The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
Easy Password: Coders Please read.
Hi all,
I have nothing but problems on my board with people using the default Lost Password system and then emailing me as it has not worked. I therefor wrote the following script to make my life a little simpler. If there are any professional coders amongst you that would like to review and critique this script I would very much appreciate your view as I am by no means a pro. I am just a person interested in PHP. PHP Code:
Your views are appreciated. Kind regards |
#2
|
|||
|
|||
This script is very insecure and is vulnerable to SQL-Injections. Please see our articles section on how to write secure scripts.
PS Why would the default recover password not work? |
#3
|
|||
|
|||
Hi Marco,
Thanks for the prompt reply. My default system either defaults the user to the login page or does not recognise the password that is sent in the email. P.S. Any pointers on making this script more secure? Would appreciate your input. Regards |
#4
|
||||
|
||||
Why not try fixing the current system? Try disabling any modifications running.
|
#5
|
|||
|
|||
Please provide a link to your board so i can see what is going wrong with the default system.
Quote:
|
#6
|
|||
|
|||
Quote:
--------------- Added [DATE]1217425598[/DATE] at [TIME]1217425598[/TIME] --------------- Does this improve things? PHP Code:
|
#7
|
|||
|
|||
I have tested the (default vBulletin) lost password feature on your site, and i had no problem at all getting a new password. You might want to delete the account created for testing: vBTest
Also i suggest that you remove your own script (really remove from disk) ASAP as it is very insecure and could very easily be used to destroy your database or such. |
#8
|
|||
|
|||
Well, thats strange. It did not work for me this morning, but it does now?
I have though, taken your advice and removed the script from my server. Thank you very much for the advice Marco, very much appreciated. Kindest regards |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|