PDA

View Full Version : Programmer



freshprinx
05-21-2016, 06:38 PM
I need a good programmer who can help me with my site script,i have some bugs there,exploits and i want to add some features to the site.
this is my icq: 681851588

jscheuer1
05-21-2016, 07:38 PM
If you are seeking free help, you will need to be much more specific. If this is a paid request (seeking an employee/freelancer) I will happily move this to the appropriate section. Even there (paid requests) most people would want more specifics before agreeing to take the job, like hourly rate, or amount of money offered to accomplish a specific goal.

Best of luck with your project,

- Dynamic Drive Forums

freshprinx
05-22-2016, 09:47 AM
Thank you John
I want to add a simple captcha to my site login,i have try it several times but it keep giving me error,i dont know if you can help me to add the simple captcha to the login script


<?php

echo '
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" id="login-html">
<head>
<base href="/" />
<title>Hvault | Login</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<link rel="stylesheet" type="text/css" href="m/login_register_style.css" />
<script type="text/javascript">
var i18n = {
"Empty login.": "Empty login.",
"Empty password.": "Empty password."
};
</script>
</head>
<body>
<div id="page">
<div id="logo">
<a href="/"><img src="'.$sitelogo.'" alt="Hvault" /></a>
</div>

<div id="menu">
<ul>
<li class="active"><a href="login">Log IN</a></li>
<li ><a href="register" id="register">Register</a></li>
</ul>
</div>

<div id="content">
<table cellspacing="10">
<tr>
<td width="350px" border="0">
<div id="form">
<form id="form_6de933" action="" method="post" class="login-form narrow-cols">
';
if($failedLogin == 1) echo '<p><font color="red">'.htmlspecialchars($message, ENT_QUOTES, 'UTF-8').'</font></p>';
echo '
<div class="form-row">
<div class="form-label">
<label id="login-login-label" for="login-login-input">Login:</label>
</div>
<div class="form-field">
<input id="login-login-input" type="text" name="username" value="" required>
</div>
</div>

<div class="form-row">
<div class="form-label">
<label id="login-password-label" for="login-password-input">Password:</label>
</div>
<div class="form-field">
<input id="login-password-input" type="password" name="password" value="" required>
</div>
</div>


<div class="form-row">
<div class="form-label">
&nbsp;
</div>
<div class="form-field">
<label id="login-remember-label"><input id="login-remember-input" type="checkbox" name="remember" value="1" />&nbsp;Keep signed in</label>
</div>
<li ><a href="forgot.php" id="forgot">Forgot Password</a></li>
</div>

<div id="page-error">
</div>

<div class="form-row">
<div class="form-label">
&nbsp;
</div>
<div class="form-field">
<input id="login-sign-button" type="submit" value="Sign in" />
</div>
</div>

</form>
</td>
<td width="550px">

&nbsp;</br>
<br>
<div class="success">
<p align="center">
<strong style="font-size: 14px; text-transform: uppercase;">Dear customers.
Always save our official domains. If the domain you want to use is not
available, switch to one from this list:</strong>
</p>
<div style="font-size: 13px; text-align: center; padding-top: 15px; padding-bottom: 10px;">
</div>
</div>
<hr>
<div class="success">
<p align="center">
<strong style="color:red">ALL THE OTHER DOMAINS ARE FAKE OR NON-LEGIT!!!
PLEASE BE CAREFUL.</strong></div>
<p align="center">
We have added the possibility to be a reseller on Hvault Store<br>
Once you have registered , read how to activate reseller , at our <font color=red>RESELLER</font> sector<br></p>
<br>
</td>
</tr>
</table>
</div>

</div>

<div id="footer">
2013 - 2016 &copy; <a href="/">Hvault</a> - Shop Kings
| <a href="/rules">Rules</a>
| <a href="/tickets">Contact Us</a>
</div>
</div>

</body>
</html>';
?>

Beverleyh
05-23-2016, 04:33 AM
If you post your form processing script, somebody might be able to help.


