Jump to content

  •  

  • iBotModz CBox


    Photo

    Update.


    • This topic is locked This topic is locked
    13 replies to this topic

    #1 iBotPeaches

    iBotPeaches

      General Grade 6

    • Owner

    • 6,570 posts
    • Joined: 29-July 07
    • Gender:Male
    • Location:Kansas

    Posted 11 July 2008 - 11:19 PM

    There is an exploit in the phpBB3 system, which allowed any password through some url()rewrite to call anyone's password into plain text.

    I'm too tired to post the rest. The exploit has been patched.


    EDIT: Here is most of what I know.


    An exploit for phpBB3 was released on public hacking forums everywhere. It was a simple hack that grabbed passwords. I didn't know that was the hack so I didn't defend from it. I now found it, and updated to phpBB3.0.2 which prevents this. Any user who exploited this board is perm banned. I'm gathering users now and starting the ban filters. The passwords are being required to change just because some users may still have your password.

    #2 Laxmonster54♥

    Laxmonster54♥

      Im one hell of a sexy man...

    • Retired Staff

    • 1,053 posts
    • Joined: 25-August 07
    • Gender:Male
    • Location:MO

    Posted 11 July 2008 - 11:33 PM

    sounds great. This really got me worried because the Hacker dumped the database to a hacking website. so I downloaded just in case but I guess I can delete it now..... lol

    #3 iBotPeaches

    iBotPeaches

      General Grade 6

    • Owner

    • 6,570 posts
    • Joined: 29-July 07
    • Gender:Male
    • Location:Kansas

    Posted 11 July 2008 - 11:36 PM

    sounds great. This really got me worried because the Hacker dumped the database to a hacking website. so I downloaded just in case but I guess I can delete it now..... lol


    I have 29 mods installed, and a customized style that I made changes to that all do queries towards the SQL. You would need all my server files, not just the phpBB3 root files to run my board correctly. So were safe there.

    #4 Dark Slipstream

    Dark Slipstream

      Blue Shadowz Owner

    • Members+

    • 2,829 posts
    • Joined: 19-April 08
    • Gender:Male
    • Location:Canada, ON

    Posted 11 July 2008 - 11:52 PM

    Great to know another exploit is patched.

    I am searching through an underground forum at the moment for any exploits, anything I find I will tell you over MSN only. There was one pack that had a few things, I'll have to contact someone to get it again.

    In the meantime, any hacks or exploits found for phpbb* on this site, remove them. Even if they are in VIP.

    #5 fattwam

    fattwam

      General Grade 2

    • Sub-Admins

    • 3,979 posts
    • Joined: 18-August 07
    • Gender:Male

    Posted 12 July 2008 - 12:52 AM

    im happy we are finally back up

    #6 Xx Legacy xX

    Xx Legacy xX

      Gunnery Sergeant Grade 3

    • Members+

    • 818 posts
    • Joined: 18-August 07
    • Gender:Male
    • Location:Cananda

    Posted 12 July 2008 - 01:07 AM

    Happy as hell,

    do you mind me asking whats gonna happen to some of the hackers?

    #7 Dark Slipstream

    Dark Slipstream

      Blue Shadowz Owner

    • Members+

    • 2,829 posts
    • Joined: 19-April 08
    • Gender:Male
    • Location:Canada, ON

    Posted 12 July 2008 - 01:10 AM

    do you mind me asking whats gonna happen to some of the hackers?


    Add me on AIM: Dark Siipstream

    We can discuss this further on that note.

    or if you want my MSN, please ask Peaches, fattwam, Snail, or blacklabel for it.

    #8 Obito Kajuo

    Obito Kajuo

      Private Grade 2

    • Members+

    • 77 posts
    • Joined: 13-May 08
    • Location:Oahu, HI

    Posted 12 July 2008 - 02:33 AM

    Who was the hacker?

    #9 I AM T3RROR

    I AM T3RROR

      Apprentice Grade 2

    • Members+

    • 16 posts
    • Joined: 04-June 08

    Posted 12 July 2008 - 04:46 AM

    Who was the hacker?

    To my knowledge it was a mix of hyperstorm, shotspartan, and haxalot

    #10 SmokiestGrunl

    SmokiestGrunl

      Australian Retired Staff

    • Retired Staff

    • 3,888 posts
    • Joined: 02-September 07
    • Gender:Male
    • Location:Australia

    Posted 12 July 2008 - 06:19 AM

    Who was the hacker?

    To my knowledge it was a mix of hyperstorm, shotspartan, and haxalot

    To my knowledge hyperstorm and haxalot are the same person

    #11 iBotPeaches

    iBotPeaches

      General Grade 6

    • Owner

    • 6,570 posts
    • Joined: 29-July 07
    • Gender:Male
    • Location:Kansas

    Posted 12 July 2008 - 07:38 AM

    I'm missing 6000 attachments. This is a pain. I have no clue where to look for them, or how they just automatically deleted themselves.

    #12 Dark Master

    Dark Master

      Private Grade 2

    • Members+

    • 81 posts
    • Joined: 18-August 07

    Posted 12 July 2008 - 09:19 AM

    well, personally i hate to see any site ofline due to hacking so i got in contact with the "authorities" in my area and they said they added it to there "watch list" which is probably good to be on as it should make hackers a little more scared about what there going to do and if its worth it to have the fbi show up at your door.

    nice job getting it back up peach

    #13 CubanLegend

    CubanLegend

      The Man, The Myth, The Legend...

    • Members+

    • 76 posts
    • Joined: 29-June 08
    • Location:Hot As hell Florida!

    Posted 16 July 2008 - 04:21 PM

    so if i reset my password now, i should be safe right?

    This wont happen again right? i cant afford for the current password to get out. XD

    #14 SmokiestGrunl

    SmokiestGrunl

      Australian Retired Staff

    • Retired Staff

    • 3,888 posts
    • Joined: 02-September 07
    • Gender:Male
    • Location:Australia

    Posted 16 July 2008 - 08:17 PM

    so if i reset my password now, i should be safe right?
    Correct, unless you have malware on your computer (which you would of obtained NOT from this site)

    This wont happen again right? i cant afford for the current password to get out. XD
    It will never happen again. The so called "hacker" is a noob and he will never be able to do it again.

    Edited by SmokiestGrunl, 16 July 2008 - 08:19 PM.