST['submit'])){
    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

    $login=mysql_real_escape_string($_POST['login']);
    $pass=mysql_real_escape_string($_POST['password']);
    $login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'$pass'"');
    if($login_q->num_rows()==1){
        $user=$login_q->fetch_assoc();
        $ban_exist = $mysqli -> query ('SELECT count(*) FROM `list_bans` WHERE `accid`="'.$user['id'].'"')->fetch_assoc();
        if($ban_exist['count(*)']>=1){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['banned'].'</p>';
        }elseif($user['accepted']==0){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_accepted'].'</p>';
        }else{
            $_SESSION['account']['status']=1;
            $_SESSION['account']['id']=$user['id'];
            $_SESSION['account']['name']=$user['login'];
            if($user['admin']==1){
                $_SESSION['account']['admin']=1;
            }else{
                $_SESSION['account']['admin']=0;
            }
            header("Location: ?page=list");
            exit;
        }
    }else{
        echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_found'].'</p>';
    }
}

if(!is_logged()){
    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
    $randomString = '';
    for ($i = 0; $i < 20; $i++)
    {
     $randomString .= $characters[rand(0, strlen($characters) - 1)];
    }

    $_SESSION['csrf'] = $randomString;
    echo '
    <div style="padding:15px;" class="row-fluid">
    <div class="span4">
            <div class="login-header bordered">
                <h4>'.$_LANG['login']['login'].'</h4>
            </div>
            <form action="?page=login" method="POST">
            <input type="hidden" name="csrf" value="'.$randomString.'">
           
                <div class="login-field">
                    <label for="username">'.$_LANG['login']['username'].'</label>
                    <input type="text" name="login" id="login" placeholder="'.$_LANG['login']['username'].'" autofocus >
                    <i class="icon-user"></i>
                </div>
                <div class="login-field">
                    <label for="password">'.$_LANG['login']['password'].'</label>
                    <input type="password" name="password" id="password" placeholder="'.$_LANG['login']['password'].'">
                    <i class="icon-lock"></i>
                </div>
                <div class="login-button clearfix">
                    <button name="submit" type="submit" class="pull-right btn btn-large blue">'.$_LANG['login']['login'].'<i class="icon-arrow-right"></i></button>
                </div>
                <div class="forgot-password">
                    <a href="?page=recover" role="button" data-toggle="modal">'.$_LANG['login']['recover'].'</a>
                </div>
            </form>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}

?>

TopOTS/master/pages/register.php

PHP: 
 <?php
if(!is_logged()){
    $echo_form=1;
    $login="";
    $mail="";

    echo '<div class="row-fluid">
        <div class="span12">
            <div class="well red">
                <div class="well-header">
                    <h5>'.$_LANG['register']['register'].'</h5>
                    <ul>
                        <li class="color_pick"><a href="#"><i class="icon-th"></i></a>
                            <ul>
                                <li><a class="blue set_color" href="#"></a></li>
                                <li><a class="light_blue set_color" href="#"></a></li>
                                <li><a class="grey set_color" href="#"></a></li>
                                <li><a class="pink set_color" href="#"></a></li>
                                <li><a class="red set_color" href="#"></a></li>
                                <li><a class="orange set_color" href="#"></a></li>
                                <li><a class="yellow set_color" href="#"></a></li>
                                <li><a class="green set_color" href="#"></a></li>
                                <li><a class="dark_green set_color" href="#"></a></li>
                                <li><a class="turq set_color" href="#"></a></li>
                                <li><a class="dark_turq set_color" href="#"></a></li>
                                <li><a class="purple set_color" href="#"></a></li>
                                <li><a class="violet set_color" href="#"></a></li>
                                <li><a class="dark_blue set_color" href="#"></a></li>
                                <li><a class="dark_red set_color" href="#"></a></li>
                                <li><a class="brown set_color" href="#"></a></li>
                                <li><a class="black set_color" href="#"></a></li>
                            </ul>
                        </li>
                    </ul>
                </div>

                <div class="well-content">';
               



                if(isset($_POST['submit'])){
                    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

