|
tranceaddict hackable ? FAO TA Admin.
|
View this Thread in Original format
| DJ RozzeR |
I was not sure where to post this information on the forums but, I have been playing around with the site to look for its week points, don't worry i ain't done anything but I have seen a big hole in your security on the Forums. take a look at this
Edited by Blik |
|
|
| AndiH |
wow...you seem to be a |33t hacker :rolleyes:
vbulletin cannot be hacked the way you described it...(feel free to hack my account...:p) |
|
|
| Blik |
PM Swamper and don't post it in public on the board dude, I thought you would be smarter than that!!
closed |
|
|
| Swamper |
Well Blik told me what you said.
Here's some insight:
The s=xxxxxxxxxxxxxxxxxx session ID that is present in the URL links your IP, browser version/type, and time into an algorithm and pumps out that string - now in order for you to see or access something someone else is seeing you have to have that session ID and match all of the other variables.
You're not a hacker m8, don't waste your time on here, I do network security in my spare time... :D
besides, even if you did find a real exploit there are ways to report it - www.vbulletin.com for one, or feedback/PM to me
What you did is sort of like putting a sign on somebody's lawn saying that they left their keys in their front door but you're not sure if it's the right key but you just wanted to let them know. (i.e. putting a message in their mailbox would've sufficed) |
|
|
|
|
