Oddly enough that isn't a part that I modified. That's part of the normal vbulletin script. It also works fine and doesn't go on forever, at least until I add my part:
My parts are these:
PHP Code:
$badPassword = array(
"baseball", //0
"1234567", //1
"welcome", //2
"1234567890", //3
"abc123", //4
"123456", //5
"password", //6
"12345678", //7
"qwerty", //8
"12345", //9
"123456789", //10
"football", //11
"1234", //12
"111111", //13
"1qaz2wsx", //14
"dragon", //15
"master", //16
"monkey", //17
"letmein", //18
"login", //19
"princess", //20
"qwertyuiop", //21
"solo", //22
"passw0rd", //23
"starwars" //24
);
and
PHP Code:
$total_affected = $vbulletin->db->query_first("
SELECT COUNT(userid) AS total_affected
FROM " . TABLE_PREFIX . "user
WHERE password = MD5(CONCAT(MD5(username),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[0] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[1] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[2] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[3] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[4] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[5] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[6] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[7] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[8] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[9] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[10] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[11] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[12] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[13] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[14] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[15] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[16] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[17] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[18] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[19] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[20] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[21] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[22] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[23] . "'),salt)) OR password = MD5(CONCAT(MD5('" . $badPassword[24] . "'),salt)) " .
($period ? 'AND lastvisit < ' . (TIMENOW - $period) : '') . "
");
and
PHP Code:
$result = $vbulletin->db->query("
SELECT user.userid, userban.liftdate
FROM " . TABLE_PREFIX . "user AS user
LEFT JOIN " . TABLE_PREFIX . "userban AS userban
ON user.userid = userban.userid
WHERE user.password = MD5(CONCAT(MD5(user.username),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[0] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[1] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[2] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[3] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[4] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[5] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[6] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[7] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[8] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[9] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[10] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[11] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[12] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[13] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[14] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[15] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[16] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[17] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[18] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[19] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[20] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[21] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[22] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[23] . "'),user.salt)) OR user.password = MD5(CONCAT(MD5(user.'" . $badPassword[24] . "'),user.salt)) " .
($period ? 'AND user.lastvisit < ' . (TIMENOW - $period) : '') . "
AND user.userid > $lastuser " .
($languageid ? "AND user.languageid = " . $languageid : '') . "
LIMIT 0, " . $vbulletin->GPC['quantity'] . "
");
|
More Information