Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- function CharacterValid($nombre = NULL) {
- $validos="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789-=:!.,:@";
- $validez = 1;
- for ($i = 0; $i <= strlen($nombre) - 1; $i++) {
- if (strpos($validos,substr($nombre,$i,1)) === false) {
- $validez = 0;
- }
- }
- return $validez;
- }
- function GenerateTicket(){
- $sessionKey = 'SR-'.substr(sha1(time()).'-'.rand(9,9999999).'-'.rand(9,9999999).'-'.rand(9,9999999),0,33);
- return $sessionKey;
- }
- function get_real_ip(){
- if (isset($_SERVER["HTTP_CLIENT_IP"]))
- {
- return $_SERVER["HTTP_CLIENT_IP"];
- }
- elseif (isset($_SERVER["HTTP_X_FORWARDED_FOR"]))
- {
- return $_SERVER["HTTP_X_FORWARDED_FOR"];
- }
- elseif (isset($_SERVER["HTTP_X_FORWARDED"]))
- {
- return $_SERVER["HTTP_X_FORWARDED"];
- }
- elseif (isset($_SERVER["HTTP_FORWARDED_FOR"]))
- {
- return $_SERVER["HTTP_FORWARDED_FOR"];
- }
- elseif (isset($_SERVER["HTTP_FORWARDED"]))
- {
- return $_SERVER["HTTP_FORWARDED"];
- }
- else
- {
- return $_SERVER["REMOTE_ADDR"];
- }
- }
- if (!empty($_SERVER['HTTP_X_REQUESTED_WITH']) && strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) == 'xmlhttprequest') {
- require 'conexion.php';
- sleep(1);
- session_start();
- $mysqli->set_charset('utf8');
- $usuario = $mysqli->real_escape_string($_POST['user']);
- $pass = $mysqli->real_escape_string($_POST['password']);
- $passrepeat = $mysqli->real_escape_string($_POST['passwordrepeat']);
- $email = $mysqli->real_escape_string($_POST['email']);
- $captcha = $mysqli->real_escape_string($_POST['captcha']);
- $ticket = GenerateTicket();
- $nlook = 'B88A5CFF99000099CC0099CCE31709FFFFFF336666';
- $tlook = '3';
- $date = time();
- $ip = get_real_ip();
- $_SESSION['captcha'] = $_POST['captcha'];
- if (empty($_POST['user']) || empty($_POST['password']) || empty($_POST['passwordrepeat']) || empty($_POST['email']) || empty($_POST['captcha'])) {
- echo json_encode(array('error' => true));
- } else {
- if ($_POST['password'] == $_POST['passwordrepeat']) {
- if($_SESSION['captcha'] == strtoupper($_POST['captcha'])) {
- if($nueva_consulta = $mysqli->prepare("SELECT * FROM boombang_users WHERE UserName = ? LIMIT 1")) {
- $nueva_consulta->bind_param('s', $usuario);
- $nueva_consulta->execute();
- $resultado = $nueva_consulta->get_result();
- if($resultado->num_rows == 1) {
- echo json_encode(array('error' => true));
- } else {
- if(!CharacterValid($_POST['user'])) {
- echo json_encode(array('error' => true));
- } else {
- $mysqli->query("INSERT INTO `boombang_users`(`UserName`,`Password`,`EMail`,`outh_ticket`,`Colors`,`Avatar`,`LastLogin`,`LastPresent`,`LastIP`,`RegisterIP`) VALUES ('".$usuario."','".$pass."','".$email."','".$ticket."','".$nlook."','".$tlook."','".$date."','".$date."','".$ip."','".$ip."')");
- $_SESSION['usuario'] = $_POST['user'];
- echo json_encode(array('error' => false));
- }
- }
- $nueva_consulta->close();
- }
- } else {
- echo json_encode(array('error' => true));
- }
- } else {
- echo json_encode(array('error' => true));
- }
- }
- }
- $mysqli->close();
- ?>
Add Comment
Please, Sign In to add comment