Login or Register ::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  :: May 24, 2012 Menu  Home  Logout  Discussions  Forums  Members List  IRC chat  Tools  Base64 coder  MD5 hash  CRC32 checksum  ROT13 coder  SHA-1 hash  URL-decoder  Sql Char Encoder  Affiliates  y3dips ITsec  Md5 Cracker  User Manuals  AlbumNow  Content  Content  Sections  FAQ  Top  Info  Feedback  Recommend Us  Search  Journal  Your Account User Info Welcome, Anonymous Nickname Password (Register) Membership: Latest: jimysakura New Today: 3 New Yesterday: 0 Overall: 8201 People Online: Visitors: 210 Members: 1 Total: 211 Online Now: 01: killer38480 - Forums milw0rm ·[webapps / 0day] - appRain CMF Arbitrary PHP File Upload Vulnerability ·[local exploits] - OpenOffice OLE Importer DocumentSummaryInformatio n Stream Handling ·[local exploits] - Mod_Auth_OpenID Session Stealing Vulnerability ·[dos / poc] - Symantec End Point Protection 11.x & Symantec Network Access Control 11.x LCE ·[dos / poc] - Tftpd32 DHCP Serve 4.00 Denial Of Service ·[webapps / 0day] - Ajaxmint Gallery 1.0 Local File Inclusion ·[webapps / 0day] - RuubikCMS 1.1.0 Beta XSS / Disclosure / Directory Traversal ·[webapps / 0day] - Insight Creative Sql injection/Reflected XSS Vulnerabilties ·[webapps / 0day] - AFFY (index.php) Blind Sql Injection Vulnerability ·[webapps / 0day] - ezContents (1.x.x , 2.0.3) Blind injection/Reflected XSS Vulnerabilties read more... PacketStorm News ·Mandriva Linux Security Advisory 2012-080 ·Red Hat Security Advisory 2012-0688-01 ·Debian Security Advisory 2479-1 ·Debian Security Advisory 2478-1 ·Ubuntu Security Notice USN-1450-1 ·Drupal BrowserID 7.x Cross Site Request Forgery ·Drupal Taxonomy List 6.x Cross Site Scripting ·Drupal Search API 7.x Cross Site Scripting ·Secunia Security Advisory 49200 ·Secunia Security Advisory 49235 read more... IT Security and Insecurity Portal www.waraxe.us Forum Index -> How to fix -> Can you help me? my forum has been hacked    View previous topic :: View next topic  Can you help me? my forum has been hacked Posted: Fri Mar 04, 2005 5:40 pm theavenger Regular user   Joined: Mar 04, 2005 Posts: 5 Hello, I'm just looking for help, I had a forum with more than 100 people signed. This morning somebody has changed everything and erased most of the posts and topics, he has erased some login nicks and the admin. I know who has done it because when we banned him and changed his profile, we changed his language in that forum, and now the forum is in that language. Please, if you can help me, just write something here, i will answer immediately. Our forum was:hxxp://www.elforo.de/xenafansclub/index.php and now it appears like Attack to hacker by speaker. Sorry for the mistakes in english, i'm spanish Last edited by theavenger on Wed Mar 09, 2005 11:01 pm; edited 1 time in total A simple guide to secure a forum Posted: Fri Mar 04, 2005 6:20 pm Zeelock Active user   Joined: Jan 27, 2005 Posts: 29 Location: Where stars come out at night - First use .htaccess for protection admin directory and admin files - Second use only one admin - Disable System() and any other dangerous function (if not used) - Third For forums only use (if possible) a low privileged user with no union support. And install forum for mysql 3.x. - 4 backup database files regularly If you can change .php settings disable functions like system etc.. _________________ If it seems to be impossible, just step up your level! Posted: Fri Mar 04, 2005 7:02 pm mateusz Regular user   Joined: Dec 05, 2004 Posts: 17 Location: Poland yes, and you should up to date your forum simply Posted: Fri Mar 04, 2005 7:07 pm Injector Active user   Joined: Dec 29, 2004 Posts: 49 http://www.google.co.uk/search?q=site:www.elforo.de+AND+phpbb+2.0.&hl=en&lr=&client=firefox-a&rls=org.mozilla:en-US:official_s&start=0&sa=N According to google your phpbb host gives out version "2.0.3" That is way out of date and theres nothing you can do really cause I think your on a free host right? (correct me if im wrong) Anyways go to another host instead there are tons of others out there Posted: Fri Mar 04, 2005 8:30 pm theavenger Regular user   Joined: Mar 04, 2005 Posts: 5 thanks, so I assume there's no way to get my forum back Thank you for your help Posted: Fri Mar 04, 2005 8:33 pm theavenger Regular user   Joined: Mar 04, 2005 Posts: 5 one more thing, would you be so kind of explaining the way they did that with the forum? is there any way that we can get our admin back? thanks Posted: Fri Mar 04, 2005 9:15 pm Injector Active user   Joined: Dec 29, 2004 Posts: 49 login as: user: kane password: iamgod Posted: Sat Mar 05, 2005 12:53 am theavenger Regular user   Joined: Mar 04, 2005 Posts: 5 Last edited by theavenger on Wed Mar 09, 2005 10:59 pm; edited 1 time in total Posted: Sun Mar 06, 2005 5:23 pm theavenger Regular user   Joined: Mar 04, 2005 Posts: 5 And yesterday he came back and got the forum again, but we caught his IP and we know who he was. The forum is gone, he has erased everything, but we can make another one, that's no problem... i just would like to do the same to him thank you for your help, that was very nice from all of you Posted: Wed Apr 16, 2008 12:23 pm Urb4n Advanced user   Joined: Apr 16, 2008 Posts: 55 well that is similiar to something kane on voide.org would do so go bitch at him Posted: Wed Apr 16, 2008 7:17 pm pexli Valuable expert   Joined: May 24, 2007 Posts: 663 Location: Bulgaria Code: Posted: 2005-03-04, 20:40:46 Can you help me? my forum has been hacked   www.waraxe.us Forum Index -> How to fix You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum All times are GMT   Page 1 of 1   All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year Oldest FirstNewest First  Select a forum Security Research by waraxe----------------General discussionHow to fixMetasploit related Hash cracking requests----------------MD5 hashesAll other hashesHash related information http://www.waraxe.us portal----------------SuggestionsCooperation proposals Security bugs and issues in general----------------Newbies cornerSql injectionCross-site scripting aka XSSRemote file inclusionFull path disclosureShell commands injectionPhishing and Social EngineeringAll other security holes Various software----------------PhpNukePostNukePhpBBXMB forumvBulletin BoardInvision Power Boarde107FullxmlMamboJoomlaXOOPSM$ WindowsLinux worldAll other softwareCoppermine Photo Gallery Programming languages----------------PhpMySqlPerlJavaJavascriptC and C++Visual BasicBorland Delphi and PascalPythonHTML and XMLAssembler Reverse engineering----------------Newbies cornerDisassemblingPHP script decode requests Miscellaneous stuff----------------Future of the ITNanotechnologyFun cornerLinksTry2hack sitesProxy database Direct Downloads----------------ToolsTutorialsWordlists Recycle Bin----------------Removed messagesOutdated posts   Powered by phpBB © 2001-2008 phpBB Group

All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2010 Janek Vind "waraxe"

Page Generation: 0.088 Seconds