Page 2 of 5 FirstFirst 1234 ... LastLast
Results 11 to 20 of 44

Thread: I hacked Digital Point forum last night and got banned

  1. #11
    jitendraag is offline Unknown Net Builder
    Join Date
    Dec 2008
    Posts
    11
    Thanks
    1
    Thanked 0 Times in 0 Posts
    Normally it's a better practice to inform the site owner about a possible bug on their website and ONLY release it to public 'after' the owners have fixed it. You can also file cert advisories so that other webmasters using the software can get security patches.

    What you did in this case was probably not the right way to expose the vulnerability. I am happy to know that you were curious enough to try the XSS vulnerability but making it public was not the best step.

  2. #12
    Hellas's Avatar
    Hellas is offline Very Unusual Member
    Join Date
    Dec 2008
    Location
    Bosnia
    Posts
    1,051
    Thanks
    214
    Thanked 292 Times in 205 Posts
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.

  3. #13
    jangkrikjr is offline Unknown Net Builder
    Join Date
    Feb 2009
    Location
    http://monetizing-traffic-secret.info
    Posts
    4
    Thanks
    0
    Thanked 0 Times in 0 Posts
    Cool tips. But I don't wan't try it

  4. #14
    Shawn's Avatar
    Shawn is offline Net Builder
    Join Date
    Dec 2008
    Location
    Dominican Republic
    Posts
    165
    Thanks
    10
    Thanked 25 Times in 22 Posts
    I got a laugh out of it. If someone did that too my forum and it wasn't anything bad like p0rn, I would have used it to improve the security and not have banned the poster/hacker.

    To think that if you were to get ticked off now, you could make it worse on them, if you were a corrupt hacker.

  5. #15
    Shawn's Avatar
    Shawn is offline Net Builder
    Join Date
    Dec 2008
    Location
    Dominican Republic
    Posts
    165
    Thanks
    10
    Thanked 25 Times in 22 Posts
    Quote Originally Posted by Hellas View Post
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.

    What was your point?

    Oh, I see, I will go visit.... or maybe not.... probably loads a virus if I did.

  6. #16
    stickycarrots's Avatar
    stickycarrots is offline Experienced Net Builder
    Join Date
    Dec 2008
    Location
    QuickInbox.com
    Posts
    753
    Blog Entries
    6
    Thanks
    18
    Thanked 86 Times in 59 Posts

  7. #17
    epidemic is offline Net Builder
    Join Date
    Jan 2009
    Posts
    112
    Thanks
    2
    Thanked 9 Times in 6 Posts
    I had one trying it on my old website once, if you use mysql_real_escape_string () youll be fine with any type of injection, it being js or sql

  8. #18
    LogicFlux is offline Newbie Net Builder
    Join Date
    Dec 2008
    Posts
    47
    Thanks
    13
    Thanked 17 Times in 17 Posts
    Funny. I'm surprised that vulnerability exists, even in a version that's a year and a half old.

  9. #19
    Mike Dammann's Avatar
    Mike Dammann is offline Super Moderator
    Join Date
    Dec 2008
    Location
    Geographically flexible
    Posts
    964
    Blog Entries
    3
    Thanks
    237
    Thanked 182 Times in 148 Posts
    That place is like a hen house with no roosters. The mod chat has to be pure comedy with everyone trying to figure these things out.
    For blood type dating go here. If your blood type is rhesus negative, go there. If you are bored and feel like liking a Facebook page, hit this one.

  10. #20
    5starpix's Avatar
    5starpix is offline Senior Net Builder
    Join Date
    Dec 2008
    Location
    Montreal, Quebec
    Posts
    1,710
    Blog Entries
    9
    Thanks
    158
    Thanked 227 Times in 164 Posts
    Quote Originally Posted by Hellas View Post
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.
    probably used to hack accounts on dp, and fool people

Page 2 of 5 FirstFirst 1234 ... LastLast

Similar Threads

  1. Digital Point has had a makeover
    By Sbfc_ in forum Community Building
    Replies: 13
    Last Post: 4 June, 2010, 06:41 AM
  2. Another Digital Point Exile
    By Commandtree1985 in forum Introduction Forum
    Replies: 13
    Last Post: 18 September, 2009, 08:18 AM
  3. [WTB] Digital point accounts and signatures
    By jest in forum Services
    Replies: 0
    Last Post: 3 August, 2009, 09:44 AM
  4. Digital Point complaints
    By Mike30 in forum General Chat
    Replies: 76
    Last Post: 7 July, 2009, 12:30 PM
  5. [WTB] Digital Point Forum Account!
    By Cooolr in forum Marketplace
    Replies: 61
    Last Post: 19 June, 2009, 20:03 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •