HoloCMS me.php redirecting exploit fix

Page 1 of 3 123 LastLast
Results 1 to 15 of 41
  1. #1
    C++ WoW Scripter NitroHabbz is offline
    MemberRank
    Mar 2008 Join Date
    551Posts

    HoloCMS me.php redirecting exploit fix

    removed
    Last edited by NitroHabbz; 01-12-09 at 11:12 PM.


  2. #2
    Account Upgraded | Title Enabled! Jakeyy is offline
    MemberRank
    Aug 2008 Join Date
    United KingdomLocation
    507Posts

    Re: HoloCMS me.php redirecting exploit fix

    Thanks a lot. Keep getting those faggots from rage360 doing it to me.

  3. #3
    C++ WoW Scripter NitroHabbz is offline
    MemberRank
    Mar 2008 Join Date
    551Posts

    Re: HoloCMS me.php redirecting exploit fix

    Yeah. I banned Zorex and ImaDj's IP's and Hostnames via Htaccess.


    now we need to fix index.php i got hit again

  4. #4
    Account Upgraded | Title Enabled! Jakeyy is offline
    MemberRank
    Aug 2008 Join Date
    United KingdomLocation
    507Posts

    Re: HoloCMS me.php redirecting exploit fix

    Quote Originally Posted by NitroHabbz View Post
    Yeah. I banned Zorex and ImaDj's IP's and Hostnames via Htaccess.


    now we need to fix index.php i got hit again
    Would you mind pming the index.php exploit? I have some spare time and will fix it ;d

  5. #5
    C++ WoW Scripter NitroHabbz is offline
    MemberRank
    Mar 2008 Join Date
    551Posts

    Re: HoloCMS me.php redirecting exploit fix

    Cecer and me are looking into it already ;)

  6. #6
    Account Upgraded | Title Enabled! Pure is offline
    MemberRank
    May 2008 Join Date
    809Posts

    Re: HoloCMS me.php redirecting exploit fix

    Quote Originally Posted by NitroHabbz View Post
    Yeah. I banned Zorex and ImaDj's IP's and Hostnames via Htaccess.


    now we need to fix index.php i got hit again
    Pwned, What are they redirecting it to?

  7. #7
    Account Upgraded | Title Enabled! KingAmir is offline
    MemberRank
    Feb 2008 Join Date
    Malaysia ?Location
    407Posts

    Re: HoloCMS me.php redirecting exploit fix

    what's with my problem ? lol.

    i already install HoloCMS setup and i delete install.php and upgrade.php
    then i go to localhost it redirecting me to localhost/install.php
    how to fix it

  8. #8
    ...[ White Rabbit ]... MentaL is offline
      Administrator  Rank
    Jan 2001 Join Date
    31,636Posts

    Re: HoloCMS me.php redirecting exploit fix

    Why not use .htaccess to restrict the filename usage and use it to mask real url locations?

  9. #9
    Account Upgraded | Title Enabled! Jakeyy is offline
    MemberRank
    Aug 2008 Join Date
    United KingdomLocation
    507Posts

    Re: HoloCMS me.php redirecting exploit fix

    Quote Originally Posted by iJames View Post
    Pwned, What are they redirecting it to?
    I wouldn't call it 'Pwned' It happened to my hotel, i found out within like 5 secs. And found it within a minuite.

    And they redirected to rage360 (The hotel) Because no one wants to join it because it fails so badly that they have to exploit to get players.

  10. #10
    The Legend Returns vista4life is offline
    MemberRank
    Mar 2007 Join Date
    The NetherlandsLocation
    843Posts

    Re: HoloCMS me.php redirecting exploit fix

    how can i use it;p

  11. #11
    Old Habbo Developer AresCJ is offline
    MemberRank
    Jan 2009 Join Date
    USALocation
    1,183Posts

    Re: HoloCMS me.php redirecting exploit fix

    Nice release, but I think honestly there is more to be added instead of that.

  12. #12
    C++ WoW Scripter NitroHabbz is offline
    MemberRank
    Mar 2008 Join Date
    551Posts

    Re: HoloCMS me.php redirecting exploit fix

    Nah CJ, it works.

    Once we added it the 360rage noobs couldnt redirect me.php so they started on index.php

    @ Vista. In me.php search for the top snippet then replace it with the bottom one and save the php file

  13. #13
    8-bit Bitch Slapper Alpha Ducky is offline
    MemberRank
    Mar 2007 Join Date
    In My HouseLocation
    2,436Posts

    Re: HoloCMS me.php redirecting exploit fix

    Quote Originally Posted by NitroHabbz View Post
    Nah CJ, it works.

    Once we added it the 360rage noobs couldnt redirect me.php so they started on index.php

    @ Vista. In me.php search for the top snippet then replace it with the bottom one and save the php file
    I think Vista means how do you redirect the me.php/index.php to his site :P

  14. #14
    The Legend Returns vista4life is offline
    MemberRank
    Mar 2007 Join Date
    The NetherlandsLocation
    843Posts

    Re: HoloCMS me.php redirecting exploit fix

    yea thanks i hope you find more fixes:)

  15. #15
    C++ WoW Scripter NitroHabbz is offline
    MemberRank
    Mar 2008 Join Date
    551Posts

    Re: HoloCMS me.php redirecting exploit fix

    Quote Originally Posted by rickymenier View Post
    I think Vista means how do you redirect the me.php/index.php to his site :P
    it was a javascript exploit. From what me and cecer1 discovered it was to do with the events module on me.php, but this will fix it and you can still use events module

    Imadj was doing it on Habbz and then we patched it and released the patch :)
    Last edited by NitroHabbz; 26-02-09 at 04:18 PM.



Page 1 of 3 123 LastLast

Advertisement