                    $error=NULL;
                    $login=mysql_real_escape_string($_POST['login']);
                    $mail=mysql_real_escape_string($_POST['mail']);
                    $pass=mysql_real_escape_string($_POST['pass1']);
                    $pass2=mysql_real_escape_string($_POST['pass2']);
                    $login_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `login`="'.$login.'"')->fetch_assoc();
                    $mail_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `mail`="'.$mail.'"')->fetch_assoc();
                   
                    if(!(check_string2($login) and strlen($login)>=3 and strlen($login)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['login_error'].'</p>';
                    }
                   
                    if(!(check_string2($pass) and strlen($pass)>=3 and strlen($pass)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error'].'</p>';
                    }
                   
                    if($pass!=$pass2){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error2'].'</p>';
                    }
                   
                    if(!(check_mail($mail) and strlen($mail)<60)){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_error'].'</p>';
                    }
                   
                    if ($_SESSION['captcha']['code']!=$_POST['captcha']) {
                        $error.='<p class="text-error">'.$_LANG['register']['captcha_error'].'</p>';
                    }
                   
                    if($login_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['login_ex'].'</p>';
                    }
                   
                    if($mail_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_ex'].'</p>';
                    }
                   
                    if($error==NULL){
                        $echo_form=0;
                        if($register_accept==1){
                            $accepted=0;
                            $chars="1234567890";
                            $minchars=7;
                            $maxchars=9;
                            $escapecharplus=0;
                            $repeat=mt_rand($minchars,$maxchars);
                            $key='';
                            while ($escapecharplus<$repeat)
                            {
                                $key.=$chars[mt_rand(1, strlen($chars)-1)];
                                $escapecharplus+=1;
                            }
                        }else{
                            $accepted=1;
                            $key=0;
                        }
                       
                        $IP = $_SERVER['REMOTE_ADDR'];
                        $IP = ip2long($IP);
                       
                        $ins_q='INSERT INTO `list_acc`(`id`, `login`, `pass`, `mail`, `points`, `admin`, `count`, `ban`, `accepted`, `accept_key`,`to_reset`, `reset_key`, `ip`) VALUES (
                        NULL,
                        "'.$login.'",
                        "'$pass'",
                        "'.$mail.'",
                        "0",
                        "0",
                        "0",
                        "0",
                        "'.$accepted.'",
                        "'.$key.'",
                        "0",
                        "0",
                        "'.$IP.'")';
                        $mysqli->query($ins_q);
                           
                        echo '<p class="text-success">'.$_LANG['register']['succes'].'</br>';
                        if($register_accept==1){
                            echo ''.$_LANG['register']['succes_accept'].'</p>';
                            $getid=$mysqli->query('SELECT id FROM `list_acc` WHERE `login`="'.$login.'" AND `mail`="'.$mail.'"')->fetch_assoc();
                            //mailer('register', $mail,$key,$getid['id'],$domain);
                            include('includes/class.phpmailer.php');
                            send_register($mail,$key,$getid['id'],$domain);
                        }else{
                            echo ''.$_LANG['register']['succes_noaccept'].'</p>';
                        }
                    }else{
                        echo $error;
                    }
                }
               
                $_SESSION['captcha'] = captcha();
                if($echo_form==1){
                    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
                    $randomString = '';
                    for ($i = 0; $i < 20; $i++)
                        {
                    $randomString .= $characters[rand(0, strlen($characters) - 1)];
                        }

                    $_SESSION['csrf'] = $randomString;
                   
                    echo '<form method="POST" action="?page=register">
                            <input type="hidden" name="csrf" value="'.$randomString.'">
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['username'].'</label>
                            <div class="field">
                                <input maxlength="15" name="login" class="span6" placeholder="3-15 '.$_LANG['register']['chars'].'" type="text" value="'.$login.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">Mail</label>
                            <div class="field">
                                <input maxlength="60" placeholder="[email protected]" name="mail" class="span6" type="text" value="'.$mail.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass'].'</label>
                            <div class="field">
                                <input maxlength="15" name="pass1" placeholder="3-15 '.$_LANG['register']['chars'].'" type="password" class="span6" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass2'].'</label>
                            <div class="field">
                                <input maxlength="15" placeholder="3-15 '.$_LANG['register']['chars'].'" name="pass2" type="password" class="span6" type="text">
                            </div>
                        </div>
                       
