UberCMS Fixed, Desire Edit, Phoenix Compatible!

**D3T0XITY** · 26-08-11

Currently i do not so it was done all by a sql injection.

**Fearhotel** · 26-08-11

Originally Posted by D3T0XITY

Currently i do not so it was done all by a sql injection.

Yeah, i Think there was a SQl point in the Register.

**PR0** · 26-08-11

Originally Posted by D3T0XITY

Currently i do not so it was done all by a sql injection.

Delete any extra pages that you don't use such as VIP, the banned.php page and the global.php page in the images, etc etc. Maybe that will help.

**Fearhotel** · 26-08-11

Originally Posted by PR0

Delete any extra pages that you don't use such as VIP, the banned.php page and the global.php page in the images, etc etc. Maybe that will help.

Lmfao global.php.
Deleteing pages will not fix anything if there is a xss exploit in the CMs the hacker will just keep going back to the same spot best thing to do is upload it to your hotel and then xss Scan if and take out the bits And patch them where it shows they can get in.
Will make it alot safer "deleteing vip.php will not fix anything. Theres probz a exploit on every page in this CMS

Not saying (it's coded shit or anything"

**Papercup** · 26-08-11

Originally Posted by Fearhotel

Lmfao global.php.
Deleteing pages will not fix anything if there is a xss exploit in the CMs the hacker will just keep going back to the same spot best thing to do is upload it to your hotel and then xss Scan if and take out the bits And patch them where it shows they can get in.
Will make it alot safer "deleteing vip.php will not fix anything. Theres probz a exploit on every page in this CMS

Not saying (it's coded shit or anything"

And Your CMS is perfect? I'm working on fixing up this right now for a v2, Don't know how long it will take.

**Matthew** · 26-08-11

Originally Posted by Seano2o6

And Your CMS is perfect? I'm working on fixing up this right now for a v2, Don't know how long it will take.

I don't see what you're apparently'fixing'. All your CMS is, is just a few already-released addons. Btw, the index looks awful and does not match the site; You've got a shitty phoenix CMS index (look wise) and the rest of the site has the same layout as habbo? :S

**Quackster** · 26-08-11

I don't trust CMS releases because you don't know what they've placed in there...

But that's just my opinion.

**Fearhotel** · 26-08-11

Originally Posted by Seano2o6

And Your CMS is perfect? I'm working on fixing up this right now for a v2, Don't know how long it will take.

1st why release the CMS when you know it's got exploits in it.
2nd correct it looks like a ubercms with some addons
3rd How is it fixed if its still got exploits in it?
4rd did u even bother fixing the exploits.
5th is this rCMS? (edited)
6th why release a v2 when you haven't even fixed the v1?
I'm no trying to be rude or anything just trying to point out bits.

**Papercup** · 26-08-11

rCMS? Never heard of it bro? This is the original UberCMS released by MDK edited.

**George2000** · 26-08-11

Originally Posted by Fearhotel

1st why release the CMS when you know it's got exploits in it.
2nd correct it looks like a ubercms with some addons
3rd How is it fixed if its still got exploits in it?
4rd did u even bother fixing the exploits.
5th is this rCMS? (edited)
6th why release a v2 when you haven't even fixed the v1?
I'm no trying to be rude or anything just trying to point out bits.

Point 6.

Lol, you're like Habbo. They wanna make everything in R63 before they start R64 X]

**Davidaap** · 26-08-11

Originally Posted by Muscab

IIS v6-v7 do not work with htaccess so you will need to add the below code to web.config.

