Login Register




IP.Board forum hack? filter_list
Author
Message
IP.Board forum hack? #1
Hello, im new here :blackhat: , this is my 1st topic, and I want to know if a IP.Board IPS forum can be hacked, if i found a vulnerability ?

Reply

Re: IP.Board forum hack? #2
Well, if you found a vulnerability, it is highly likely it can be exploited. There are very few vulnerabilities on IPB from what I have heard.
[Image: 7ajmN5P.jpg]

Discord: Oni#6099
Skype: oni_sl
Telegram: oni_sl (Add)
Steam: Oni (Add)

Reply

RE: IP.Board forum hack? #3
Yes, i think i have the vulnerablility but im not sure if it is one or not and im not sure how to hack it.....
ERROR:

SQL error: Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)
SQL error code: 2002
Date: Tuesday 16th April 2013 07:39:42 PM


----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Date: Tue, 16 Apr 2013 19:39:42 +0000
Error: 2002 - Can't connect to local MySQL server through socket '/var/lib/mysql/mysql.sock' (2)
IP Address: 82.77.103.184 - /index.php?app=core&module=global§ion=login&do=process
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

.--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------.
| File | Function | Line No. |
|----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------|
| admin/sources/handlers/han_login.php | [login_external].authenticate | 684 |
'----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------'
| admin/sources/handlers/han_login.php | [han_login].loginAuthenticate | 340 |
'----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------'
| admin/applications/core/modules_public/global/login.php | [han_login].verifyLogin | 445 |
'----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------'
| admin/applications/core/modules_public/global/login.php | [public_core_global_login].doLogin | 107 |
'----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------'
| admin/sources/base/ipsController.php | [public_core_global_login].doExecute | 306 |
'----------------------------------------------------------------------------+-------------------------------------------------------------------------------+-------------------'

Reply

RE: IP.Board forum hack? #4
Errors are different from vulnerabilities. That's an error. Although IPBoard still can be exploited through vulnerabilities if you find them. I'm not sure if they're any out there. Google it.
[Image: BAvhP6h.png]
Code:
[5:42:25 PM] i0xillusi0n: Breshie don't bust a nut over chloe now
[5:42:31 PM] Entity: fapfapfapfapfapfapfapfapfapfap
[5:42:33 PM] Jigglypuff | SL: EWWWWWWWWWWWWWWWWWWWWWWWWWWWWWWW

Reply

Re: IP.Board forum hack? #5
I don't believe that's a vulnerability. SQL errors happen all the time. It doesn't necessarily mean that the page is vulnerable. Error-based injection exists, but I doubt that is possible with what you found.
[Image: 7ajmN5P.jpg]

Discord: Oni#6099
Skype: oni_sl
Telegram: oni_sl (Add)
Steam: Oni (Add)

Reply

RE: IP.Board forum hack? #6
What version is it? I have a private 0day from way back on IPB 3.2x that has never been patched as only me and a few friends have it.

Reply






Users browsing this thread: 1 Guest(s)