|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 81
Members: 0
Total: 81
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
|
From phpbb 2.0.20 source code:
if ( !empty($key_sql) )
{
$auto_login_key = dss_rand() . dss_rand();
$current_time = time();
$sql = 'U ... |
|
|
|
|
Thank you very much for your reply.
If you use automatic login though it would be possible to get the hash with a cookie stealer right? |
|
|
|
|
Hello there.
I need help with getting into a forum (either giving admin permissions or getting the hash from the admin) for testing purposes.
I tried out some XSS and exploits but noone of them work ... |
|
|
Page 1 of 1 |
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|