Fiestaturbo.com
18-08-2004, 10:26 AM
#1
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Fiestaturbo.com
I didn't realise I was registered on here!
Anyway, Fiestaturbo.com's forums have just been hacked and it looks as though the same board is used here. Just to forewarn you, the guys username was Zerohack...
Anyway, Fiestaturbo.com's forums have just been hacked and it looks as though the same board is used here. Just to forewarn you, the guys username was Zerohack...
18-08-2004, 11:06 AM
#2
Wahay!! I've lost my Virginity!!
Join Date: Jun 2004
Location: london
Posts: 58
Likes: 0
Received 0 Likes
on
0 Posts
I wondered what was wrong with it this morning i thought it was just my computer. Hope they sort it out and get on-line again. What a dickhead this guy must be 
.
.
18-08-2004, 11:12 AM
#3
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
I just hope the board was backed up recently, by the looks of it he's deleted it...
First there was a post in the main forum, then a new forum called ZEROHACK, then the colour scheme went. After a few 'how childish are you?' posts in there, the whole board went...
He was apparantly using some sort of loophole in version 2 of the phpBB which gives a user admin rights...
If anyone knows anything more please let us know
Thanks.
First there was a post in the main forum, then a new forum called ZEROHACK, then the colour scheme went. After a few 'how childish are you?' posts in there, the whole board went...
He was apparantly using some sort of loophole in version 2 of the phpBB which gives a user admin rights...
If anyone knows anything more please let us know
Thanks.
for Stu and Pet hope Pet has this site well locked down? 
18-08-2004, 01:41 PM
#7
PassionFord Post Whore!!
If a hacker wanted to hack here then they would, its just a game of cat and mouse to them.
There are sites like this for hackers where they have games between themselves to hack sites/forum's, whatever flicks your switch IMO.
There are sites like this for hackers where they have games between themselves to hack sites/forum's, whatever flicks your switch IMO.
Trending Topics
18-08-2004, 01:52 PM
#8
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
I think he was an amateur, he posted a link to where he found the information on the loophole, and the main site itself is untouched.
http://www.fiestaturbo.com/phpBB/index.php
as you can see, he also hasn't left his mark saying he's hacked it.
Probably some teenager who hates Fiesta's and tried to be clever.
http://www.fiestaturbo.com/phpBB/index.php
as you can see, he also hasn't left his mark saying he's hacked it.
Probably some teenager who hates Fiesta's and tried to be clever.
18-08-2004, 02:03 PM
#10
Virgin
Join Date: Aug 2004
Posts: 9
Likes: 0
Received 0 Likes
on
0 Posts
Hi fellas i'm on fiestaturbo.com, just came on here to find out what's going on with it. I was on at the exact time it got hacked and the guy said we had version 2.0.0. this means f.a. to me but it might be of interest to here! our forum has been killed by some twat who posted that 'this IS my life!' (when told, get a fuckin life). Name is zerohack. and the link he set up on FT.com was to download the latest anti-hack stuff, basically a big 'i told you so'! as some guy put (think it was chris2i), its like breaking into your car to show you u need an alarm! take it easy guys, this is a wicked site as well i've never noticed it before
James
James
18-08-2004, 02:12 PM
#13
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Originally Posted by kartracer69
Hi fellas i'm on fiestaturbo.com, just came on here to find out what's going on with it. I was on at the exact time it got hacked and the guy said we had version 2.0.0. this means f.a. to me but it might be of interest to here! our forum has been killed by some twat who posted that 'this IS my life!' (when told, get a fuckin life). Name is zerohack. and the link he set up on FT.com was to download the latest anti-hack stuff, basically a big 'i told you so'! as some guy put (think it was chris2i), its like breaking into your car to show you u need an alarm! take it easy guys, this is a wicked site as well i've never noticed it before
James
James
He was rather childish in his approach and obviously hadn't thought it through properly as he contradicted himself with what I said above, and also he created a forum only to delete the board minutes later.
It just doesn't make sense - some people need to get a life
18-08-2004, 02:14 PM
#14
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Originally Posted by Jim Galbally
Powered by phpBB 2.0.6 Š 2001, 2002 phpBB Group
PassionFord.com by: Petrucci
PassionFord.com by: Petrucci
18-08-2004, 02:15 PM
#17
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Originally Posted by kartracer69
childish yes but look what happened! he didn't really create a forum, he did that topic, changed the colours and killed it! but this site is heaving with info etc. But want FT back! 
