|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 157
Members: 0
Total: 157
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
CPG-Nuke |
|
Posted: Wed Apr 23, 2008 5:01 pm |
|
|
atodam |
Beginner |
|
|
Joined: Apr 23, 2008 |
Posts: 1 |
|
|
|
|
|
|
|
Hey all,
I came across a site that runs an ancient version of CPG-Nuke (8.2), and hosts a number of forums (phpBB 2.0.8 ) and Coppermine galleries (v1.3.0c-Nuke) that were apparently installed along with it. It looks like it hasn't been updated or patched since 2004 or 2005.
I have tried a number of the exploits for phpnuke and phpbb, all without very much success. I am curious if the fact that it is running CPG-Nuke has something to do with it. The usual live headers exploit, frustratingly, doesn't work -- the site has the cookie being labeled as nuke_phpbb_data rather than the usual phpbb2mysql_data.
Sadly, the forum also lacks the PM module, so all exploits centered around that won't work either
Does anyone have any experience with this CMS? Should it be vulnerable to the same methods as phpnuke, since it was just a fork of that project? The fact that the software is so old makes it too juicy of a target for me to ignore, and I am too invested in a lot of the content of the forum to let this go |
|
|
|
|
|
www.waraxe.us Forum Index -> PhpNuke
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|