Page 1 of 2 12 LastLast
Results 1 to 10 of 18

Thread: critical news for all proxy list owners using proxylistscript.com script

  1. #1
    ankit is offline Net Builder
    Join Date
    Mar 2009
    Location
    India
    Posts
    133
    Thanks
    25
    Thanked 17 Times in 14 Posts

    critical news for all proxy list owners using proxylistscript.com script

    here is a critical news for all proxy list owners using proxylistscript.com script.

    It has got some vulnerability by exploiting which anyone can hack into your administration panel.

    I have seen many sites using it have got affected today and I recommend you to lock your admin directory from your control panel until the vulnerability is fixed and if someone knows the script owner do notify him too

  2. Thanked by:

    Will.Spencer (8 June, 2009)

  3. #2
    nux
    nux is offline Moderator
    Join Date
    Dec 2008
    Location
    Minneapolis
    Posts
    534
    Thanks
    28
    Thanked 77 Times in 54 Posts
    Can you give more details so we can patch our sites?
    Submit Your Proxies @ NewProxySites.com

  4. #3
    ankit is offline Net Builder
    Join Date
    Mar 2009
    Location
    India
    Posts
    133
    Thanks
    25
    Thanked 17 Times in 14 Posts
    Quote Originally Posted by nux View Post
    Can you give more details so we can patch our sites?

    sorry mate I am not a programmer neither a hacker so I have no idea.

    I just got to know it from my friend that he found the vulnerability and added his proxy in some of the lists using that vulnerability and at the same time asked me to notify all proxy owners and script owner. By the time i could have asked him about the vulnerability he went offline.

  5. #4
    Aquarezz's Avatar
    Aquarezz is offline Master Net Builder
    Join Date
    Dec 2008
    Location
    Belgium
    Posts
    3,852
    Blog Entries
    4
    Thanks
    683
    Thanked 591 Times in 463 Posts
    That's true, I can do the same with every others' person script -- I just didn't mention it for the whole world

    I can give all my websites on every site the best listing without even getting into the admin pannel, but heck I won't do it

    Greetz
    |Nico Lawsons

  6. #5
    Mr.Bill's Avatar
    Mr.Bill is offline One is glad to be of service
    Join Date
    Dec 2008
    Location
    Redmond, Oregon
    Posts
    828
    Blog Entries
    1
    Thanks
    72
    Thanked 350 Times in 182 Posts
    Aquarezz could you pm me on how your doing this so I can have dtkguy see if he can patch this. So that we can supply a patch on this forum.

    Reverse IP Check ಠ_ಠ Proxy Sites
    <?php if ($youask == 'stupid question') { echo ('stupid answer'); } ?>

  7. #6
    Aquarezz's Avatar
    Aquarezz is offline Master Net Builder
    Join Date
    Dec 2008
    Location
    Belgium
    Posts
    3,852
    Blog Entries
    4
    Thanks
    683
    Thanked 591 Times in 463 Posts
    It doesn't seem to work on most proxy lists (although it worked before as I tested it on the first ProxLists.Com script (It was the PLS but from warez) ) And the thing I had to do was just adding:
    Code:
    admin.php?url=http%3A%2F%2Fsurfall.org&category=PHProxy+Proxies&email=nico.lawsons%40yahoo.com&status=4&accept=yes&edit=http%3A%2F%2Fsurfall.org
    To the end, from that I didn't even had to login to the admin pannel it just updated -- although it isn't working anymore on ProxB.Com (legal updated version) and it wasn't working on proxylist.al.gd so I guess it has been updated already or that that method only works on warez version...

    Greetz
    |Nico Lawsons

  8. #7
    ankit is offline Net Builder
    Join Date
    Mar 2009
    Location
    India
    Posts
    133
    Thanks
    25
    Thanked 17 Times in 14 Posts
    Quote Originally Posted by Aquarezz View Post
    That's true, I can do the same with every others' person script -- I just didn't mention it for the whole world

    I can give all my websites on every site the best listing without even getting into the admin pannel, but heck I won't do it

    Greetz

    well its not mentioning to the whole world.
    The thing is that the script devolopment have been stopped and now it relies on proxy list owners on how to patch it so it was supposed to be announced not to be kept back as a secret because we all are into business because of each other and also its our duty to ensure none of our mates loose their sites or their content on which they have worked really hard

  9. #8
    Join Date
    Jan 2009
    Posts
    351
    Thanks
    7
    Thanked 18 Times in 18 Posts

  10. #9
    chetan's Avatar
    chetan is offline PHP Coder
    Join Date
    Mar 2009
    Location
    India , Nagpur
    Posts
    74
    Thanks
    3
    Thanked 6 Times in 5 Posts
    Hello There,
    Contact Me for knowing about the exploit ,as if I will give it out publicly then people might make wrong use of it.

  11. #10
    Join Date
    Jan 2009
    Posts
    351
    Thanks
    7
    Thanked 18 Times in 18 Posts

    Thumbs up

    Quote Originally Posted by chetan View Post
    Hello There,
    I am only founder of the exploit and I dont think much guys knows this.I can control proxy listing in mins .But being ethical i dont do that.To keep the proxy world safe I wont let it out else many would suffer.
    Cool

    What if I offer you $1,000 for the exploit?

Page 1 of 2 12 LastLast

Similar Threads

  1. Proxy Coder - Free Proxy List Script
    By xrvel in forum Web Proxies
    Replies: 45
    Last Post: 9 March, 2011, 21:16 PM
  2. Replies: 2
    Last Post: 1 April, 2010, 14:51 PM
  3. Replies: 0
    Last Post: 19 March, 2010, 02:26 AM
  4. Question for proxy list owners
    By ruben in forum Web Proxies
    Replies: 5
    Last Post: 14 November, 2009, 04:57 AM
  5. Code To Ban Domain (for Proxy List Owners)
    By xrvel in forum Programming
    Replies: 4
    Last Post: 9 July, 2009, 12:45 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •