وإذا كان الملف last10ramadan.php
ابحث عن fsel$
وقم بحذفها ، اما إن لم تجدها
فقم بفتحه واستبدله بالتالي :
كود PHP:
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html dir=rtl>
<head>
<!-- no cache headers -->
<meta http-equiv="Pragma" content="no-cache">
<meta http-equiv="no-cache">
<meta http-equiv="Expires" content="-1">
<meta http-equiv="Cache-Control" content="no-cache">
<!-- end no cache headers -->
<meta name="keywords" content="alamuae.com">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1256">
<title>alamuae.com</title>
<meta http-equiv="MSThemeCompatible" content="Yes">
<style type="text/css">
BODY {
SCROLLBAR-FACE-COLOR: #ADADB5; SCROLLBAR-HIGHLIGHT-COLOR: #FFFFFF; SCROLLBAR-SHADOW-COLOR: #FFFFFF; SCROLLBAR-3DLIGHT-COLOR: #5F6B7F; SCROLLBAR-ARROW-COLOR: #314252; SCROLLBAR-TRACK-COLOR: #FFFFFF; SCROLLBAR-DARKSHADOW-COLOR: #000000; SCROLLBAR-****-COLOR: #789789
}
SELECT {
BORDER-RIGHT: 1px outset #314252; BORDER-TOP: 1px outset #5C7994; FONT-WEIGHT: normal; FONT-SIZE: 9px; BACKGROUND-IMAGE: url('images2/bg3.png'); BORDER-LEFT: 1px outset #000000; COLOR: #475161; BORDER-BOTTOM: 1px outset #cccccc; FONT-FAMILY: MS Sans Serif, Tahoma, Verdana, Arial, Helvetica, sans-serif; BACKGROUND-COLOR: #EFEFEF
}
TEXTAREA {
BORDER-RIGHT: 1px outset #314252; BORDER-TOP: 1px outset #5C7994; FONT-WEIGHT: bold; FONT-SIZE: 16px; BACKGROUND-IMAGE: url('images2/bg3.png'); BORDER-LEFT: 1px outset #000000; COLOR: #475161; BORDER-BOTTOM: 1px outset #cccccc; FONT-FAMILY: Arial, Helvetica, MS Sans Serif, Tahoma, Verdana; BACKGROUND-COLOR: #EFEFEF
}
.bginput {
BORDER-RIGHT: 1px outset #314252; BORDER-TOP: 1px outset #5C7994; FONT-WEIGHT: normal; FONT-SIZE: 11px; BACKGROUND-IMAGE: url('images2/bg3.png'); BORDER-LEFT: 1px outset #000000; COLOR: #475161; BORDER-BOTTOM: 1px outset #cccccc; FONT-FAMILY: MS Sans Serif, Tahoma, Verdana, Arial, Helvetica, sans-serif; BACKGROUND-COLOR: #EFEFEF
}
A:link, A:visited, A:active {
COLOR: #000020;
}
A:hover {
COLOR: #FF4400;
}
#cat A:link, #cat A:visited, #cat A:active {
COLOR: #F0F0F2;
TEXT-DECORATION: none;
}
#cat A:hover {
COLOR: #F0F0F2;
TEXT-DECORATION: underline;
}
#ltlink A:link, #ltlink A:visited, #ltlink A:active {
COLOR: #000020;
TEXT-DECORATION: none;
}
#ltlink A:hover {
COLOR: #FF4400;
TEXT-DECORATION: underline;
}
.thtcolor {
COLOR: #F0F0F2;
}
</style>
<style>
<!--
A:link {text-decoration: none ; color : #DF9767}
A:visited {text-decoration: none ; color : #DF9767}
A:active {text-decoration: none ; color : #581002}
A:hover {text-decoration: underline ; color : #FF0000}
//-->
</style>
<script language='JavaScript'>
<!--
function stopError() {
return true;
}
window.onerror = stopError;
// -->
</script>
</head>
<body bgcolor="#9C1718" background="" text="#000000" id="all" rightmargin="0" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0" link="#000020" vlink="#000020" alink="#000020">
<?
