Waraxe IT Security Portal
Login or Register
November 22, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 140
Members: 0
Total: 140
Full disclosure
APPLE-SA-11-19-2024-5 macOS Sequoia 15.1.1
Local Privilege Escalations in needrestart
APPLE-SA-11-19-2024-4 iOS 17.7.2 and iPadOS 17.7.2
APPLE-SA-11-19-2024-3 iOS 18.1.1 and iPadOS 18.1.1
APPLE-SA-11-19-2024-2 visionOS 2.1.1
APPLE-SA-11-19-2024-1 Safari 18.1.1
Reflected XSS - fronsetiav1.1
XXE OOB - fronsetiav1.1
St. Poelten UAS | Path Traversal in Korenix JetPort 5601
St. Poelten UAS | Multiple Stored Cross-Site Scripting in SEH utnserver Pro
Apple web content filter bypass allows unrestricted access to blocked content (macOS/iOS/iPadOS/visionO S/watchOS)
SEC Consult SA-20241112-0 :: Multiple vulnerabilities in Siemens Energy Omnivise T3000 (CVE-2024-38876, CVE-2024-38877, CVE-2024-38878, CVE-2024-38879)
Security issue in the TX Text Control .NET Server for ASP.NET.
SEC Consult SA-20241107-0 :: Multiple Vulnerabilities in HASOMED Elefant and Elefant Software Updater
Unsafe eval() in TestRail CLI
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PhpBB -> Any working exploits for phpBB 2.0.14? Goto page 1, 2Next
Post new topicReply to topic View previous topic :: View next topic
Any working exploits for phpBB 2.0.14?
PostPosted: Tue May 10, 2005 5:22 am Reply with quote
jearthree
Regular user
Regular user
Joined: May 10, 2005
Posts: 6




Are there any working exploits for phpBB 2.0.14 which allow you to gain admin access to the site?

Thanks for your replies!
View user's profile Send private message
PostPosted: Tue May 10, 2005 9:31 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




You will have to wait 3 days for the new bbcode exploit.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Tue May 10, 2005 9:00 pm Reply with quote
jearthree
Regular user
Regular user
Joined: May 10, 2005
Posts: 6




Ah cool, I wasn't sure what was possible with that, thanks for your help! Smile
View user's profile Send private message
PostPosted: Wed May 11, 2005 11:07 am Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




Five days counting from may the seventh - tommorow is the day
View user's profile Send private message
PostPosted: Wed May 11, 2005 5:55 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Seems to be many script kiddies lurking around.......

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Thu May 12, 2005 9:54 am Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




Kiddie yourself. Never heard for your exploits
View user's profile Send private message
PostPosted: Thu May 12, 2005 10:22 am Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Wait are you calling me a script kiddie?
Well you are wrong.

First off I have only ever used exploits twice online. (grudges)
And secondly I dont use real life sploits. I work out proof of concepts and mod them to the way I need.

I do my testing localy.
And I hardly even test exploits localy any more.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Thu May 12, 2005 11:36 am Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




And why for the god sake do you need to modify exploits of some bug for some BB? And test them localy?! Don't sound logical to me...

Sounds to me you're just another script kiddie who thinks by making new scripts for other peoples exploits he's real hacker like them Laughing
View user's profile Send private message
PostPosted: Thu May 12, 2005 12:05 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




You can think that if you like but its not the truth.
The Hacker is some who makes scripts and is good at it. A lot of people get mixed up between Hacking and Exploiting.

Modifying proof of concepts is a way of learning how to write secure code because to make an exploit you first need to look at the source and determin where the hole is and how you can use it to your advantage. Thus making you learn from other people's mistakes also teaching you to review your own code and see where you may have gone wrong.

So in a way it is teaching you how to be a hacker. Hacker = someone who writes secure scripts and is good at it. Wink

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Thu May 12, 2005 12:29 pm Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




Ok, I'll agree with you on that and that's exactly the reason why am here - to watch & LEARN. Not script kiddie

You know, you're funny guy Shai Very Happy
View user's profile Send private message
PostPosted: Thu May 12, 2005 12:41 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Well I wasnt calling you guys script kiddies directly I was just stating there are heaps around. Do you use Ares or Warez P2Ps? They are full of script kiddies who want to know how to "hack". And there are sites way worse than this with posts being made about exploits all the time.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
Re: Any working exploits for phpBB 2.0.14?
PostPosted: Thu May 12, 2005 1:20 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




Cmn people, relax all, take some prozac, couple of beers or coffee and just let's calm down Very Happy
Why blame each other, why fight with each other, let's just share information and let's improve our skills through this. You know, no one is perfect, if someone is thinking that "i know all about this topic i ever wanted", then he's allready stagnating, he is allready about staing behind newcomers. Everyone should learn through all the life, every hacker or hacker-wannabe starts form being scriptkiddie, then will try to modify scripts, then will make scripts and find holes by himself and finally, some of them will be real gurus, discovering whole new areas in IT security and insecurity. In this forum is subsection "Newbies corner" - it is exactly meant for total beginners and n00b scrptkidd0s.

Peace Cool
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Thu May 12, 2005 1:27 pm Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




>Do you use Ares or Warez P2Ps?

never heard of it. i read only bugtraq mailing list and infos on personal sites of authors of original exploits

i found this site when waraxe released his exploit for sql injection bug in privmsg last year
View user's profile Send private message
Re: Any working exploits for phpBB 2.0.14?
PostPosted: Thu May 12, 2005 1:28 pm Reply with quote
lone_wolf
Regular user
Regular user
Joined: Feb 20, 2005
Posts: 9




waraxe wrote:

Peace Cool


Good point waraxe! Cool
View user's profile Send private message
PostPosted: Thu May 12, 2005 1:31 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
Joined: Feb 22, 2005
Posts: 477




Thats how I found this site too same advisory too. He had done it wrong on purpose. Only 25 Characters of the users MD5 came out of it.

Warez and Ares are P2Ps they have chat rooms on them for heaps of different subjects there are tonnes of "hacking" ones on it.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
Any working exploits for phpBB 2.0.14?
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 2
Goto page 1, 2Next
Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.062 Seconds