Simple web 0.1Beta

**FCV2005** · 18-10-08

secure??

**RisingKing2010** · 18-10-08

not bad, keep it up ;)

**FCV2005** · 18-10-08

have secure??

**Shatter** · 18-10-08

nice one, but for me the main post pic dont work (had to install it

)

E: u shouldnt ask for secure things, its master scripts based (is master's scripts secured eh^^), its BETA.. if u want secured u have to make it yourself

**FCV2005** · 19-10-08

Work Injected !
:|Control Panel Not Work

Simple Update For This Web

Use This Config :

PHP Code:


<?php
$ip = $_SERVER['REMOTE_ADDR'];
$time = date("l dS of F Y h:i:s A");
$script = $_SERVER[PATH_TRANSLATED];
$fp = fopen ("C:/xampp/htdocs/[WEB]SQL_Injecttxt", "a+");

$sql_inject_1 = array(";","'","%",'"'); #Whoth need replace
$sql_inject_2 = array("", "","","&quot;"); #To wont replace
$GET_KEY = array_keys($_GET); #array keys from $_GET
$POST_KEY = array_keys($_POST); #array keys from $_POST
$COOKIE_KEY = array_keys($_COOKIE); #array keys from $_COOKIE
/*begin clear $_GET */
for($i=0;$i<count($GET_KEY);$i++)
{
$real_get[$i] = $_GET[$GET_KEY[$i]];
$_GET[$GET_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_GET[$GET_KEY[$i]]));
  if($real_get[$i] != $_GET[$GET_KEY[$i]])
  {
  fwrite ($fp, "IP: $ip\r\n");
  fwrite ($fp, "Method: GET\r\n");
  fwrite ($fp, "Value: $real_get[$i]\r\n");
  fwrite ($fp, "Script: $script\r\n");
  fwrite ($fp, "Time: $time\r\n");
  fwrite ($fp, "==================================\r\n");
  }
}
/*end clear $_GET */
/*begin clear $_POST */
for($i=0;$i<count($POST_KEY);$i++)
{
$real_post[$i] = $_POST[$POST_KEY[$i]];
$_POST[$POST_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_POST[$POST_KEY[$i]]));
  if($real_post[$i] != $_POST[$POST_KEY[$i]])
  {
  fwrite ($fp, "IP: $ip\r\n");
  fwrite ($fp, "Method: POST\r\n");
  fwrite ($fp, "Value: $real_post[$i]\r\n");
  fwrite ($fp, "Script: $script\r\n");
  fwrite ($fp, "Time: $time\r\n");
  fwrite ($fp, "==================================\r\n");
  }
}
/*end clear $_POST */
/*begin clear $_COOKIE */
for($i=0;$i<count($COOKIE_KEY);$i++)
{
$real_cookie[$i] = $_COOKIE[$COOKIE_KEY[$i]];
$_COOKIE[$COOKIE_KEY[$i]] = str_replace($sql_inject_1, $sql_inject_2, HtmlSpecialChars($_COOKIE[$COOKIE_KEY[$i]]));
  if($real_cookie[$i] != $_COOKIE[$COOKIE_KEY[$i]])
  {
  fwrite ($fp, "IP: $ip\r\n");
  fwrite ($fp, "Method: COOKIE\r\n");
  fwrite ($fp, "Value: $real_cookie[$i]\r\n");
  fwrite ($fp, "Script: $script\r\n");
  fwrite ($fp, "Time: $time\r\n");
  fwrite ($fp, "==================================\r\n");
  }
}

/*end clear $_COOKIE */
fclose ($fp);
?>
<?
error_reporting(E_ALL ^E_NOTICE ^E_WARNING);

$simple['connection'] = 'mssql';

$simple['localhost'] = '127.0.0.1';

$simple['dbhost'] = '127.0.0.1';

$simple['database'] = 'MuOnline';

$simple['dbuser'] = 'sa';

$simple['dbpassword'] = 'fuckmoney';


require("includes/simple.php");

?>

C:/xampp/htdocs/[WEB]SQL_Injection.txt
when you are injected this file resut :

Code:

IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================
IP: 89.41.187.4
Method: POST
Value: \'\';shutdown;--
Script: 
Time: Sunday 19th 2008f October 2008 02:49:48 AM
==================================

**TheDoctor** · 24-01-09

Anti Inject?is Secured?:-"

**KeBaBniK** · 24-01-09

Maybe add some screenshot's ?

**stevieg88** · 25-01-09

Is the security is good?

**spor1up** · 27-01-09

In this web not user controp panel ... Please add ..
(sorry for my bad english)

**MG_MANY** · 29-01-09

Web is without security ppl.

**AlexJon** · 02-02-09

немогу замутитть новости помогитееее

ENG have problems withh edding news

Simple web 0.1Beta

Thread Tools

Search Thread

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Re: [Release] Simple web 0.1Beta

Advertisement