Security Vulnerabilities in phpBB
Security Vulnerabilities in phpBB
This forum (phpBB 2.0.11) is vulnerable to multiple security holes which could easily be used to gain administrator access. It is very import that Forum updates to the latest version of phpBB or risk the privacy of all users. I would create an account to tell you this but I would be in danger of getting my password stolen.
-
- Forum Addict
- Posts: 3949
- Joined: Sun Mar 13, 2005 4:57 pm
- ID: 0
-
- Fledgling Forumer
- Posts: 154
- Joined: Sat Feb 19, 2005 9:12 pm
- ID: 0
- Location: i am never lost i am were i am
Re: Security Vulnerabilities in phpBB
Anonymous wrote:This forum (phpBB 2.0.11) is vulnerable to multiple security holes which could easily be used to gain administrator access. It is very import that Forum updates to the latest version of phpBB or risk the privacy of all users. I would create an account to tell you this but I would be in danger of getting my password stolen.
ever herd of keeping suff like this quiet. if there is something this big you don't go and stick it for every one to know. its like shouting the bank safe is made of ducktape. PLZ use the PRIVATE MESSAGE system so you don't encerage people to try to hack!
Last edited by myFriend on Wed Apr 20, 2005 7:07 pm, edited 1 time in total.
I am dyslexic and i did do spell check. sarry for the type-o's
i will face my fears and let them past though me; we live we die... but not in vain; OO for cying out loud; Sir with all disrespect, I don't give a dam
i will face my fears and let them past though me; we live we die... but not in vain; OO for cying out loud; Sir with all disrespect, I don't give a dam
-
- Fledgling Forumer
- Posts: 113
- Joined: Mon Mar 28, 2005 12:40 am
- ID: 0
- Location: Melbourne, Australia
- Contact:
-
- Forum Irregular
- Posts: 443
- Joined: Thu Feb 24, 2005 3:45 pm
- ID: 0
- Location: far far away
- Contact:
-
- Fledgling Forumer
- Posts: 113
- Joined: Mon Mar 28, 2005 12:40 am
- ID: 0
- Location: Melbourne, Australia
- Contact:
-
- Forum Irregular
- Posts: 443
- Joined: Thu Feb 24, 2005 3:45 pm
- ID: 0
- Location: far far away
- Contact:
unless u find a way to decode the md5 WITH CHEY....than u are a genious and wont need to find a persons password to get in someones acount....Xavier wrote:I use my forum password elsewhere. Such as the SGW chatroom. Such as lots of different forums.
I'm sure there would also be people whose password for SGW is the same as their password for the forum. Access to these passwords would not be good.
passwords are incripted with MD5(google for info) that hase a extra protection by ading a chey(in hexazecimal value).....so it will take u aprosimatly 275 days with a intel pentiun 4 at 3200Hz to decode one password....want to try?
-
- Fledgling Forumer
- Posts: 113
- Joined: Mon Mar 28, 2005 12:40 am
- ID: 0
- Location: Melbourne, Australia
- Contact:
-
- Forum Irregular
- Posts: 443
- Joined: Thu Feb 24, 2005 3:45 pm
- ID: 0
- Location: far far away
- Contact:
-
- Fledgling Forumer
- Posts: 113
- Joined: Mon Mar 28, 2005 12:40 am
- ID: 0
- Location: Melbourne, Australia
- Contact:
-
- Forum Intermediate
- Posts: 845
- Joined: Thu Feb 24, 2005 4:44 pm
- ID: 0
- Location: SGC Australia
- Contact:
Apart from the typos forgive_me, you are absolutly right.
They can't really find a way to decrypt the MD5's unless they have a lot of time on their hands.
Also, please stop calling these hackers - they are crackers, not hackers.
I consider myself a hacker, as hacking is a persuit of knowlage.
Please click here to learn the difference.
Thanks guys.
/Whitey
They can't really find a way to decrypt the MD5's unless they have a lot of time on their hands.
Also, please stop calling these hackers - they are crackers, not hackers.
I consider myself a hacker, as hacking is a persuit of knowlage.
Please click here to learn the difference.
Thanks guys.
/Whitey
SHIFT TONE! OMG!
STFUBBQ?
SGW-irc founder
It means Perseverance
STFUBBQ?
SGW-irc founder
It means Perseverance
-
- Fledgling Forumer
- Posts: 113
- Joined: Mon Mar 28, 2005 12:40 am
- ID: 0
- Location: Melbourne, Australia
- Contact:
WhiteyDude wrote:Apart from the typos forgive_me, you are absolutly right.
Be nice!!! I see typos in your messages too!
WhiteyDude wrote:Also, please stop calling these hackers - they are crackers, not hackers.
I consider myself a hacker, as hacking is a persuit of knowlage.
Please click here to learn the difference.
...
In that case you have pursued knowledge a lot.
---
~Phoenix~ wrote:Rememberance day for what event?