xinyin025/TravianZ
1
0
Fork 0
mirror of https://github.com/Shadowss/TravianZ.git synced 2026-06-28 00:24:23 +00:00
Code Issues Packages Projects Releases Wiki Activity

security update

Browse Source
This commit is contained in:
Shadow
2014-02-13 08:05:11 +02:00
parent c8b348e283
commit 80c8d93edf
46 changed files with 94 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Admin/Mods/addTroops.php
+2 -1
View File
@@ -16,7 +16,8 @@ include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$id = $_POST['id'];
$village = $database->getVillage($id);
Admin/Mods/cp.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$id = $_POST['id'];
$admid = $_POST['admid'];
Admin/Mods/deletemedalbyuser.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
Admin/Mods/deletemedalbyweek.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
Admin/Mods/editUser.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$id = $_POST['id'];
$user = $database->getUserArray($id,1);
Admin/Mods/gold.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$id = $_POST['id'];
$gold = $_POST['gold'];
Admin/Mods/gold_1.php
+2 -1
View File
@@ -12,7 +12,8 @@
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$id = $_POST['id'];
$admid = $_POST['admid'];
Admin/Mods/medals.php
+2 -1
View File
@@ -14,7 +14,8 @@ include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$medalid = $_POST['medalid'];
$uid = $_POST['uid'];
Admin/Mods/renameVillage.php
+2 -1
View File
@@ -13,7 +13,8 @@ include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$did = $_POST['did'];
$name = $_POST['villagename'];
Admin/Mods/sendMessage.php
+2 -1
View File
@@ -11,7 +11,8 @@
include_once("../../GameEngine/Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$uid = $_POST['uid'];
$topic = $_POST['topic'];
GameEngine/Admin/Mods/addTroops.php
+2 -1
View File
@@ -10,7 +10,8 @@
## Copyright: TravianX (c) 2010-2011. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/addUsers.php
+2 -1
View File
@@ -7,7 +7,8 @@
## Copyright: TravianZ (c) 2014. All rights reserved. ##
############################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
include_once("../../Session.php");
include_once("../../Automation.php");
GameEngine/Admin/Mods/additional.php
+2 -2
View File
@@ -8,9 +8,9 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
include_once("../../config.php");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
GameEngine/Admin/Mods/cp.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/delallymedal.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/delallymedalbyaid.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/delallymedalbyweek.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/deletemedalbyuser.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/deletemedalbyweek.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editAccess.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editBuildings.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editOverall.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editPassword.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editPlus.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editProtection.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editResources.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editSitter.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editUser.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editUsername.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editVillageOwner.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/editWeek.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/givePlus.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/givePlusRes.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/giveResBonus.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
error_reporting(E_ALL);
GameEngine/Admin/Mods/gold.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
error_reporting(E_ALL);
GameEngine/Admin/Mods/gold_1.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceBan.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceCleanBanData.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceResetGold.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceResetPlus.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceResetPlusBonus.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/mainteneceUnban.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/medals.php
+4 -2
View File
@@ -8,13 +8,15 @@
## License: TravianX Project ##
## Copyright: TravianX (c) 2010-2011. All rights reserved. ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../Account.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
mysql_select_db(SQL_DB);
if ($session->access < ADMIN) die("Access Denied: You are not Admin!");
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < ADMIN) die("Access Denied: You are not Admin!");
$medalid = $_POST['medalid'];
$uid = $_POST['uid'];
GameEngine/Admin/Mods/recalcWH.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/renameVillage.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);
GameEngine/Admin/Mods/sendMessage.php
+2 -1
View File
@@ -8,7 +8,8 @@
## Copyright: TravianX (c) 2010-2012. All rights reserved. ##
## ##
#################################################################################
if (!isset($_SESSION)) session_start();
if($_SESSION['access'] < 9) die("Access Denied: You are not Admin!");
include_once("../../config.php");
mysql_connect(SQL_SERVER, SQL_USER, SQL_PASS);