I was hacked[views:4779][posts:71]_____________________________________ [May 15,2007 1:03pm - blahman3000 ""] Milhouse? |
| ______________________________________ [May 15,2007 1:09pm - the_reverend ""] that's a pretty funny actually. |
| _____________________________________ [May 15,2007 3:25pm - blahman3000 ""] How do you like the CSRF one i just sent you? |
| ______________________________________ [May 15,2007 3:42pm - the_reverend ""] I emailed back asking for an example.. |
| _____________________________________ [May 15,2007 3:43pm - blahman3000 ""] i'm sorry, gmail must be slow, just look at my profile and click another link if you want to view an example now. YOu'll notice that after you navigate away from the profile you'll be logged out. |
| _____________________________________ [May 15,2007 3:55pm - blahman3000 ""] Got it, sent you one back with the info on how to do it. |
| ______________________________________ [May 15,2007 3:56pm - the_reverend ""] ok, that's exactly what I thought when you sent the email. you have 2 images so it only works with one of them, but that one is random so... it's a crap shoot which comes up. |
| ______________________________________ [May 15,2007 3:57pm - the_reverend ""] oh, I fixed it before I got your email. I saw what you were talking about. |
| ______________________________________ [May 15,2007 3:58pm - the_reverend ""] only you can see them when you click on "show all" to delete it. |
| _____________________________________ [May 15,2007 4:01pm - blahman3000 ""] Yeah, there were 2, i couldn't delete one of them because evertime i would try to remove it, the other image would load and log me off, lol. |
| ______________________________________ [May 15,2007 4:09pm - the_reverend ""] yeah, did you click on the injection link with the cdid=99999 again? try it. |
| _____________________________________ [May 15,2007 4:13pm - blahman3000 ""] ROFL! ping of death! |
| ______________________________________ [May 15,2007 4:16pm - the_reverend ""] no one seems to remember that one... too good for win 95's ip stack I guess. my friend freaked out when I sent him that last night. now he's trying injection on a bunch of conservative sites. |
| ______________________________________ [May 15,2007 4:23pm - the_reverend ""] years and years ago (like 2002/3) I made my own pear/mysqli/pdo set of classes, but I didn't account for mysql injection. I recently made a bug tracking system and I'm working some of the perl db safe guards back now that I see the vulnerability. |
| ____________________________________ [May 15,2007 6:09pm - immortal13 ""] [img] |
| ___________________________________________ [May 15,2007 6:23pm - FuckIsMySignature ""] you sunk my battleship |
| ___________________________________ [May 15,2007 10:46pm - nights1 ""] Btw man, the CSRF still works. |
| ______________________________________ [May 16,2007 10:44am - blahman3000 ""] I'll make another thread entitled "Don't Click or you will log out" and put the CSRF example in there. Anyone logged in that reads the forum shall theoretically get logged out and you won't realise it until you navigate away from the page/refresh/etc.. Also, i can send you an email on how to defend against such a thing, if you want. |
| _______________________________________ [May 16,2007 10:47am - the_reverend ""] don't do that. I know about that already. I realized it on the way to a show last night. |
| __________________________________ [May 16,2007 10:51am - sxealex ""] yea but why is the password in the current cookie then? |
| ____________________________________ [May 16,2007 10:54am - blah3000 ""] hey reverend, if you want, put the sessid as a variable after logout, so logout=1&sess=x, then if the session doesn't match it won't log you out. This is how most people are defending against this. |
| _______________________________________ [May 16,2007 11:20am - the_reverend ""] I'll do both of them. |