 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| |
|
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9145
 People Online:
 Visitors: 845
 Members: 0
 Total: 845
|
|
|
|
|
|
PacketStorm News |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 Forum: PhpBB Posted: Tue Apr 18, 2006 6:47 pm Subject: l |
|
|
|
| nice hijack. but for the original post, oobiin is looking at the same targetas iam. ill match whatever he offers, so the reward is dbl'd. |
|
|
|
|
| beastyarny if you know of a way with .18 / .19 with the new indentifier please let me know, ive been trying for months on a certain site and i always get the same cookies with the decial. 31 bit hash. |
|
|
|
|
there is no password there, the user doesnt have autolog in checked.
you need to retry and get some1 else that does use autologin |
|
|
|
|
| the code is for phpbb, never tried it with phpnuke. |
|
|
|
|
should not really post URL's..
try exploits on the site..
at least attempt to exploit it with all versions. work with 2.019 and work backwards. |
|
|
| Forum: PhpBB Posted: Sun Feb 12, 2006 11:53 am Subject: l |
|
|
|
|
|
><...
all of them do it minus like 2... |
|
|
|
|
u didnt serach very hard considering a working explit for 2.0.17 is posted on PAGE 1 of PhpBB forums, on this EXACT page.
>< |
|
|
|
|
phpBB Style Changer/Demo Mod-->GET HASH EXPLOIT
is why, didnt read the comment. |
|
|
|
|
| doesnt work for me on any forums i have tried. |
|
|
|
|
works but so pointless in my eyes.
id rather get an admin password and dump the sql than dos the site. |
|
|
| Forum: PhpBB Posted: Fri Feb 03, 2006 11:52 am Subject: Hash |
|
|
|
how do you get it? use a XSS cookie stealer.
once you get it crack it with a MD5 rainbow table, IE plain-text.info or milw0rm.com |
|
|
|
|
/******************************************************************
phpBB <= 2.0.18 XSS Cookie Disclosure Proof of Concept
-- 'the html is on exploit'
original exploit by: Maksymilian Arcie ... |
|
|
|
|
# Will be moved to tools section when completed. /str0ke
#!/usr/bin/perl
############################################
# Credits: Weakness and Xploit by DarkFig
# Affected ... |
|
|
|
|
# to be used with cookie stealer located here: http://www.milw0rm.com/id.php?id=1103
# Make sure you change www.milw0rm.com to your domain. thnx. /str0ke
# Author: threesixthousan
/*
As long as ... |
|
|
| Page 1 of 3 |
Goto page 1, 2, 3 Next
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
