Evading the minibb profanity filter.

General technological topics without their own forum go here

Evading the minibb profanity filter.

Post by 3vilp4wn on Sun Apr 21, 2013 11:26 pm
([msg=75275]see Evading the minibb profanity filter.[/msg])

Hello!
Here's just a quick explanation of how I just got past minibb's profanity filter (This may also work for other software). I hope you learn something from this, or enjoy reading it. For those who haven't heard, minibb is a light bb software. I decided to try to hack it. It took me about 30 seconds to get past the profanity filter. I just added a U+202e (Unicode for "reverse everything that comes after it"), then typed ".tihs siht kcuf" (Fuck this shit backwards.)

Here's an example

I may be updating this thread in the future if I hack/exploit them more (Unicode can open up XSS filter bypassing tricks).

Have fun,
3vilp4wn

‮testing...
Last edited by 3vilp4wn on Fri May 03, 2013 1:22 am, edited 1 time in total.
Do not mistake understanding for realization, and do not mistake realization for liberation
Evil Ninja Hackers
???
٩(͡๏̯͡๏)۶

1A4EAMboaXpgvUSmtRbVRqbfJrbyuGhyoo
User avatar
3vilp4wn
Poster
Poster
 
Posts: 144
Joined: Sun Feb 10, 2013 2:05 am
Location: The darkness.
Blog: View Blog (0)


Re: Evading the minibb profanity filter.

Post by -Ninjex- on Mon Apr 22, 2013 12:09 am
([msg=75276]see Re: Evading the minibb profanity filter.[/msg])

3vilp4wn wrote:I may be updating this thread in the future if I hack/exploit them more (Unicode can open up XSS filter bypassing tricks).



Remember, nothing illegal.
If you're not willing to learn, no one can help you. If you're determined to learn, no one can stop you.⠠⠵
The absence of evidence is not evidence of absence.
I can explain it for you, but I can't understand it for you.
User avatar
-Ninjex-
Addict
Addict
 
Posts: 1238
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)


Re: Evading the minibb profanity filter.

Post by 3vilp4wn on Mon Apr 22, 2013 12:44 am
([msg=75279]see Re: Evading the minibb profanity filter.[/msg])

-Ninjex- wrote:
3vilp4wn wrote:I may be updating this thread in the future if I hack/exploit them more (Unicode can open up XSS filter bypassing tricks).



Remember, nothing illegal.


Haha, nope:
minibb demo wrote:What to try here?
You can click any buttons here, post any messages, create any topics, flood it, spam it, hack it - just try it out.

(emphasis mine)
Do not mistake understanding for realization, and do not mistake realization for liberation
Evil Ninja Hackers
???
٩(͡๏̯͡๏)۶

1A4EAMboaXpgvUSmtRbVRqbfJrbyuGhyoo
User avatar
3vilp4wn
Poster
Poster
 
Posts: 144
Joined: Sun Feb 10, 2013 2:05 am
Location: The darkness.
Blog: View Blog (0)


Re: Evading the minibb profanity filter.

Post by -Ninjex- on Mon Apr 22, 2013 2:53 am
([msg=75282]see Re: Evading the minibb profanity filter.[/msg])

3vilp4wn wrote:
-Ninjex- wrote:
3vilp4wn wrote:I may be updating this thread in the future if I hack/exploit them more (Unicode can open up XSS filter bypassing tricks).



Remember, nothing illegal.


Haha, nope:
minibb demo wrote:What to try here?
You can click any buttons here, post any messages, create any topics, flood it, spam it, hack it - just try it out.

(emphasis mine)


A link would be best :D
If you're not willing to learn, no one can help you. If you're determined to learn, no one can stop you.⠠⠵
The absence of evidence is not evidence of absence.
I can explain it for you, but I can't understand it for you.
User avatar
-Ninjex-
Addict
Addict
 
Posts: 1238
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)


Re: Evading the minibb profanity filter.

Post by 3vilp4wn on Tue Apr 23, 2013 8:11 pm
([msg=75301]see Re: Evading the minibb profanity filter.[/msg])

-Ninjex- wrote:A link would be best :D


Easy.
Do not mistake understanding for realization, and do not mistake realization for liberation
Evil Ninja Hackers
???
٩(͡๏̯͡๏)۶

1A4EAMboaXpgvUSmtRbVRqbfJrbyuGhyoo
User avatar
3vilp4wn
Poster
Poster
 
Posts: 144
Joined: Sun Feb 10, 2013 2:05 am
Location: The darkness.
Blog: View Blog (0)



Return to General

Who is online

Users browsing this forum: No registered users and 0 guests