Follow us on Twitter!
The measure of a mans life is not how well he dies, but how well he lives.
Thursday, April 17, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 25
Guests Online: 23
Members Online: 2

Registered Members: 82815
Newest Member: medjiking
Latest Articles
View Thread

HellBound Hackers | Computer General | Increasing Security

Page 2 of 2 < 1 2
Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 19-08-08 23:49
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 20-08-08 00:02
alldatizholy wrote:
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....


If he was using your admin cookies, you have a vulnerability so that he could get your cookies. Check your site for XSS vulnerabilities.
Author

RE: help with website security.....

alldatizholy
Member

Your avatar

Posts: 41
Location: Colorado Springs, CO
Joined: 11.06.07
Rank:
Newbie
Warn Level: 5
Posted on 23-08-08 02:24
thats what i did....thats how i found out...
aciddrop808 http://www.angelicpainta2.webs.com
Author

RE: help with website security.....


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 23-08-08 02:38
alldatizholy wrote:
i finally fixed it....he was using my admin cookies.....thnx everyone for helping out, i can finally get my site going....


In admin actions, is everything tokenized?
Otherwise he could use a different vulnerability to execute admin actions.


Page 2 of 2 < 1 2