$security = NULL; $config =& JFactory::getConfig(); //Check table prefix if ($config->get('dbprefix') == 'jos_'){ $security .= '<span style="color:red;">'; $security .= '[SQL Injection] Your database prefix prefix is "jos_". Please edit it for increase your security agaisnt SQL Injections. <a target="_blank" href="http://forum.fititnt.org/viewtopic.php?f=16&t=5">Read more</a>'; $security .= '</span><br />'; } else { $security .= '<span style="color:green;">'; $security .= '[SQL Injection] Your database prefix is not "jos_". <a target="_blank" href="http://forum.fititnt.org/viewtopic.php?f=16&t=5">Read more</a>'; $security .= '</span><br />'; } //Check admin $db =& jFactory::getDBO(); $query = 'SELECT COUNT(*) FROM #__users WHERE username = "******" OR username = "******"OR id = "62" OR id = "42"'; $db->setQuery($query); $warningadminusers = $db->loadResult(); if ($warningadminusers >0){ $security .= '<span style="color:red;">'; $security .= '[SQL Injection] You have at least one user with ID equals to 62/42 or username is admin/administrator. <a target="_blank" href="http://forum.fititnt.org/viewtopic.php?f=16&t=6">Read more</a>'; $security .= '</span><br />'; } else { $security .= '<span style="color:green;">'; $security .= '[SQL Injection] You do not have one user with ID equals to 62/42 or username is admin/administrator. <a target="_blank" href="http://forum.fititnt.org/viewtopic.php?f=16&t=6">Read more</a>'; $security .= '</span><br />'; } //FTP password saved if ( $config->get('ftp_pass') != ''){