|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 54
Members: 0
Total: 54
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
i deleted godadmin :( |
|
Posted: Thu Jan 20, 2005 6:56 pm |
|
|
reza |
Beginner |
|
|
Joined: Jan 20, 2005 |
Posts: 2 |
|
|
|
|
|
|
|
i got access to a site by using the md5 password and editing cookies etc..
anyway its a phpnuke siite
i got in as admin then went to create a second admin user but i deleted the only godadmin on the site that there was by accident
now everytime i try to access the admin menu i get Access DeniedAccess Denied
is all lost? or can i get access some other way and re create the admin?
cheers |
|
|
|
|
|
a |
|
Posted: Thu Jan 20, 2005 9:39 pm |
|
|
SteX |
Advanced user |
|
|
Joined: May 18, 2004 |
Posts: 181 |
Location: Serbia |
|
|
|
|
|
|
If there is not any admin account,when you go to admin manu you should see create GOD account page.. |
|
_________________
We would change the world, but God won't give us the sourcecode...
....Watch the master. Follow the master. Be the master....
------------------------------------------------------- |
|
|
|
Posted: Thu Jan 20, 2005 9:48 pm |
|
|
reza |
Beginner |
|
|
Joined: Jan 20, 2005 |
Posts: 2 |
|
|
|
|
|
|
|
nope, when i got access to the site, i went and changed the admins password, user id = 1
i changed hes password then took the godadmin privilages from him
now everytime i go to admin.php i type the user id 1 username and the new password, it signs me in as admin but everytime i try to access any admin features it sais access denied |
|
|
|
|
Posted: Sun Jan 23, 2005 8:00 pm |
|
|
maxmaxmax |
Beginner |
|
|
Joined: Jan 23, 2005 |
Posts: 2 |
|
|
|
|
|
|
|
Create a SuperAdmin account via phpMyAdmin and in the pass field type
dc647eb65e6711e155375218212b3964
This wiil make it 'Password'. Then login and change it from the Nuke Admin panel.
Hope this could help you. |
|
|
|
|
Posted: Sun Jan 23, 2005 10:23 pm |
|
|
SteX |
Advanced user |
|
|
Joined: May 18, 2004 |
Posts: 181 |
Location: Serbia |
|
|
|
|
|
|
maxmaxmax wrote: | Create a SuperAdmin account via phpMyAdmin and in the pass field type
dc647eb65e6711e155375218212b3964
This wiil make it 'Password'. Then login and change it from the Nuke Admin panel.
Hope this could help you. |
He cant access to phpMyAdmin ..He dont know MySQL DB Name/Pass.. |
|
_________________
We would change the world, but God won't give us the sourcecode...
....Watch the master. Follow the master. Be the master....
------------------------------------------------------- |
|
|
|
Posted: Sun Jan 23, 2005 10:53 pm |
|
|
maxmaxmax |
Beginner |
|
|
Joined: Jan 23, 2005 |
Posts: 2 |
|
|
|
|
|
|
|
SteX wrote: |
He cant access to phpMyAdmin ..He dont know MySQL DB Name/Pass.. |
?? ??
How could you install phpnuke without knowing this?
Maybe another way... If the site is 'unsecure' (old version without patches, sentinel, etc...) maybe he can use the Admin-level authentication bypass in phpnuke 6.x-7.2 (look here) |
|
|
|
|
Posted: Tue Jan 25, 2005 12:08 pm |
|
|
SteX |
Advanced user |
|
|
Joined: May 18, 2004 |
Posts: 181 |
Location: Serbia |
|
|
|
|
|
|
Quote: | How could you install phpnuke without knowing this?
|
I did't install phpnuke,he overtaked the site.. |
|
_________________
We would change the world, but God won't give us the sourcecode...
....Watch the master. Follow the master. Be the master....
------------------------------------------------------- |
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|