Time to UPDATE this forum?

[KeoughNKC]

Admin:

You guys should seriously consider upgrading your Vbulletin Software to the newest release version (2.2.9)

Within 20 minutes I have found security holes in this system that not only compromise your community but your entire database. (XSS issues, global.php, SQL injection)

Just lookin out for ya....

 

[Slide]

could you PM vamps or feben about that?

 

[KeoughNKC]

yea, sure

 

[Zer0.MediA]

Admin:

You guys should seriously consider upgrading your Vbulletin Software to the newest release version (2.2.9)

Within 20 minutes I have found security holes in this system that not only compromise your community but your entire database. (XSS issues, global.php, SQL injection)

Just lookin out for ya....

Anyone who runs a BBS knows what pieces of shit they are. They're html nightmares and you could just delete every fuckin' member and post with a click of a mouse. I've seen it happen and it's ugly.

 

[KeoughNKC]

Re: Re: Time to UPDATE this forum?

Anyone who runs a BBS knows what pieces of shit they are. They're html nightmares and you could just delete every fuckin' member and post with a click of a mouse. I've seen it happen and it's ugly.

Not necessarily true... yes, maybe Matt's WWWboard OLD BBS cgi script. (for those of you that remember that far back) BUT, Vbulletin software is much more secure/advanced. This software is written in PHP with a MySQL database and the techs that created Vbulletin have done an amazing job as far as creating a user friendly format and the code is exceptional.

Yes, I found 'security holes' but these are VERY hard to exploit

 

[Zer0.MediA]

Re: Re: Re: Time to UPDATE this forum?

Not necessarily true... yes, maybe Matt's WWWboard OLD BBS cgi script. (for those of you that remember that far back) BUT, Vbulletin software is much more secure/advanced. This software is written in PHP with a MySQL database and the techs that created Vbulletin have done an amazing job as far as creating a user friendly format and the code is exceptional.

Yes, I found 'security holes' but these are VERY hard to exploit

Hard to exploit meaning...

Within 20 minutes I have found security holes in this system that not only compromise your community but your entire database. (XSS issues, global.php, SQL injection)

??

LoL.

 

[KeoughNKC]

"Hard to exploit meaning..."

n. [originally cracker slang] 1. A vulnerability in
software that can be used for breaking security or otherwise
attacking an Internet host over the network. The Ping O' Death is
a famous exploit. 2. More grammatically, a program that exploits an exploit in sense 1,

++++++++++++

I pretty much know the entire 'code' through 'n' through. The holes I happened upon, once found, are difficult to attack.

 

[Zer0.MediA]

"Hard to exploit meaning..."

n. [originally cracker slang] 1. A vulnerability in
software that can be used for breaking security or otherwise
attacking an Internet host over the network. The Ping O' Death is
a famous exploit. 2. More grammatically, a program that exploits an exploit in sense 1,

++++++++++++

I pretty much know the entire 'code' through 'n' through. The holes I happened upon, once found, are hard difficult to attack.

You misunderstood my point. You say it's hard to exploit ( I think you'd be suprised at the amount of crack/phreak/hack/script kiddie slang I know ). I just think it's slightly amusing that you say hard to exploit, after saying in your first post "Within 20 minutes I have found security holes in this system that not only compromise your community but your entire database. (XSS issues, global.php, SQL injection) ".

 

[JLMACN]

....................

^^^^^^^^^^^^^^^^^^^^^^

real computer chop...........lol

out!!

 

[Slide]

"Hard to find" and "hard to exploit" are two different things.

 

[KeoughNKC]

OK, hard to find, then once found, hard to exploit.

OK, maybe hard for your average to advanced hacker/punk but not 'as' hard for a super/genius/knowledgeable professional/hacker/programmer... etc., etc...