Debuggen Config paar errors

eeyk · 15 mrt 2008

ik was bezig me config te debuggen

Via

Error_raport(E~ALL);

ik heb van de 8 fouten 5 kunnen oplossen deze snap ik niet

Notice: Undefined index: omnilog in /home/id02117/domains/crime-ware.nl/public_html/crime/_include-config.php on line 41

Notice: Undefined index: HTTP_X_FORWARDED_FOR in /home/id02117/domains/crime-ware.nl/public_html/crime/_include-config.php on line 74

Notice: Undefined index: HTTP_CLIENT_IP in /home/id02117/domains/crime-ware.nl/public_html/crime/_include-config.php on line 74

ticom · 15 mrt 2008

Het zou handig kunnen zijn als je de broncode hier neer zou zetten, of igg het desbetreffende deel ervan.

SvU · 15 mrt 2008

Error_raport(E~ALL);

Pardon?

Tha Devil · 16 mrt 2008

Waarschijnlijk gebruik je in een loop een variabele die daarvoor niet is geinitialiseerd.

Maar ja, zoals gezegd: zonder bron kunnen we niet veel.

eeyk · 16 mrt 2008

ik heb me password wel Veranderd in ****

PHP:

<?php 
session_start();

$url = substr($_SERVER['REQUEST_URI'], 1); 
if(eregi(";", $url) or eregi("'", $url) or eregi("<", $url) or eregi(">", $url) or eregi(")", $url) or eregi("query", $url) or eregi("mysql", $url) or eregi('"', $url) or eregi('config', $url) or eregi('ingelogd', $url) or eregi("query", $url)){ 
  echo "geen sql injectie doen<br>"; 
	exit;
}

  if(!(@mysql_pconnect("localhost","*****","*****") && @mysql_select_db("id02117_crime"))) {
    print <<<ENDHTML
<html> 
<head> 
<title>[[(*( GETTO GANG )*)]]</title> 
<link rel="stylesheet" type="text/css" href="css-v1.css"> 
</head> 
<body style="background: #999999; margin: 0px;"> 
  <table width=100>
    <tr><td class="subTitle"><b>Error</b></td></tr> 
    <tr><td class="mainTxt">Er is een Error in Mysql Kom later trug!<br />
<br>
    </td></tr> 
  </table> 
	<center>
	<a href="http://www.nintendo-europe.com/NOE/nl/NL/register/index.jsp?a=patric121&m=b" target="_blank"> <img src="http://crime-ware.nl/crime/banner_2_full.gif" border=0></a><br />Crime-ware.org (BANEX)</center>
<br /><CENTER><SCRIPT TYPE="text/javascript" LANGUAGE="JavaScript" src="http://dutchleader.nl/php/banex/view.php?id=pattric"></SCRIPT></CENTER>
<h6>
</h6>
</center>
</body>
</html>
ENDHTML;
    exit; 
  }
	
  include("_include-funcs.php");
	
  if(isset($_SESSION['login'])) {
    $dbres				= mysql_query("SELECT *,UNIX_TIMESTAMP(`signup`) AS `signup`,UNIX_TIMESTAMP(`online`) AS `online` FROM `[users]` WHERE `login`='{$_SESSION['login']}'");
    $data				= mysql_fetch_object($dbres);
  }
  if(((count($_POST) > 0 && !isset($_POST['omnilog'])) || ($_POST['omnilog'] == 1 && count($_GET) > 1)) && isset($OMNILOG)) { 
    $forwardedFor           = ($_SERVER['HTTP_X_FORWARDED_FOR'] != "") ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['HTTP_CLIENT_IP']; 
    $forwardedFor           = preg_replace('/, .+/','',$forwardedFor); 
    $postVars               = addslashes(var_export($_POST,TRUE)); 
    if($postVars == "array (n)" || (count($_POST) == 1 && isset($_POST['omnilog']))) 
      $postVars             = ""; 
    $getVars                = addslashes(var_export($_GET,TRUE)); 
    if($getVars == "array (n)") 
      $getVars              = ""; 
    mysql_query("INSERT INTO `[omnilog]` VALUES(NOW(),'{$_COOKIE['login']}','{$_SERVER['REMOTE_ADDR']}','$forwardedFor','{$_SERVER['PHP_SELF']}','$postVars','$getVars')"); 
  } 
  foreach($_POST as $key => $value) { 
    if(gettype($_POST[$key]) == "array") 
      foreach($_POST[$key] as $key2 => $value2) 
        $_POST[$key][$key2]     = addslashes($_POST[$key][$key2]); 
    else 
      $_POST[$key]          = addslashes($_POST[$key]); 
  } 
  foreach($_GET as $key => $value) { 
    if(gettype($_GET[$key]) == "array") 
      foreach($_GET[$key] as $key2 => $value2) 
        $_GET[$key][$key2]      = addslashes($_GET[$key][$key2]); 
    else 
      $_GET[$key]           = addslashes($_GET[$key]); 
  } 
  foreach($_COOKIE as $key => $value) { 
    if(gettype($_COOKIE[$key]) == "array") 
      foreach($_COOKIE[$key] as $key2 => $value2) 
        $_COOKIE[$key][$key2]       = addslashes($_COOKIE[$key][$key2]); 
    else 
      $_COOKIE[$key]            = addslashes($_COOKIE[$key]); 
  } 
  $clientIP             = $_SERVER['REMOTE_ADDR']; 
  $forwardedFor             = ($_SERVER['HTTP_X_FORWARDED_FOR'] != "") ? $_SERVER['HTTP_X_FORWARDED_FOR'] : $_SERVER['HTTP_CLIENT_IP']; 
  $forwardedFor             = preg_replace('/, .+/','',$forwardedFor); 
  $dbres                = mysql_query("SELECT `id` FROM `[users]` WHERE `level`='-1' AND (`IP`='$clientIP' OR `IP`='$forwardedFor')"); 
  if(mysql_num_rows($dbres) != 0) { 
    print <<<ENDHTML
<html> 
<head> 
<title>Getto Gang</title> 
<link rel="stylesheet" type="text/css" href="css-v1.css"> 

