No, Im not a very good dev, Im self taught and have not been doing it too long, I only just get along.
I have more files also. As you see the passwords and not encrypted... he wanted it this way so he could see peoples passwords and try and get into their "other" accounts, so I removed the encryption
In this version I was using some other guy (on github) AddressValidator script, but had some problems so I left it out, But I managed to fix it in the one I sent WhiteCodex.
This is
http://www.xscrypt.com/registerp.php<?php
require_once('./includes/db_connect.php');
require_once('./includes/session.php');
require_once('./includes/functions.php');
//require_once('./includes/AddressValidator.php');
$xEmail_Address = $_POST['email_address'];
$xPassphrase = $_POST['passphrase'];
$xBitcoin_Address = $_POST['bitcoin_address'];
$xAffid = $_POST['affid'];
if ($xAffid == '') {
$xAffid = 'None';
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
<!-- The above 3 meta tags *must* come first in the head; any other head content must come *after* these tags -->
<title>xScrypt - Premier Scrypt Cloud Mining Contracts</title>
<!-- Bootstrap -->
<link href="css/bootstrap.min.css" rel="stylesheet">
<link href="css/custom.css" rel="stylesheet">
<link href='http://fonts.googleapis.com/css?family=Roboto' rel='stylesheet' type='text/css'>
<!-- HTML5 shim and Respond.js for IE8 support of HTML5 elements and media queries -->
<!-- WARNING: Respond.js doesn't work if you view the page via file:// -->
<!--[if lt IE 9]>
<script src="https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script>
<script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script>
<![endif]-->
</head>
<body>
<div class="container-fluid">
<div class="row">
<div class="col-md-3 logobar"><p></p></div>
<div class="col-md-6 logobar"></div>
<div class="col-md-3 logobar"><p></p></div>
</div>
<br>
<div class="row">
<div class="col-md-3"><p></p></div>
<div class="col-md-6">
<div class="collapse navbar-collapse navbar-menubuilder">
<ul class="nav navbar-nav navbar-left">
<li class="active"><a href="https://xscrypt.com/?id=">Home</a>
</li>
<li><a href="https://xscrypt.com/register.php?id=">Register</a>
</li>
<li><a href="https://xscrypt.com/login.php">Login</a>
</li>
<li><a href="https://xscrypt.com/purchase.php">Purchase</a>
</li>
<li><a href="https://xscrypt.com/account.php">Account</a>
</li>
<li><a href="https://xscrypt.com/contact.php">Contact</a>
</li>
<li><a href="https://xscrypt.com/faq.php?id=">FAQ</a>
</li>
</ul>
</div>
</div>
<div class="col-md-3"><p></p></div>
</div>
<br>
<div class="row">
<div class="col-md-3"><p></p></div>
<div class="col-md-6 standardsection text-center">
<div class="row">
<div class="col-md-4"><p></p></div>
<div class="col-md-4">
<h2>Register</h2>
<?php
if(!filter_var($xEmail_Address, FILTER_VALIDATE_EMAIL)) {
echo "<p class='cus-center'>Please enter a valid Email Address</p>";
} else {;
$varPass = True;
if ($varPass = False) {
echo "<p class='cus-center'>Please enter a valid Bitcoin Address</p>";
} else {
$connLogin = new PDO("mysql:host=$varDB_host;dbname=$varDB_name", $varDB_user, $varDB_password);
if ($xPassphrase == '') {
echo "<p class='cus-center'>Please enter a passphrase</p>";
} else {
$xEncrypted_Password = $xPassphrase;
$stmtCheckDupe = $connLogin->prepare("SELECT * FROM user_accounts WHERE email_address = '$xEmail_Address';");
$stmtCheckDupe->execute();
if ($stmtCheckDupe->rowCount() >= 1) {
echo "<p class='cus-center'>Email Address already in use</p>";
} else {
$xEmail_Address = stripslashes($xEmail_Address);
$xBitcoin_Address = stripslashes($xBitcoin_Address);
$epoch = time();
$dt = new DateTime("@$epoch");
$xDate = $dt->format('d-m-Y H:i:s');
$stmt = $connLogin->prepare("INSERT INTO user_accounts (email_address, passphrase, bitcoin_address, affiliateid, register_date, register_ip) VALUES (:email, :pass, :btcadd, :aff, :regdate, :regip)");
$stmt->execute(array(
"email" => $xEmail_Address,
"pass" => $xEncrypted_Password,
"btcadd" => $xBitcoin_Address,
"aff" => $xAffid,
"regdate" => $xDate,
"regip" => get_client_ip()
));
$xHeaders = 'From: support@xscrypt.com' . "\r\n" .
'Reply-To: support@xscrypt.com' . "\r\n" .
'X-Mailer: PHP/' . phpversion();
@mail("support@xscrypt.com", "xscrypt User Registration - " . $xEmail_Address, "A new user has registered on the website", $xHeaders);
echo "<p class='cus-center'>Thank you for registering</p>";
echo "<p class='cus-center'><a href='./login.php'>Click Here</a> to login</p>";
echo "<p class='cus-center'><a href='./purchase.php'>Click Here</a> to purchase mining power</p>";
}
}
}
}
?>
</div>
<div class="col-md-4"><p></p></div>
</div>
</div>
<div class="col-md-3"><p></p></div>
</div>
</div>
<br>
<footer class="footer">
<div class="container">
<p class="text-muted">Copyright © 2015 xscrypt.com</p>
</div>
</footer>
<!-- jQuery (necessary for Bootstrap's JavaScript plugins) -->
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js"></script>
<!-- Include all compiled plugins (below), or include individual files as needed -->
<script src="js/bootstrap.min.js"></script>
</body>
</html>
db_connect.php
<?php
$varDB_host = "";
$varDB_name = "";
$varDB_user = "";
$varDB_password = "";
?>
functions.php
<?php
function get_client_ip() {
$ipaddress = '';
if (getenv('HTTP_CLIENT_IP'))
$ipaddress = getenv('HTTP_CLIENT_IP');
else if(getenv('HTTP_X_FORWARDED_FOR'))
$ipaddress = getenv('HTTP_X_FORWARDED_FOR');
else if(getenv('HTTP_X_FORWARDED'))
$ipaddress = getenv('HTTP_X_FORWARDED');
else if(getenv('HTTP_FORWARDED_FOR'))
$ipaddress = getenv('HTTP_FORWARDED_FOR');
else if(getenv('HTTP_FORWARDED'))
$ipaddress = getenv('HTTP_FORWARDED');
else if(getenv('REMOTE_ADDR'))
$ipaddress = getenv('REMOTE_ADDR');
else
$ipaddress = 'UNKNOWN';
return $ipaddress;
}
?>
session.php
<?php
session_start();
$varUserid = $_SESSION['user_id'];
$varEmail_Address = $_SESSION['email_address'];
?>