http://wondercms.com/labs/06beta/password
This is not good, because md5 not strong algorithm, and can be brutеforce.
For fix it (and other system pages):
Code: Select all
$denypages = array("copyright", "description", "keywords", "menu", "password", "subside", "themeSelect", "title");
Code: Select all
if(!is_loggedin() and in_array($c[$key], $denypages)){
header('HTTP/1.1 404 Not Found');
$c['content'] = $d['new_page']['visitor'];
}
else
{
$c['content'] = @file_get_contents("files/".$c[$key]);
... etc ...
}