Welcome!

Join our community of MMO enthusiasts and game developers! By registering, you'll gain access to discussions on the latest developments in MMO server files and collaborate with like-minded individuals. Join us today and unlock the potential of MMO server development!

Join Today!

DeltaCMS 1.0 - First Version of Delta!

Status
Not open for further replies.
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12
(Update 1-2-2012) 1.0.7:
Another update for it: (not complete, replace the files that are already in there)

(Update 31-1-2012) 1.0.6:

New 1.0.3: (1.0.3)
It was already in the reactions but for the people that don't want read the reactions here.

I think all exploits fixed in 1.3 ;)
________________________________


Hello RaGEZONE

Everyone who downloaded my releases knows I was working on a CMS from scratch called DeltaCMS. George2000 would make the emu, DeltaEMU, to work with it but he didn't have enough time so I made the cms compatible with Phoenix Emulator.

So I have two versions: With and without news/campaign images and badges. That images are the same as Public/Images from phoenix so just copy that map if you already have phoenix and don't want to download it.

DL Link with images:
DL Link without images:

Database:

I made two themes called Test and Habbo. "Habbo" is dutch and "Test" is English. I only have a little housekeeping yet.

Best XAMPP: (1.6.8)
Xampp 1.7.3 and below should work.

PHPMyAdmin security fix:
open C:/xampp/phpmyadmin/index.php and on top place:
<?php
if($_SERVER['REMOTE_ADDR'] !== '127.0.0.1'){
header("Location: ../yousuckman!");
exit();
}
?>

Screens (Habbo Theme):






Live Demo (nog 24/7): Hablow.dyndns.org
I don't think DeltaCMS will still be on Hablow over a month so please post other demos :)

And I have a request: Can some people code more themes for 1.1?


Please like the thread if you like it!
+ I still want my account 'azaidi' back :grr:

__
Exploit found by joopie:
Very important:

change:

foreach($_COOKIE as $key => $value){
$_SESSION[$key]=X($value);
}

to:

foreach($_COOKIE as $key => $value){
$_COOKIE[$key]=X($value);
}
 
Last edited:

Jax

C# Programmer
Joined
Dec 11, 2009
Messages
881
Reaction score
431
That , just look's exactly like HabboRE CMS....
 
Experienced Elementalist
Joined
Jul 11, 2011
Messages
244
Reaction score
64
Nah, it is allright, credits for the effort! :)
 
The one and only!
Member
Joined
Nov 24, 2008
Messages
2,529
Reaction score
1,435
Whatever idiot keeps removing Joopie's post just STOP! Either delete the thread or leave the post!! He is warning everyone about a major exploit in this CMS.
 
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12
Ohw didn't know filtering cookies would become an exploit?
 
The one and only!
Member
Joined
Nov 24, 2008
Messages
2,529
Reaction score
1,435
Ohw didn't know filtering cookies would become an exploit?

Not filtering, you changing them into sessions - Joopie was explaining to me on MSN that you can put session Username and change it to an administrators username, then reload the page it converts that cookie you created to a session and you are on administrator account.
 
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12
foreach($_COOKIE as $key => $value){
$_SESSION[$key]=X($value);
}

WOW OOPS! IT SHOULD BE:

foreach($_COOKIE as $key => $value){
$_COOKIE[$key]=X($value);
}
 
[̲̅$̲̅(̲̅1̲̅)̲̅$ ̲̅]
Joined
May 4, 2008
Messages
831
Reaction score
741
I knew joopie was here for a reason... :)
 
Initiate Mage
Joined
Jan 23, 2012
Messages
7
Reaction score
0
Are you the owner of sunniechat?

I'm the Co-owner / dev of sunniechat :)
Next time use a better password for your hotel and databases, ktnxbye.

Also, Your cms is exploitabale like sh*t.


> Also.
Next time dont tell us that you are going to "hack" us, and put my name in your copyright.

>> Oh and

<?php
if($_SERVER['REMOTE_ADDR'] !== '127.0.0.1'){
header("Location: ../yousuckman!");
exit();
}
?>

Wont work if you are hosting it on a webhost.
:)
 
Last edited:
Initiate Mage
Joined
Jan 23, 2012
Messages
19
Reaction score
1
It has a nice design, me like Uber Design.

But this ''DeltaCMS'' has exploits, fix this in your second version for positive comments.
You are doin' well but it can be better, good luck!
 
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12
Ohw I thought a simple post and get script would make it exploit free, I was wrong..
 
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12


Fixed now?
 
Initiate Mage
Joined
Jan 5, 2012
Messages
90
Reaction score
12
I don't have skype and I don't want to.
 
Status
Not open for further replies.
Back
Top