L2:BeyondC3 exploit | http://www.l2.dbit.com.ar/ exploit

[arielsat]

http://84.240.23.10/www.beyond.lt/stat/index.php?cmd=showsiege&castle=

 

 

 

http://www.l2.dbit.com.ar/sieges/AttackDefend.php?cid=

 

 

 

 

 

Sybase magik quotes :-)

[Evil-X]

So what?

 

Simple sql query on stupid ws with problems and not protected from SQL Injection.

[Maxtor]

http://84.240.23.10/www.beyond.lt/stat/index.php?cmd=showsiege&castle=

 

 

 

http://www.l2.dbit.com.ar/sieges/AttackDefend.php?cid=

 

 

 

 

 

Sybase magik quotes :-)

 

 

 

:roll:

[arielsat]

that is a BIG PROBLEM with db , that bugs make all sql inj possible , Evil-X if you dont know how to exploit this, u are big fucking gm LOL. 99% of GM's on L2 servers not have knowledge for db and hosts servers, all fucking fake GM host db on game server's or other server that have accsses to db

 

 

 

example: XSS cross site scripting on l2 extreme , but i cant publish exploit for this server , becouse im playing there and other friends server's

[arielsat]

evil-x i read your post in post pasific , maybe u are fake cracker?

[arielsat]

this exploits is a for smart peoples / from russia/ :-))) cheeers

[arielsat]

maxtor , its a simple sql injection's , that work. u can make your chars most powerfull, like admin , u maybe know how to manipulate db , with this u can steal all pass and acc's from server's, update values in your char and other sheets , example hp , lvl , skills , invertory, enc item's and other tips

[Maxtor]

this exploits is a for smart peoples / from russia/ :-))) cheeers

 

 

 

i dont doubt that some russians are very experts. ;)

[arielsat]

lol , am not sure the rusians are experts for sql injections , but sounds like this :-)))))) many of them is a cheaters :-)) maybe 98% :-)

 

 

 

little tips for other way's sql inj :-)

 

 

 

/useskill ????????? :-))) and other bullsheets :-))) that cominicate with database server's

 

 

 

I CANT SUBMIT RIGHT SOURCE OF COMMANDS BECOUSE ALL STUIPID PPLS IN THIS FORUM , CAN TRYING THIS

 

 

 

P.S. FOR OTHER PPLS DONT ASK ME FOR EXPLOITS , I NOT REPLY PM

 

 

 

USE YOUR IMAGINE AND BRAIN FOR OTHERS INJ LIKE SS , POTIONS, SCROLs , ENCHANT ITEMS , SEND CURRENT STATISTICS OF YOUR CHAR ,INVERTORY and other '' VARNA

[Maxtor]

everyone likes to cheat :P

 

 

 

what do you think of making "sql queries-injections etc" saperate sub-section?

[arielsat]

sql inj is a not for all peoples , the syntax error sql inj crash the database servers , i have exp from 8 years with database server's working , this is a destroy all comunity of l2

 

 

 

am playng on my servers fairly , not cheats , the exploits that i make is , becouse GM's is fucking noobs and they not have exp's

 

 

 

i can submit exploit's for l2x , l2paradise XXS - bypass login , l2 extreme ,l2beyond c3

[arielsat]

other litle tips :

 

 

 

use google hacking for backup sql :-))))))))))))))))))))))))))))))))))))

 

 

 

inurl: site filetype:sql

 

 

 

 

 

p.s. maxtor pls dont edit my post's

[arielsat]

XSS Cross Site Scripting that is a BIG SCAM like http://dara-bara.com?page=<script.... your login form end f script?> more site is a vilnerabile , you can steal user pass easly ,

 

 

 

other tips with XSS

 

 

 

http//www.dara-bara.com/index.php?page=<? conection with database , query's ?>

 

 

 

or <? read file from hdd .conf for pass and user for database root ?>

 

 

 

like this http://xxx.xxx.xxx/castle_control/control.php?server=/var/.........config.php

[Maxtor]

other litle tips :

 

 

 

use google hacking for backup sql :-))))))))))))))))))))))))))))))))))))

 

 

 

inurl: site filetype:sql

 

 

 

 

 

p.s. maxtor pls dont edit my post's

 

 

 

heh ok ;) arielsat do you know res32?

[arielsat]

old bypass login for l2-paradise , not working now , its for example :

 

 

 

broken script in check pass ".......=="$pass" , insert not true values LOL

 

 

 

current exploit : request key form

 

 

 

not subbmiting now for my reason