Bugs with 6.0.4 , or security issuses

alfinsh
Posts: 2
Joined: 28 Mar 2014, 08:47

Bugs with 6.0.4 , or security issuses

Postby alfinsh » 28 Mar 2014, 08:59

Hello . I need some sugestions what to do with security holes @ amxbans 6.0.4
everyone user if he want's , can steal webadmins passwords ,by few steps with JS scripts . I have all access and error logs - how they do it .

No premissions to upload file there , but here are link logs

Sorry for bad english , but my language is Latvian :/
Attachments
logs.rar
Logs
(1.95 KiB) Downloaded 411 times

YamiKaitou
Amxbans Developer
Posts: 257
Joined: 17 Apr 2013, 14:09

Re: Bugs with 6.0.4 , or security issuses

Postby YamiKaitou » 28 Mar 2014, 13:36

I don't understand what you are trying to show me. I'm not going to dig through your logs unless you give me something to specifically look for.

alfinsh
Posts: 2
Joined: 28 Mar 2014, 08:47

Re: Bugs with 6.0.4 , or security issuses

Postby alfinsh » 28 Mar 2014, 13:58

Code: Select all

Some access log lines  213.192.26.6 - - [23/Mar/2014:00:50:42 +0200] "GET /amxbans/templates/_js/amxbans.js.php HTTP/1.1" 200 934 "xxxxxxxx/amxbans/admin_list.php" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.1.0.0 Safari/537.36"
213.192.26.6 - - [23/Mar/2014:00:50:42 +0200] "GET /amxbans/templates/_gfx/Steam.png HTTP/1.1" 200 1068 xxxxxx/amxbans/admin_list.php" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.1.0.0 Safari/537.36"
213.192.26.6 - - [23/Mar/2014:00:50:45 +0200] "GET /amxbans/admin.php HTTP/1.1" 200 3364 "xxxxxx/amxbans/admin_list.php" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.1.0.0 Safari/537.36"

Some error lines
[Sun Mar 23 00:54:22 2014] [error] [client 213.192.26.6] PHP Notice:  Undefined variable: server_count in /var/www/vhosts/xxxxx/vhosts/httpdocs/amxbans/include/admin/admin_so_up.php on line 45, referer: http://xxxxxx/amxbans/admin.php?site=so_lg
[Sun Mar 23 00:55:22 2014] [error] [client 213.192.26.6] PHP Notice:  Undefined index: mid in /var/www/vhosts/xxxxxx/vhosts/httpdocs/amxbans/include/admin/admin_so_mo.php on line 30, referer: http://xxxxxx/amxbans/admin.php?site=so_lg
[Sun Mar 23 00:55:22 2014] [error] [client 213.192.26.6] PHP Notice:  Undefined variable: modules_menu_count in /var/www/vhosts/xxxxxx/vhosts/httpdocs/amxbans/include/admin/admin_so_mo.php on line 47, referer: http://xxxxxx/amxbans/admin.php?site=so_lg


Simply "someone" atacked to my project amxbans database , hacked some admin accounts ,to unban himself , after that "someone" deleted all logs from amxbans databaze .
I added deny from his IP @ htaccess and added back ban on his IP . After 2Hrs again that "someone" hacked same things VIA proxy .
In Log fails are moves how he attacked my site .
I thing it's some sql injection or smtng like that O.o

YamiKaitou
Amxbans Developer
Posts: 257
Joined: 17 Apr 2013, 14:09

Re: Bugs with 6.0.4 , or security issuses

Postby YamiKaitou » 29 Mar 2014, 03:27

PM me how he did it so I can look into fixing it. So far, your log doesn't tell me anything except that someone accessed the admin_list file.


Return to “Bugs”

Who is online

Users browsing this forum: No registered users and 1 guest