PHP Guild Registration Script

Discussion in 'Webmaster Tutorials and Resources' started by Oninuva, Apr 2, 2007.

  1. Oninuva

    Oninuva You can change this now in User CP.

    Ratings:
    +224 / 0 / -0
    Created by Oninuva


    With just a few edits you can have your own registration page! All you need is PHP, an Email, and Webspace.

    The Demo

    Download Links:

    RapidShare

    MMOwns
     
  2. DDRtists

    DDRtists ɹoʇɐɹǝpoɯ ɹǝdns Staff Member

    Ratings:
    +413 / 0 / -0
    That took like, what, 3 minutes to code? :p

    404 error, on the link.
     
  3. Chocobo

    Chocobo White-Flower

    Ratings:
    +410 / 0 / -0
    We can't look.
     
  4. DDRtists

    DDRtists ɹoʇɐɹǝpoɯ ɹǝdns Staff Member

    Ratings:
    +413 / 0 / -0
    I've found 4 or 5 exploits you can do with the code you are offering. ;)
     
  5. mase

    mase ____ ___ ____ __

    Ratings:
    +155 / 0 / -0
    You probably should use MySQL (if you are then you should list it under the web host reqs.
    And this type of script would be interesting if people could implement it into forums and CMSes and etc.
     
  6. Oninuva

    Oninuva You can change this now in User CP.

    Ratings:
    +224 / 0 / -0
    Link updated.
     
  7. mase

    mase ____ ___ ____ __

    Ratings:
    +155 / 0 / -0
    Lol, "61 - 19"
    for the levels it would be alot easier to use an input box than options lol.
     
  8. Oninuva

    Oninuva You can change this now in User CP.

    Ratings:
    +224 / 0 / -0
    Fixed to your liking :)
     
  9. DDRtists

    DDRtists ɹoʇɐɹǝpoɯ ɹǝdns Staff Member

    Ratings:
    +413 / 0 / -0
    I'm the level LOL druid. ;)
     
  10. mase

    mase ____ ___ ____ __

    Ratings:
    +155 / 0 / -0
    DDRtists your such a critic lol.
     
  11. phyrex1an

    phyrex1an Staff Member and irregular helper Staff Member

    Ratings:
    +446 / 0 / -0
    I'm not an expert in php mail injection but using mail with uncleaned userdata is an easy way to be abused as a spam sender.

    Suggested reading: http://www.securephpwiki.com/index.php/Email_Injection

    Just as a fyi, if your form can be abused your host will probably take it down as soon as a spammer find it.
     
  12. Oninuva

    Oninuva You can change this now in User CP.

    Ratings:
    +224 / 0 / -0
    I plan to add cookies soon.
     
  13. mase

    mase ____ ___ ____ __

    Ratings:
    +155 / 0 / -0
    I have a no name no level hunter lol.
     
  14. DDRtists

    DDRtists ɹoʇɐɹǝpoɯ ɹǝdns Staff Member

    Ratings:
    +413 / 0 / -0
    Whats that going to do?
     
  15. sqrage

    sqrage Moderator Staff Member

    Ratings:
    +508 / 0 / -0
    I think that was in reply to "people can spam your email/site"

    but they still can, they'd just have to erase the cookie :eek:
     
  16. Oninuva

    Oninuva You can change this now in User CP.

    Ratings:
    +224 / 0 / -0
    You know, a large majority of people do not know how to "erase" cookies.
     
  17. phyrex1an

    phyrex1an Staff Member and irregular helper Staff Member

    Ratings:
    +446 / 0 / -0
    When I say 'email injection' I don't mean that people can spam you, I say that they can spam whoever person they want with the help of your form. And those who know how to test mail forms for email injection know how to erase cookies and they also won't use a browser that handles cookies for there abuse.

    NEVER use a client side technology (cookies, url, javascript, ect) as only verification and/or validation.
     
  18. mase

    mase ____ ___ ____ __

    Ratings:
    +155 / 0 / -0
    Just made a column in a db table that is labeled 'emailed' or w/e then set it 0 if they haven't been mailed and 1 if the have then in a php function check if they have been mailed or not.
     

Share This Page