<form id="form_6de933" action="" method="post" class="login-form narrow-cols">
There is currently no action (processing script) specified for the form - have you removed it or do you need a whole script written for you to add members to a database and send emails, etc.

Please note, I am not offering to take on the work. I am just trying to get more information from you to help others decide if this is something they can help you with. At present, there is not enough information to make an assessment (no script to add Captcha to).

freshprinx
05-23-2016, 09:06 PM
If you post your form processing script, somebody might be able to help.


<form id="form_6de933" action="" method="post" class="login-form narrow-cols">
There is currently no action (processing script) specified for the form - have you removed it or do you need a whole script written for you to add members to a database and send emails, etc.

Please note, I am not offering to take on the work. I am just trying to get more information from you to help others decide if this is something they can help you with. At present, there is not enough information to make an assessment (no script to add Captcha to).



Thank you,
that is the code of the login page,
This is the name of the site
www.hvault.ru
you can check it

Beverleyh
05-23-2016, 09:26 PM
Presumable this form is posting to itself then and the php to process it is included on the page itself.

Unfortunately, it is not something we can see through viewing the source of the page, so if you need help, please post the php script that processes the form submission.

freshprinx
05-24-2016, 02:01 AM
This is the processing file


<?php
date_default_timezone_set('Europe/Berlin');
require'inc/header.php';
header("Refresh: 2000; URL=/logout");
error_reporting(0); ini_set('display_errors', 0);
$failedLogin = 0;
$admin = "";
if(!isset($_GET['action'])) {
$action = "index";
} else {
$action = $_GET['action'];
}
$accountinfoquery = $db->query("SELECT * FROM users WHERE username='$userid'");
$accountinfo = $accountinfoquery->fetch_array();
$username = $accountinfo['username'];
$email = $accountinfo['email'];
$lastip = $accountinfo['lastip'];
$lastlogin = $accountinfo['lastlogin'];
$icq = $accountinfo['icq'];
$jabber = $accountinfo['jabber'];
$balance = $accountinfo['balance'];
$reseller = $accountinfo['reseller'];
$regdate = $accountinfo['regdate'];
$moneyspent = $accountinfo['moneyspent'];
$settings = $db->query("SELECT * FROM settings limit 0,1");
$set = $settings->fetch_array();
$sitetitle = 'Hvault';
$sellerinfoquery = $db->query("SELECT * FROM reseller WHERE username='$userid'");
$sellerinfo = $sellerinfoquery->fetch_array();
$btcaddress = $sellerinfo['btcaddress'];
switch ( $action )
{
case 'index':

include'layout-1/index.php';

break;
case 'profile':

if(isset($_POST['curpass']) && isset($_POST['newpass'])) {
$salt = 'ho073'; // SALT for encrypting
$password = $db->real_escape_string($_POST['curpass']);
$password = md5($password . $salt);
$newpass = $db->real_escape_string($_POST['newpass']);
$newjabber = $db->real_escape_string($_POST['newjabber']);
if (($_POST['curpass'] == "") && ($_POST['newpass'] == "")){
$db->query("UPDATE users SET jabber='$newjabber' WHERE username='$userid'");
$failedLogin = 1;
$message = 'Jabber Updated';
} else {
$curpassquery = $db->query("SELECT password FROM users WHERE username='$userid'");
$curpass = $curpassquery->fetch_row();
if( strlen($newpass) < 6 ) {
$failedLogin = 1;
$message = 'Your password cannot have less characters than 6, and must contain Upper & lower case letters';
} else if($newpass == strtoupper($newpass) || $newpass == strtolower($newpass)){
$failedLogin = 1;
$message = 'Your password cannot have less characters than 6, and must contain Upper & lower case letters';
}
else {


