Searching for someone with WP and MySQL wizardry

Vortex20000

hero member

Activity: 504

Merit: 500

sucker got hacked and screwed --Toad

Quote from: sobitcoin on February 20, 2015, 01:30:22 AM

Quote from: Vortex20000 on February 19, 2015, 10:54:34 PM

Quote from: coinableS on February 19, 2015, 04:56:52 PM

PSA: Don't use that script. Even really basic security steps not taken.

Address input form inserted straight into database using deprecated mysql_query without escaping Roll Eyes

Code:

$run = mysql_query("INSERT INTO ".MYSQLBTCTABLE."(id, address, ip, date, time) VALUES('','" . $_POST['address'] . "','" . $_SERVER['REMOTE_ADDR'] . "', '".date("Y-m-d")."', '".date("H")."')");
if ($run !== true) {

Wow, haha.

@OP, use mysqli. If you don't know how to, it's worth the money hiring someone to do it for you.

Looking like that's going to be the route, this stuff is way over my head. Got some learning to do.

I'm free if you need. I mean - time permits me to work on this.

I'll do it for free in exchange for a permanent banner slot :p

sobitcoin

full member

Activity: 210

Merit: 100

Quote from: Vortex20000 on February 19, 2015, 10:54:34 PM

Quote from: coinableS on February 19, 2015, 04:56:52 PM

PSA: Don't use that script. Even really basic security steps not taken.

Address input form inserted straight into database using deprecated mysql_query without escaping Roll Eyes

Code:

Bitcoin address:

Code:

$run = mysql_query("INSERT INTO ".MYSQLBTCTABLE."(id, address, ip, date, time) VALUES('','" . $_POST['address'] . "','" . $_SERVER['REMOTE_ADDR'] . "', '".date("Y-m-d")."', '".date("H")."')");
if ($run !== true) {

Wow, haha.

@OP, use mysqli. If you don't know how to, it's worth the money hiring someone to do it for you.

Looking like that's going to be the route, this stuff is way over my head. Got some learning to do.

Vortex20000

hero member

Activity: 504

Merit: 500

sucker got hacked and screwed --Toad

Quote from: coinableS on February 19, 2015, 04:56:52 PM

PSA: Don't use that script. Even really basic security steps not taken.

Address input form inserted straight into database using deprecated mysql_query without escaping Roll Eyes

Code:

Bitcoin address:

Code:

$run = mysql_query("INSERT INTO ".MYSQLBTCTABLE."(id, address, ip, date, time) VALUES('','" . $_POST['address'] . "','" . $_SERVER['REMOTE_ADDR'] . "', '".date("Y-m-d")."', '".date("H")."')");
if ($run !== true) {

Wow, haha.

@OP, use mysqli. If you don't know how to, it's worth the money hiring someone to do it for you.

mintmoney

newbie

Activity: 22

Merit: 0

Are you hosting this yourself? On a LAMP server? Why not save yourself the security & maintenance and get hosted for cheap?

Free AWS LAMP micro instance for the first year of AWS membership... Might be worth looking in to.

Just my 2 cents

-Minty

sobitcoin

full member

Activity: 210

Merit: 100

Quote from: coinableS on February 19, 2015, 04:56:52 PM

PSA: Don't use that script. Even really basic security steps not taken.

Address input form inserted straight into database using deprecated mysql_query without escaping Roll Eyes

Code:

Bitcoin address:

Code:

$run = mysql_query("INSERT INTO ".MYSQLBTCTABLE."(id, address, ip, date, time) VALUES('','" . $_POST['address'] . "','" . $_SERVER['REMOTE_ADDR'] . "', '".date("Y-m-d")."', '".date("H")."')");
if ($run !== true) {

Wow see, I really don't know much of this. Actually, had a hard time downloading mySQL Cheesy

Whole new world, i better start reading.

coinableS

legendary

Activity: 1442

Merit: 1188

PSA: Don't use that script. Even really basic security steps not taken.

Address input form inserted straight into database using deprecated mysql_query without escaping Roll Eyes

Code:

Bitcoin address:

Code:

$run = mysql_query("INSERT INTO ".MYSQLBTCTABLE."(id, address, ip, date, time) VALUES('','" . $_POST['address'] . "','" . $_SERVER['REMOTE_ADDR'] . "', '".date("Y-m-d")."', '".date("H")."')");
if ($run !== true) {

azguard

legendary

Activity: 1484

Merit: 1001

Crypto-News.net: News from Crypto World

Advice use trusted escrow you have then here

sobitcoin

full member

Activity: 210

Merit: 100

Quote from: bitcoinstarter on February 18, 2015, 10:39:13 PM

Quote from: sobitcoin on February 18, 2015, 04:08:42 PM

Quote from: Skyenet on February 18, 2015, 03:46:44 PM

I can help you set it all up for $100. Just hit me a pm.

I am well experienced in PHP, MYSQL, and Linux Server Management.

PM

Don't agree to any pre-deposit I've been ripped off twice in one week to scammers. Its amazing!

Thanks, will be smart. This place is crawling with them.

bitcoinstarter

hero member

Activity: 484

Merit: 500

Quote from: sobitcoin on February 18, 2015, 04:08:42 PM

Quote from: Skyenet on February 18, 2015, 03:46:44 PM

I can help you set it all up for $100. Just hit me a pm.

I am well experienced in PHP, MYSQL, and Linux Server Management.

PM

Don't agree to any pre-deposit I've been ripped off twice in one week to scammers. Its amazing!

sobitcoin

full member

Activity: 210

Merit: 100

Quote from: Skyenet on February 18, 2015, 03:46:44 PM

I can help you set it all up for $100. Just hit me a pm.

I am well experienced in PHP, MYSQL, and Linux Server Management.

PM

Skyenet

full member

Activity: 280

Merit: 100

I can help you set it all up for $100. Just hit me a pm.

I am well experienced in PHP, MYSQL, and Linux Server Management.

sobitcoin

full member

Activity: 210

Merit: 100

Hey guys!

I am trying to put a faucet on my Wordpress site. More specifically, this faucet https://github.com/Kafkamorph/Simple-Open-Source-BitCoin-Faucet

As a complete newb to this, I am lost at the MySQL part. Looking for someone who can join me in a slack or skype chat and help me through the process as I would like to understand this for the future.

I am working with a very limited budget, let me know your cost in a PM or however you feel fit. I do marketing/design/socialmedia work, willing to offer services in exchange as well. Thanks for your time looking forward to hearing from some MYSQL gurus!

Topic: Searching for someone with WP and MySQL wizardry (Read 1658 times)