18-08-2004, 02:20 PM
#21
PassionFord Post Whore!!
Originally Posted by Petrucci
don't worry, our version is BASED on the 2.0.6 and heavily rewritten, secured, tweaked and protected by myself... be confident, mates 
18-08-2004, 02:21 PM
#22
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Originally Posted by kartracer69
'fraid so. Don't think he took my 'do you ever meet women' post too lightly though...
twat.
Glad to see the board here's safe though
18-08-2004, 02:26 PM
#24
Too many posts.. I need a life!!
Join Date: May 2003
Location: Portsmouth
Posts: 863
Likes: 0
Received 0 Likes
on
0 Posts
Bit more info on what's happened to FT here.
Exploit was allegedly un-resolved until phpBB v 2.0.10, according to the link helpfully posted by ft's hacker.
Nowt to worry too much about folks
/Munk
Exploit was allegedly un-resolved until phpBB v 2.0.10, according to the link helpfully posted by ft's hacker.
Nowt to worry too much about folks
/Munk
18-08-2004, 02:31 PM
#27
Virgin
Thread Starter
Join Date: May 2004
Posts: 10
Likes: 0
Received 0 Likes
on
0 Posts
Originally Posted by Project ST
Bit more info on what's happened to FT here.
Exploit was allegedly un-resolved until phpBB v 2.0.10, according to the link helpfully posted by ft's hacker.
Nowt to worry too much about folks
/Munk
Exploit was allegedly un-resolved until phpBB v 2.0.10, according to the link helpfully posted by ft's hacker.
Nowt to worry too much about folks
/Munk
18-08-2004, 02:52 PM
#30
Wahay!! I've lost my Virginity!!
Join Date: Jul 2003
Posts: 88
Likes: 0
Received 0 Likes
on
0 Posts
Reports | Privilege Escalation Vulnerability on phpBB 2.0.0
{2nd Aug 2002}
On August 25th 2002 Rootsecure.net discovered a privilege escalation vulnerability in "phpBB 2.0.0" (Powered by phpBB 2.0.0 Š 2001 phpBB Group) which allows any person with a "user" level account to escalate their privileges to that of "administrator" level, and therefore gain full unrestrictive control of a forum.
A coding error exists in the admin_ug_auth.php script (used to set permissions), so although admin rights are needed to view the page, anyone can post data back to it "no questions asked. Therefore, if you already know what kind of response the board is looking for, you can go straight ahead and tell it directly that you want to give admin rights to a specific account.
Update: Modified/hacked versions of phpBB (e.g. the phpbbnuke port for phpnuke55/56) are also thought to be open to Rootsecure.net's phpBB exploit.
See securityfocus.com for details.
Note: phpBB versions above 2.0.0 are not vulnerable.
{2nd Aug 2002}
On August 25th 2002 Rootsecure.net discovered a privilege escalation vulnerability in "phpBB 2.0.0" (Powered by phpBB 2.0.0 Š 2001 phpBB Group) which allows any person with a "user" level account to escalate their privileges to that of "administrator" level, and therefore gain full unrestrictive control of a forum.
A coding error exists in the admin_ug_auth.php script (used to set permissions), so although admin rights are needed to view the page, anyone can post data back to it "no questions asked. Therefore, if you already know what kind of response the board is looking for, you can go straight ahead and tell it directly that you want to give admin rights to a specific account.
Update: Modified/hacked versions of phpBB (e.g. the phpbbnuke port for phpnuke55/56) are also thought to be open to Rootsecure.net's phpBB exploit.
See securityfocus.com for details.
Note: phpBB versions above 2.0.0 are not vulnerable.
18-08-2004, 03:13 PM
#32
Too many posts.. I need a life!!
Join Date: May 2003
Location: Portsmouth
Posts: 863
Likes: 0
Received 0 Likes
on
0 Posts
Ahhh, Ollie, didn't realise that as I thought someone (perhaps our new best Hacking mate ) advised an upgrade to PHP x.10.
(cor, I'm not wrong again am I? That would be unusual.... not )
) advised an upgrade to PHP x.10.(cor, I'm not wrong again am I? That would be unusual.... not
)
Thread
Thread Starter
Forum
Replies
Last Post
paceo
General Car Related Discussion.
23
19-04-2006 07:47 PM
