Jump to content

[Share]Endhant BUG with private store!!!!


ZeuZ

Recommended Posts

  • 2 weeks later...

Well i found something!!!But not very sure! ok here we go:first u need much scrolls and of curse item what u want enchant

 

 

STEP:

 

1. put in F1 start private store sell *and put youre items to sell*

2.click START or begin

3.now press abort

4.now put to F2 weapon ench scroll  !!!

5,now press F2 * but dont enchant*

6.then press F1 *Private store sell* and press begin or start

7.then u  have this weapon ench window opened same time if u sell this same weapon ...press enchant weapon!

8.weapon is encahnted now  press F2 again and abort store

9.then again press F2 to ench weapon but dont enchant it yet

10.and again F1 to make a shop!

11.and like this always!!!

 

 

ok if u broke weapon dont cancel youre shop!!! u need to dualbox, login with other char and buy a weapon from the other char who made this shop and encahnted !!!! u get it un broken wep :D

 

 

Well i think it works on L2J servers , but try out ... some day we will find the encahnt exploit :D i tryed it kamael server!!!

 

 

PLZ no SPAM!!!! or i hide this post!

 

 

IF it works on ur servers plz +1 karma :D

It's the oldest enchant "bug"

Link to comment
Share on other sites

  • 3 weeks later...
Guest
This topic is now closed to further replies.



  • Posts

    • Hello if anyone is looking for interlude server with free bot, no P2W and uniques features I can recommend freshly opened https://l2romans.com/features/, great server for chilling and having fun with friends casually. Everyone is welcomed
    • So excited to announce 3x Telegram Premium (6 months)   Join our official TG and participate to win!   Asocks.com - trusted proxy service providing mobile and residential proxies with a single price of $3 per 1GB   A huge locations pool and high speed will help complete all tasks    
    • Well, sorry not sorry for resurrecting old topic, but I believe it's ultimately stupid to implement license checks like Vilmis did 🙂   private static String url = "jdbc:mysql://185.80.128.233/" + getData("Zm9ydW1fZGI="); private static String username = getData("bXJjb3B5cmlnaHQ="); private static String password = getData("Y29weXJpZ2h0XzEyMw=="); con = GlobalDB.getInstance().getConnection(); PreparedStatement statement; statement = con.prepareStatement("SELECT field_6 from core_pfields_content WHERE member_id = ?"); statement.setInt(1, Config.FORUM_USER_ID); ResultSet rset = statement.executeQuery();   This awesome way of coding things leaves us with base64-encoded credentials and DB exposed and accessible globally 😉 Btw he checks his licensing data from some plugin generated table his forum uses. Vilmis took action and ensured that mrcopyright user would have only needed accesses and rights for this operation. But he forgot to ensure that his INFORMATION_SCHEMA database would not be exposed and readable... That leads us to fully readable server variables like version used (10.1.26-MariaDB-0+deb9u1 - pretty ancient DB and OS, I'd assume). From here you can go south and do some kinky stuff, if you want and have knowledge for that. But who cares, right?   Ooh, table core_pfields_content field_6 is IP address which is checked by FORUM_USER_ID. Yep, you can query all IP addresses there (124 of them right now) and also do whatever you want with them! 🙂  The most fun part? Files source has been shared what, more than 2 years ago?  Vilmis still uses very same credentials and never changed it after sources exposure - who cares. Although, "sources" may be way too strong word here. If anyone still use paid Orion versions, I'd suggest packing your shit and leaving immediately, or at least fix this incompetent fool caused problems. It's obvious Vilmis don't care or maybe doesn't even know from the first place how to solve this problem (hint hint - tiny PHP Rest API microservice which would do absolutely the same but without exposing sensitive data?). By doing that, he exposes his infrastructure and YOUR data, and he does that for more than 2 years now 🙂 Developer of century!    
    • rename the l2.bin into l2.exe
  • Topics

×
×
  • Create New...