</head> 
<body style="background: #999999; margin: 0px;"> 
  <table width=100% height=100> 
    <tr><td class="subTitle"><b>Ban</b></td></tr> 
    <tr><td class="mainTxt"> U ben Verbannen Zie de reden<br />
<br />
<B>REDEN</b> :<u><B><I> $reden2  </u></i></b><br />
<br />
Niet mee eens?. Of is er een Misverstand <B> Mail : Ronton@zonnet.nl </b><br />
<br />

<br />
   
    </td></tr> 
  </table> 
</body> 
</html> 
ENDHTML;
    exit;
  }


	if($data->level == -1){

print <<<ENDHTML
	<html> 


<head> 
<title>Getto Gang</title> 
<link rel="stylesheet" type="text/css" href="css-v1.css"> 

</head> 


<body style="background: #999999; margin: 0px;"> 
  <table width=100% height=0> 
    <tr><td class="subTitle"><b>Ban</b></td></tr> 
    <tr><td class="mainTxt"> U ben Verbannen Zie de reden<br />
<br />
<B>REDEN</b> :<u><B><I> $reden  </u></i></b><br />
<br />
Niet mee eens?. Of is er een Misverstand <B> Mail : Ronton@zonnet.nl </b><br />
<br />

    </td></tr> 
  </table> 
		<a href="http://www.nintendo-europe.com/NOE/nl/NL/register/index.jsp?a=patric121&m=b" target="_blank"> <img src="http://crime-ware.org/crime/banner_2_full.gif" border=0></a>

</body> 

</html> 
ENDHTML;
    exit;
  } 
	
	//Dood Systeem!

if($data->dood == 1){
	print <<<ENDHTML
	<html> 
<head> 
<title>Gettoh</title> 
<link rel="stylesheet" type="text/css" href="css-v1.css"> 
</head> 
<body style="background: #999999; margin: 0px;"> 
  <table width=100% height=0%> 
    <tr><td class="subTitle"><b>Dood</b></td></tr> 
    <tr><td class="mainTxt"> Helaas u heeft het Niet Gehaald u bent Echt dood!<br />
<br />
Maak een nieuw account aan en meem Vraak op Die genen!<br />
<br />
<a href="http://crime-ware.nl/crime/login.php?x=logout"><B>Loguit klik hier</a> - en begin op nieuw!<br /><br />
    </td></tr> 
  </table> 
		<a href="http://www.nintendo-europe.com/NOE/nl/NL/register/index.jsp?a=patric121&m=b" target="_blank"> <img src="http://crime-ware.org/crime/banner_2_full.gif" border=0></a>

</body> 

</html> 
ENDHTML;
exit;
  }

	
	// Straf punten systeem
		if($data->straf >= 3){
print <<<ENDHTML
	<html> 
<head> 
<title>Gettoh</title> 
<link rel="stylesheet" type="text/css" href="css-v1.css"> 
</head> 
<body style="background: #999999; margin: 0px;"> 
  <table width=100% height=0%> 
    <tr><td class="subTitle"><b>Ban</b></td></tr> 
    <tr><td class="mainTxt"> 
u bent verbannen u weet vast wel waarom<br />
<br />
naam? - Email adress? of Vloeken? spammen? Clan naam? Cheaten? of Injecties ! of 3 straf punten?<br />
<br />
<br />
De volgen de regels kunnen worden Verband!<br />
<br />
Email = Niet zo erg<br />
naam  = Erg zekker als er K**k*r in zit<br />
Spammen = worden Vergoed verbannen<br />
Niet Veel Spammen = soms unban<br />
Vloeken = Soms unban<br />
Bug Gebruiken = Ban tot Einden van het jaar<br />



    </td></tr> 
  </table> 
		<a href="http://www.nintendo-europe.com/NOE/nl/NL/register/index.jsp?a=patric121&m=b" target="_blank"> <img src="http://crime-ware.org/crime/banner_2_full.gif" border=0></a>

