Poison Light

Visitors
  • members_posts

    327
  • Joined

  • Last visited


About Poison Light

  • Rank
    Advanced Member

IPS Marketplace

  • Resources Contributor Total file submissions: 13

Profile Information

  • Gender Male

Poison Light's Activity

  1. Poison Light added a post in a topic: Download: Ajax Live Search   


    Not tested, but i am almost sure. I don't see checks for the forum permissions

    I am talking about these forum permissions:



    So if they change the hidden value "WHERE forum_id IN ( $forum_ids )" will also be changed.

    Hopefully you understand me now :P
  2. Poison Light added a post in a topic: Download: Ajax Live Search   


    Ok. You defined the searchable topics in the hidden value (Which can be edited by everyone via inspect elements).
    People can change which forums they want to see via the live search. Even hidden forums (Think about a forum only for administrators, moderators etc.)
    So they can get the topics in the hidden forums. Not a big problem, but what if you include secret information in the topic title?

    Hidden input > GET Parameter > Your PHP file > Query.. without any checks.
  3. Poison Light added a post in a topic: Download: Ajax Live Search   


    Are you talking about the als_search.php? I don't see any permission checks there.
  4. Poison Light added a post in a topic: Download: Ajax Live Search   

    Ok, i just tried some things but your hook is not safe to use. People can easily change the hidden values via inspect element.
  5. Poison Light added a post in a topic: Download: Ajax Live Search   

    I like your idea, however your implantation looks a little bit strange to me. Why not prototype and ajax? That would make it even easier for you. So imho the implantation is bad (sorry :P) But overall a good hook and addition for my board. Thanks!
  6. Poison Light added a post in a topic: Download: (EJ33) ad block Blocker   



    Im gonna rewrite this hook in the next days. (however it still works for 3.3.4)
  7. Poison Light added a post in a topic: Download: Red Clean   



    Can be easy changed in 3 seconds.
    Anyway no time yesterday, i will update this skin in an hour.
  8. Poison Light added a post in a topic: Maxx 2012: The Most Advanced Skin.   

    5 stars from me. Someone voted 1 without reason? >_<
  9. Poison Light added a post in a topic: Download: Red Clean   

    I update the skin tonight or tommorow :)
  10. Poison Light added a post in a topic: Download: Red Clean   



    Ok, i will update this skin in 3 days (Busy with an another skin atm :P)
  11. Poison Light added a post in a topic: Download: Red Clean   



    yeah if you wan i can update the skin in 2 days to ipb 3.3.3.
    Actually i decide to update none of these 'clean' group skins but if you really want i will do it.
  12. Poison Light added a post in a topic: Download: Paerula (3 Colors)   

    Ok, thank you :)
  13. Poison Light added a post in a topic: Download: Paerula (3 Colors)   

    But it is an inline css (<p style="color blablabla"></p>) So i am almost sure its not a problem from my skin. Also installed the skin on an other board but i cannot reproduce black colors :S. Someone else?
  14. Poison Light added a post in a topic: Download: Paerula (3 Colors)   

    Funny, its an inline css style. As far as i know it has nothing to do with the skin itself, but i will check it.

    Dmac, you never changed your quote bbcode? :P
  15. Poison Light added a post in a topic: Download: Paerula (3 Colors)   



    Can you PM me with a link to a topic with a quote.? Just white here:

About Me

Status Feed

  1. Poison Light

    Too busy with my job : (

  2. Poison Light » z1000-forum.de

    The sidebar is a little bit too orange now :P

    1. z1000-forum.de

      don't struggle with coloring up your board too ;-)

    2. Poison Light

      haha, good releases (:

  3. Poison Light

    Why is my world so busy at the moment : D

  4. Poison Light

    IPS really need to edit the rate permissions on paid downloads.

  5. Poison Light

    finding out ipb :)