                        <div class="form_row">
                            <label class="field_name align_right">Captcha</label>
                            <div class="field">
                                <div class="fileupload fileupload-new" data-provides="fileupload">
                                  <div class="fileupload-new thumbnail" ><img src="'.$_SESSION['captcha']['image_src'].'"/></div>
                                </div>
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['code'].'</label>
                            <div class="field">
                                <input placeholder="Captcha" name="captcha" class="span4" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <div class="field">
                                <button name="submit" type="submit" class="btn btn-large blue">'.$_LANG['register']['register'].' <i class="icon-arrow-right"></i></button>
                            </div>
                        </div>
                    </form>';
                }
                echo '</div>
            </div>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}
?>
 
djblah said:
here
TopOTS/master/pages/login.php
PHP: 
<?php


if(!is_logged() and isset($_POST['submit'])){
    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

    $login=mysql_real_escape_string($_POST['login']);
    $pass=mysql_real_escape_string($_POST['password']);
    $login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'$pass'"');
    if($login_q->num_rows()==1){
        $user=$login_q->fetch_assoc();
        $ban_exist = $mysqli -> query ('SELECT count(*) FROM `list_bans` WHERE `accid`="'.$user['id'].'"')->fetch_assoc();
        if($ban_exist['count(*)']>=1){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['banned'].'</p>';
        }elseif($user['accepted']==0){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_accepted'].'</p>';
        }else{
            $_SESSION['account']['status']=1;
            $_SESSION['account']['id']=$user['id'];
            $_SESSION['account']['name']=$user['login'];
            if($user['admin']==1){
                $_SESSION['account']['admin']=1;
            }else{
                $_SESSION['account']['admin']=0;
            }
            header("Location: ?page=list");
            exit;
        }
    }else{
        echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_found'].'</p>';
    }
}

if(!is_logged()){
    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
    $randomString = '';
    for ($i = 0; $i < 20; $i++)
    {
     $randomString .= $characters[rand(0, strlen($characters) - 1)];
    }

    $_SESSION['csrf'] = $randomString;
    echo '
    <div style="padding:15px;" class="row-fluid">
    <div class="span4">
            <div class="login-header bordered">
                <h4>'.$_LANG['login']['login'].'</h4>
            </div>
            <form action="?page=login" method="POST">
            <input type="hidden" name="csrf" value="'.$randomString.'">
          
                <div class="login-field">
                    <label for="username">'.$_LANG['login']['username'].'</label>
                    <input type="text" name="login" id="login" placeholder="'.$_LANG['login']['username'].'" autofocus >
                    <i class="icon-user"></i>
                </div>
                <div class="login-field">
                    <label for="password">'.$_LANG['login']['password'].'</label>
                    <input type="password" name="password" id="password" placeholder="'.$_LANG['login']['password'].'">
                    <i class="icon-lock"></i>
                </div>
                <div class="login-button clearfix">
                    <button name="submit" type="submit" class="pull-right btn btn-large blue">'.$_LANG['login']['login'].'<i class="icon-arrow-right"></i></button>
                </div>
                <div class="forgot-password">
                    <a href="?page=recover" role="button" data-toggle="modal">'.$_LANG['login']['recover'].'</a>
                </div>
            </form>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}