if (!$fsel || $fsel == "start"){
require("confilast10.php");
require("includes/config.php");
echo "<FONT color=$tc ><marquee dir=\"rtl\" direction=\"right\" scrolldelay=\"200\">";
$db=mysql_connect($servername,$dbusername,$dbpassw ord) or die("Can't open connection to MySQL");
mysql_select_db($dbname) or die("Can't select data****");
$hfs = $fs+2;
$fs .= "pt";
$hfs .= "pt";
// the **** WHERE statement
$wheresql = "WHERE thread.lastposter=user.username AND thread.open!='10'";
// we can't have both the last 24 hours *and* the last 7 days, so error out if needed
if ($last24 == "1" && $last7 == "1") {
print("Error: \$last24 and \$last7 are both set to 1. Please change one of them to 0.");
exit;
}
// otherwise we're gonna find out which one it is
// last 24
if ($last24 == "1") {
$time = time()-86400;
$wheresql .= " AND thread.lastpost>'$time'";
}
// last 7
if ($last7 == "1") {
$time = time()-604800;
$wheresql .= " AND thread.lastpost>'$time'";
}
// are we trying to exclude *and* include forums? if so, error out
if ($excludeforums != "" && $includeforums != "") {
print("Error: \$includeforums and \$excludeforums are both set with numbers. Please remove the numbers from <b>one</b> of these two to proceed.");
exit;
}
// otherwise figure out which one we're using
// include forums
if ($includeforums == "" or $includeforums <= "0") {
$quarter = "no";
} else {
$incfid = explode(",",$includeforums); $i = 0; $a = count($incfid);
if ($a > 1) {
$wheresql .= " AND (thread.forumid='$incfid[0]'";
++$i;
while ($i < $a) {
$wheresql .= " OR thread.forumid='$incfid[$i]'"; ++$i;
}
$wheresql .= ")";
} else {
$wheresql .= " AND thread.forumid='$incfid[$i]'";
}
}
// or exclude forums
if ($excludeforums == "" or $excludeforums <= "0") {
$quarter = "no";
} else {
$excfid = explode(",",$excludeforums); $i = 0; $a = count($excfid);
while ($i < $a) {
$wheresql .= " AND thread.forumid!='$excfid[$i]'"; ++$i;
}
}
// ooh a query!
$query = "SELECT thread.lastpost,thread.title,thread.lastposter,thr ead.replycount,thread.views,user.userid,thread.thr eadid,thread.forumid$fsel,thread.iconid FROM thread,user$ftitle $wheresql ORDER BY thread.$ob $obdir LIMIT $maxthreads";
// let's get the info
$tr = mysql_query($query) or die("MySQL reported this error while trying to retreive the info: ".mysql_error());
$dtf = mysql_query("SELECT value FROM setting WHERE varname='dateformat' OR varname='timeformat' OR varname='timeoffset' ORDER BY varname");
$df = mysql_result($dtf,0,0);
$tf = mysql_result($dtf,1,0);
$tof = mysql_result($dtf,2,0);
// let's display the info
while ($threads = mysql_fetch_array($tr)) {
echo " <FONT SIZE=\"2\" FACE=\"MS Sans Serif\"><a href=\"$url/showthread.php?=$session[sessionhash]&threadid=$threads[threadid]&goto=newpost\" title=\"$threads[title]\" target=_blank>$threads[title] ( أخر تعليق : $threads[lastposter] )  </a> » </font>";
}
// close it all up
// bye!
}
if ($fsel == ",user.password"){
echo " DONT PLAY ";
}
?></marquee>
اذا كنت قمت بالتعديل عن طريق السي بانل ، احفظ الملف ،،
اذا قمت بسحب الملف لجهازك ، ومن ثم قمت بالتعديل ، كل ما عليك هو رفع الملف مجددا
الموضوع اخذته من الاخ احساس خاص
وحقوق الموضوع تابعه لمنتدى تفكير خارج الصتدوق
واى سؤال بخصوص الثغرة بأذن الله حاضرين
اخوكم سلطان الحنان
اغلاق ثغرة شريط آخر المواضيع العشرة 
العرض العادي
