Will this code make my gallery vulnerable?

davelu · January 28, 2007, 07:09:35 AM

Hey,
I added change layout to my gallery (emmawatson.ca/CoppGallery), and I was wondering if my n00b coding is going to create any vulnerabilities (the added codes work fine).

I added
index.php

Code Select

		if($skin!=NULL){
		setcookie('galleryskin',$skin,time()+86400*30);
		header('Location: index.php');
		}

functions.inc.php

Code Select


        global $CONFIG, $USER, $skin;	
	if ( ($skin==NULL) & (!isset($_COOKIE['galleryskin'])) ){
		$skin="1";
		setcookie('galleryskin',$skin,time()+86400*30);
		}
	else if($skin!=NULL)
		{
			setcookie('galleryskin',$skin,time()+86400*30);
		}
		else {
			$skin=$_COOKIE['galleryskin'];
		}

themes.inc.php

Code Select


		switch($skin){
			case "1": 
			$banner = "/images/Emma_Watson_Gallery_Banner1.jpg";
			$css = "style1.css";
			$ad_border="88a4ae";
			$ad_bg="abbcc2";
			$backgroundurl = "/images/gallery_bg1.jpg";
				break;
				
			case "2": 
			$css = "style2.css";
			$banner = "/images/Emma_Watson_Gallery_Banner2.jpg";
			$backgroundurl = "/images/gallery_bg2.jpg";
			break;
				
			case "3": 
			$css = "style3.css";
			$banner = "/images/Emma_Watson_Gallery_Banner3.jpg";
			$backgroundurl = "/images/gallery_bg3.jpg";
				break;
				
			default: $css = "style1.css";
			$banner = "/images/Emma_Watson_Gallery_Banner1.jpg";
			$backgroundurl = "/images/gallery_bg1.jpg";
			$ad_border="88a4ae";
			$ad_bg="abbcc2";
			}

Nibbler · January 28, 2007, 12:15:37 PM

Looks OK to me.

coppermine-gallery.com/forum

News:

Will this code make my gallery vulnerable?

davelu

Nibbler