- Timestamp:
- Feb 5, 2009, 11:03:01 AM (16 years ago)
- Location:
- trunk
- Files:
-
- 6 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/dictionary.php
r63 r65 22 22 { 23 23 $User = $_SESSION['User']; 24 $Pass = $_SESSION['Pass']; 24 $Line = mysql_fetch_assoc($Database->SQLCommand("SELECT sha1('".$_SESSION['Pass']."') as pass;")); 25 $Pass = $Line['pass']; 25 26 26 $Line = mysql_fetch_a rray($Database->SQLCommand("SELECT * FROM user WHERE LOWER(user) = LOWER('$User')"));27 $Line = mysql_fetch_assoc($Database->SQLCommand("SELECT * FROM user WHERE LOWER(user) = LOWER('$User')")); 27 28 if(!$Line) 28 29 { … … 37 38 } else return false; 38 39 } 39 if($Line['pass'] == sha1($Pass))40 if($Line['pass'] == $Pass) 40 41 { 41 42 -
trunk/includes/global.php
r63 r65 157 157 { 158 158 $_SESSION['User'] = $_POST['LoginUser']; 159 $_SESSION['Pass'] = sha1($_POST['LoginPass']);160 161 $Line = mysql_fetch_array($Database->SQLCommand("SELECT * FROM user WHERE LOWER(user) = LOWER('".$_SESSION['User']."') AND pass = '".$_SESSION['Pass']."'"));159 $_SESSION['Pass'] = $_POST['LoginPass']; 160 161 $Line = mysql_fetch_array($Database->SQLCommand("SELECT * FROM user WHERE LOWER(user) = LOWER('".$_SESSION['User']."') AND pass = sha1('".$_SESSION['Pass']."')")); 162 162 if(!$Line) 163 163 { -
trunk/includes/global_function.php
r63 r65 76 76 $Pass = $_SESSION['Pass']; 77 77 $Line = mysql_fetch_array($Database->SQLCommand('SELECT * FROM user WHERE ID = '.$_SESSION['UserID'].' 78 AND GM >= '.$Licence.' AND pass = "'.$Pass.'"'));78 AND GM >= '.$Licence.' AND pass = sha1("'.$Pass.'")')); 79 79 // echo "SELECT * FROM user WHERE ID = ".$_SESSION['UserID']." AND GM <= $Licence AND pass = '$Pass'"; 80 80 return($Line); -
trunk/registrace.php
r63 r65 23 23 24 24 $_SESSION['User'] = $User; 25 $_SESSION['Pass'] = sha1($Pass);25 $_SESSION['Pass'] = $Pass; 26 26 27 27 $Line = mysql_fetch_array($Database->SQLCommand("SELECT ID FROM user WHERE user = '".$_SESSION['User']."'")); -
trunk/save.php
r54 r65 2 2 3 3 include('includes/global.php'); 4 5 4 6 5 // Ochrana proti neoprávněnému přístupu -
trunk/sql/updates/64.sql
r64 r65 66 66 ADD `Description` TEXT NOT NULL AFTER `Name` ; 67 67 68 INSERT INTO `group` (`Id`, `Name`, `TablePrefix`, `MangosDatabase`, `MangosTable`, `MangosTableIndex`, `DBCFileName`, `DBCColumns`) VALUES 69 (12, 'Herní tipy', 'gametips', '', '', '', 'GameTips', 'usuuuuuuuuuuuuuuuu'), 70 (13, 'Kouzla', 'spell', '', '', '', 'Spell', 'uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuusssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu'); 71 72 68 73 INSERT INTO `group_item` (`Id`, `Group`, `Name`, `Column`, `MangosColumn`, `AddonFileName`, `DBCColumnIndex`) VALUES 69 74 (42, 12, 'Text', 'Text', '', '', 1),
Note:
See TracChangeset
for help on using the changeset viewer.