?>

TopOTS/master/pages/register.php

PHP: 
 <?php
if(!is_logged()){
    $echo_form=1;
    $login="";
    $mail="";

    echo '<div class="row-fluid">
        <div class="span12">
            <div class="well red">
                <div class="well-header">
                    <h5>'.$_LANG['register']['register'].'</h5>
                    <ul>
                        <li class="color_pick"><a href="#"><i class="icon-th"></i></a>
                            <ul>
                                <li><a class="blue set_color" href="#"></a></li>
                                <li><a class="light_blue set_color" href="#"></a></li>
                                <li><a class="grey set_color" href="#"></a></li>
                                <li><a class="pink set_color" href="#"></a></li>
                                <li><a class="red set_color" href="#"></a></li>
                                <li><a class="orange set_color" href="#"></a></li>
                                <li><a class="yellow set_color" href="#"></a></li>
                                <li><a class="green set_color" href="#"></a></li>
                                <li><a class="dark_green set_color" href="#"></a></li>
                                <li><a class="turq set_color" href="#"></a></li>
                                <li><a class="dark_turq set_color" href="#"></a></li>
                                <li><a class="purple set_color" href="#"></a></li>
                                <li><a class="violet set_color" href="#"></a></li>
                                <li><a class="dark_blue set_color" href="#"></a></li>
                                <li><a class="dark_red set_color" href="#"></a></li>
                                <li><a class="brown set_color" href="#"></a></li>
                                <li><a class="black set_color" href="#"></a></li>
                            </ul>
                        </li>
                    </ul>
                </div>

                <div class="well-content">';
              



                if(isset($_POST['submit'])){
                    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

                    $error=NULL;
                    $login=mysql_real_escape_string($_POST['login']);
                    $mail=mysql_real_escape_string($_POST['mail']);
                    $pass=mysql_real_escape_string($_POST['pass1']);
                    $pass2=mysql_real_escape_string($_POST['pass2']);
                    $login_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `login`="'.$login.'"')->fetch_assoc();
                    $mail_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `mail`="'.$mail.'"')->fetch_assoc();
                  
                    if(!(check_string2($login) and strlen($login)>=3 and strlen($login)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['login_error'].'</p>';
                    }
                  
                    if(!(check_string2($pass) and strlen($pass)>=3 and strlen($pass)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error'].'</p>';
                    }
                  
                    if($pass!=$pass2){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error2'].'</p>';
                    }
                  
                    if(!(check_mail($mail) and strlen($mail)<60)){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_error'].'</p>';
                    }
                  
                    if ($_SESSION['captcha']['code']!=$_POST['captcha']) {
                        $error.='<p class="text-error">'.$_LANG['register']['captcha_error'].'</p>';
                    }
                  
                    if($login_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['login_ex'].'</p>';
                    }
                  
                    if($mail_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_ex'].'</p>';
                    }
                  
                    if($error==NULL){
                        $echo_form=0;
                        if($register_accept==1){
                            $accepted=0;
                            $chars="1234567890";
                            $minchars=7;
                            $maxchars=9;
                            $escapecharplus=0;
                            $repeat=mt_rand($minchars,$maxchars);
                            $key='';
                            while ($escapecharplus<$repeat)
                            {
                                $key.=$chars[mt_rand(1, strlen($chars)-1)];
                                $escapecharplus+=1;
                            }
                        }else{
                            $accepted=1;
                            $key=0;
                        }
                      
                        $IP = $_SERVER['REMOTE_ADDR'];
                        $IP = ip2long($IP);
                      
                        $ins_q='INSERT INTO `list_acc`(`id`, `login`, `pass`, `mail`, `points`, `admin`, `count`, `ban`, `accepted`, `accept_key`,`to_reset`, `reset_key`, `ip`) VALUES (
                        NULL,
                        "'.$login.'",
                        "'$pass'",
                        "'.$mail.'",
                        "0",
                        "0",
                        "0",
                        "0",
                        "'.$accepted.'",
                        "'.$key.'",
                        "0",
                        "0",
                        "'.$IP.'")';
                        $mysqli->query($ins_q);
                          
                        echo '<p class="text-success">'.$_LANG['register']['succes'].'</br>';
                        if($register_accept==1){
                            echo ''.$_LANG['register']['succes_accept'].'</p>';
                            $getid=$mysqli->query('SELECT id FROM `list_acc` WHERE `login`="'.$login.'" AND `mail`="'.$mail.'"')->fetch_assoc();
                            //mailer('register', $mail,$key,$getid['id'],$domain);
                            include('includes/class.phpmailer.php');
                            send_register($mail,$key,$getid['id'],$domain);
                        }else{
                            echo ''.$_LANG['register']['succes_noaccept'].'</p>';
                        }
                    }else{
                        echo $error;
                    }
                }
              
