next »

[Guest]

...loading shoutbox...

[Arkav]

What happened here? sombody exploited your forum and shoutbox?
I keep seeing a red text image in the shoutbox that says "hacked by BHack Crew"
if you need help with fixing stuff or something else like finding those guys just let me know.

[Soliele]

I noticed that too. I'm really freaked out now...

[Arkav]

you shouldn't be freaked out,
it's probably nothing that big,
there are some security issues with most things which are done in web languages like these and when someone finds those vulnerabilities and spread them, well there are group of people who enjoy damaging ("defacing") websites/forums randomly...

Consider that this version of SMF forums is quite old and it is easy to find exploits for it online. I've been posting about this issue time ago, but it looks like people here are not very likely to take my words into consideration on this matter, not sure why.

Well, again, these things are quite easy to fix. The shoutbox is still giving a redirection to that picture "hacked by..." and I hope your admins are able to handle this kind of problems. I would be glad to help in this but it's your choice.

[Amanda]

You're awesome Arkav =)
That's all I have to say. lol *hugs*

[Arkav]

lol *hugs* manda

[Arkav]

Fixed it for now,
it's a silly exploit but can be problematic if people use it for bad purposes.
So my suggestion is still to update to newest version of SMF and check for a newer version of shoutbox aswell

[RAVENOUS]

but it looks like people here are not very likely to take my words into consideration on this matter, not sure why.

You have bad hair and you smell funny.

Peace

[Arkav]

but it looks like people here are not very likely to take my words into consideration on this matter, not sure why.

You have bad hair and you smell funny.

Peace

Lol, drank something alchoolic this time, END?
The shoutbox is fixed by the way, at least until someone else doesn't feel like injecting it with more html

[RAVENOUS]

but it looks like people here are not very likely to take my words into consideration on this matter, not sure why.

You have bad hair and you smell funny.

Peace

Lol, drank something alchoolic this time, END?
The shoutbox is fixed by the way, at least until someone else doesn't feel like injecting it with more html

Yeah, I noticed you doing the same thing to the shoutbox really, same principle fundamentally when you get down to it. That's why I stopped messing with JCyouth ages ago. Couldn't keep a line drawn in the sand, because I kept smearing it when I'd cross over, even when it wasn't prompting "apolocolypse". Your continued usage of coding would indeed prompt any passerby looking for exploits, to exploit what has been brought to their attention as well. That's why they say where there's one vulture, there's soon to be many.

Thank you though for correcting the issue, you have our thanks.

Peace.

[Arkav]

yeah, that's true that I used the same exploit to make my text coloured.

fortunately it seems that now only registered members can write on shoutbox. Also it would be quite easy to avoid the problem completely by updating forum+mods (shoutbox in this case)

Anyway, if you ever need some help with this kind of stuff let me know, I enjoy it.