$newpasssalt = md5($newpass . $salt);
$db->query("UPDATE users SET password='$newpasssalt', plainpassword='$newpass', jabber='$newjabber' WHERE username='$userid' AND password='$password'");
$failedLogin = 1;
$message = 'Password successfully changed!';
}
}
}
include'layout-1/profile.php';
break;
case 'success':
include'layout-1/success.php';
break;
case 'mangeresellers':
include'layout-2/mangeresellers.php';
break;
case 'addaccounts':
include'layout-2/add.php';
break;
case 'stuff':
include'layout-1/stuff.php';
break;
case 'accounts':
include'layout-1/accounts.php';
break;
case 'Cards':
include'layout-1/cards.php';
break;
case 'special':
include'layout-1/special.php';
break;
case 'tutorial':
include'layout-1/tutorial.php';
break;
case 'checking':
include'layout-1/checking.php';
break;
case 'viewreseller':
include'layout-2/viewreseller.php';
break;
case 'myaccounts':
include'layout-1/myaccounts.php';
break;
case 'uploadacc':
include'layout-2/uploadacc.php';
break;
case 'openticket':
include'layout-1/openticket.php';
break;
case 'cart':
include'layout-1/cart.php';
break;
case 'cards':
include'layout-1/cards.php';
break;
case 'balance':
include'layout-1/addfunds.php';
break;
case 'purchase':
include'layout-1/purchase.php';
break;
case 'mycards':
include'layout-1/mycards.php';
break;
case 'rules':
include'layout-1/rules.php';
break;
case 'sellrules':
include'layout-1/sellerrule.php';
break;
case 's-rating':
include'layout-1/s-rating.php';
break;
case 'tickets':
include'layout-1/tickets.php';
break;
case 'bitcoin':
include'layout-1/bitcoin.php';
break;
case 'webmoney':
include'layout-1/webmoney.php';
break;
case 'perfectmoney':
include'layout-1/perfectmoney.php';
break;
case 'vkashdabcqddhe':
include'layout-2/index.php';
break;
case 'managenews':
include'layout-2/news.php';
break;
case 'ticket-all':
include'layout-2/ticket.php';
break;
case 'manageorders':
include'layout-2/orders.php';
break;
case 'noaccess':
include'layout-2/noaccess.php';
break;
case 'manageusers':
include'layout-2/manageusers.php';
break;
case 'managesold':
include'layout-2/sold.php';
break;
case 'manageunsold':
include'layout-2/unsold.php';
break;
case 'manageaccounts':
include'layout-2/manageaccounts.php';
break;
case 'unsold':
include'layout-2/unsold.php';
break;
case 'uploadaccounts':
include'layout-2/uploadacc.php';
break;
case 'uploadccc':
include'layout-2/uploadcc.php';
break;
case 'reports':
include'layout-2/report.php';
break;
case 'managerefunds':
include'layout-2/refunds.php';
break;
case 'addbalance':
include'layout-2/addbalance.php';
break;
case 'mangeresellers':
include'layout-2/mangeresellers.php';
break;
case 'viewuser':
include'layout-2/viewuser.php';
break;
case 'viewticket':
include'layout-2/viewticket.php';
break;
case 'mangetickets':
include'layout-2/mangetickets.php';
break;
case 'editallusers':
include'layout-2/editusers.php';
break;
case 'viewreport':
include'layout-1/viewticket.php';
break;
case 'reseller-panel':
include'layout-1/reseller/resellerpanel.php';
break;
case 'sold':
include'layout-2/sold.php';
break;
case 'reseller-panel-view-profile':
if(isset($_POST['btcadd'])){
$btcadd = $_POST['btcadd'];
mysql_query("update reseller set btcaddress='$btcadd' where username='$userid'");
$failedLogin = 1;
$message = 'Btc address updated successfully !';
}
include'layout-1/reseller/profile.php';
break;
case 'reseller-panel-view-addaccounts':
include'layout-1/reseller/add.php';
break;
case 'reseller-panel-view-addcc':
include'layout-1/reseller/addcc.php';
break;
case 'reseller-panel-view-unsold':
include'layout-1/reseller/unsold.php';
break;
case 'reseller-panel-view-sold':
include'layout-1/reseller/sold.php';
break;
case 'reseller-panel-view-reports':
include'layout-1/reseller/reports.php';
break;
case 'reseller-panel-view-earnings':
include'layout-1/reseller/earnings.php';
break;
case 'reseller-panel-view-reports':
include'layout-1/reseller/reports.php';
break;
}