                $_SESSION['captcha'] = captcha();
                if($echo_form==1){
                    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
                    $randomString = '';
                    for ($i = 0; $i < 20; $i++)
                        {
                    $randomString .= $characters[rand(0, strlen($characters) - 1)];
                        }

                    $_SESSION['csrf'] = $randomString;
                  
                    echo '<form method="POST" action="?page=register">
                            <input type="hidden" name="csrf" value="'.$randomString.'">
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['username'].'</label>
                            <div class="field">
                                <input maxlength="15" name="login" class="span6" placeholder="3-15 '.$_LANG['register']['chars'].'" type="text" value="'.$login.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">Mail</label>
                            <div class="field">
                                <input maxlength="60" placeholder="[email protected]" name="mail" class="span6" type="text" value="'.$mail.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass'].'</label>
                            <div class="field">
                                <input maxlength="15" name="pass1" placeholder="3-15 '.$_LANG['register']['chars'].'" type="password" class="span6" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass2'].'</label>
                            <div class="field">
                                <input maxlength="15" placeholder="3-15 '.$_LANG['register']['chars'].'" name="pass2" type="password" class="span6" type="text">
                            </div>
                        </div>
                      
                        <div class="form_row">
                            <label class="field_name align_right">Captcha</label>
                            <div class="field">
                                <div class="fileupload fileupload-new" data-provides="fileupload">
                                  <div class="fileupload-new thumbnail" ><img src="'.$_SESSION['captcha']['image_src'].'"/></div>
                                </div>
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['code'].'</label>
                            <div class="field">
                                <input placeholder="Captcha" name="captcha" class="span4" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <div class="field">
                                <button name="submit" type="submit" class="btn btn-large blue">'.$_LANG['register']['register'].' <i class="icon-arrow-right"></i></button>
                            </div>
                        </div>
                    </form>';
                }
                echo '</div>
            </div>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}
?>
Click to expand...

Thanks for Reply but I get this
error syntax error, unexpected '$pass' (T_VARIABLE) in <b>C:\xampp\htdocs\pages\login.php

djblah said:
here
TopOTS/master/pages/login.php
PHP: 
<?php


if(!is_logged() and isset($_POST['submit'])){
    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

    $login=mysql_real_escape_string($_POST['login']);
    $pass=mysql_real_escape_string($_POST['password']);
    $login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'$pass'"');
    if($login_q->num_rows()==1){
        $user=$login_q->fetch_assoc();
        $ban_exist = $mysqli -> query ('SELECT count(*) FROM `list_bans` WHERE `accid`="'.$user['id'].'"')->fetch_assoc();
        if($ban_exist['count(*)']>=1){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['banned'].'</p>';
        }elseif($user['accepted']==0){
            echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_accepted'].'</p>';
        }else{
            $_SESSION['account']['status']=1;
            $_SESSION['account']['id']=$user['id'];
            $_SESSION['account']['name']=$user['login'];
            if($user['admin']==1){
                $_SESSION['account']['admin']=1;
            }else{
                $_SESSION['account']['admin']=0;
            }
            header("Location: ?page=list");
            exit;
        }
    }else{
        echo '<p style="padding:15px;" class="text-error">'.$_LANG['login']['not_found'].'</p>';
    }
}

if(!is_logged()){
    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
    $randomString = '';
    for ($i = 0; $i < 20; $i++)
    {
     $randomString .= $characters[rand(0, strlen($characters) - 1)];
    }

    $_SESSION['csrf'] = $randomString;
    echo '
    <div style="padding:15px;" class="row-fluid">
    <div class="span4">
            <div class="login-header bordered">
                <h4>'.$_LANG['login']['login'].'</h4>
            </div>
            <form action="?page=login" method="POST">
            <input type="hidden" name="csrf" value="'.$randomString.'">
          
