Not work with * ® © but are good to help to evitate /MYfOrUm/index.php

Open new_forum.php

Found

if ($_REQUEST['do'] == 'check')
{
if ($_GET['accessname'])
{
$accessname = str_replace(' ', '-', $accessname);
$accessname = str_replace('!', '', $accessname);
$accessname = str_replace('"', '', $accessname);
$accessname = str_replace('\'', '', $accessname);
$accessname = str_replace('/', '', $accessname);
$accessname = str_replace('@', '', $accessname);
$accessname = str_replace('#', '', $accessname);
$accessname = str_replace('$', '', $accessname);
$accessname = str_replace('%', '', $accessname);
$accessname = str_replace('^', '', $accessname);
$accessname = str_replace('&', '', $accessname);
$accessname = str_replace('*', '', $accessname);
$accessname = str_replace('(', '', $accessname);
$accessname = str_replace(')', '', $accessname);
$accessname = str_replace('_', '-', $accessname);
$accessname = str_replace('?', '', $accessname);
$accessname = str_replace(',', '', $accessname);
$accessname = str_replace('.', '', $accessname);
$accessname = str_replace('<', '', $accessname);
$accessname = str_replace('>', '', $accessname);
$accessname = str_replace(':', '', $accessname);
$accessname = str_replace(';', '', $accessname);
$accessname = str_replace('{', '', $accessname);
$accessname = str_replace('}', '', $accessname);
$accessname = str_replace('|', '', $accessname);
$accessname = str_replace('=', '', $accessname);
$accessname = str_replace('+', '', $accessname);
$accessname = str_replace('`', '', $accessname);
$accessname = str_replace('~', '', $accessname);
$accessname = str_replace('[', '', $accessname);
$accessname = str_replace(']', '', $accessname);


Replace with


if ($_REQUEST['do'] == 'check')
{
if ($_GET['accessname'])
{
$accessname = trim($_GET['accessname']);
$accessname = strtolower($accessname);
$accessname = preg_replace('/[^a-zA-Z0-9]/','',$accessname);
$accessname = trim($accessname);
$accessname = ereg_replace(' ', '', $accessname);


Found


// clean accessname.
$accessname = trim($_POST['accessname']);
$accessname = str_replace(' ', '_', $accessname);
$accessname = str_replace('!', '', $accessname);
$accessname = str_replace('"', '', $accessname);
$accessname = str_replace('\'', '', $accessname);
$accessname = str_replace('/', '', $accessname);
$accessname = str_replace('@', '', $accessname);
$accessname = str_replace('#', '', $accessname);
$accessname = str_replace('$', '', $accessname);
$accessname = str_replace('%', '', $accessname);
$accessname = str_replace('^', '', $accessname);
$accessname = str_replace('&', '', $accessname);
$accessname = str_replace('*', '', $accessname);
$accessname = str_replace('(', '', $accessname);
$accessname = str_replace(')', '', $accessname);
$accessname = str_replace('-', '_', $accessname);
$accessname = str_replace('?', '', $accessname);
$accessname = str_replace(',', '', $accessname);
$accessname = str_replace('.', '', $accessname);
$accessname = str_replace('<', '', $accessname);
$accessname = str_replace('>', '', $accessname);
$accessname = str_replace(':', '', $accessname);
$accessname = str_replace(';', '', $accessname);
$accessname = str_replace('{', '', $accessname);
$accessname = str_replace('}', '', $accessname);
$accessname = str_replace('|', '', $accessname);
$accessname = str_replace('=', '', $accessname);
$accessname = str_replace('+', '', $accessname);
$accessname = str_replace('`', '', $accessname);
$accessname = str_replace('~', '', $accessname);
$accessname = str_replace('[', '', $accessname);
$accessname = str_replace(']', '', $accessname);



Replace with


// clean accessname.
$accessname = trim($_POST['accessname']);
$accessname = strtolower($accessname);
$accessname = preg_replace('/[^a-zA-Z0-9]/','',$accessname);
$accessname = trim($accessname);
$accessname = ereg_replace(' ', '', $accessname);



A user than try for example make a forum with [MASTEROFALL],
make a forum like /masterofall/index.php

That's doing ^_^.

Thanks this is very USEFULLY