[HELP] DJ Panel

Mary · 02-08-2010, 01:34 PM

So I gave it a try last night designing my DJ Panel but I really don't have the time.
I've searched the forum now about 30 times and I can't find any working download links for a DJ Panel.

Can someone post me a secure working DJ Panel? I checked HabboEmotion & their available panels are all vulnerable to the simplest scripts like html meta redirect code when someone posts a request :3

Anyone help a girl out here?

Apolva · 02-08-2010, 02:48 PM

Originally Posted by Mary

Can someone post me a secure working DJ Panel? I checked HabboEmotion & their available panels are all vulnerable to the simplest scripts like html meta redirect code when someone posts a request :3

I think most of the DJ panels on there DO filter HTML from the request line, you obviously haven't tested them all

Edit - unless you meant XSRF. Just log out when you're done and this problem should 90% go away.

Mary · 02-08-2010, 02:53 PM

Go to Habbo Emotion & download their panels set them all up.

On the request.php file

Your name make it

<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.yourdomain.com/index.html"></head>

Your message

make it
<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.yourdomain.com/index.html"></head>

Then login to the dj panel, click on view requests and look at that! It redirects the page before you can delete them... login to phpmyadmin delete the request and then you can view the other ones.

But yeah major flaw.

Apolva · 02-08-2010, 03:54 PM

I know for a fact that my DJ panel which is up there DOES filter HTML, so you can't have tested them all (not gonna say which it is though).

Mary · 02-08-2010, 04:07 PM

I've tested all the panels on HabboEmotion.

I've settled for this one

Demo: http://habbcrazy.net/staff/
admin
root123

Password will be changed in 5 minutes :3

Mary · 02-08-2010, 10:53 PM

Changed.

63 views.
No valid helpful posts?
Damn this place sucks.

Calvin · 02-08-2010, 10:58 PM

Three of the best there are Habbo Site Panel 3.0, radiPanel (new version coming soon so get that when it comes out) and Radio DJ Panel v3 I think it is. And just wait for replies next time, saying this place sucks will not help either. Good luck choosing whatever panel you go with.

Mary · 02-08-2010, 11:19 PM

No problem man.

~~Blinger$~~ · 03-08-2010, 06:41 AM

can't you just filter it yourself? get the input (something like $_POST['request']) and add your filter(s) to it: htmlspecialchars(mysql_real_escape_string($_POST['request'])) or however you wish to strip it

?

Apolva · 03-08-2010, 04:00 PM

Originally Posted by Mary

Changed.

63 views.
No valid helpful posts?
Damn this place sucks.

I've just told you. Most of those panels DO filter HTML, so you can't have tested them properly.

Getting angry isn't a good idea either, people will just avoid the thread even more.

Thread: [HELP] DJ Panel

Thread Tools

[HELP] DJ Panel

Posting Permissions