Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Server Development
Habbo Retros
Habbo Releases
[OpenSource] 2019 ModTools for Plus
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Ecko" data-source="post: 452583" data-attributes="member: 24874"><p>This is with a default Apache stack (no ModSecurity and using PHP 5.6):</p><p>[code]</p><p>$ curl -IL "http://thedomain.tld/modtools/query.php?what=deletegroup&id=1;DROP%20TABLE%20smf_calender;"</p><p>HTTP/1.1 302 Moved Temporarily</p><p>Date: Wed, 28 Aug 2019 13:21:10 GMT</p><p>Server: Apache</p><p>Location: guilds.php?id=1;DROP TABLE smf_calender;&back=deleted</p><p>Content-Type: text/html; charset=UTF-8</p><p></p><p>HTTP/1.1 302 Moved Temporarily</p><p>Date: Wed, 28 Aug 2019 13:21:10 GMT</p><p>Server: Apache</p><p>Expires: Thu, 19 Nov 1981 08:52:00 GMT</p><p>Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0</p><p>Pragma: no-cache</p><p>Set-Cookie: PHPSESSID=b4ookfhpo7toq5703hrqtap361; path=/</p><p>Location: https://thedomain.tld/modtools/guilds?id=1;DROP+TABLE+smf_calender;&back=deleted</p><p>Content-Type: text/html; charset=UTF-8</p><p></p><p></p><p>$ mysql -e "DESCRIBE rscdump_smf371.smf_calendar;"</p><p>+------------+-----------------------+------+-----+------------+----------------+</p><p>| Field | Type | Null | Key | Default | Extra |</p><p>+------------+-----------------------+------+-----+------------+----------------+</p><p>| id_event | smallint(5) unsigned | NO | PRI | NULL | auto_increment |</p><p>| start_date | date | NO | MUL | 0001-01-01 | |</p><p>| end_date | date | NO | MUL | 0001-01-01 | |</p><p>| id_board | smallint(5) unsigned | NO | | 0 | |</p><p>| id_topic | mediumint(8) unsigned | NO | MUL | 0 | |</p><p>| title | varchar(255) | NO | | | |</p><p>| id_member | mediumint(8) unsigned | NO | | 0 | |</p><p>[/code]</p><p></p><p>I adjusted query.php to so deletegroup deletes from smf_boards instead, with board_id instead of just id. board_id of 1 has been deleted, smf_calendar still exists. So yes, show me the general query log.</p></blockquote><p></p>
[QUOTE="Ecko, post: 452583, member: 24874"] This is with a default Apache stack (no ModSecurity and using PHP 5.6): [code] $ curl -IL "http://thedomain.tld/modtools/query.php?what=deletegroup&id=1;DROP%20TABLE%20smf_calender;" HTTP/1.1 302 Moved Temporarily Date: Wed, 28 Aug 2019 13:21:10 GMT Server: Apache Location: guilds.php?id=1;DROP TABLE smf_calender;&back=deleted Content-Type: text/html; charset=UTF-8 HTTP/1.1 302 Moved Temporarily Date: Wed, 28 Aug 2019 13:21:10 GMT Server: Apache Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: PHPSESSID=b4ookfhpo7toq5703hrqtap361; path=/ Location: https://thedomain.tld/modtools/guilds?id=1;DROP+TABLE+smf_calender;&back=deleted Content-Type: text/html; charset=UTF-8 $ mysql -e "DESCRIBE rscdump_smf371.smf_calendar;" +------------+-----------------------+------+-----+------------+----------------+ | Field | Type | Null | Key | Default | Extra | +------------+-----------------------+------+-----+------------+----------------+ | id_event | smallint(5) unsigned | NO | PRI | NULL | auto_increment | | start_date | date | NO | MUL | 0001-01-01 | | | end_date | date | NO | MUL | 0001-01-01 | | | id_board | smallint(5) unsigned | NO | | 0 | | | id_topic | mediumint(8) unsigned | NO | MUL | 0 | | | title | varchar(255) | NO | | | | | id_member | mediumint(8) unsigned | NO | | 0 | | [/code] I adjusted query.php to so deletegroup deletes from smf_boards instead, with board_id instead of just id. board_id of 1 has been deleted, smf_calendar still exists. So yes, show me the general query log. [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Server Development
Habbo Retros
Habbo Releases
[OpenSource] 2019 ModTools for Plus
Top