[SwiftEmu] Fix's for NewCrypto! [UPDATED 01/08]

Quote:

---

Originally Posted by BurakDev

I have found new exploit, we can empty ALL DATABASE based on bcstorm..

---

Then tell the exploit? :P

I suppose it's change name.

How do i fix relationships it comes up with this
here

Quote:

---

Originally Posted by WethreeKings

How do i fix relationships it comes up with this
here

---

1. Texts
2. Vars
3. You didn't implement the code correctly....

I've download Revision 5 - Alpha 5 from this thread, but when I give somebody diamonds they amount updates after he reloads the hotel.

My, hotel was just Hacked. I think that was a exploit in groups descriptions... :grr:
between the important tables, the guy deleted catalog_pages (what kind of people does that?)

Anyone can fix that all exploits ?????

You can have a 'explodit' only when your server is receiving a string. If you want to make sure you are safe, you should take a look at all incoming strings. To do that, just get into your visual studio interface and search for all definitions of 'PopFixedString()' I guess(not in my pc right now to confirm). Every time you receive such data, you must handle it in your MySQL querys as a parameter. If not, you can be injected. I checked for all of them, and as far as I've seen, groups methods looks safe. But anyway, you should double check it

pls make a update fix all exploi'ts i pay 50 euro's

Quote:

---

Originally Posted by AKllX

You can have a 'explodit' only when your server is receiving a string. If you want to make sure you are safe, you should take a look at all incoming strings. To do that, just get into your visual studio interface and search for all definitions of 'PopFixedString()' I guess(not in my pc right now to confirm). Every time you receive such data, you must handle it in your MySQL querys as a parameter. If not, you can be injected. I checked for all of them, and as far as I've seen, groups methods looks safe. But anyway, you should double check it

---

I make the fix for SQL Injection, using PopFixedString(), very easy, I put on the return of the static string, a filter.
Very easy btw. I hope it handle. My hotel got attacked last night, and just now I do it... I think people (and me) just make action AFTER the shit happen! haha

Cheers!
Droppy

Quote:

---

Originally Posted by Herofire

pls make a update fix all exploi'ts i pay 50 euro's

---

If you read through all the thread theres 100's of fixes including exploit ones, i fixed 2, owner: search in navi & marketplace one.

Why can group members kick poeple

is there someone Going to release events tab and HC fix :)

Quote:

---

Originally Posted by Wbeu

Going to release events tab and HC fix tonight :)

---

Finally inwas waiting for this :)


Tapatalk.

Quote:

---

Originally Posted by ImNotSatan

Finally inwas waiting for this :)


Tapatalk.

---

I actually wanna say IF someone wanna fix it... ><

Didn't read my comment u.u