Fc.ltcoin.net had been hacked,code and database was dumped,owner cheat to users
-
Here is the code of main.php:
//session_start();
if(!$_SESSION[‘username’]) {
header(“Location: login.php”);
exit();
}if($_GET) { extract($_GET, EXTR_PREFIX_SAME, “get_”); }
if($_POST) { extract($_POST, EXTR_PREFIX_SAME, “post_”); }print ’
';
$username=$_SESSION[‘username’];
$rq=date(“Y-m-d”);
$maxbid=getOneField(“select max(id) from fb”);
if($maxbid==‘’)
$maxbid=0;if($submit2==UPDATE){
mysql_query(“update users set nick=‘$nick’ where username=‘$username’”);
}
if($submit==‘Lock my wallet address’){
mysql_query(“update users set locker=1 where username=‘$username’ and wallet!=‘’”);
}
else if($submit==UPDATE){
if($paylimit -
Hi there hackftc, whilst we appreciate that you’ve found a flaw in someones coding I don’t think it’s advised to be just pasting it across the forums.
fc.ltcoin.net should now be flagged as a scam site, or at least a problematic site but I still don’t think it gives you the right to paste other peoples details.