                <div class="login-field">
                    <label for="username">'.$_LANG['login']['username'].'</label>
                    <input type="text" name="login" id="login" placeholder="'.$_LANG['login']['username'].'" autofocus >
                    <i class="icon-user"></i>
                </div>
                <div class="login-field">
                    <label for="password">'.$_LANG['login']['password'].'</label>
                    <input type="password" name="password" id="password" placeholder="'.$_LANG['login']['password'].'">
                    <i class="icon-lock"></i>
                </div>
                <div class="login-button clearfix">
                    <button name="submit" type="submit" class="pull-right btn btn-large blue">'.$_LANG['login']['login'].'<i class="icon-arrow-right"></i></button>
                </div>
                <div class="forgot-password">
                    <a href="?page=recover" role="button" data-toggle="modal">'.$_LANG['login']['recover'].'</a>
                </div>
            </form>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}

?>

TopOTS/master/pages/register.php

PHP: 
 <?php
if(!is_logged()){
    $echo_form=1;
    $login="";
    $mail="";

    echo '<div class="row-fluid">
        <div class="span12">
            <div class="well red">
                <div class="well-header">
                    <h5>'.$_LANG['register']['register'].'</h5>
                    <ul>
                        <li class="color_pick"><a href="#"><i class="icon-th"></i></a>
                            <ul>
                                <li><a class="blue set_color" href="#"></a></li>
                                <li><a class="light_blue set_color" href="#"></a></li>
                                <li><a class="grey set_color" href="#"></a></li>
                                <li><a class="pink set_color" href="#"></a></li>
                                <li><a class="red set_color" href="#"></a></li>
                                <li><a class="orange set_color" href="#"></a></li>
                                <li><a class="yellow set_color" href="#"></a></li>
                                <li><a class="green set_color" href="#"></a></li>
                                <li><a class="dark_green set_color" href="#"></a></li>
                                <li><a class="turq set_color" href="#"></a></li>
                                <li><a class="dark_turq set_color" href="#"></a></li>
                                <li><a class="purple set_color" href="#"></a></li>
                                <li><a class="violet set_color" href="#"></a></li>
                                <li><a class="dark_blue set_color" href="#"></a></li>
                                <li><a class="dark_red set_color" href="#"></a></li>
                                <li><a class="brown set_color" href="#"></a></li>
                                <li><a class="black set_color" href="#"></a></li>
                            </ul>
                        </li>
                    </ul>
                </div>

                <div class="well-content">';
              



                if(isset($_POST['submit'])){
                    if ($_SESSION['csrf'] != $_POST['csrf']) die('You homo');

                    $error=NULL;
                    $login=mysql_real_escape_string($_POST['login']);
                    $mail=mysql_real_escape_string($_POST['mail']);
                    $pass=mysql_real_escape_string($_POST['pass1']);
                    $pass2=mysql_real_escape_string($_POST['pass2']);
                    $login_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `login`="'.$login.'"')->fetch_assoc();
                    $mail_exist = $mysqli -> query ('SELECT count(*) FROM `list_acc` WHERE `mail`="'.$mail.'"')->fetch_assoc();
                  
                    if(!(check_string2($login) and strlen($login)>=3 and strlen($login)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['login_error'].'</p>';
                    }
                  
                    if(!(check_string2($pass) and strlen($pass)>=3 and strlen($pass)<=15)){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error'].'</p>';
                    }
                  
                    if($pass!=$pass2){
                        $error.='<p class="text-error">'.$_LANG['register']['pass_error2'].'</p>';
                    }
                  
                    if(!(check_mail($mail) and strlen($mail)<60)){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_error'].'</p>';
                    }
                  
                    if ($_SESSION['captcha']['code']!=$_POST['captcha']) {
                        $error.='<p class="text-error">'.$_LANG['register']['captcha_error'].'</p>';
                    }
                  
                    if($login_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['login_ex'].'</p>';
                    }
                  
