My site was hackd a few day ago. I hv found the way, that the hacker used our uploader to upload a phtshell, and hackd us! I hv stoped upload option at the moment to stop hacking again. But they said that, they can hack our site in many way. I have a request to u all my sinior friend, plz let me know, whats are the ways to hack a site? Is it possible to hack a site by imput a milicious text in shoutbox/forum post/guestbook/ etc? Plz give a info about it
-
-
yeah form upload, sqli injection ,DDos, XSS, RFI and many more -
ya, i hv some idea about sql injection and uploader, but no about other! Plz say some details, and hw to stop them?Originally posted by wapmetal View PostComment
-
I like XSS its stealthy before you realise your being injected BOOM. You can stop it uploader easy deny php .php js .js asp and .asp then it should work. For XSS cover your forms SQL just deny magic quotes.BakGat
Code:class Counter { public: void Count(); int ReadDisplay(); private: int CurrentCount; };
Back up my hard drive? How do I put it in reverse?My Community
BakGat
sigpicComment
-
yawn. Dnt wori about d rest methods. Just cover ur ass in fileration. Filter ANY data comin into ur site. Only 1% of ppl here knw how to implement d other methods and 1% of those people who do arent interested in ur 2-bit wapsite. :-) dnt let them intimidate u wit big words, remember wat they say bout empty cans makin d most noise?Comment
-
yeah.. who knows how to use RFI, DDOS they will not interested bout a normal wapsites.but some crack headers can try coz they want as much as fame tellin others that they r hackerZ LOL.
Comment
-
lol... to test ur site secure or not download some addons on mozilla firefox, like , wml plugin, sql injector.. etc.. search in web development section in addons.mozilla.com
though i hv seen 1=1 string works on most lavalair...Comment
Comment