Question: What is the message in my php account code that can help me cross script the code Payment information Your paycheck will be deposited in

What is the message in my php account code that can help me cross script the code

// initialize global variables, authentication and database connections

include('includes/common.php');

// if the user is NOT logged in, redirect him to login page

if (!$auth->user_id()) {

header('location: /');

}

// initiate csrf prevention

if (!isset($_SESSION['csrf_token'])) $_SESSION['csrf_token'] = mt_rand();

// handle the form submission

$action = @$_POST['action'];

if ($action == 'save' && $_POST['RWFzdGVyRWdnU3ByaW5nMjAyM0ZvclRhcmdldDFOb09uZVdpbGxLbm93PT0'] == 'RWFzdGVyRWdnU3ByaW5nMjAyM0ZvclRhcmdldDFOb09uZVdpbGxLbm93PT0') {

if($_POST["varId"] != "42"){

notify("Missing the answer to life the universe and everything");

} else {

// verify CSRF protection

$expected = 1;

$teststr = $_POST['account'].$_POST['challenge'].$_POST['routing'];

for ($i = 0; $i < strlen($teststr); $i++) {

$expected = (13337 * $expected + ord($teststr[$i])) % 100000;

}

if ($_POST['response'] != $expected) {

notify('CSRF attempt prevented!'.$teststr.'--'.$_POST['response'].' != '.$expected, -1);

} else {

$accounting = ($_POST['account']).':'.($_POST['routing']);

$db->query("UPDATE users SET accounting='$accounting' WHERE user_id='".$auth->user_id()."'");

notify('Changes saved');

}

$eid = @$_GET['eid'];

if ($eid) {

$name = $db->query("SELECT name FROM users WHERE eid='$eid'")->next();

}

// grab form values from database if available

$accounting = $db->query("SELECT accounting FROM users WHERE user_id='".$auth->user_id()."'")->next();

$values = explode(':', $accounting['accounting']);

$account = @$values[0];

$routing = @$values[1];

include('includes/header.php');

Payment information

Your paycheck will be deposited in the following bank account on the 35th of each month.

Look up name

You may use this form to look up a user's name using their account ID

This account ID is not registered.

include('includes/footer.php');

XSRF

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

What is the message in my php account code that can help me cross script the code Payment information Your paycheck will be deposited in the following bank account on the 35th of each month. Account...

Chapter 7:7.2 #2 (p. 168) Chapter 8:8.2 #3 (p. 205) Chapter 9:9.2 #1 (p. 225) a., b., and c. (for c., only answer the adjustable rate mortgage part Chapter 7 from Personal Finance was adapted by The...

i need some one toanswering these three questions. make sure to include apa format for the information pretty straight forward. Attached below are the chapters. Chapter 7: 7.2 #2 (p. 168) Chapter 8:...

Pls help me to answer the think critically 11.1, 11.2 & Review Concepts. This book is Banking system 2nd edition 11. Robbery Prevention and Response goals - Discuss how security measures can prevent...

Computerized Accounting with Sage 50 Level 2 The Dog House INTRODUCTION This project will test your understanding of the Sage 50 Accounting application and your ability to apply the features of this...

Please answer all the results for MM challenge on Page 38. Need all the steps as a snapshot like the case study CASE STUDY Materials Management (MM) Case Study Product SAP ERP 6.08 Global Bike Level...

Please Show the results for MM challenge on page 37 based on the case study. CASE STUDY Materials Management (MM) Case Study Product SAP ERP 6.08 Global Bike Level Undergraduate Graduate Beginner...

ABC Corporation was incorporated ten years ago as a common carrier engaged in the transportation of passengers, man, merchandise, and freight by air. It also performs agricultural aerial application...

web project Palestinian Best Food Store (PBFS), is an online food store that sales authenticated Palestinian Food, such as Zater, Olive Oil, Sage, ets. Also sales pre-packaged Palestinian meals such...

Electrical wire is being wound around a drum with radius of 1.49 meters. How much line (to the nearest hundredth of a meter) would be wound around the drum if it is rotated through an angle of 257...

The following residuals are from a linear trend model used to forecast sales: a. Compute SYX and interpret your findings. b. Compute the MAD and interpret your findings. 2.0-0.5 5 1.0 0.0 1.0 -3.0...

What does a market supply curve show? A The proportion of total output produced by different firms in the industry B Proportion of total output sold C The relationship between the total quantity...

Which one of the following lines will raise an exception? Question 1 7 options: int ( repr ( int ( ) ) ) int ( repr ( int ) ) str ( repr ( int ( ) ) ) str ( repr ( int ) )

The chapter notes that the rise in the U.S. trade deficit during the 1980s was due largely to the rise in the U.S. budget deficit. On the other hand, the popular press sometimes claims that the...

In 1998, the Russian government defaulted on its debt payments, leading investors worldwide to raise their preference for U.S. government bonds, which are considered very safe. What effect do you...

A case study in the chapter analyzed purchasing-power parity for several countries using the price of Big Macs. Here are data for a few more countries: Predicted Country Big Mac Rate Rate Indonesia...