Follow us on Twitter!
I'd prefer to die standing, than to live on my knees - Che Guevara
Sunday, April 26, 2015
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 25
Guests Online: 22
TeamSpeak Online : 5 Members Online: 3

Registered Members: 88060
Newest Member: balachandarps
Latest Articles
Our sponsor needs your help!


One of our sponsors needs your help, http://www.virginmediabusiness.co.uk/pitch-to-rich/grow/krystal-hosting/
Go check out their video and Don't forget to vote !


~ Thanks for your help
HBH
View Thread

HellBound Hackers | Computer General | Increasing Security

Page 2 of 2 < 1 2
Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 19-08-08 23:49
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 20-08-08 00:02
alldatizholy wrote:
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....


If he was using your admin cookies, you have a vulnerability so that he could get your cookies. Check your site for XSS vulnerabilities.
Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 23-08-08 02:24
thats what i did....thats how i found out...
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 23-08-08 02:38
alldatizholy wrote:
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....


In admin actions, is everything tokenized?
Otherwise he could use a different vulnerability to execute admin actions.


Page 2 of 2 < 1 2