TheTime Posted May 10, 2013 Report Share Posted May 10, 2013 @The Time, ce versiune de Chrome folosesti?26Screenshot by Lightshot Quote Link to comment Share on other sites More sharing options...
Sega Posted May 10, 2013 Report Share Posted May 10, 2013 (edited) Cat pot sa rad, acum a modificat sursa.Cat despre filtru, l-ai editat acum, cine a incercat inainte, a observat ca "<>&" erau transformate in entities si acum nu mai sunt... Pun pariu ca tu nu poti sa treci de xss_clean() .TRUE SHIT.Trebuie mutat unde ii este locul: cosul de gunoi Edited May 10, 2013 by Sega Quote Link to comment Share on other sites More sharing options...
Mecanik Posted May 11, 2013 Author Report Share Posted May 11, 2013 @sweby: sa-mi sugi pula idiotule,cand vei face tu un CMS complet,asa cum facut eu,sa imi explici functii PHP.Ai citit si tu 2/3 tutoriale pe google,si vii acuma sa-mi dai lectii?!Nu poti sa treci de challenge? : sugi pula.@TheTime: bravo frate,ai valoare. Quote Link to comment Share on other sites More sharing options...
Sweby Posted May 11, 2013 Report Share Posted May 11, 2013 @sweby: sa-mi sugi pula idiotule,cand vei face tu un CMS complet,asa cum facut eu,sa imi explici functii PHP.Ai citit si tu 2/3 tutoriale pe google,si vii acuma sa-mi dai lectii?!Nu poti sa treci de challenge? : sugi pula.Ma abtin la comentarii legate de cms-ul tau complet .Pai daca tie ti-a fost greu sa citesti 2-3 tutoriale pe google, ti le predau eu.Si daca nu te-ai prins, am trecut de challenge . Quote Link to comment Share on other sites More sharing options...
Mecanik Posted May 11, 2013 Author Report Share Posted May 11, 2013 @sweby : bravo,ai trecut de challenge. (sper ca nu tiai dat drumul in pantaloni). Quote Link to comment Share on other sites More sharing options...
abraxyss Posted May 11, 2013 Report Share Posted May 11, 2013 (edited) http://istchall.uv.ro/index.php?sex=qwe%3Ca%20href%3Dja%26%23118%3B%26%2397%3B%26%23115%3B%26%2399%3B%26%23114%3B%26%23105%3B%26%23112%3B%26%23116%3B%26%2358%3B%26%2397%3B%26%23108%3B%26%23101%3B%26%23114%3Bt%28document.cookie%29%3Eqwe%3C%2fa%3EIa, luati cu pita Ce? Doar daca trebuie putina interactiune nu inseamna ca nu se pune.. suck it, merge, done in 2 minutes. Edited May 11, 2013 by abraxyss Quote Link to comment Share on other sites More sharing options...
sarmulita Posted May 11, 2013 Report Share Posted May 11, 2013 document cookie ? Quote Link to comment Share on other sites More sharing options...
Sega Posted May 11, 2013 Report Share Posted May 11, 2013 @abraxyss nu te mai umfla in pene. Initial cand a postat challenge-ul, era htmlentities(), si daca puneamistchall.uv.ro/index.php?sex=<h1>muie gm_dizzy</h1>Nu-l injecta.Dizzy da-ti cu parul in cap si inchide pc. Quote Link to comment Share on other sites More sharing options...
Mecanik Posted May 11, 2013 Author Report Share Posted May 11, 2013 mai bine ziceti MERSI ca am scos htmlspecialchars. Singurul REAL care a trecut de filtru meu + htmlspecialchars a fost TheTime!nu inteleg ce rost au discutiile astea aiurea...daca nu iti place,nu il faci si gata.@abraxyss : mai bine ai lua BAN,ca ai incercat se le furi cookie-urile la oameni. Quote Link to comment Share on other sites More sharing options...
Active Members dancezar Posted May 11, 2013 Active Members Report Share Posted May 11, 2013 ce cookieuri sa fure ma de pe domeniul tau? El ti-a afisat docuement.cookie adica cookieurile de pe domeniul tau Quote Link to comment Share on other sites More sharing options...
SilenTx0 Posted May 12, 2013 Report Share Posted May 12, 2013 mai bine ziceti MERSI ca am scos htmlspecialchars. Singurul REAL care a trecut de filtru meu + htmlspecialchars a fost TheTime!nu inteleg ce rost au discutiile astea aiurea...daca nu iti place,nu il faci si gata.@abraxyss : mai bine ai lua BAN,ca ai incercat se le furi cookie-urile la oameni.Genial!)))) Nu mai fura ba abraxyss! Quote Link to comment Share on other sites More sharing options...
abraxyss Posted May 16, 2013 Report Share Posted May 16, 2013 @Dizzy, lasa-te...@Sega, de unde kkt sa stiu cum era filtrul inainte?Ia pune-l cel original si da un pm. Quote Link to comment Share on other sites More sharing options...