A simple, free, easy to use online booking system for theatres, cinemas etc…It is written in PHP and AJAX. This does not use MySQL or other databases instead it is a flat file based (txt), and works with either Linux or Windows Web servers (not tested on Mac servers).
This is only a basic concept of a PHP AJAX online, therefore should not be used in a real world scenario, due to the security issues of flat-files.
view demo of ajax php booking system
(opens in new window)
How does it work?
When a booking is made it is written to a text file. But to get an idea of how it works, view the demo and download the source code (link at the bottom)
It prevents double booking both client side (Ajax) and server-side with the php
In the Ajax file it checks if the file booked seat exists by checking if a file exists corrisponding to the seatnumber (best explained when viewed in source code and demo!)
The source code is Freeware, although please credit me where due if you decided to adapt/ use it for your projects
Downloads
download source code (zip file 210KB)
If you have a Creative Sound Blaster X-Fi XtremeMusic (OEM version) and want all the applications that the retail version gets such as :
- Creative Audio Console
- Creative Volume Panel
- THX Console
- Creative Software Auto Update
- Creative MediaSource
- Creative Entertainment Center
- Creative Smart Recorder
- Creative WaveStudio
- Creative 3DMIDI Player
- Sound Blaster for Media Center
- SoundFont Bank Manager
- Creative Diagnostics
Or if when you try to install the Sound Blaster X-Fi Installation CD for Windows Vista (that contains all the applications like the THX console, volume panel etc) you get an error message along the lines of unable to identify hardware – there is a solution (but sadly you cannot use the ‘official CD..you have to use a modded one- although from what ive read, the applications are the same, they just mod the setup)!
- Get the latest Drivers from the creative website
- Download the Application from Youp-Pax_X-Fi_Software_Su08.7z
(you may need a program such as winrar to open it)
- Extract the Software Suite 08, do a custom install but uncheck install audio driver
- Next install the latest driver from the creative website
- Reboot and enjoy!
If i manage to find a solution for installing the Sound Blaster X-Fi Installation CD for Windows Vista on the Creative X-Fi xtreeme music oem card without the need for the modded software suit , i’ll add it to this post.
btw, if you have a retail version of Xtreeme music then you don’t need to use the modded application. OEM cards are usually on sale on eBay!
XXS? What is Cross-site Scripting XXS?
As wikipedia puts it:
Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications which allow code injection by malicious web users into the web pages viewed by other users. Examples of such code include HTML code and client-side scripts. An exploited cross-site scripting vulnerability can be used by attackers to bypass access controls such as the same origin policy. Vulnerabilities of this kind have been exploited to craft powerful phishing attacks and browser exploits. As of 2007, cross-site scripting carried out on websites were roughly 80% of all documented security vulnerabilities. Often during an attack “everything looks fine” to the end-user who may be subject to unauthorized access, theft of sensitive data, and financial loss.
Test if your WordPress Blog is vunerable to an XSS
Recently, i discovered, that if you entered code such asUpdate: Might not be true now – this post was several years ago!
It would run the script, now that script that alerts the word hello is not a massive problem, but it proves that the site is vunerable to XSS attacks!
How to Prevent XSS Exploits and attacks in your WordPress blog (or indeed any website/blog)
For WordPress: Log onto your wordpress blog, go to Design > Theme Editor, locate the file, search.php (alternitivly can be done editing the search.php via ftp) and at the very top of the file insert the following code:
<?php
// Prevent any possible XSS attacks via $_GET.
foreach ($_GET as $check_url) {
if ((eregi("<[^>]*script*"?[^>]*>", $check_url)) || (eregi("<[^>]*object*"?[^>]*>", $check_url)) ||
(eregi("<[^>]*iframe*"?[^>]*>", $check_url)) || (eregi("<[^>]*applet*"?[^>]*>", $check_url)) ||
(eregi("<[^>]*meta*"?[^>]*>", $check_url)) || (eregi("<[^>]*style*"?[^>]*>", $check_url)) ||
(eregi("<[^>]*form*"?[^>]*>", $check_url)) || (eregi("([^>]*"?[^)]*)", $check_url)) ||
(eregi(""", $check_url))) {
echo"there appears to be an error, please press the back button and try again";
die ();
}
}
unset($check_url);
?>
(origional code by:sumit270 , from php.net)
For other sites and blogs put the above code in the php file where the search results are displayed, simple!