                    if($mail_exist['count(*)']>0){
                        $error.='<p class="text-error">'.$_LANG['register']['mail_ex'].'</p>';
                    }
                  
                    if($error==NULL){
                        $echo_form=0;
                        if($register_accept==1){
                            $accepted=0;
                            $chars="1234567890";
                            $minchars=7;
                            $maxchars=9;
                            $escapecharplus=0;
                            $repeat=mt_rand($minchars,$maxchars);
                            $key='';
                            while ($escapecharplus<$repeat)
                            {
                                $key.=$chars[mt_rand(1, strlen($chars)-1)];
                                $escapecharplus+=1;
                            }
                        }else{
                            $accepted=1;
                            $key=0;
                        }
                      
                        $IP = $_SERVER['REMOTE_ADDR'];
                        $IP = ip2long($IP);
                      
                        $ins_q='INSERT INTO `list_acc`(`id`, `login`, `pass`, `mail`, `points`, `admin`, `count`, `ban`, `accepted`, `accept_key`,`to_reset`, `reset_key`, `ip`) VALUES (
                        NULL,
                        "'.$login.'",
                        "'$pass'",
                        "'.$mail.'",
                        "0",
                        "0",
                        "0",
                        "0",
                        "'.$accepted.'",
                        "'.$key.'",
                        "0",
                        "0",
                        "'.$IP.'")';
                        $mysqli->query($ins_q);
                          
                        echo '<p class="text-success">'.$_LANG['register']['succes'].'</br>';
                        if($register_accept==1){
                            echo ''.$_LANG['register']['succes_accept'].'</p>';
                            $getid=$mysqli->query('SELECT id FROM `list_acc` WHERE `login`="'.$login.'" AND `mail`="'.$mail.'"')->fetch_assoc();
                            //mailer('register', $mail,$key,$getid['id'],$domain);
                            include('includes/class.phpmailer.php');
                            send_register($mail,$key,$getid['id'],$domain);
                        }else{
                            echo ''.$_LANG['register']['succes_noaccept'].'</p>';
                        }
                    }else{
                        echo $error;
                    }
                }
              
                $_SESSION['captcha'] = captcha();
                if($echo_form==1){
                    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
                    $randomString = '';
                    for ($i = 0; $i < 20; $i++)
                        {
                    $randomString .= $characters[rand(0, strlen($characters) - 1)];
                        }

                    $_SESSION['csrf'] = $randomString;
                  
                    echo '<form method="POST" action="?page=register">
                            <input type="hidden" name="csrf" value="'.$randomString.'">
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['username'].'</label>
                            <div class="field">
                                <input maxlength="15" name="login" class="span6" placeholder="3-15 '.$_LANG['register']['chars'].'" type="text" value="'.$login.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">Mail</label>
                            <div class="field">
                                <input maxlength="60" placeholder="[email protected]" name="mail" class="span6" type="text" value="'.$mail.'">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass'].'</label>
                            <div class="field">
                                <input maxlength="15" name="pass1" placeholder="3-15 '.$_LANG['register']['chars'].'" type="password" class="span6" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['pass2'].'</label>
                            <div class="field">
                                <input maxlength="15" placeholder="3-15 '.$_LANG['register']['chars'].'" name="pass2" type="password" class="span6" type="text">
                            </div>
                        </div>
                      
                        <div class="form_row">
                            <label class="field_name align_right">Captcha</label>
                            <div class="field">
                                <div class="fileupload fileupload-new" data-provides="fileupload">
                                  <div class="fileupload-new thumbnail" ><img src="'.$_SESSION['captcha']['image_src'].'"/></div>
                                </div>
                            </div>
                        </div>
                        <div class="form_row">
                            <label class="field_name align_right">'.$_LANG['register']['code'].'</label>
                            <div class="field">
                                <input placeholder="Captcha" name="captcha" class="span4" type="text">
                            </div>
                        </div>
                        <div class="form_row">
                            <div class="field">
                                <button name="submit" type="submit" class="btn btn-large blue">'.$_LANG['register']['register'].' <i class="icon-arrow-right"></i></button>
                            </div>
                        </div>
                    </form>';
                }
                echo '</div>
            </div>
        </div>
    </div>';
}else{
    header("Location: ?page=list");
    exit;
}
?>
Click to expand...


