Waraxe IT Security Portal
Login or Register
November 22, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 97
Members: 0
Total: 97
Full disclosure
APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PhpBB -> Acydburn : PHPbb 2.0.15 Fix for demoted admin bug
Post new topicReply to topic View previous topic :: View next topic
Acydburn : PHPbb 2.0.15 Fix for demoted admin bug
PostPosted: Sun May 15, 2005 10:38 am Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




bug fixes bring another bug Smile

http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=290149

to pacth

Code:

OPEN admin/admin_ug_auth.php

FIND (around line 546)

WHERE user_id IN (" . implode(', ', $group_user) . ")";

REPLACE WITH

WHERE user_id IN (" . implode(', ', $group_user) . ") AND user_level = " . MOD;

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Sun May 15, 2005 11:24 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




haha! I was wondering how long it would take. Wink
Yes I noticed this bug the other day while using phpbb 2.0.15, so I fixed it. It only seemed to effect me when I change User group permissions and user permissions.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Sun May 15, 2005 4:14 pm Reply with quote
subzero
Valuable expert
Valuable expert
Joined: Mar 16, 2005
Posts: 42




shai-tan.. if u fixed it .. why dont u post your patch before phpbb developer did ?

Shocked
View user's profile Send private message Visit poster's website
PostPosted: Sun May 15, 2005 6:08 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




I already seen support Posts on their site saying how people have been locked out of the admin panel, I wanted to see how long it took them, Its always fun to see how good their reflexes are.

I dont like the phpBB crew so why would I want to alert them of a minor bug they technically already knew about?

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Mon May 16, 2005 6:25 am Reply with quote
WaterBird
Active user
Active user
Joined: May 16, 2005
Posts: 37




Any known exploits for that bug ?
View user's profile Send private message
PostPosted: Mon May 16, 2005 9:45 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




That code is not exploitable Wink

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Thu May 19, 2005 11:39 am Reply with quote
WaterBird
Active user
Active user
Joined: May 16, 2005
Posts: 37




shai-tan wrote:
That code is not exploitable Wink



OK thx Razz Need to find any exploit for admin pannel or just to get to database in pgpbb by Przemo 1.9 :/ I think all modifications are based on new phpbb so i think i need exploit for 2.0.15 Razz
View user's profile Send private message
Acydburn : PHPbb 2.0.15 Fix for demoted admin bug
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.046 Seconds