Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Server Development
Habbo Retros
Habbo Releases
[Release] RevCMS IMPORTANT Exploit Fix!
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Jerry" data-source="post: 291693" data-attributes="member: 35321"><p>Hi,</p><p>So you guys have some problem with revcms??</p><p><strong>Oke let we fix the exploit</strong><img src="/styles/icons/smile/youDontSay.png" class="smilie" loading="lazy" alt="youDontSay" title="You don't say? youDontSay" data-shortname="youDontSay" /></p><p>Find <strong>final public function forgotten()</strong> (class.users.php) and delete the whole function!</p><p>Go to class.core.php and delete everything that looks like this case "forgot": </p><p>[PHP]DELETE :</p><p>case "forgot":</p><p>$users->forgotten();</p><p>break;</p><p></p><p>DELETE :</p><p>case "forgot":</p><p>header('Location: '.$_CONFIG['hotel']['url'].'/me');</p><p>exit;</p><p>break;[/PHP]</p><p></p><p>Yeah you fixed the exploit! Nobody can change your password now!!</p><p>How was this could be used (Shame for the big retros)</p><p><strong>How to find :By logging everything in your cms ;I Special thanks to Spot Ify</strong></p><p><strong><strong>Found by searching into the logs :</strong></strong></p><p><strong><strong>And then found this :</strong></strong></p><p><strong></strong></p><p><strong>The guy used this to change the password :</strong></p><p><a href="http://92.108.165.99:8080/hak2.phpsite=http://retrolink/forgot&username=blablabla&password=habbo8&key=" target="_blank"><strong>http://92.108.165.99:8080/hak2.phpsi...rd=habbo8&key=</strong></a></p><p>He also could use post form to change the password since you guys are stupid to put seckey to NULL or 1234 XD</p><p>Owner who destroyed all your things Ricardo ... Owner : weebz.net</p><p><strong>Maybe something you guys need to do:</strong></p><p><strong></strong></p><p><strong></strong></p><p>Maybe a like for me, Sir Jamal and Sopt Ify!!</p></blockquote><p></p>
[QUOTE="Jerry, post: 291693, member: 35321"] Hi, So you guys have some problem with revcms?? [B]Oke let we fix the exploit[/B]youDontSay Find [B]final public function forgotten()[/B] (class.users.php) and delete the whole function! Go to class.core.php and delete everything that looks like this case "forgot": [PHP]DELETE : case "forgot": $users->forgotten(); break; DELETE : case "forgot": header('Location: '.$_CONFIG['hotel']['url'].'/me'); exit; break;[/PHP] Yeah you fixed the exploit! Nobody can change your password now!! How was this could be used (Shame for the big retros) [B]How to find :By logging everything in your cms ;I Special thanks to Spot Ify [B]Found by searching into the logs : And then found this :[/B][/B] [B][B][/B] The guy used this to change the password :[/B] [URL='http://92.108.165.99:8080/hak2.phpsite=http://retrolink/forgot&username=blablabla&password=habbo8&key='][B]http://92.108.165.99:8080/hak2.phpsi...rd=habbo8&key=[/B][/URL] He also could use post form to change the password since you guys are stupid to put seckey to NULL or 1234 XD Owner who destroyed all your things Ricardo ... Owner : weebz.net [B]Maybe something you guys need to do:[/B] [B] [/B] Maybe a like for me, Sir Jamal and Sopt Ify!! [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Server Development
Habbo Retros
Habbo Releases
[Release] RevCMS IMPORTANT Exploit Fix!
Top