Code:

<?xml version="1.0" encoding="UTF-8"?>
<configuration>
    <system.webServer>
        <rewrite>
            <rules>
                <rule name="Imported Rule 2">
                    <match url="^crossdomain.xml$" ignoreCase="false" />
                    <action type="Rewrite" url="/crossdomain.php" />
                </rule>
                <rule name="Imported Rule 3">
                    <match url="^gamedata/external(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/externals.php" />
                </rule>
                <rule name="Imported Rule 4">
                    <match url="^r57/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 5">
                    <match url="^r57/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Social">
                    <match url="^social(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/social.php" />
                </rule>
                <rule name="Imported Rule 6">
                    <match url="^r57/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 7">
                    <match url="^r57/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 8">
                    <match url="^r57/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 9">
                    <match url="^r57/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/productdata.txt" />
                </rule>
                <rule name="Imported Rule 10">
                    <match url="^r57/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 11">
                    <match url="^r57/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 12">
                    <match url="^r57/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/banner.png" />
                </rule>
                <rule name="Imported Rule 13">
                    <match url="^r57/whosonline.php(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="whosonline.php" />
                </rule>
                <rule name="Imported Rule 14">
                    <match url="^notfound(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="notfound.php" />
                </rule>
                <rule name="Imported Rule 15">
                    <match url="^thanks(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="thanks.php" />
                </rule>
                <rule name="Imported Rule 16">
                    <match url="^clientfailed(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="client_error.php" />
                </rule>
                <rule name="Imported Rule 17">
                    <match url="^papers/disclaimer(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="disclaimer.php" />
                </rule>
                <rule name="Imported Rule 18">
                    <match url="^papers/privacy(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="privacy.php" />
                </rule>
                <rule name="Imported Rule 19">
                    <match url="^r63/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 20">
                    <match url="^r63/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Imported Rule 21">
                    <match url="^r63/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 22">
                    <match url="^r63/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 23">
                    <match url="^r63/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 24">
                    <match url="^r63/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/productdata.txt" />
                </rule>
                <rule name="Imported Rule 25">
                    <match url="^r63/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 26">
                    <match url="^r63/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 27">
                    <match url="^r63/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/banner.png" />
                </rule>
                <rule name="Imported Rule 28">
                    <match url="^gamedata/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 29">
                    <match url="^gamedata/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Imported Rule 30">
                    <match url="^gamedata/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 31">
                    <match url="^gamedata/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 32">
                    <match url="^gamedata/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 33">
                    <match url="^gamedata/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/productdata.txt" />
                </rule>
                <rule name="Imported Rule 34">
                    <match url="^gamedata/external(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/external.php" />
                </rule>
                <rule name="Imported Rule 35">
                    <match url="^gamedata/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 36">
                    <match url="^gamedata/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 37">
                    <match url="^gamedata/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./gamedata/banner.png" />
                </rule>
                <rule name="Imported Rule 38">
                    <match url="^habblet/xml/promo_habbos(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./xml/promo_habbos.xml" />
                </rule>
                <rule name="Imported Rule 39">
                    <match url="^clientlog/update(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./clientlog/update.php" />
                </rule>
                <rule name="Imported Rule 40">
                    <match url="^cacheCheck(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./cacheCheck.php" />
                </rule>
                <rule name="Imported Rule 41">
                    <match url="^rd/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./home.php?qryId={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 42">
                    <match url="^r57/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 43">
                    <match url="^r57/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Imported Rule 44">
                    <match url="^r57/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 45">
                    <match url="^r57/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 46">
                    <match url="^r57/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 47">
                    <match url="^r57/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/productdata.txt" />
                </rule>
                <rule name="Imported Rule 48">
                    <match url="^r57/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 49">
                    <match url="^r57/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r63/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 50">
                    <match url="^r57/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="./r57/banner.png" />
                </rule>
                <rule name="Imported Rule 51">
                    <match url="^home/([^/]+)/id(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/home.php?qryId={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 52">
                    <match url="^home/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/home.php?qryName={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 53">
                    <match url="^security_check(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="security_check.php" />
                </rule>
                <rule name="Imported Rule 54">
                    <match url="^profile(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/profile.php" />
                </rule>
                <rule name="Imported Rule 55">
                    <match url="^client(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/client.php" />
                </rule>
                <rule name="Imported Rule 56">
                    <match url="^flash_client_error(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/client_error.php" />
                </rule>
                <rule name="Imported Rule 57">
                    <match url="^client_error(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/client_error.php" />
                </rule>
                <rule name="Imported Rule 58">
                    <match url="^me(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/me.php" />
                </rule>
                <rule name="Imported Rule 59">
                    <match url="^login_popup(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/login-popup.php" />
                </rule>
                <rule name="Imported Rule 60">
                    <match url="^whoson(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/whosonline.php" />
                </rule>
                <rule name="Imported Rule 61">
                    <match url="^community(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/community.php" />
                </rule>
                <rule name="Imported Rule 62">
                    <match url="^community/staff(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/staff.php" />
                </rule>
                <rule name="Imported Rule 63">
                    <match url="^webdav(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/webdav.php" />
                </rule>
                <rule name="Imported Rule 64">
                    <match url="^credits(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/credits.php" />
