I am beginning to wonder where these new sites that are springing up are getting their scripts from. I hope from a reliable source, if they arent, then it seems we might have a hacker on our hands. I say this because I have now found a 3rd site, which has been warned about the security hole that was posted by Jaukki on the General discussion forum.
I would ADVISE ALL WM's that are running websites with this style:
sitename/paidmail/site/
To Check your scripts. Make sure you have fixed your scripts up BEFORE you launch. I know of one site right now where if I had someone's email address I could walk in and get details from, the same is probably said for those that have launched in the LAST 48 hours.
Please fix this up.
PS: I count at least 3 sites in the downline builder that have this problem.
Full Version: Security Holes
Get Paid Forum - Get Paid Discussion > Webmaster's Corner > General Discussion on Building, Running & Making Money from a Website
I have the security fix for these sites running these scripts. The webmasters need to contact me through PM and I will gladly let them know how to get this security fix....it is not an upgrade therefore there is no charge for it.
Its a easy fix 
Just 5 minutes work
Just 5 minutes work
LOL dutch....well, for me it's not...I wouldn't even know where to begin...LOL...I have someone who does all this for me so.....easy for someone who knows what they are doing...not for the rest of us....
The Brian scripts (that's what you're talking about in this thread) have been full of bugs since they were the CAC PHP scripts.
My recommendation is don't use them at all. There are enough bugs in those scripts to last you for years ;-)
Anyone who tells you that all the bugs are fixed or that they've fixed them all themselves is either lying or just hasn't realized how many bugs there are yet.
The most recent (humorous) bug I've seen is one that will allow you to have certain scripts happily print members passwords to the browser for you in the form of:
"Hi PASSWORD!"
Lol. There's a reason you're getting these scripts for so cheap from people who are not the original programmer. He doesn't want anything to do with em.
My recommendation is don't use them at all. There are enough bugs in those scripts to last you for years ;-)
Anyone who tells you that all the bugs are fixed or that they've fixed them all themselves is either lying or just hasn't realized how many bugs there are yet.
The most recent (humorous) bug I've seen is one that will allow you to have certain scripts happily print members passwords to the browser for you in the form of:
"Hi PASSWORD!"
Lol. There's a reason you're getting these scripts for so cheap from people who are not the original programmer. He doesn't want anything to do with em.
That is the one that is being discussed here... I have notified the sites that I am part of and checked to make sure they are fixed, and so far have found that they have been fixed. I think the holes were put in deliberately and arent because of bad scripting.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.