|
|||||||||
|
|||||||||
|
|||||||||
 |
|||||||||
| |
||
|
|
|
|
|||||||||
|
|||||||||
|
|||||||||
|
|||||||||
| |
||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
ASP Free Forums Sponsor:
|
|
SlickEdit: Code in over 40 languages across 7 platforms. SlickEdit’s unmatched power, speed, and flexibility allows even the most accomplished developers to write better code faster. Download a free trial today! |
|
#2
July 25th, 2007, 08:14 PM
|
||||
|
||||
|
Quote:
The only error I get is that it redirects me to www.poyh.com when I enter the above login information. Also, you may want to submit your site down in the Site Reviews forum for some design tips because I just about lost 65% of my eyesight trying to look at that page.
__________________
jmurrayhead Did I help you out? Make me popular by clicking the  icon!New Members:Proper way to post a question Powered by ASP.Net
|
|
#3
July 25th, 2007, 08:21 PM
|
||||
|
||||
|
Quote:
 yeah I might consider a color scheme change.... I tried it in IE6 and it works fine though.
__________________
Slarentice (origin:Shadow Wizard of ASP Free) [noun] A slave and apprentice of the Wizard's Circle (specifically of mehere) at ASP Free. ---- If shemzilla takes over, it's best to be on his good side  
|
|
#4
July 25th, 2007, 08:40 PM
|
||||
|
||||
|
Or was this post just a cheap plug to get people to look at your site?
 I was using IE7, by the way...no errors...except the mistake of being redirected to a whole other domain.
|
|
#5
July 25th, 2007, 08:56 PM
|
||||
|
||||
|
Why is this thread still on Asp Development?
Shouldn't it be on site reviews? hmm got this when I tried to login: Quote:
__________________
................... ASCII and ye shall receive .................. Knowledge is the only resource on earth that multiplies when shared Support the Shemzilla Project Powered by C# Last edited by lewy : July 25th, 2007 at 08:59 PM.
|
|
#6
July 26th, 2007, 03:16 AM
|
||||
|
||||
|
the design of that page (http://www.poyh.com/pubspace/) is plain horrible.
I doubt you'll have any traffic with such design: people who will somehow reach such page will go away instantly. the design of the "main" website is OK, but it's wide open for SQL Injection attacks and probably all sorts of other attacks. don't be surprised when (not if) your website/server will be hacked.
|
|
#8
July 26th, 2007, 05:26 AM
|
||||
|
||||
|
Quote:
example: http://www.poyh.com/viewmember1.asp?ID=b this can very easily turn to SQL injection that can allow hackers to get your whole database, change it or delete it.
|
|
#9
July 26th, 2007, 05:30 AM
|
||||
|
||||
|
Quote:
yup, also, users can register with a username including single quotes and such, but then they can't login with that. As I was testing the SQL injection on the register page, it allowed me to enter this into every field: ' or 1=1 Although it didn't error, it's not good to allow users to enter anything they want into these fields.
|
|
#10
July 26th, 2007, 05:33 AM
|
||||
|
||||
|
Quote:
yeah, jarv probably replace them with empty string..
|
|
#11
July 26th, 2007, 05:34 AM
|
||||
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Mypubspace.com - new look - so far
