MyBB Community Forums

MyBB Community Forums > Extensions > Plugins > Plugin Support > My forum stats mod
Full Version: My forum stats mod
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pages: 1 2

Simulationcity

2006-06-03, 04:16 PM
Now granted this may not be the most efficient script but it'll get the job done. This is only getting the data there is currently no printing of it.

I made it compatible the MyBB's config file so all you'd need to edit is one line of code near the top.

Out of date file

Martin M.

2006-06-03, 05:08 PM
You should use something like this instead though.
if($query = mysql_query("SELECT COUNT(*) as total FROM ".$config['table_prefix']."users")) {
$users = mysql_fetch_array($query);
$users = $users['total'];
}
Would be much simpler, an while there is just overkill.

This will ofcourse be on all except the last, allthough, the last you don't need an while since it only will return one item. I suggest.
			 if ($r4 = mysql_query ("SELECT username FROM ".$config['table_prefix']."users ORDER BY uid DESC LIMIT 1")) {
					$results = mysql_fetch_array ($r4);
					$newest_member = $results['username'];
			 }

Oh one last thingy, remember always to define every variable, to avoid security possibilities on servers with register_global on.

Simulationcity

2006-06-03, 05:26 PM
Quote:Oh one last thingy, remember always to define every variable, to avoid security possibilities on servers with register_global on.

Do you mean giving the variables a value when the file is loaded?

Well as a said it may not be the most efficient but it'll get tht job done. I implemented your suggestions.

I didn't know about the "SELECT COUNT(*) as total" trick because my book on PHP doesn't talk about that.

[attachment=3097]

Here's the updated file

Martin M.

2006-06-03, 08:03 PM
Simulationcity Wrote:
Quote:Oh one last thingy, remember always to define every variable, to avoid security possibilities on servers with register_global on.

Do you mean giving the variables a value when the file is loaded?
Well, yes. if you do $var .= "wee"; or $var += "wee"; without declaring it first like $var = ""; it could be an possible security vurnability. Smile

Simulationcity

2006-06-03, 08:28 PM
I'm assuming $var .= "wee"; has to do concatenation(spelling?) and that $var += "wee"; is an accumulator. If not I don't know what those do. How would it be a security problem?

Martin M.

2006-06-03, 08:31 PM
Well, if anyone has register_global on, anyone could do ?var=whatever and it will be before any of those values. If you understand. that is if you do not declare them before you do += or .=

Simulationcity

2006-06-03, 08:43 PM
I sort of understand.

Martin M.

2006-06-03, 08:46 PM
Well you can read more about it here Smile

Simulationcity

2006-06-04, 05:17 PM
Oh I get it now. Are there any security problems with what I made?

Simulationcity

2006-06-07, 07:45 PM
Hello?
Pages: 1 2
MyBB Community Forums > Extensions > Plugins > Plugin Support > My forum stats mod