DeltaCMS 1.0 - First Version of Delta!

Page 1 of 11 123456789 ... LastLast
Results 1 to 15 of 155
  1. #1
    Account Inactive AmirZ is offline
    InactiveRank
    Jan 2012 Join Date
    128Posts

    DeltaCMS 1.0 - First Version of Delta!

    (Update 1-2-2012) 1.0.7: http://www.mediafire.com/download.php?cdshnwao6syyv08
    Another update for it: http://www.mediafire.com/download.php?ww32bvkd89g9lyd (not complete, replace the files that are already in there)

    (Update 31-1-2012) 1.0.6: http://www.mediafire.com/download.php?i7v51caha1wnw20

    New 1.0.3: http://www.mediafire.com/download.php?3qqt98juxl7v445 (1.0.3)
    It was already in the reactions but for the people that don't want read the reactions here.

    I think all exploits fixed in 1.3 ;)
    ________________________________


    Hello RaGEZONE

    Everyone who downloaded my releases knows I was working on a CMS from scratch called DeltaCMS. George2000 would make the emu, DeltaEMU, to work with it but he didn't have enough time so I made the cms compatible with Phoenix Emulator.

    So I have two versions: With and without news/campaign images and badges. That images are the same as Public/Images from phoenix so just copy that map if you already have phoenix and don't want to download it.

    DL Link with images: DeltaCMS 1.0.rar
    DL Link without images: DeltaCMS 1.0 - No news Images.rar

    Database: phxtest.sql

    I made two themes called Test and Habbo. "Habbo" is dutch and "Test" is English. I only have a little housekeeping yet.

    Best XAMPP: http://www.oldapps.com/xampp.php?app...cb5ebdc888865f (1.6.8)
    Xampp 1.7.3 and below should work.

    PHPMyAdmin security fix:
    open C:/xampp/phpmyadmin/index.php and on top place:
    <?php
    if($_SERVER['REMOTE_ADDR'] !== '127.0.0.1'){
    header("Location: ../yousuckman!");
    exit();
    }
    ?>

    Screens (Habbo Theme):






    Live Demo (nog 24/7): Hablow.dyndns.org
    I don't think DeltaCMS will still be on Hablow over a month so please post other demos :)

    And I have a request: Can some people code more themes for 1.1?


    Please like the thread if you like it!
    + I still want my account 'azaidi' back

    __
    Exploit found by joopie:
    Very important:

    change:

    foreach($_COOKIE as $key => $value){
    $_SESSION[$key]=X($value);
    }

    to:

    foreach($_COOKIE as $key => $value){
    $_COOKIE[$key]=X($value);
    }
    Last edited by AmirZ; 01-02-12 at 07:26 PM.


  2.  
  3. #2
    Registered MichellGeerdink is offline
    MemberRank
    Sep 2011 Join Date
    9Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Nice AmirZ

    You are pro.

  4. #3
    Account Inactive AmirZ is offline
    InactiveRank
    Jan 2012 Join Date
    128Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Are you the owner of sunniechat?

  5. #4
    Programmer Jax is offline
    True MemberRank
    Dec 2009 Join Date
    971Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    That , just look's exactly like HabboRE CMS....

  6. #5
    TadAAAAAAA Akimbo is offline
    True MemberRank
    Jul 2011 Join Date
    NorwayLocation
    305Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Nah, it is allright, credits for the effort! :)
    helo

  7. #6
    FeedMe Joopie is offline
    Alpha MaleRank
    Jun 2010 Join Date
    The NetherlandsLocation
    2,268Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Which fag removed my post?

    Cant i say there is an exploit?, Jesus, ragefags
    Posted via Mobile Device
    Last edited by Joopie; 23-01-12 at 05:03 PM.

  8. #7
    The one and only! Hejula is offline
    GammaRank
    Nov 2008 Join Date
    4,187Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Whatever idiot keeps removing Joopie's post just STOP! Either delete the thread or leave the post!! He is warning everyone about a major exploit in this CMS.

  9. #8
    Account Inactive AmirZ is offline
    InactiveRank
    Jan 2012 Join Date
    128Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Ohw didn't know filtering cookies would become an exploit?

  10. #9
    The one and only! Hejula is offline
    GammaRank
    Nov 2008 Join Date
    4,187Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Quote Originally Posted by AmirZ View Post
    Ohw didn't know filtering cookies would become an exploit?
    Not filtering, you changing them into sessions - Joopie was explaining to me on MSN that you can put session Username and change it to an administrators username, then reload the page it converts that cookie you created to a session and you are on administrator account.

  11. #10
    Account Inactive AmirZ is offline
    InactiveRank
    Jan 2012 Join Date
    128Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    foreach($_COOKIE as $key => $value){
    $_SESSION[$key]=X($value);
    }

    WOW OOPS! IT SHOULD BE:

    foreach($_COOKIE as $key => $value){
    $_COOKIE[$key]=X($value);
    }

  12. #11
    FeedMe Joopie is offline
    Alpha MaleRank
    Jun 2010 Join Date
    The NetherlandsLocation
    2,268Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Btw, You don't need to filter the session as it is server-side.
    Only when you set the session with an value from the post/get/cookie (client-side) you need to filter it.

  13. #12
    [̲̅$̲̅(̲̅1̲̅)̲̅$ ̲̅] leenster is offline
    True MemberRank
    May 2008 Join Date
    KanaadaLocation
    986Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    I knew joopie was here for a reason... :)
    Posted via Mobile Device

  14. #13
    Account Inactive v00rp is offline
    InactiveRank
    Jan 2012 Join Date
    7Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Quote Originally Posted by AmirZ View Post
    Are you the owner of sunniechat?
    I'm the Co-owner / dev of sunniechat :-)
    Next time use a better password for your hotel and databases, ktnxbye.

    Also, Your cms is exploitabale like sh*t.


    > Also.
    Next time dont tell us that you are going to "hack" us, and put my name in your copyright.

    >> Oh and

    <?php
    if($_SERVER['REMOTE_ADDR'] !== '127.0.0.1'){
    header("Location: ../yousuckman!");
    exit();
    }
    ?>

    Wont work if you are hosting it on a webhost.
    :-)
    Last edited by v00rp; 23-01-12 at 06:07 PM.

  15. #14
    Account Inactive Mavec is offline
    InactiveRank
    Jan 2012 Join Date
    22Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    It has a nice design, me like Uber Design.

    But this ''DeltaCMS'' has exploits, fix this in your second version for positive comments.
    You are doin' well but it can be better, good luck!

  16. #15
    Account Inactive AmirZ is offline
    InactiveRank
    Jan 2012 Join Date
    128Posts

    Re: DeltaCMS 1.0 - First Version of Delta!

    Ohw I thought a simple post and get script would make it exploit free, I was wrong..


  17.  

    Latest Gaming Releases

Page 1 of 11 123456789 ... LastLast

Advertisement