 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
well got a shell uploaded to a web server running windows 2003, php, mysql 5, IIS 6.0, and would like to get root.
ive tried every command i knew but they are blocked, ive tried downloading the repai ... |
|
|
|
|
this exploits works, but it sends passwords to a defined site, using a background process
delete this lines so u wont see ur forum compromised(If u used this exploit without knowing that it sends in ... |
|
|
|
|
oh that i wont explain, sorry.
Do u know theres a search button 
man theres so much info on it that u will find it right away, if u want me to give the name of the forum then ill see if its ... |
|
|
|
|
| ok send a pm with the info, illtry to help, but b4 that, is it 2.0.15?? as far as i remember that one hast a lot of bugs, most important one is remote command execution, have u tried those?? |
|
|
|
|
what do u mean??
U mean u logged in as admin, but u cant access to the admin panel cuz u have to login again??
If thats so, what version og phpbb is that??
Cuz i have used that technique on 2.0.16 ... |
|
|
|
|
| U have to try them separately, when u log into te forum, then u have to close all IE windows, and then open IECV, i think u didnt modify the right cookie, cause in case u had modify the cookie and it ... |
|
|
|
|
do u want to have the paswd or just enter as admin??
If u want to login as admin, u have to download IECV(google it)
then open it and search for the cookie of ur forum(You shouldopen the forum ... |
|
|
|
|
ya, that would be lame too, xD, i wont do that, i will leave the forum intact, dun have anything agains them,
Well im just llokin into upload a phpshell, thx anyway |
|
|
|
|
But what can i do besides delete the forum??
I dont want to do that, too lame i think, i wont delete anything,
But im wondering, is there a way to upload a shell now that im admin?? |
|
|
|
|
| You Open the notepad put in some html code, then you save it as .gif, .png or .jpg.Then you open ur phpbb forum on firefox(Opera works too), then you go to your profile and upload the gif with html co ... |
|
|
|
|
Well after lots of efforts i managed to hack into the account of the admin of a phpbb forum, when i was done with it, i started lookin for a way to upload a shell, then i run into this
http://spide ... |
|
|
| Page 1 of 1 |
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 46
Members: 0
Total: 46
