Configuration Gesior AAC Exploits! [All Versions]

[stian]

:O i use Gesior acc , when the news Acc will be launched?

Noone here as far as I know is making a news Acc. But the Marlex will come when 0.4 will be released and Mordern ACC acan be checked out from SVN already.

 

[Red]

Great, they changed widnet's name, probably trying to get away from all the discussion about him, or he's going to try and attempt to hack more people (hopefully not)

DONT BE CONFUSED!

widnet = Liugarneth

Keep your eyes out and check your codes before you run them!

Red

 

[semary]

nice

 

[Dulin]

Ye, also you were fooled too cuz your "team" is adding exploit you gesior aac so they can hack any server without including you. I got fooled once but you're being fooled right now and more and more by the day..

Where do you see exploits and backdoors codes in gesior aac? Stop write stupid posts. You don't knew anything, and saying stupidity.

 

[Red]

First post updated.

Red

 

[Kekox]

@Up
Why is this thread then?
To let people know all the xploits so there is, learn how to read and then post..

 

[Swiff]

I always think on ot tools (including complete distros or even sources) as something I borrow from the developers, as it will take a long time before I start checking a source-code (which I wouldn't understand anything of) trougholy before compiling it. Or even bother compiling one as I could just download a pre-compiled console. It will most likely also take a long time before I understand what the trojan.generic is doing in most servers, another reason why it's good to look at the program as I'm borrowing, because i didn't buy it or create it.

Just to make sure noone missunderstands, I'd hate it if someone stole my hard work.


Open Tibia rox, tliff.de ftw!

 

[Silverhaze]

Nice nice nice , mr.anonymous and red !

 

[RobsonDias]

oh

Thanks

 

[Lobaugan]

O-m-g, you are genious thanks for this so mach!

 

[Lobaugan]

omg, man thanks i fixed all in my wrong acc

 

[Paxton]

omg, man thanks i fixed all in my wrong acc

'alright'

 

[Don Daniello]

PHP Injection in buypoints.php

An old exploit not posted here I think, but which I have removed from my gesior aac lately.
In buypoints.php in function check_code_dotpay and probably check_code_daopay there is a possibility of code injection.
An example of code which we need to post in code field to get premium points for free:

[***]

To protect your acc you have to change these function in buypoints.php to:

function check_code_daopay($appcode, $prodcode, $pin)
{
    $handle = fopen("https://daopay.com/svc/pincheck?appcode=".$appcode."&prodcode=".$prodcode."&pin=".$pin, 'r');  
        if(ereg('[^0-9A-Za-z]',$appcode) || ereg('[^0-9A-Za-z]',$prodcode) || ereg('[^0-9A-Za-z]',$pin))  {
                die("xD");
        }
    if ($handle)
    {
        $status = fgets($handle, 128);
        fclose($handle);
        if($status[0] == 'o' && $status[1] == 'k')
            $return = 1;
        else
            $return = 2;
    }
    else
        $return = 3;
    return $return;
}

function check_code_dotpay($code, $posted_code, $user_id, $type)
{
        if(ereg('[^0-9A-Za-z]',$code) || ereg('[^0-9A-Za-z]',$posted_code) || ereg('[^0-9A-Za-z]',$user_id) || ereg('[^0-9A-Za-z]',$type))  {
                die("Nice try !");
        }
        $handle = fopen("http://dotpay.pl/check_code.php?id=".$user_id."&code=".$code."&check=".$posted_code."&type=".$type."&del=0", 'r');
    $status = fgets($handle, 8);
    $czas_zycia = fgets($handle, 24);
    fclose($handle);
    $czas_zycia = rtrim($czas_zycia);
    return array($status, $czas_zycia);
}

 

[Paxton]

Yes, it's been posted on forum some time ago. Anyway good.

 

[JuanC]

An old exploit not posted here I think, but which I have removed from my gesior aac lately.
In buypoints.php in function check_code_dotpay and probably check_code_daopay there is a possibility of code injection.
An example of code which we need to post in code field to get premium points for free...

What example is this? :S

 

[Don Daniello]

It's been removed since it's not too wise to post it here as many acc makers are not yet patched. But if you can, you should easily invent your own code

 

[Red]

latestnews.php

I suggest removing your news ticker, there is an exploit that allows users to create an account and write their own news. As you think this may not be dire, with the correct script, they could disable people from viewing your website, and redirecting it to theirs. If somebody knows how to patch this, I'd love to post it besides just "Delete it". But I guess I will just write this because my tutorial is more for awareness and pointing out all Gesior exploits, intentional or not. Thank you.

Thread updated.

Red

 

[Maraths]

Dont need to remove new tickers, its easy to fix, in config.php, in ACC MAKER OPTIONS config, add

$config['site']['access_tickers'] = 3;

 

[Red]

Bumping. If there has been a release of Gesior AAC w/o these exploits, let me know. I'll post a URL on the frontpage and quit bumping.

Red

 

[Cykotitan]

why not focus on dropping POT and cleaning up the few remaining scripts, it might still have some potential

bug tracker is "sort of" an exploit because it doesn't use htmlspecialchars for some fields