Could you test this?

Soldato
Joined
12 Jun 2005
Posts
5,361
Hi there,

I was wondering if you could test this for me.

Its for the "Windows & Other Software" forum on OCUK. It's basically just the CMS Admin.

Basically just test functionality, security, (spelling :P) etc...

The "software" section of it has most of the functionality - add/edit/delete ...etc...

Link: Clicky!

User: test
Password: test

Post if you get an errors etc....

Thanks.
 
Last edited:
Looks decent, had a quick go at breaking it... (sql injection/xss). Nothing obvious stands out as a problem.
 
Thanks guys - yeah my spelling/grammar is awful.

Does anyone know what I should CHMOD the errorlog so it can be read by my script only?

EDIT: thanks for the suggestions also! - most good ones will be implemented.
 
Last edited:
why not put the javascript message in <no script> tags. it's kind of pointless displaying the message to people who have javascript enabled. :)
 
why not put the javascript message in <no script> tags. it's kind of pointless displaying the message to people who have javascript enabled. :)

Sorry - don't quite understand what you are suggesting there.

I assume you are talking about the feedback reports?

If so - they are supposed to be viewed by everyone, javascript or not, or are you proposing that they should just be viewed by people without javascript? If so, what do you recommend I do to indicate a successful or erroneous operation to the people with javascript?
 
Code:
Please Note: It is recommended that you have javascript enabled.

that shows on every page even though i have javascript enabled. if you put it in <noscript> tags it will only display in the browser if javascript is disabled. :)
 
not sure if it was mentioned but after deleting a category i made i got the log saying delete etc, then iclick creat category, and the log was still there which was ontop of the field the the category. would be good if it went if you click somewhere else
 
I like both of those suggestions. With regards to the second suggestion - I don't know why I did it, but I think there was a reason I had it that way. I might as well implement what you said seen as i can't remember.

EDIT: Done - anything else?
 
Last edited:
The main bits of the front end are done now.

Could anyone test those bits for me, just a few security tests.

See the updated link in the first post.

Thanks.
 
Back
Top Bottom