Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
March 28, 2020
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 238
Members: 0
Total: 238
PacketStorm News
Currently there is a problem with headlines from this site
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index
Search found 31 matches
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Thu Nov 10, 2005 11:56 pm   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




well at first time or first impression when i read the advisory, i think like you that can be explotaible in PHP5 <= 5.0.5, so i can make the exploit work in PHP4...

But the fact that you have t ...
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Mon Nov 07, 2005 6:06 am   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




well well...

i reach a point that im too lazy to continue xDD
seems to be a little bit hard to make a Proof-Of-Concept...

obviously the first problem its to get a forum for testing pourpose and ...
there may be a bug with this forum
PostForum: Suggestions   Posted: Sun Nov 06, 2005 5:51 pm   Subject: there may be a bug with this forum
g30rg3_x
 
Replies: 6
Views: 8263




i think its most problem of the user who gets hack...
than the board configuration, and i dont think it is a risk...

normally all CMS, email the user with his username and his password and in my p ...
Some info on shell injection..
PostForum: Shell commands injection   Posted: Thu Nov 03, 2005 6:00 pm   Subject: Some info on shell injection..
g30rg3_x
 
Replies: 1
Views: 7082




hahahahaha sounds like you try to recreate the phpBB exploits...

i think php.net and your imagination could help, but for not make garbage post or spam, i think this resources could help...

http ...
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Thu Nov 03, 2005 2:49 pm   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




like everybody i dont have really much time...

but i'm researching for exploit or well know in IT Security as Proof-Of-Concept, obviously i dont have enought time to do that rapidly...
so, like sh ...
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Wed Nov 02, 2005 1:15 am   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




Shocked

Thank you shai-tan...
with this i think i can make a little PoC

grettings
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Tue Nov 01, 2005 3:43 pm   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




yeah but is still hard for bypass register_globals

but we can make a just little code for PoC...

grettings shai-tan
2 new Vulnerabilities 2.0.17
PostForum: PhpBB   Posted: Tue Nov 01, 2005 6:34 am   Subject: 2 new Vulnerabilities 2.0.17
g30rg3_x
 
Replies: 21
Views: 16264




i think most of this "fixes" just make for improvemmed...

as now i just see some and they are just for performarce, i didn't see at all because it is a large list...

but if i found one, i would ...
"cdd1503aa410fff54a0cf1844acc96b9" What i do ?
PostForum: PhpBB   Posted: Sun Oct 30, 2005 8:15 am   Subject: "cdd1503aa410fff54a0cf1844acc96b9" What i do ?
g30rg3_x
 
Replies: 5
Views: 4628




as the previous post say...

a simply search on this forums, you would see how to use this information..
for resolve you some problems yo have to ways:

1) Crack The MD5 Of The Cookie
2) Make a ...
phpBB exploit/s Question (noob question)
PostForum: PhpBB   Posted: Wed Oct 26, 2005 9:15 pm   Subject: phpBB exploit/s Question (noob question)
g30rg3_x
 
Replies: 6
Views: 9319




if you call this as a "hack", maybe..

but i think its most know as a "script kiddie/h4x0r activity" or people that just use other knowledges to getting in a server and say they are the "best"...
...
Is this full path disclosure?
PostForum: Full path disclosure   Posted: Tue Oct 04, 2005 4:30 pm   Subject: Is this full path disclosure?
g30rg3_x
 
Replies: 4
Views: 8281




the:
"full path disclousure"

its a minor security glitch, and this info can help the attacker to visualize his target more better...
and some cases the attacker uses the information to guest the ...
how to hack phpBB 2.0.4 ?
PostForum: PhpBB   Posted: Tue Oct 04, 2005 4:25 pm   Subject: how to hack phpBB 2.0.4 ?
g30rg3_x
 
Replies: 10
Views: 58181




sorry to be rude...

but there is a lot of exploits with a Proof-of-concept, because that version is very old (today is launched the version 2.0.17)...

some of most know is the highlight vuln and ...
Finally phpBB 2.0.17 is out!
PostForum: PhpBB   Posted: Wed Jul 20, 2005 5:56 pm   Subject: Finally phpBB 2.0.17 is out!
g30rg3_x
 
Replies: 2
Views: 4274




It was already the Hour of an official patch, Waraxe!

if you pay attention the patch for bbcode it seems much to your patch non fficial...

greetings
phpBB 2.0.16 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Tue Jul 19, 2005 4:02 pm   Subject: phpBB 2.0.16 XSS Remote Cookie Disclosure Exploit
g30rg3_x
 
Replies: 108
Views: 96208




simply...

like its says on the original advisory, its because:
IE takes ` at his equivalent " so thats for only execute in IE and not with others engines like mozilla/gecko

regards
phpBB 2.0.16 XSS Remote Cookie Disclosure Exploit
PostForum: PhpBB   Posted: Fri Jul 15, 2005 3:01 pm   Subject: phpBB 2.0.16 XSS Remote Cookie Disclosure Exploit
g30rg3_x
 
Replies: 108
Views: 96208




you can try with cookie poison for login as the admnistrator...
just you have to got the userid and his md5-hash of his pass..

regards
Page 1 of 3 Goto page 1, 2, 3  Next
All times are GMT
  




Powered by phpBB 2001-2008 phpBB Group






All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2013 Janek Vind "waraxe"
Page Generation: 0.062 Seconds