Help ASAP Exploits ;(

[jakob215180]

I am using IlluminaCMS, and this guy comes on, and is like you have 2 exploits, so i just say no i dont.
Then next thing u know, he signs in as my Co-owner and like makes news articles.
I know one is in the news and Idk where the other is.
Please if someone is kind enough to come on my teamviewer and look over it for me.
That would be amazing.
IlluminaCMS ubercms edit..
Also, if theres another CMS that hashes the passwords the same way as illumina with NO exploits, can someone please post it. thank you.

 

[Ecko]

Depending on which one you are using, the entire housekeeping is vulnerable.

 

[jakob215180]

Depending on which one you are using, the entire housekeeping is vulnerable.

ehhh. Im using the xenhotel edited one.. Please help dude.

 

[Hindi]

Sucks that you'd pick CMS coded/edited by Jonty, Would never trust that faggot lol, I'd rather use RevCMS

 

[jakob215180]

Sucks that you'd pick CMS coded/edited by Jonty, Would never trust that faggot lol, I'd rather use RevCMS

Lol. I hear that alot. I am soon switching to RevCMS but the thing is. The hashes are different and I dont know how to change the hash so that when I put revcms, the passwords made with illumina will work. If anyone knows how to do this, I would love them forever LOL.

 

[Hindi]

If you don't have many users registered, Just reset the hotel. Who cares? Atleast you'll be on a safer side.

I'm not sure, But in app/class.core.php in RevCMS

Change

final public function hashed($password)
{
    return md5($password);
}

To

final public function hashed($password)
{
    return sha1($password . "xCg532%@%gdvf^5DGaa6&*rFTfg^FD4\$OIFThrR_gh(ugf*/");
}

But I believe, You'll have to still delete all accounts.This will just changing the hashing of RevCMS from md5 to Sha1

 

[jakob215180]

If you don't have many users registered, Just reset the hotel. Who cares? Atleast you'll be on a safer side.

I'm not sure, But in app/class.core.php in RevCMS

Change

final public function hashed($password)
{
    return md5($password);
}

To

final public function hashed($password)
{
    return sha1($password . "xCg532%@%gdvf^5DGaa6&*rFTfg^FD4\$OIFThrR_gh(ugf*/");
}

But I believe, You'll have to still delete all accounts.This will just changing the hashing of RevCMS from md5 to Sha1

What theme on RevCMS has NO exploits, and is good looking.?

 

[Hindi]

What theme on RevCMS has NO exploits, and is good looking.?

You must be registered for see links

I've edited that myself, It has no exploits i can assure you, Also make sure you remove housekeeping from the file and add it later manually.

 

[jakob215180]

Wait, I am currently installing your theme, but what do i do with hk? I dont get it.

 

[Hindi]

Wait, I am currently installing your theme, but what do i do with hk? I dont get it.

Just remove the ASE folder from it and download another HK for RevCMS and put it in and set it up

 

[jakob215180]

Just remove the ASE folder from it and download another HK for RevCMS and put it in and set it up

Can you please come on my teamviewer and try to help with this hash shit.. Please dude.

 

[Hindi]

Can you please come on my teamviewer and try to help with this hash shit.. Please dude.

Um, hit me up with details over PM, and tell me what you need done as well but remember even if you change hashing for revcms, you will need to reset the hotel so.

 

[jakob215180]

No I read on a thread, that once u change the hashing, it will read the password illuminaCMS-way.
so... I dont think so and how dafuq do I pm lol. im new to this.

 

[Hindi]

No I read on a thread, that once u change the hashing, it will read the password illuminaCMS-way.
so... I dont think so and how dafuq do I pm lol. im new to this.

Even if you do, you cant really use those accounts. You will have to reset anyway if you're using RevCMS I believe.

 

[jakob215180]

Even if you do, you cant really use those accounts. You will have to reset anyway if you're using RevCMS I believe.

How do I private message on Devbest.?