                </rule>
                <rule name="Imported Rule 65">
                    <match url="^credits/pixels(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/pixels.php" />
                </rule>
                <rule name="Imported Rule 66">
                    <match url="^credits/club(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habboclub.php" />
                </rule>
                <rule name="Imported Rule 67">
                    <match url="^credits/habboclub(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habboclub.php" />
                </rule>
                <rule name="Imported Rule 68">
                    <match url="^credits/uberclub(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habboclub.php" />
                </rule>
                <rule name="Imported Rule 69">
                    <match url="^credits/uberclub/tryout(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/clubtryout.php" />
                </rule>
                <rule name="Imported Rule 70">
                    <match url="^credits/habboclub/tryout(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/clubtryout.php" />
                </rule>
                <rule name="Imported Rule 71">
                    <match url="^register(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/register.php" />
                </rule>
                <rule name="Imported Rule 72">
                    <match url="^register_submit(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/register.php?doSubmit" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 73">
                    <match url="^register_messages(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/register-messages.php" />
                </rule>
                <rule name="Imported Rule 74">
                    <match url="^register/cancel(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/register-cancel.php" />
                </rule>
                <rule name="Imported Rule 75">
                    <match url="^register/welcome(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/welcome.php" />
                </rule>
                <rule name="Imported Rule 76">
                    <match url="^register/undefined(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/index.php" />
                </rule>
                <rule name="Imported Rule 77">
                    <match url="^vip/shop(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/vipshop.php" />
                </rule>
                <rule name="Imported Rule 78">
                    <match url="^vip/getpoints(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/vippoints.php" />
                </rule>
                <rule name="Imported Rule 79">
                    <match url="^account/policy-verify(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/policyver.php" />
                </rule>
                <rule name="Imported Rule 80">
                    <match url="^account/password/forgot(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/forgot.php" />
                </rule>
                <rule name="Imported Rule 81">
                    <match url="^account/submit(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/index.php" />
                </rule>
                <rule name="Imported Rule 82">
                    <match url="^account/logout(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/logout.php" />
                </rule>
                <rule name="Imported Rule 83">
                    <match url="^account/logout_ok(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/logout-ok.php" />
                </rule>
                <rule name="Imported Rule 84">
                    <match url="^account/disconnected(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/disconnected.php" />
                </rule>
                <rule name="Imported Rule 85">
                    <match url="^articles(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/article.php?mostRecent" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 86">
                    <match url="^articles/archive(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/article.php?mostRecent&amp;archiveMode" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 87">
                    <match url="^articles/([^/]+)/in/archive(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/article.php?rel={R:1}&amp;archiveMode" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 88">
                    <match url="^articles/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/article.php?rel={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 89">
                    <match url="^articles/category/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/article.php?category={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 90">
                    <match url="^register/undefined/([^/]+)$" ignoreCase="false" />
                    <action type="Rewrite" url="/me.php" />
                </rule>
                <rule name="Imported Rule 91">
                    <match url="^buyvip(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/vippage.php" />
                </rule>
                <rule name="Imported Rule 92">
                    <match url="^habblet/cproxy(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habbletProxy.php" />
                </rule>
                <rule name="Imported Rule 93">
                    <match url="^habblet/ajax/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habbletAjax.php?cmd={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 94">
                    <match url="^habblet/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/habblet.php?cmd={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 95">
                    <match url="^myhabbo/([^.]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/myhabbo.php?cmd={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 96">
                    <match url="^minimail/loadMessage(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/minimail-view.php" />
                </rule>
                <rule name="Imported Rule 97">
                    <match url="^minimail/([^/]+)(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/minimail.php?cmd={R:1}" appendQueryString="false" />
                </rule>
                <rule name="Imported Rule 98">
                    <match url="^r63/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 99">
                    <match url="^r63/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Imported Rule 100">
                    <match url="^r63/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 101">
                    <match url="^r63/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 102">
                    <match url="^r63/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 103">
                    <match url="^r63/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/productdata.txt" />
                </rule>
                <rule name="Imported Rule 104">
                    <match url="^r63/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 105">
                    <match url="^r63/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 106">
                    <match url="^r63/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/banner.png/r63/banner.png" />
                </rule>
                <rule name="Imported Rule 107">
                    <match url="^r63/figurepartconfig/partsets(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/partsets.xml" />
                </rule>
                <rule name="Imported Rule 108">
                    <match url="^r63/figurepartconfig/draworder(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/draworder.xml" />
                </rule>
                <rule name="Imported Rule 109">
                    <match url="^r63/figurepartconfig/animation(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figurepartconfig/animation.xml" />
                </rule>
                <rule name="Imported Rule 110">
                    <match url="^r63/figuredata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/figuredata.xml" />
                </rule>
                <rule name="Imported Rule 111">
                    <match url="^r63/furnidata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/furnidata.txt" />
                </rule>
                <rule name="Imported Rule 112">
                    <match url="^r63/productdata(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/productdata.txt" />
                </rule>
                <rule name="Imported Rule 113">
                    <match url="^r63/external_variables(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_variables.txt" />
                </rule>
                <rule name="Imported Rule 114">
                    <match url="^r63/external_flash_texts(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/external_flash_texts.txt" />
                </rule>
                <rule name="Imported Rule 115">
                    <match url="^r63/banner(|/)$" ignoreCase="false" />
                    <action type="Rewrite" url="/r63/banner.png" />
                </rule>
            </rules> RewriteRule ^quickmenu/friends_all(|/)$ /quick-friends.php
RewriteRule ^quickmenu/groups(|/)$ /quick-groups.php
RewriteRule ^quickmenu/rooms(|/)$ /quick-rooms.php
        </rewrite>
        <directoryBrowse enabled="false" />
    </system.webServer>
</configuration>

