[bugtracker] Shoutbox Hack - http://free100.tk

[Ziygo]

I am the said hacker, I will continue to exploit all sites that use that shoutbox until bloc releases a fix for it. The shoutbox is WAY to exploitable, if I was mean I could have used many other tinyportal exploits, but those are coming, prepare yourself

[bloc]

So, this was a css hack, what else do you have then? ..Or was that it?

[Ziygo]

There are many SQL injections brought in mainly due to your scripts, many available purely because of tinyportal and it's lack of security. Email me if you'd like my findings bloc.

[Artimidor]

Well, I deleted the shout from the database, so I actually never saw the shout on site and the username is represented only via an ID etc. But I looked if I found Ziygo in the database, and there he is, registration yesterday, IP and e-mail are identical as they can be found in scso1502's post.

But anyway, seems friend Ziygo graces us with his presence... So in case you can provide even more details to identify you, Ziygo , that would be a great help

[bloc]

There are many SQL injections brought in mainly due to your scripts, many available purely because of tinyportal and it's lack of security. Email me if you'd like my findings bloc.

Ok, mail sent.

[bloc]

Fixed the CSS hack for TP v1.0 beta 5-1.

[Bill.Ramby]

Is a fix going to be issue for the non-Beta TP users? 0.98 specifically?

[bloc]

Yes, I am afraid it will also work on older Shoutbox versions: as its primary a display "trick" it will not harm the database, but be very annoying for users.

This is whats needed for 0.9.8 users:
- Open up TPmodules.php in the Sources folder and find:

Code Select Expand

  $shout=strip_tags(substr($_POST['tp-shout'],0,300),'<b><u><i>');

Change it to:

Code Select Expand

  $shout=strip_tags(substr($_POST['tp-shout'],0,300));


[Bill.Ramby]

Thank you very much!

[Artimidor]

Thanks for the quick response! Great work!  :up: