HoME

[heywhite]

Overview
HoME is a cloud system created by WebHaikal. Aiming to help those who needs a an easy to use system for accessing files,videos,photos,calendar and etc. Technically, a whole operating system in a browser. It's responsive,mobile-ready and light. Powered by PHP5, HTML5 & CSS3 tech. I'm developing this because there's a sudden increase in cloud systems like jolidrive and EyeOS.

Completion
The project will not have an exact date of completion because I'm a student and I will not be online regularly, you can contact me by:
Email: [email protected]
or on Google+ or Google Hangouts.

Changelog
v0.1

• Initial Build

v0.2

• Added New Installation Script
• Security Improvements

v0.3

• All Apps Page
• Fixed Quotes System
• API System Added

v0.9

• New Dark UI
• ThemeController System (UNCODED)
• Installer Improvements
• New App Caller
• Updated Calendar System
• Imrpoved App System
  • Checks For Install Status
  • Checks For Updats
• Improved User System
  • Removed Lock System (To Be Implemented Soon)
  • Profile Page (UNCODED)
• Improved AppController
  • Removed Unfinised Error Reporting System
• Incremented Version -> 1.0 BETA

v1.0

• New Theme System (Using RainTPL)
• Improved Installation System
• Removed Old & Buggy Music & Gallery Plugins

v1.0.1

• New AutoUpdate System

v1.0.11

• Improved Theme System
• New Default Theme
• Removed Buggy & Old API
• Cache System

v1.0.12

• Added AppStore Base
• Improved Updater
• Improved VersionController
• Improved Profile Page
• Added Notification System

v1.2.01

• New Default Theme
• Improved Installer
• Fullscreen Support
• Mobile Support

v1.2.03

• New Notes App
• FileController Added for Upcoming FileManager App
• Improved Default Theme
• Removed Unused Temporary Data for RainTPL
• Updated Calendar App
• Minor Bug Fixes

v1.2.04

• Security Update
  • Removed deprecated MD5 encryption
  • Using PHP5 password_hash() function (More Function)
• Improved Updater
• Updated ApplicationController

v1.2.10

• Added FileManager
• Removed AppStore base
• Fixed bugs related to settings

Upcoming Features

• Achievements (Plugin)
• App Store
• Blog System

Download

• Source Code :
  You must be registered for see links
• Full Release :
  You must be registered for see links

 

[Ecko]

this is hiddeous

also wtf:

<script src="js/jquery.js" type="text/javascript"></script>
<script src="js/jquery-ui.js" type="text/javascript"></script>
<script src="js/bootstrap.min.js" type="text/javascript"></script>
<script src="js/raphael.min.js" type="text/javascript"></script>
<script src="js/jquery.mousewheel.js" type="text/javascript"></script>
<script src="js/jquery.vmap.min.js" type="text/javascript"></script>
<script src="js/jquery.vmap.sampledata.js" type="text/javascript"></script>
<script src="js/jquery.vmap.world.js" type="text/javascript"></script>
<script src="js/jquery.bootstrap.wizard.js" type="text/javascript"></script>
<script src="js/fullcalendar.min.js" type="text/javascript"></script>
<script src="js/gcal.js" type="text/javascript"></script>
<script src="js/jquery.dataTables.min.js" type="text/javascript"></script>
<script src="js/datatable-editable.js" type="text/javascript"></script>
<script src="js/jquery.easy-pie-chart.js" type="text/javascript"></script>
<script src="js/excanvas.min.js" type="text/javascript"></script>
<script src="js/jquery.isotope.min.js" type="text/javascript"></script>
<script src="js/masonry.min.js" type="text/javascript"></script>
<script src="js/modernizr.custom.js" type="text/javascript"></script>
<script src="js/jquery.fancybox.pack.js" type="text/javascript"></script>
<script src="js/select2.js" type="text/javascript"></script>
<script src="js/styleswitcher.js" type="text/javascript"></script>
<script src="js/wysiwyg.js" type="text/javascript"></script>
<script src="js/jquery.inputmask.min.js" type="text/javascript"></script>
<script src="js/jquery.validate.js" type="text/javascript"></script>
<script src="js/bootstrap-fileupload.js" type="text/javascript"></script>
<script src="js/bootstrap-datepicker.js" type="text/javascript"></script>
<script src="js/bootstrap-timepicker.js" type="text/javascript"></script>
<script src="js/bootstrap-colorpicker.js" type="text/javascript"></script>
<script src="js/bootstrap-switch.min.js" type="text/javascript"></script>
<script src="js/daterange-picker.js" type="text/javascript"></script>
<script src="js/date.js" type="text/javascript"></script>
<script src="js/morris.min.js" type="text/javascript"></script>
<script src="js/skycons.js" type="text/javascript"></script>
<script src="js/jquery.sparkline.min.js" type="text/javascript"></script>
<script src="js/fitvids.js" type="text/javascript"></script>
<script src="js/main.js" type="text/javascript"></script>
<script src="js/respond.js" type="text/javascript"></script>

fucking compile your javascript (and your css) and minify it:

You must be registered for see links

otherwise you are sending all these requests for no reason. also the way you are loading the js and css is dumb.

also, don't echo html. it's stupid. html is parsed by the browser, why have php execute something when it doesn't have to?

also this part is just a boldfaced lie:
"User Secure Login + Register;"

case "login":
    {
        $user = $_POST['username'];
        $pass = $_POST['password'];
        $pass = hash("md5",$pass);

function register($user,$pass,$email)
    {
        GLOBAL $db;
        $user = mysqli_real_escape_string($user);
        $pass = md5(mysqli_real_escape_string($pass));
        $email = mysqli_real_escape_string($email);

md5 is not secure. sha1 is not as secure as it used to be. use this as reference on how you should be storing passwords:

You must be registered for see links

 

[heywhite]

Thank you for the reply. The advice has been taken and my team is on correcting those errors. Why not take a look again at the code and point out other things our team should not do...

 

[Stallone]

So, has your team corrected the errors?

 

[heywhite]

yes except for the security part of the system...

Changelog
============
v1.0 BETA
- New dark theme
- Improved App System
- Checks for install status
- Checks for updates
- Improved Security
- Using Secured Sessions
- Beta Password Cipher
- Improved AppController
- Removed Old Error Reporting System
- Improved User System
- New User Achievements
- Profile page

Changelog
============
v1.0.1
- New Theme System (RainTPL)
- Improved Installation System
- Removed Old & Buggy Music & Gallery Plugins
- New AutoUpdate System