iHack Posted August 22, 2007 Share Posted August 22, 2007 http://icache.ihack.co.uk/ Could you guys check that out, and tell me about any vulnerabilities/bugs. Thanks, iHack. Link to comment https://forums.phpfreaks.com/topic/66189-security-check/ Share on other sites More sharing options...
ILYAS415 Posted August 22, 2007 Share Posted August 22, 2007 soo small i dont think their is any bugs/ places where u can put in some xss Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-331233 Share on other sites More sharing options...
Fadion Posted August 23, 2007 Share Posted August 23, 2007 Yeah not much to check. By the way whats the purpose of this? Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-331521 Share on other sites More sharing options...
iHack Posted August 23, 2007 Author Share Posted August 23, 2007 Yeah not much to check. By the way whats the purpose of this? The site? Nothing really Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-331795 Share on other sites More sharing options...
kathas Posted August 23, 2007 Share Posted August 23, 2007 i dont know if that is a security risk but Javascript that runs on a cached page has access to the info that the browser has connected with your site (cookies...). That means for example that i can create a page and cache it so that if you access it through the cached pages it will send your cookies to a cookie stealer... No security risk though since you dont keep sensitive information in your cookies (no members, no nothing...) Regards Kathas BTW there really aint no purpose of this site (is there?) except as a proxy (but it needs some changes to work like that)... Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-331888 Share on other sites More sharing options...
iHack Posted August 23, 2007 Author Share Posted August 23, 2007 i dont know if that is a security risk but Javascript that runs on a cached page has access to the info that the browser has connected with your site (cookies...). That means for example that i can create a page and cache it so that if you access it through the cached pages it will send your cookies to a cookie stealer... No security risk though since you dont keep sensitive information in your cookies (no members, no nothing...) Regards Kathas BTW there really aint no purpose of this site (is there?) except as a proxy (but it needs some changes to work like that)... Thanks, an no there is no purpose You could also check out the main site http://www.ihack.co.uk, see if you can spot anything there. Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-331937 Share on other sites More sharing options...
Lamez Posted August 24, 2007 Share Posted August 24, 2007 you might could use a shell. idk I have not tired Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-333367 Share on other sites More sharing options...
iHack Posted August 25, 2007 Author Share Posted August 25, 2007 you might could use a shell. idk I have not tired haha, how exactly would you get a shell on there? Link to comment https://forums.phpfreaks.com/topic/66189-security-check/#findComment-333735 Share on other sites More sharing options...
Recommended Posts