Author Topic: Security Fix: fadclick.php  (Read 1391 times)

0 Members and 1 Guest are viewing this topic.

Offline 757jterrell

  • Hero Member
  • *****
  • Posts: 1629
    • View Profile
    • PTC Factory
Security Fix: fadclick.php
« on: October 09, 2010, 05:34:18 PM »
With the cooperation of Scott Klarr (http://diffusionstudios.com/) we are pleased to release this security update:

This will prevent people from uploading free credits into your featured ads, also please use the security fix for the wizards/fad.php file.

EDIT: Link to wizards/fad.php fix is here:
http://auroraadmintraining.info/index.php/topic,1005.0.html

You will want to cut and paste the entire code into your file:

Code: [Select]
<?
$id=$_GET['id'];
include("config.php");
include("includes/mysql.php");
$Db1 = new DB_sql;
$Db1->connect($DBHost, $DBDatabase, $DBUser, $DBPassword);

$id = mysql_real_escape_string($_REQUEST['id']);

$sql=$Db1->query("SELECT * FROM fads WHERE id='$id'");
$banner=$Db1->fetch_array($sql);
$sql=$Db1->query("UPDATE fads SET clicks=clicks+1 WHERE id='$id'");


header("Location: $banner[target]");
?>
« Last Edit: November 03, 2010, 09:52:49 PM by 757jterrell »

Addons

  • Guest
Re: Security Fix: fadclick.php
« Reply #1 on: October 13, 2010, 04:42:21 PM »
fixed ...

Offline iamforyouraja

  • Jr. Member
  • **
  • Posts: 59
  • Owner of PtcX...
    • View Profile
    • PtcX - X Income!
Re: Security Fix: fadclick.php
« Reply #2 on: May 08, 2011, 06:15:11 PM »
Hi,
I have cut the hole text and then deleted the hole text which was written in my file and pasted this there. But now i am having this error when someone try to buy f.ad:

"Fatal error: Cannot redeclare class DB_Sql in /home/goku/public_html/includes/mysql.php on line 19"

Please help me ASAP because no one will be able to buy it until it gets fixed. :( Or even you can give me the old text which was in my file so that it can work.

« Last Edit: May 08, 2011, 06:21:16 PM by iamforyouraja »

Offline 757jterrell

  • Hero Member
  • *****
  • Posts: 1629
    • View Profile
    • PTC Factory
Re: Security Fix: fadclick.php
« Reply #3 on: May 08, 2011, 06:30:31 PM »
Hi,
I have cut the hole text and then deleted the hole text which was written in my file and pasted this there. But now i am having this error when someone try to buy f.ad:

"Fatal error: Cannot redeclare class DB_Sql in /home/goku/public_html/includes/mysql.php on line 19"

Please help me ASAP because no one will be able to buy it until it gets fixed. :( Or even you can give me the old text which was in my file so that it can work.



send me your email and I will send you the file

Offline iamforyouraja

  • Jr. Member
  • **
  • Posts: 59
  • Owner of PtcX...
    • View Profile
    • PtcX - X Income!
Re: Security Fix: fadclick.php
« Reply #4 on: May 08, 2011, 06:33:01 PM »
Hi,
I have cut the hole text and then deleted the hole text which was written in my file and pasted this there. But now i am having this error when someone try to buy f.ad:

"Fatal error: Cannot redeclare class DB_Sql in /home/goku/public_html/includes/mysql.php on line 19"

Please help me ASAP because no one will be able to buy it until it gets fixed. :( Or even you can give me the old text which was in my file so that it can work.



send me your email and I will send you the file


PM sent. :)

EDIT: You can post that small code here as well if you want to. :)
« Last Edit: May 08, 2011, 06:36:13 PM by iamforyouraja »