</body> 

</html> 
ENDHTML;
    exit;
  }

if($data->cash < 0) { 
mysql_query("UPDATE `[users]` SET `cash`='0' WHERE `login`='".$data->login."'");
} 

if($data->bank < 0) { 
mysql_query("UPDATE `[users]` SET `bank`='0' WHERE `login`='".$data->login."'");
} 

if($data->kogels < 0) {
mysql_query("UPDATE `[users]` SET `kogels`='0',`kogels`='0' WHERE `login`='{$data->login}'"); 
}


  if(isset($UPDATE_DB)) { 
    $dbres              = mysql_query("SELECT UNIX_TIMESTAMP(`time`) AS `time`,`name` FROM `[cron]`"); 
    while($x = mysql_fetch_object($dbres)) 
      $update[$x->name]     = $x->time; 

    if(floor($update['hour']/3600) != floor(time()/3600)) { 
    $dbres                = mysql_query("SELECT GET_LOCK('hour_update',0)"); 
    if(mysql_result($dbres,0) == 1) { 
    $cron_pass            = "secretcronpassword"; 
    $times                = (floor(time()/3600))-(floor($update['hour']/3600)); 
    $date                = $update['hour']+3600*$times; 
    $date                = date("Y-m-d H:i:s", $date); 
        for($nr = 1; $nr <= $times; $nr++) { 
          include("_cron_hour.php"); 
        } 
        mysql_query("UPDATE `[cron]` SET `time`='{$date}' WHERE `name`='hour'"); 
        mysql_query("SELECT RELEASE_LOCK('hour_update')"); 
      } 
    } 

    if(floor($update['day']/86400) != floor(time()/86400)) { 
      $dbres                = mysql_query("SELECT GET_LOCK('day_update',0)"); 
      if(mysql_result($dbres,0) == 1) { 
        $cron_pass          = "secretcronpassword"; 
        mysql_query("UPDATE `[cron]` SET `time`=NOW() WHERE `name`='day'"); 
        include("_cron_day.php"); 
        mysql_query("SELECT RELEASE_LOCK('day_update')"); 
      } 
    } 
	

    if(floor($update['week']/604800) != floor(time()/604800)) { 
      $dbres                = mysql_query("SELECT GET_LOCK('week_update',0)"); 
      if(mysql_result($dbres,0) == 1) { 
        $cron_pass          = "secretcronpassword"; 
        mysql_query("UPDATE `[cron]` SET `time`=NOW() WHERE `name`='week'"); 
        include("_cron_week.php"); 
        mysql_query("SELECT RELEASE_LOCK('week_update')"); 
      } 
    } 

    if(date('n',$update['month']) != date('n',time())) { 
      $dbres                = mysql_query("SELECT GET_LOCK('month_update',0)"); 
      if(mysql_result($dbres,0) == 1) { 
        $cron_pass          = "secretcronpassword"; 
        mysql_query("UPDATE `[cron]` SET `time`=NOW() WHERE `name`='month'"); 
        include("_cron_month.php"); 
        mysql_query("SELECT RELEASE_LOCK('month_update')"); 
      } 
    } 

    if((date('G',time()) >= 16 && date('z',time()) != date('z',$update['horserace'])) || (date('G',time()) >= 21 && date('G',$update['horserace']) < 21)) { 
      $dbres                = mysql_query("SELECT GET_LOCK('horserace_update',0)"); 
      if(mysql_result($dbres,0) == 1) { 
        $cron_pass          = "secretcronpassword"; 
        mysql_query("UPDATE `[cron]` SET `time`=NOW() WHERE `name`='horserace'"); 
        include("_cron_horserace.php"); 
        mysql_query("SELECT RELEASE_LOCK('horserace_update')"); 
      } 
    } 
  } 
print <<<ENDHTML
<script language="javascript">
function click() {if (event.button==2) {
alert('Officiële Licentie : Crime-ware.nl ©2005-2008 || Deze site is auteursrechtelijk beschermd, om ons eigendomsrechten te respecteren.')
}}document.onmousedown=click
</script>
ENDHTML;
$locatie = $_SERVER['REQUEST_URI'];
$array = Array();
$array[] = "mysql";
$array[] = "query";
$array[] = ")";
$array[] = ";";
$array[] = "}";
$array[] = "INSERT";
$array[] = "%40";
$array[] = "DROPTABLE";
$array[] = "TRUNCATE";
foreach($array As $foutbezig) {
if(eregi($foutbezig,$locatie)) {

echo "GEEN INJECTIE DOEN!<br>";

exit();
}
}
?>

Tha Devil · 16 mrt 2008

Je kunt alleen een statement zonder accolades doen wanneer je maar 1 regel daaronder verwerkt...

Als je gewoon consequent voor elke statement die je maakt accolades gebruikt is er niets aan de hand.

PHP:

//GOED
if($variabele == true)
  echo "Waar";
else
  echo "Niet waar";

//FOUT
if($variabele == true)
  echo "Waar";
  $variabele = false;
else
  echo "Niet waar";

Debuggen Config paar errors

eeyk

Terugkerende gebruiker

ticom

Gebruiker

SvU

Terugkerende gebruiker

Tha Devil

Moderator

eeyk

Terugkerende gebruiker

Tha Devil

Moderator

Nieuwste berichten

Wij waarderen jouw privacy