Page 2 of 5 FirstFirst 1234 ... LastLast
Results 11 to 20 of 44

Thread: I hacked Digital Point forum last night and got banned

  1. #11
    Normally it's a better practice to inform the site owner about a possible bug on their website and ONLY release it to public 'after' the owners have fixed it. You can also file cert advisories so that other webmasters using the software can get security patches.

    What you did in this case was probably not the right way to expose the vulnerability. I am happy to know that you were curious enough to try the XSS vulnerability but making it public was not the best step.

  2. #12
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.

  3. #13
    Join Date
    Feb 2009
    Location
    http://monetizing-traffic-secret.info
    Posts
    4
    Cool tips. But I don't wan't try it

  4. #14
    I got a laugh out of it. If someone did that too my forum and it wasn't anything bad like p0rn, I would have used it to improve the security and not have banned the poster/hacker.

    To think that if you were to get ticked off now, you could make it worse on them, if you were a corrupt hacker.

  5. #15
    Quote Originally Posted by Hellas View Post
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.

    What was your point?

    Oh, I see, I will go visit.... or maybe not.... probably loads a virus if I did.

  6. #16

  7. I had one trying it on my old website once, if you use mysql_real_escape_string () youll be fine with any type of injection, it being js or sql

  8. #18
    Funny. I'm surprised that vulnerability exists, even in a version that's a year and a half old.

  9. #19
    That place is like a hen house with no roosters. The mod chat has to be pure comedy with everyone trying to figure these things out.
    I am also a writer for Serpholic Media. You can find some of my articles here: Serpholic Media Blog

  10. #20
    Quote Originally Posted by Hellas View Post
    check this out
    but dont login

    Code:
    http://forums.digitalpolnt.com/
    watch for l in point.
    probably used to hack accounts on dp, and fool people

Page 2 of 5 FirstFirst 1234 ... LastLast

Similar Threads

  1. Digital Point has had a makeover
    By Sbfc_ in forum Community Building
    Replies: 13
    Last Post: 4 June, 2010, 06:41 AM
  2. Another Digital Point Exile
    By Commandtree1985 in forum Introduction Forum
    Replies: 13
    Last Post: 18 September, 2009, 08:18 AM
  3. [WTB] Digital point accounts and signatures
    By jest in forum Services
    Replies: 0
    Last Post: 3 August, 2009, 09:44 AM
  4. Digital Point complaints
    By Mike30 in forum General Chat
    Replies: 76
    Last Post: 7 July, 2009, 12:30 PM
  5. [WTB] Digital Point Forum Account!
    By Cooolr in forum Marketplace
    Replies: 61
    Last Post: 19 June, 2009, 20:03 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •