Please ask questions ONLY in this topic.

Re: Level Up Not Working?

Post by sinewave on Thu Jul 24, 2008 7:05 am
([msg=8138]see Re: Level Up Not Working?[/msg])

I've got the same problem, but my user agent is ok ...

I'm logged to the admin page, modified the url, and always get 'begone vile fiend'.

Am I missing a step ?
sinewave
New User
New User
 
Posts: 1
Joined: Fri Jul 18, 2008 1:04 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by dmarburgg on Thu Oct 09, 2008 9:59 pm
([msg=13477]see Re: Please ask questions ONLY in this topic.[/msg])

i don't know about the privilege escalation, user agent or cookie stealer for this mission.

i just completed it without any of these.

in the final steps all i did was log in with one of the accounts i got from the db and altered the URL to get what i needed.

it was a little frustrating as i spent a while using inline java trying to edit the radio buttons when all i had to do was alter the URL lol

javascript:alert(document.body.childNodes[1].childNodes[0].childNodes[0].childNodes[0].childNodes[4].childNodes[20].innerHTML='<input name="file" value="************" type="radio">space')
dmarburgg
New User
New User
 
Posts: 1
Joined: Thu Oct 09, 2008 8:34 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Theist17 on Sat Oct 11, 2008 9:26 pm
([msg=13578]see Re: Please ask questions ONLY in this topic.[/msg])

Okay, I got a list of .gif's and a few other things, but I have no idea what to do with them. Drop me a PM with hints, unless others are having the same brain cell deficiency as me.

Edit: How stupid of me! :o

I totally should have thought of actually using them outside of PERL!
Theist17
New User
New User
 
Posts: 12
Joined: Fri Sep 05, 2008 3:25 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by Liquid_Obsidian on Tue Oct 14, 2008 8:46 am
([msg=13674]see Re: Please ask questions ONLY in this topic.[/msg])

Hello all...
Found my way to the RWradio thingy.
My prob is how to escakate my privileges to mod/adm
tried mascarading the edit form in all way that came to my mind (specially added a level input)/with and without beeing logged in, furnishing false id input & id url param (and not giving any) and blah blah blah
found out about the mod adding page (unsuccessfull as you can guess...)
could someone gimme a little hint about this ?

Thnks
Liquid_Obsidian
New User
New User
 
Posts: 8
Joined: Sun Oct 12, 2008 12:50 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by desiredtoe on Wed Oct 15, 2008 1:52 pm
([msg=13743]see Re: Please ask questions ONLY in this topic.[/msg])

I got to the mod section, and where it asks to input an sqlite query command or something?
I'm not sure what to do there, I tried using SQL injections, but don't I need the table names for that?
Please help if you can. :c
desiredtoe
New User
New User
 
Posts: 29
Joined: Thu Jul 17, 2008 9:36 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by SpiderDude on Wed Oct 15, 2008 5:27 pm
([msg=13753]see Re: Please ask questions ONLY in this topic.[/msg])

i got the db, the mod account(wonder****) and i got the radio thing

But what do i do now?!

i found the space64/src.tar.gz directory but it wont let me access it
im not even sure i need that dir
When i type the dir with the /var/ it says FAILED TO OPEN
when i remove the /var/ it says Access Denied

i searched the cookies and i didnt find the cookie that prevents the access and i tried several JS injections, nothing seems to work



What do i do guys? im stuck!
SpiderDude
New User
New User
 
Posts: 24
Joined: Tue Jul 08, 2008 3:38 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by desiredtoe on Wed Oct 29, 2008 2:08 pm
([msg=14243]see Re: Please ask questions ONLY in this topic.[/msg])

Hey, I'm at the SQLite part, and I found the radio's table that held the data of their users and news and ect.
Now, in the source I see that it is getting me the info from the radio's database, so am I supposed to change it so that it gets me the info I need from the budget serve's database?
If so, I know their database name from the piping, but when I put in their database name instead of the radio's, it still wont work. I tried using directory transversal and everything, and hint or point me in the right direction?

Any help would be appreciated thanks. (:
desiredtoe
New User
New User
 
Posts: 29
Joined: Thu Jul 17, 2008 9:36 am
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by godofcereal on Thu Oct 30, 2008 10:44 am
([msg=14279]see Re: Please ask questions ONLY in this topic.[/msg])

ok iv been stuck on this last bit for awhile now
i have changed the url to blah
but it still wont bloody work.
any clues?

Nevermind got it done. And broke my toe thanks to it.
Im off, last year of school and all, I had something longer but char limit fucked that up. So yeah, had a good run here. Thanks for the memories. Thanks to the staff and users.

Best regards, your posting whore,
godofcereal

p.s. Defience, you the man ;)
User avatar
godofcereal
Addict
Addict
 
Posts: 1068
Joined: Wed Aug 20, 2008 6:11 pm
Location: ireland
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by SpiderDude on Fri Nov 07, 2008 7:09 pm
([msg=14633]see Re: Please ask questions ONLY in this topic.[/msg])

aww cmon this is just not fair
i have the correct url, but it says Failed to open, and sometimes it says Access denied
when i download the files without the src.tar.gz in the url, and only with the space46 it gives me a file to download, but the mission isnt completed...

Nines....Please....HELP
SpiderDude
New User
New User
 
Posts: 24
Joined: Tue Jul 08, 2008 3:38 pm
Blog: View Blog (0)


Re: Please ask questions ONLY in this topic.

Post by desiredtoe on Thu Nov 13, 2008 2:57 pm
([msg=14936]see Re: Please ask questions ONLY in this topic.[/msg])

I need a bit of help on this, mostly on what I wrote before, please pm me, I wanna get this mission over.
Any help is appreciated, thanks~
desiredtoe
New User
New User
 
Posts: 29
Joined: Thu Jul 17, 2008 9:36 am
Blog: View Blog (0)


PreviousNext

Return to (Real 11) BudgetServ Web Hosting

Who is online

Users browsing this forum: No registered users and 0 guests