<p> <a href="../home/home.html">Back To Home</a> </p> <?php if ($_SERVER["REQUEST_METHOD"] == "POST") { # collect input data $address = $_POST['address']; $email = $_POST['email']; $phone = $_POST['phone']; if (!empty($address) && !empty($phone) && !empty($email)) { $address = prepareInput($address); $email = prepareInput($email); $phone = prepareInput($phone); if (checkAddress($address) && checkPhone($phone) && checkEmail($email)) { error_reporting(E_ALL); $db_host = "localhost"; $db_user = "******"; $db_pass = "******"; $db_name = "mysql"; $con = mysqli_connect($db_host, $db_user, $db_pass, $db_name); // Check connection if (mysqli_connect_errno()) { echo "Failed to connect to MySQL: " . mysqli_connect_error(); } $sql = "select * from members where Email='{$email}'"; $result = $con->query($sql); if (!$result) { die('Error: ' . mysqli_error($con)); }
// On lui passe l'id de l'utilisateur qui a crée l'évent : $push['id_createur'] = $_SESSION['id']; // Puis on fait les vérifications spécifiques : // Nom conforme : if (!checkTextInput($_POST['titre'], "/^[a-zâäàéèùêëîïôöçñ 0-9][a-zâäàéèùêëîïôöçñ' , 0-9]+\$/i")) { $errors['titre'] = 'Titre invalide, il ne peut contenir que des lettres (accentuées) des virgules, des espaces, des apostrophes et des chiffres.'; } // Type dans le bon intervalle : if (!checkSelect($_POST['type'], range(0, max(array_keys($contents['types']))))) { $errors['type'] = "Type Invalide"; $_POST['type'] = 0; } else { $push['id_type'] = $_POST['type']; } // Lieu : passer une recherche avec Google et vérifier qu'on a une réponse en coordonnées if (!checkAddress($_POST['place'])) { $errors['place'] = isset($errors['place']) ? $errors['place'] : 'L\'adresse semblait invalide. Nous avons tenté de la corriger.'; $contents['values']['place'] = googleCorrectAddress($_POST['place']); } else { $push['adresse'] = $_POST['place']; } // Date / heure début conforme et future : $startTime = $_POST['date_debut'] . ' ' . $_POST['beginning']; $endTime = $_POST['date_fin'] . ' ' . $_POST['end']; if (!(validateDateFormat($startTime, 'Y-m-d H:i') && validateFutureDate($startTime))) { $errors['date_debut'] = 'La date ne doit pas être dépassée'; } else { $push['debut'] = $startTime; } if (empty($_POST['end'])) { $endTimeTest = !validateDateFormat($endTime, 'Y-m-d');
} if (!checkTextInput($_POST['prenom'], "/^[a-zâäàéèùêëîïôöçñ][a-zâäàéèùêëîïôöçñ' -]+\$/i")) { $errors['prenom'] = 'Prénom invalide, il ne peut contenir que des lettres (accentuées) des tirets, des espaces et des apostrophes.'; } //DDN var_dump(checkBirthDate($_POST['ddn'])); var_dump($_POST['ddn']); if (!checkBirthDate($_POST['ddn'])) { $errors['ddn'] = 'Date invalide, elle est à venir ou n\'est pas au format AAAA-MM-JJ ou JJ-MM-AAAA'; } //Tel if (!checkTextInput($_POST['tel'], "/^0\\d{9}\$/")) { $errors['tel'] = 'Numéro de téléphone invalide, il contient trop de chiffres, commence par autre chose que 0 ou des lettres et caractères non autorisés.'; } // Adresse : if (!checkAddress($_POST['adresse'])) { $errors['adresse'] = 'Adresse invalide'; } // Cas de suppression d'adresse if (!empty($contents['id_adresse']) and empty($_POST['adresse'])) { $_POST['adresse'] = -1; } // Langue : if (!checkSelect($_POST['langue'], [0, 1])) { $errors['langue'] = "Langue Invalide"; $_POST['langue'] = 0; } //Description : $forbiddenKeywords = [' con', ' salop', ' enfoiré', ' hitler', ' nazi']; if (!checkTextbox($_POST['description'], $forbiddenKeywords)) { $errors['description'] = 'Description invalide, il contient des mots interdits (insultants).';
$usernameError = 3; } } catch (PDOException $e) { echo "Database error"; } } $basicChanged = 1; $usernameChanged = 1; } if (isset($_POST['phone']) && !empty($_POST['phone']) && addslashes($_POST['phone']) != $_SESSION['phone']) { $phoneError = checkPhone(); $basicChanged = 1; $phoneChanged = 1; } if (isset($_POST['address']) && !empty($_POST['address']) && addslashes($_POST['address']) != $_SESSION['address']) { $addressError = checkAddress(); $basicChanged = 1; $addressChanged = 1; } if (isset($_POST['birthdate']) && !empty($_POST['birthdate']) && addslashes($_POST['birthdate']) != $_SESSION['birthdate']) { $dateError = checkBirth(); $basicChanged = 1; $dateChanged = 1; } if (isset($_POST['email']) && !empty($_POST['email']) && $_SESSION['email'] != addslashes($_POST['email'])) { $emailError = checkEmail(); $basicChanged = 1; $emailChanged = 1; } if ($phoneError == 0 && $addressError == 0 && $emailError == 0 && $dateError == 0 && $usernameError == 0) { if ($usernameChanged) {
