• Unfortunately, we have experienced significant hard drive damage that requires urgent maintenance and rebuilding. The forum will be a state of read only until we install our new drives and rebuild all the configurations needed. Please follow our Facebook page for updates, we will be back up shortly! (The forum could go offline at any given time due to the nature of the failed drives whilst awaiting the upgrades.) When you see an Incapsula error, you know we are in the process of migration.

Joymax Server Files Leak

P

pr0xy1337

Junior Spellweaver
Joined
Aug 24, 2012
Messages
182
Reaction score
21
Good someone released the joymax.co.kr vulnrb... You dont have to bruteforce anything to get the website.. take the main files they are including everything else.. ( http://prntscr.com/4f9pt6 ) Anyway.. I highly doubt someone will get any further with that. There's an SQLi vulnrb.. in the pmang website as megamax explained somewhere above in the posts. But it is kinda.. character limited if I have to explain it with simple words..

The thing u could do is this...

fyyfrMH - Joymax Server Files Leak - RaGEZONE Forums


Everything above 11 characters will be shown as error and till 11th char from the string u entered. If someone needs the info ready I am willing to share it.. you can add me on skype it's the same as my ragezone nick :) Have fun and good luck with that.. :D
 
The Best DDoS Protected Servers
S

SigYee

Newbie Spellweaver
Joined
Aug 12, 2013
Messages
16
Reaction score
1
Cmon, first of you RenePunk. You don't have any clue to do even basic injection (as you mentioned, you'd like to hack them with sql). Nvm about it. if this download script went public, let me explain some thing. _Division database in on the server, SQLVersion => 2008 r2. You would jump directiores, but you won't be able download .MDF files, .LDF files with that. (Me & proxy downloaded mstsc.exe from their windows to check which file extensions it do download. If somebody would pass MIME Extensions and 11 chars limit. Soo good luck. (Maybe eggplants from yahoo wouldn't watch this thread xd)
 
DrugDealers

DrugDealers

Junior Spellweaver
10 Happy Years
Joined
Jan 22, 2013
Messages
125
Reaction score
57
  • [COLOR=#da00]/community/discussionBoard/discussionBoard_list.asp[/COLOR]
  • [COLOR=#da00]/community/discussionboard/discussionboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/freeboard/freeboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/freeboard/freeboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/gmsquare/gm_episode_list.asp[/COLOR]
  • [COLOR=#da00]/community/gmsquare/gm_episode_view.asp[/COLOR]
  • [COLOR=#da00]/community/ideaboard/ideaboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/ideaboard/ideaboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/qnaboard/qnaboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/screenboard/screenboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/screenboard/screenboard_view.asp[/COLOR]
  • [COLOR=#da00]/news/event_list.asp[/COLOR]
  • [COLOR=#da00]/news/news_list.asp[/COLOR]
  • [COLOR=#da00]/support/support_faq_pmang.asp[/COLOR]
 
P

pr0xy1337

Junior Spellweaver
Joined
Aug 24, 2012
Messages
182
Reaction score
21
DrugDealers said:
  • [COLOR=#da00]/community/discussionBoard/discussionBoard_list.asp[/COLOR]
  • [COLOR=#da00]/community/discussionboard/discussionboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/freeboard/freeboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/freeboard/freeboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/gmsquare/gm_episode_list.asp[/COLOR]
  • [COLOR=#da00]/community/gmsquare/gm_episode_view.asp[/COLOR]
  • [COLOR=#da00]/community/ideaboard/ideaboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/ideaboard/ideaboard_view.asp[/COLOR]
  • [COLOR=#da00]/community/qnaboard/qnaboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/screenboard/screenboard_list.asp[/COLOR]
  • [COLOR=#da00]/community/screenboard/screenboard_view.asp[/COLOR]
  • [COLOR=#da00]/news/event_list.asp[/COLOR]
  • [COLOR=#da00]/news/news_list.asp[/COLOR]
  • [COLOR=#da00]/support/support_faq_pmang.asp[/COLOR]
Click to expand...


All of them are on the ksro (pmang) website, SQLi.. For the ones that are going to ask..
 
S

SigYee

Newbie Spellweaver
Joined
Aug 12, 2013
Messages
16
Reaction score
1
omg omg fyll source leak oqe? ur made joymax mad omg omg!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
 
N3vermore

N3vermore

Newbie Spellweaver
Joined
Feb 23, 2013
Messages
12
Reaction score
3
Meh, this is how far we managed to get last year, and by "we", I mean my team but taking actions on a official live server isn't the brightest idea.

RenePunik - Joymax Server Files Leak - RaGEZONE Forums
 
Last edited:
ZiCO

ZiCO

Newbie Spellweaver
Joined
Feb 20, 2012
Messages
30
Reaction score
4
Actually it's doable actually to obtain the ksro stuff. they had lfi can be changed into rfi but that wasn't something I could do at that time.
Nice to see some old fellas talking around here [JANGAN & MegaMax]
 
You must log in or register to reply here.

About Us

RaGEZONE® is a website dedicated to the development of massively multiplayer online role-playing games (MMORPGs).

Online statistics

Members online
173
Guests online
8,141
Total visitors
8,314
Totals may include hidden visitors.

Forum statistics

Threads
429,198
Messages
4,590,913
Members
281,311
Latest member
ismodev
Most visitors online was 12720 , on 2 May 2024

RaGEZONE Sponsor

    HyperFilter
Back
Top