Cђ๏รєPєтภคร 865 Posted July 14, 2012 Boas comunidade,venho postar umas coisas para proteger o habbo. Proteger contra SQL INJECTION (iHusH) 1º - Ir no ficheiro index.php e procurar por isto : if(isset($_GET["user"])) { $query = mysql_query("SELECT * FROM bans WHERE value = '".$_GET["user"]."' AND expire > UNIX_TIMESTAMP() ORDER BY expire DESC LIMIT 1"); } elseif(isset($_GET["ip"])) { $query = mysql_query("SELECT * FROM bans WHERE value = '".$_GET["ip"]."' AND expire > UNIX_TIMESTAMP() ORDER BY expire DESC LIMIT 1"); } e trocar por isto : if(isset($_GET["user"])) { $query = mysql_query("SELECT * FROM bans WHERE value = '".$core->EscapeString($_GET["user"])."' AND expire > UNIX_TIMESTAMP() ORDER BY expire DESC LIMIT 1"); } elseif(isset($_GET["ip"])) { $query = mysql_query("SELECT * FROM bans WHERE value = '".$core->EscapeString($_GET["ip"])."' AND expire > UNIX_TIMESTAMP() ORDER BY expire DESC LIMIT 1"); } Cumprimentos,ChosePetras 1 André Rochato reacted to this Share this post Link to post Share on other sites
skeewzz ♛ 245 Posted July 14, 2012 Bom Tópico http://cyber-gamers.org/public/style_emoticons/default/451960.gifCumpz:Pedro Reis Share this post Link to post Share on other sites
André Rochato 253 Posted July 17, 2012 Gostei chose http://cyber-gamers.org/public/style_emoticons/default/451960.gif Share this post Link to post Share on other sites