IIS had a plugin for that?

---------- Post added at 01:38 PM ---------- Previous post was at 01:35 PM ----------

Originally Posted by Fearhotel

Lmfao global.php.
Deleteing pages will not fix anything if there is a xss exploit in the CMs the hacker will just keep going back to the same spot best thing to do is upload it to your hotel and then xss Scan if and take out the bits And patch them where it shows they can get in.
Will make it alot safer "deleteing vip.php will not fix anything. Theres probz a exploit on every page in this CMS

Not saying (it's coded shit or anything"

you dont know where your are talking about there are 3 sql exploits in ubercms and a lot of XSS exploits :)

**Papercup** · 26-08-11

Originally Posted by George2000

Point 6.

Lol, you're like Habbo. They wanna make everything in R63 before they start R64 X]

Totally agree.

**Finley** · 26-08-11

There is no housekeeping O.O

**Fearhotel** · 26-08-11

Originally Posted by davidaap

IIS had a plugin for that?

---------- Post added at 01:38 PM ---------- Previous post was at 01:35 PM ----------

you dont know where your are talking about there are 3 sql exploits in ubercms and a lot of XSS exploits :)

Are u dumb?
i said there are heaps of xss exploits in it.
And "if the hacker knows where it is and u don't patch it, he will just comeback in the same spot each time"
and i do know what i'm talking about.

**Colour** · 26-08-11

Wow i can't believe that the groups actually works thats amazing and did you set up IIS with it?

UberCMS Fixed, Desire Edit, Phoenix Compatible!

Thread Tools

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Re: UberCMS Fixed, Desire Edit, Phoenix Compatible!

Advertisement