Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
j_felosi
Regular
Regular


Joined: Oct 17, 2005
Posts: 51

PostPosted: Mon Oct 17, 2005 10:11 pm Reply with quote

i have recently discovered a serious exploit getting by patched 7.6 where it exposes the admins hash. Whoever is doing development now for patches and security please email me at Only registered users can see links on this board! Get registered or login! and I will send you the exploit for examination.. This is not good, it got past my sentinel and everything. This is not public yet as I know of but I hope it can be fixed before it is. I chose not to post it here of course so someone get in touch with me asap.
Edited: Thank god it was my sentinel settings, sentinel is catching it. But patched nuke without sentinel it works, and of course with protector. Just trying to help the development community, you may already know about this.
 
View user's profile Send private message
Raven
Site Admin/Owner


Joined: Aug 27, 2002
Posts: 17086

PostPosted: Mon Oct 17, 2005 10:54 pm Reply with quote

Please email me the exploit at raven ~AT~ ravenphpscripts #DOT@ com. Thanks.
 
View user's profile Send private message
j_felosi
PostPosted: Mon Oct 17, 2005 11:10 pm Reply with quote

Thanks, better safe than sorry, I first discovered this on platinum patched pnp+2 and later on a patched version of 7.6 which when I tried it on another patched 7.6 it didnt work, this may have already been fixed in chatservs latest patch. It dosent look good for platinum though, Sorry If I freaked and it has. But I guess it would still mean that older patched versions are vulnerable. Time to update for some people. I know Im gonna be ditching platinum after this as it dont look like no patches are coming soon. So this may be a bit of importance for platinum users
 
Raven
PostPosted: Mon Oct 17, 2005 11:15 pm Reply with quote

Yep. I appreciate that you informed us about it. That's why we're here!
 
evaders99
Former Moderator in Good Standing


Joined: Apr 30, 2004
Posts: 3221

PostPosted: Tue Oct 18, 2005 12:34 am Reply with quote

I messaged you too, glad you gave notice to everyone. Hopefully we can get a fix in the Patched files soon

_________________
- Only registered users can see links on this board! Get registered or login! -

Need help? Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
Raven
PostPosted: Tue Oct 18, 2005 12:36 am Reply with quote

It's an old exploit from 7.3 that has been fixed. His problems are in Nuke Platinum.
 
evaders99
PostPosted: Tue Oct 18, 2005 12:42 am Reply with quote

LOL okay Smile
I guess another reason why people shouldn't rely on forks hehe
 
j_felosi
PostPosted: Tue Oct 18, 2005 1:07 am Reply with quote

Yeah sorry, Its wierd though how it being 7.3 is still working with platinum 7.6 and the patched version of it as well. So needless to say Im done with platinum.
 
technocrat
Life Cycles Becoming CPU Cycles


Joined: Jul 07, 2005
Posts: 511

PostPosted: Tue Oct 18, 2005 9:21 am Reply with quote

I think almost everyone is done with platinum, but I would like to fix it on the patch packs. Can you send it over to me technocrat at platinummods.com

_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! / Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©