When I Register the new account not shown in the PHPMYADMIN
 
Last edited by a moderator:
mohamedharon said:
When I Register the new account not shown in the PHPMYADMIN
Click to expand...
Line 9 is executing a query, but it's not concatinated the right way. Mind the 2 dots placed around the variable `$pass` at the end.

Change line 9 from
PHP: 
$login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'$pass'"');
to
PHP: 
$login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'.$pass.'"');
 
webtimize said:
Line 9 is executing a query, but it's not concatinated the right way. Mind the 2 dots placed around the variable `$pass` at the end.

Change line 9 from
PHP: 
$login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'$pass'"');
to
PHP: 
$login_q=$mysqli->query('SELECT id, login, admin, ban, accepted FROM `list_acc` WHERE `login`="'.$login.'" AND `pass`="'.$pass.'"');
Click to expand...

Thanks for Reply I've maked this So I mentioned that's When I create new account it says it has been created now you can login

Then when I try to login it not work

So I go to PHPMYADMIN and the Account not created in the list_acc
 
mohamedharon said:
Thanks for Reply I've maked this So I mentioned that's When I create new account it says it has been created now you can login

Then when I try to login it not work

So I go to PHPMYADMIN and the Account not created in the list_acc
Click to expand...
It seems that the query isn't executed correctly, are you using any form of error supression like `error_reporting(0);` ?

In register.php, change line 118 to
PHP: 
$x = $mysqli->query($ins_q);var_dump($x);exit;

and post the result when you create an account.
 
webtimize said:
It seems that the query isn't executed correctly, are you using any form of error supression like `error_reporting(0);` ?

In register.php, change line 118 to
PHP: 
$x = $mysqli->query($ins_q);var_dump($x);exit;

and post the result when you create an account.
Click to expand...

it not work too :( Please Can you check this mysql-config.php I only changed localhost , root and the otlist > name of database is there any thing will be changed ?

PHP: 
<?php
include_once ('includes/MySQLe.class.php');
$mysqli = new mysqle('localhost', 'root', '', 'otlist');
$mysqli->query("SET NAMES latin2");
$mysqli->query("SET CHARACTER SET latin2");
$mysqli->query("SET collation_connection = latin2_general_ci");
?>
 
mohamedharon said:
it not work too :( Please Can you check this mysql-config.php I only changed localhost , root and the otlist > name of database is there any thing will be changed ?

PHP: 
<?php
include_once ('includes/MySQLe.class.php');
$mysqli = new mysqle('localhost', 'root', '', 'otlist');
$mysqli->query("SET NAMES latin2");
$mysqli->query("SET CHARACTER SET latin2");
$mysqli->query("SET collation_connection = latin2_general_ci");
?>
Click to expand...
That depends, it looks fine as long as you are not using a password with your mysql root user.
I've send you a private message, this keeps the thread a little more clean.



Any solutions will be shared
 
bug in php list
not add:

Lua: 
Featured box

Golden highlight

Countdown

First-in-table

Featured servers
 
This project is discontinued. I provide no support anymore
 
what you?
why are you acting like you made this?? its made by don
its same thing as pyots fkin stian made it but u claim u made it XD
 
Ahilphino said:
what you?
why are you acting like you made this?? its made by don
its same thing as pyots fkin stian made it but u claim u made it XD
Click to expand...
Don who? And no, its not from Stian, please get your facts straight. The serverlist from VAPus was completely different. Also, funny how people come up with bullshit nowadays
 

Similar threads

OTcreator
The World of Neravia - Official Discussion [REMAKE]
Replies
2
Views
734
OTcreator
OTcreator
Jpstafe
  • Solved
Erro Rook_Sample created(MYACC)
Replies
2
Views
275
Jpstafe
Jpstafe
222222
Linux How to secure a Linux server
Replies
12
Views
3K
TibiCAM
TibiCAM
Back
Top