function checkName($username) { global $rDB; $list = $rDB->selectCell("SELECT `username` FROM `account` WHERE `username` = ?", $username); if ($list == "") { return 0; } return 1; } $show = true; $ip = @$_SERVER['REMOTE_ADDR']; if ($rDB == NULL) { echo $lang['reg_err_db']; $show = false; } else { if (checkAddress($ip)) { echo $lang['reg_err_one_ip']; $show = false; } else { if (@$_POST['script'] == 'reg') { $name = @$_POST['account_name']; $username = strtoupper(@$_POST['account_name']); $password = strtoupper(@$_POST['account_pass']); $email = @$_POST['account_email']; $nameLen = strlen($name); $passLen = strlen($password); if (empty($username) or empty($password)) { echo $lang['reg_err_name_pass']; } else { if ($nameLen < 3 or $nameLen > 16) { echo $lang['reg_err_name_size'];
{ global $rtn; if (strpos($address, ", UK") || strpos($address, ", United Kingdom")) { $route = true; $rtn .= "+{$address}"; return true; } return false; } foreach ($route1->results as $result) { if (checkAddress($result->formatted_address, $startRoute)) { break; } } foreach ($route2->results as $result) { if (checkAddress($result->formatted_address, $endRoute)) { break; } } if (!$startRoute || !$endRoute) { $rtn = 'false'; if (!$startRoute) { $rtn .= '+0'; } if (!$endRoute) { $rtn .= '+1'; } } else { $rtn = "true{$rtn}"; } echo $rtn;
function validate() { $continue = false; $msg = ''; $useraddr = $this->getAddress(); $terms = $_POST['terms']; $continue = true; $msg = ''; if (empty($terms)) { $continue = false; //$msg = 'Please agree to the terms of service.'; $msg = 'Você precisa aceitar os termos de uso.'; } elseif (empty($useraddr)) { $continue = false; //$msg = 'Please agree fill the address.'; $msg = 'Preencha seu endereço ' . $this->config->coin_name() . '.'; } elseif ($this->config->enable_captcha()) { require_once 'recaptcha/autoload.php'; $secret = $this->config->recaptcha_private_key(); $recaptcha = new \ReCaptcha\ReCaptcha($secret); $continue = false; //$msg = 'The captcha is incorrect, please try again.'; $msg = 'O Captcha foi preenchido incorretamente, tente novamente.'; if (isset($_POST['g-recaptcha-response'])) { $captcha = $_POST['g-recaptcha-response']; $remoteIp = $_SERVER['REMOTE_ADDR']; $resp = $recaptcha->verify($captcha, $remoteIp); if ($resp->isSuccess()) { $continue = true; $msg = ''; } else { $msg .= ' Error: ' . implode(", ", $resp->getErrorCodes()); } } } if ($continue && !checkAddress($useraddr, dechex(30))) { // dilmacoin specific, move this to config $continue = false; $msg = 'Preencha um endereço ' . $this->config->coin_name() . ' válido.'; } if ($continue) { $amount = $this->config->faucet_amount(); if ($this->getBalance() < $amount) { $continue = false; $msg = 'Não há fundos suficientes na Faucet, tente novamente mais tarde.'; } } if ($continue && !$this->log->checkIP()) { $continue = false; $msg = 'Você já usou o faucet. Aguarde ' . $this->config->wait_period() . ' segundos para tentar novamente.'; } $this->_hasMessage = !$continue; $this->_message = $msg; return $continue; }
echo "<tr><td><hr class='fancy-line'></td><td><hr class='fancy-line'></td></tr>"; echo "<tr><td class='first'>Total Payments send:</td><td><b>" . $payments . "</b></td></tr>"; echo "<tr><td class='first'>Total Prize Wins:</td><td><b>" . ($totalpricewins + $pricewins) . "</b></td></tr>"; echo "</table></br>"; echo "</fieldset>"; if ($data / 100000000 - $currentpayrequests * FAUCETAMOUNTINSATOSHI / 100000000 < 0.01) { echo "<p style='margin:0px auto;padding:15px;'>The faucet is dried up, please consider donating to help the less fornunate:<br />"; } else { ?> <fieldset> <legend>Faucet Information</legend> Add your information here. </fieldset> <?php include 'checkaddress.php'; if (!empty($_POST['address']) && checkAddress($_POST['address']) == 1) { //Form submitted require_once 'recaptchalib.php'; $privatekey = RECAPTCHAPRIVATEKEY; $resp = recaptcha_check_answer($privatekey, $_SERVER["REMOTE_ADDR"], $_POST["recaptcha_challenge_field"], $_POST["recaptcha_response_field"]); if (!$resp->is_valid) { // What happens when the CAPTCHA was entered incorrectly echo "<fieldset><legend>Request Payment</legend><p style='color:red;'><b>Wrong reCAPTCHA! Try again.</b></fieldset>"; form(); } else { // CAPTCHA was entered correctly try { $result = mysql_query("SELECT * FROM " . MYSQLBTCTABLE . " WHERE ip = '" . $_SERVER['REMOTE_ADDR'] . "' AND date = '" . date("Y-m-d") . "' AND time = '" . date("H") . "'") or die(mysql_error()); if (mysql_fetch_array($result) !== false) { //Already signed up for this hour. IP is checked, but you could change that if you want. Hell you can change everything. echo "<fieldset><legend>Request Payment</legend><p id='form' style='color:red;'><b>You already signed up. Try again after 1 hour!</b></fieldset>";