Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
pajaja17337yAlso, encryption function doesn't really encrypt anything it just scrambles the string in a predictable way :D
-
asgs112757y@pajaja let's hope your database doesn't get into the hands of crackers. also, does that code document how the scrambling is done?
-
pajaja17337y@asgs No documentation at all. There are sometimes few comments in the code but nothing that is useful.
Related Rants
My last rant with example of usefull PHP function in old inhouse CRM software was somewhat popular, so I decided to post more stuff. This time we look at the login function. Besides obvious problem of SQL injection (that i of course tested) we have two calls to the same 'poslednji_login()' method (translated to english - 'last login') that actually just returns current time, not the last login time... twice...
undefined
wk58
login
php
sql injection