[SECURITY] PHPretro "Security"! [MUST READ]
Ello RaGEZONE!
Today im going to tell you about PHPretro and it's "Security".
You don't realize how many Exploits that Nillus has left in PHPretro. Their is loads, But only Nillus, Yifan Lu & Oni know about them. I found out about these because Nillus hacked my Retro a while back, Then i contacted him and he proved it was him. He showed me a few Exploits, I patched a few from the Files I used SuperCMS but theirs still like 7 or 8 more. He left these because he thought people would edit his Source etc.. So he left exploits in the Files he coded incase someone edited it, Changed the Footer/Copyrights, and say if this was being used on a Hotel. Nillus would hack it because of that. I respect what he's doing because it's rightfully His, Yifan Lu's and Oni's work.
------------Copied from a thread i recently Posted on RZ------------
So i suggest Finding these Exploits and Patch them up before Hackers find the Exploits.
Regards,
Sphinx aka ePixeL
Re: [NEW] PHPretro Users! [MUST READ]
Thanks For The Information. But didnt know theres alot o.O I learned something today.My head hurts :(
Re: [SECURITY] PHPretro "Security"! [MUST READ]
No problem. Just making sure the Habbo Retro Community is safe. ;D
Posting more Information about UberCMS, PHPretro and HoloCMS very soon!
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Thanks for the update, although most of us dont know/how to find the exploits, meaning we dont know how to patch it...
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Most of those exploits are right in front of your eyes. Just have to look properly.
And I was happy when he hacked people retro for editing their shit that they took time to code and you just used it like it was yours.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
yea, i agree, ppl hav no right to edit the credits or anything showing the rightful owners/creators, and um im only a C# coder and tbh i kno i wont be able to find any of these xploits, little help please?
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Its because you know a little bit of C#, and the exploits are usually within in the CMS.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
yea ikno the xploits are in the cms, which is why i stated im a c# coder, and ikno quite alot of c# (well i think i do) xD and amma stop posting before i go totally offtopic
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Everyone is a C# coder, so is my niece (sh is 4).
Rastas CMS edit had exploit in there where you could buy V.I.P with coins.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
He released a patch for this a long time ago.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Yes because I told him about some people knowing it.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Its a webdav exploit ;) PHPRetro is made up of OOP.. aka very secure.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Quote:
Originally Posted by
winterpartys
Its a webdav exploit ;) PHPRetro is made up of OOP.. aka very secure.
i second that most of the exploits are in xampp not phpretro
Re: [SECURITY] PHPretro "Security"! [MUST READ]
As winter stated, most of them are the webdav, Because that's how you can hack into XAMPP (apache), You'd have to dis-able web-dav, and then delete the webdav directory.
EDIT: Nillus, never touched PHPRetro, or HoloCMS he was the one who started the Emulator, then later on HoloCMS the fagable and exploitable CMS was released.
- Condah.
Re: [SECURITY] PHPretro "Security"! [MUST READ]
Still Loads of exploits in the emulator..
and some basic ones in the cms.
my word dont use xampp. i used a premium webhost and it was secure.
for xampp users use oni patch on xampp and just remove the webdav from it.
