Waraxe IT Security Portal

:: Home :: Search :: Your Account :: Forums :: Waraxe Advisories :: Tools ::

December 24, 2025

Menu

Home

Logout

Discussions

	Forums
	Members List
	IRC chat

Tools

	Base64 coder
	MD5 hash
	CRC32 checksum
	ROT13 coder
	SHA-1 hash
	URL-decoder
	Sql Char Encoder

Affiliates

	y3dips ITsec
	Md5 Cracker
	User Manuals
	AlbumNow

Content

	Content
	Sections
	FAQ
	Top

Info

	Feedback
	Recommend Us
	Search
	Journal
	Your Account

User Info

Membership:

Latest: MichaelSnaRe

New Today: 0

New Yesterday: 0

Overall: 9144

People Online:

Visitors: 39

Members: 0

Total: 39

Full disclosure

Defense in depth -- the Microsoft way (part 94): SAFER (SRPv1and AppLocker alias SRPv2) bypass for dummies
Backdoor.Win32.ControlTot al.t / Insecure Credential Storage /MVID-2025-0702
HEUR.Backdoor.Win32.Poiso n.gen / Arbitrary Code Execution /MVID-2025-0701
CyberDanube Security Research 20251215-0 | Multiple Vulnerabilities in Phoenix Contact FL Switch Series
[KIS-2025-09] Control Web Panel <= 0.9.8.1208 (admin/index.php) OS Command Injection Vulnerability
Raydium CP Swap: Unchecked Account Allows Creator Fee Hijacking
[CFP] Security BSidesLjubljana 0x7EA | March 13, 2026
[KIS-2025-08] 1C-Bitrix <= 25.100.500 (Translate Module) Remote Code Execution Vulnerability
[KIS-2025-07] Bitrix24 <= 25.100.300 (Translate Module) Remote Code Execution Vulnerability
nopCommerce 4.90.0 is vulnerable to Cross Site Request Forgery (CSRF) via the Schedule Tasks functionality
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) in the product management functionality
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Currencies functionality.
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Blog posts functionality in the Content Management area
nopCommerce 4.90.0 is vulnerable to Cross Site Scripting (XSS) via the Attributes functionality
Multiple Security Misconfigurations and Customer Enumeration Exposure in Convercent Whistleblowing Platform (EQS Group)

IT Security and Insecurity Portal

www.waraxe.us Forum Index -> All other security holes -> Adult Webcam site
	View previous topic :: View next topic

Adult Webcam site

Posted: Wed Mar 22, 2006 3:44 am

Lain

Beginner

Joined: Mar 22, 2006

Posts: 2

Location: Canada

Hi there. I work on a webcam site that is pay by the minute for customers, but I noticed that all new accounts are generated randomly, i.e. you in fact do not need to log in to access the site or your account. You think the job sounded sketchy, just think about the security holes.

So, each account has a defined, randomly generated access point. As in, www.thewebsiteinquestion/i4ertjvhgrkejtdvgbkjerhngbknerhgb/verthvbekrjbhverv/lewrvblkerjghb=true

etc etc. So, every time you access that url you will enter your account. Sounds insanely low security, and it is. I would like to know if there is a way to access a list of these randomly generated urls in order to access client accounts and thus view my own webcam show from their login, and earn some extra cash.

I never got paid well as a computer tech, hence the job. I've never been good at site cracks either, so don't yell!

Adult Webcam site

www.waraxe.us Forum Index -> All other security holes

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

All times are GMT
Page 1 of 1

PCWizardHub - Helping you fix, build, and optimize your PC life
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.045 Seconds