function menu($current){
if($current == 'home'){
$home = 'class="active"';
}
if($current == 'accounts')
{
$accounts = 'class="active"';;
}
if($current == 'cards')
{
$cards = 'class="active"';
}
if($current == 'stuff')
{
$stuff = 'class="active"';
}
if($current == 'tutorial')
{
$tutorials = 'class="active"';
}
if($current == 'special')
{
$special = 'class="active"';
}
if($current == 'purchased')
{
$myaccounts = 'class="active"';
}
if($current == 'tickets')
{
$tickets = 'class="active"';
}
if($current == 'balance')
{
$balance = 'class="active"';
}
if($current == 'profile')
{
$profile = 'class="active"';
}
if($current == 'rules')
{
$rules = 'class="active"';
}
if($current == 'sellrules')
{
$rules = 'class="active"';
}
if($current == 'reseller')
{
$reseller = 'class="active"';
}
if($current == 's-rating')
{
$srating = 'class="active"';
}

$menu = '

<div id="navPrimary" class="srd">
<ul>
<li '.$home.'><a href="/home" >Main</a></li>

<!--<li style="background: red;" ><a href="labels" >LABELS</a></li>-->

<li '.$accounts.'><a href="/accounts" >Accounts</a></li> <li '.$stuff.'><a href="/stuff" >Stuff</a></li>
<li '.$cards.'><a href="/cards" >Cards</a></li>
<li '.$special.' style="background: #41ad0d;"><a href="/special" >Special</a></li>
<li '.$tutorials.'><a href="/tutorial" >Tutorials</a></li>
<li '.$myaccounts.'><a href="/myaccounts" >Purchased</a></li>
<li '.$tickets.'> <a href="/tickets" >Tickets</a></li>
<li '.$balance.' style="background: orange;"><a href="/balance" >Add Money $</a></li>
<li '.$profile.'><a href="/profile" >Profile</a></li>
<li '.$rules.'><a href="/rules" >Rules</a></li>
<li '.$reseller.' style="background: #FF0000;"><a href="/reseller-panel" >Seller</a></li>
<li '.$srating.'><a href="/s-rating" >S-Rating</a></li>
<li ><a href="/logout" >Logout</a></li></ul></div>

<marquee style="color: #FF0000">ALL CHECKERS ARE WORKING,EXCEPT SMTP AND RDP CHECKER</marquee></p>
</ul>
</div>';
return $menu;
}
function gethead($page){
if($page == 'home')
{
$title = 'News';
}
if($page == 'profile')
{
$title = 'Profile';
}
if($page == 'rules')
{
$title = 'Rules';
}
if($page == 'accounts')
{
$title = 'Accounts';
}
if($page == 'cards')
{
$title = 'Cards';
}
if($page == 'stuff')
{
$title = 'Stuff';
}
if($page == 'special')
{
$title = 'Special';
}
if($page == 'accounts')
{
$title = 'Accounts';
}
if($page == 'tutorial')
{
$title = 'Tutorials';
}
if($page == 'myaccounts')
{
$title = 'Purchased';
}
if($page == 'tickets')
{
$title = 'Tickets';
}
if($page == 'balance')
{
$title = 'Balance';
}
if($page == 'bitcoin')
{
$title = 'BitCoin';
}
if($page == 'perfectmoney')
{
$title = 'PerfectMoney';
}
if($page == 'wmz')
{
$title = 'WebMoney';
}
if($page == 'offline')
{
$title = 'Offline';
}
if($page == 'reseller')
{
$title = 'Reseller Panel';
}
if($page == 's-rating')
{
$title = 'S-Rating';
}
$header ='
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta name="robots" content="noindex,nofollow">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>Hvault | '.$title.'</title>
<link href="m/pstyles.css" rel="stylesheet" type="text/css">
<link href="m/prompt.css" rel="stylesheet" type="text/css">
<script type="text/javascript" src="m/jquery-1.9.1.min.js"></script>
<script src="m/jquery-migrate-1.2.1.js"></script>
<script type="text/javascript" src="m/prompt.js"></script><script type="text/javascript" src="m/jquery.bgiframe.min.js"></script>
<script type="text/javascript" src="m/jqDnR.min.js"></script>
<script type="text/javascript" src="m/jquery.jqpopup.min.js"></script>
<link rel="stylesheet" type="text/css" href="m/styles/bootstrap.min.css">
<link href="m/styles/pstyles.css" rel="stylesheet" type="text/css">
<link rel="stylesheet" type="text/css" href="m/styles/dataTables.bootstrap.css">
<script src="m/js/jquery-1.11.1.min.js" type="text/JavaScript"></script>
<script src="m/js/t.js" type="text/JavaScript"></script>
<script src="m/js/jquery.dataTables.min.js" type="text/JavaScript"></script>
<script src="m/js/dataTables.bootstrap.js" type="text/javascript"></script>
<script src="m/js/jquery-1.11.2.min.js" type="text/javascript"></script>
<script type="text/javascript" src="m/prompt.js"></script><script type="text/javascript" src="m/jquery.bgiframe.min.js"></script>
<style type="text/css">.cf-hidden { display: none; } .cf-invisible { visibility: hidden; }</style>
<link type="text/css" rel="stylesheet" href="m/styleari.css" />
</head>


