Caleb,

Now you brought a smile to my face. Thank you
Actually I did the same, just addes loginCheck('admin'); to the agent_signup.php and guess what: Gentleman, the backdoor is closed. Oh I love OSS.

Have all a nice day.

.baiki
---

Quote Originally Posted by Caleb
Not that everyone out there knows but if you try to access the file

/admin/agent_signup.php

when not signed in it lets you. therefor anyone can create an agent account. bad bad bad. though thank you to whoever created one on my site lol.
i added made it so you cant anymore.

by adding

loginCheck('Admin');

to the file.

oh what a nice break in the day. brought a smile to my face. nice to know there are people out there looking out for me haha.