When users change(hack) the authlevel after login ..
Is it possible to protect with the following sources?
common.php
My 2moons is old.
/* Authlevel Protection - out of service. */
if($_SESSION['authlevel'] != $USER['authlevel']) {
$db->query("UPDATE ".USERS." SET `authlevel` = '".$_SESSION['authlevel']."' WHERE `id` = ".$USER['id'].";");
redirectTo('index.php');
}
Is it possible to protect with the following sources?
common.php
My 2moons is old.
/* Authlevel Protection - out of service. */
if($_SESSION['authlevel'] != $USER['authlevel']) {
$db->query("UPDATE ".USERS." SET `authlevel` = '".$_SESSION['authlevel']."' WHERE `id` = ".$USER['id'].";");
redirectTo('index.php');
}
--------------------------------------------------------------------------------------