mirror/php-phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-08-09 02:06:32 +02:00
Code Issues Releases Wiki Activity

Stop being too paranoid about hacking of includes containing only fully inclusive functions

Browse Source 
git-svn-id: file:///svn/phpbb/trunk@2328 89ea8834-ac86-4346-8a33-228a782c2dd0
This commit is contained in:
Paul S. Owen
2002-03-18 23:53:12 +00:00
parent 812d5a2f35
commit b651274960
19 changed files with 21 additions and 91 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
phpBB/includes/usercp_register.php
View File

@@ -21,7 +21,7 @@
*
***************************************************************************/
if ( !defined('IN_PROFILE') )
if ( !defined('IN_PHPBB') )
{
die("Hacking attempt");
exit;
@@ -476,20 +476,26 @@ if ( isset($HTTP_POST_VARS['submit']) )
FROM " . USERS_TABLE;
if ( !($result = $db->sql_query($sql)) )
{
message_die(GENERAL_ERROR, 'Could not obtained next user_id information', '', __LINE__, __FILE__, $sql);
message_die(GENERAL_ERROR, 'Could not obtain next user_id information', '', __LINE__, __FILE__, $sql);
}
$row = $db->sql_fetchrow($result);
if ( !($row = $db->sql_fetchrow($result) )
{
message_die(GENERAL_ERROR, 'Could not obtain next user_id information', '', __LINE__, __FILE__, $sql);
}
$user_id = $row['total'] + 1;
$sql = "SELECT MAX(group_id) AS total
FROM " . GROUPS_TABLE;
if (!( $result = $db->sql_query($sql)) )
if ( !($result = $db->sql_query($sql) ) )
{
message_die(GENERAL_ERROR, 'Could not obtained next user_id information', '', __LINE__, __FILE__, $sql);
message_die(GENERAL_ERROR, 'Could not obtain next user_id information', '', __LINE__, __FILE__, $sql);
}
$row = $db->sql_fetchrow($result);
if ( !($row = $db->sql_fetchrow($result) )
{
message_die(GENERAL_ERROR, 'Could not obtain next user_id information', '', __LINE__, __FILE__, $sql);
}
$group_id = $row['total'] + 1;
//