Login as "admin" and click on the "Home" tab. There are two sections in the left sidebar: Action and Volunteer actions. I list some of my findings, getting worse.
- Depending on what menu point you click, the sidebars (left columns) disappear or not; if they don't disappear after the next page is shown, they're garantied not to list the same menu points as before.
- Click on "Invite a friend!". The button in the displayed page has this text: "Submit Query". It is not a query.
- Click on "AdminLogs?". The displayed page is packed with different "Notice: Undefined variable..."
- Click on "AdminChecker?(0/2)". The displayed page starts with an SQL statement, followed by a "Notice: Undefined variable..."
- Click on "php error log". You get pointed to the page http://test.bewelcome.org/bw/phplog.php?showerror=10 , but this page just seems to be the start page.
- Click on "mass mail". You get a funny message, that the table "hcvoltest.broadcast" doesn't exist. Also Notice: "Undefined index: DISABLEERRORS..." Else no page content.
