Açık
-
Arkadaşlar bir oyun sitem var ve bu sabah birisi girip databaseleri kurcalamış ve ayar dosyasını deiştirmiş
siteye girincie mysqla kullanıcı hakxxx_ogame ile bağlanılamadı yazıyor ve bu adam databasedeki kullanıcıları silmiş zaten yeniydi fazla takmıyorum kafama ama bu açığı bir an önce bulmalıyım acaba söyleyebilecek varmı sitemin neresinde açık var
http://evren2.ev.ohost.de
bu aşağıdaki adamın deiştirdiği dosya ayarlar var içinde
<?php //:: Archivo de configuracion
// Este archivo es autogenerado | This files is autogenerated
if(!defined("INSIDE")){ die("attemp hacking");}
$dbsettings = Array(
"server" => "mysql1.100ws.com", //MySQL server name. (Default: localhost)
"user" => "hakxxx_ogame", // MySQL username.
"pass" => "258963", // GundamMySQL password.
"name" => "hakxxx_ogame", // MySQL database name.
"prefix" => "ogml_", // Prefix for table names.
"secretword" => "secret"); // Secret word used when hashing information for cookies.
// Created by Perberos. All rights reversed (C) 2007
?> -
Hocam sanırım ki sql açıgından fieldnameler vs deiştirilmiş...
Alphanumeric text box lar kullanırsan inputlar için sorun çözülür diye dusunuyorum...
-
dier sunucuyada bulaşmışlar ya index atmışlar bide
bakın
HaCKeD By
Shad0w & NoWiZtKi
Biri Daha Var Ama Adi Bizde Sakli
Heuhea forumdaki mallar :D
Server kapatsa hostu böylemi kapar haa salaklar ??
Team sormussunuz bide biz yanliziz
teama gerenk yok ;)
Ne Lamersiniz Amk xD
Ha bu arada her$ey silinmi$tir...
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
0101010101010101010101010101010101010101010101010101010101010101010101010101010
010101010101010101010101010101010101010101010101010101010101010101010101010101
-
savxılıga ver onlar o sitey hackleyenlerin a.q lar