';
return $header;
}
function getmenuheader(){
return '<body>
<table width="100%" cellpadding="0" cellspacing="0" border="0" align="center">
<tr>
<td style="width:100px;" ></td>
<td style="width:1100px;" align="center">

<table border="0" cellpadding="0" cellspacing="0" class="main_container">
<tr>
<td align="left">

<table width="100%" cellpadding="0" cellspacing="0" border="0" class="header">
<tr>
<td class="hello_block" align="center">

Hello, <b>'.$username.'</b><br>Your last visit: <b>'.$lastlogin.'</b><br>Balance:
<b>$'.$balance.'</b><br />



</td>
<td width="33%" class="logo" align="center" >

<a href="home" target="_blank"><img align="left" src="'.$sitelogo.'"></a><!--<a href="http://lampeduza.net/" target="_blank"><img src="/banner.gif" /></a>-->
</td>
<td class="hello_block" width="33%" align="center">

<table>
<tr>
<td>
<a href="myaccounts" ><img src="img/cart.png" hspace="2" /></a>
</td>
<td>

<font color="black"><a href="myaccounts" > Items purchased: '; $itemsquery = $db->query("SELECT items_purchased FROM users WHERE username='$userid'") or die(mysqli_error()); $items = $itemsquery->fetch_row(); echo $items[0]; echo ' <font color="black"></a><br /><br />Current time: <b>';
echo(date('l jS \of F Y h:i:s A')); echo '</b> </tr>
</tr>
</table>

</td>
</tr>
</table>
';
}
function getfooter(){
return '
<td style="width:100px;" ></td>
</tr>
</table>
<center>
&copy; '.$sitetitle.' 2013 - 2016</center>
<br>
</body>
</html>';
}
?>

Beverleyh
05-24-2016, 05:35 AM
Unfortunately that appears to be the admin page; Additional profile processing and layout that comes in to effect once login has been successful. What somebody offering to help you would need would be the actual login script with post details for 'login' and 'password' <-- those are 2 field names from the login form so it makes sense that they'd be used in the login processing script.

What might help, if this is a 3rd-party product/off-the-shelf product, is to Google for it's location within the software.

freshprinx
05-25-2016, 09:32 PM
Maybe it is better you help me move it to where i can get (seeking an employee/freelancer) who can help me work on the whole site script that i can pay for the work.
thanks

freshprinx
05-26-2016, 06:21 AM
I need a programmer that can work on this site script www.hvault.ru
work to do
captcha
forgot password
bugs remove
exploit block
some other features to add to the site
you can reply me or contact me on icq:681851588