Comments on: NIMC forums got hacked

By: AjiNIMC

AjiNIMC — Tue, 29 Aug 2006 10:26:32 +0000

The hacker deleted all the DB and created few topics with some disturbing images. Terrible images.

By: Rajesh

Rajesh — Tue, 29 Aug 2006 10:16:11 +0000

Sirrrrrrrrr….

Which pics u talking about…….

By: AjiNIMC

AjiNIMC — Tue, 29 Aug 2006 05:40:17 +0000

yes and the images that guy put in to the site were really disturbing. Imagine I watching those sick images at 2:00 am, somehow managed to get a sleep. from IPB 1.x to PHPBB is easy conversion http://prdownloads.sourceforge.net/phpbb/conv_ipb2phpBB.zip but for IPB 2.x to PHPBB I will have write more scripts. In IT nothing is impossible till you do not accept it so :).

By: Rajesh

Rajesh — Tue, 29 Aug 2006 03:05:41 +0000

Sir,
as i asked u before….
is it possible to compile the back up of IPB to PHPBB….. i know it’s not possible still i’m asking it……

I would like to thankyou from bottom of my heart to get our community back to the track once again…… thanx a lot….
I think it is a conicidence that……. that day u were talking about hacking and all those things and after that day we got one damn lesson on it………a practical one….I think it is one of the most disadvantage of being famous……everybody run after to catch our neck….

By: AjiNIMC

AjiNIMC — Mon, 28 Aug 2006 17:56:15 +0000

Now I am trying to update it to the latest versions.

By: AjiNIMC

AjiNIMC — Mon, 28 Aug 2006 17:46:40 +0000

Some possible reasons for hacking, Possibility 1:Invision Power Board 2.1.x vulnerable via injecting HTML into a post via hexidecimal HTML entities. This can't be a reason as this is due to a changes in how regular expressions are executed in PHP 5 versus PHP 4. Possibility 2: Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.1.5 and earlier before 20060308 allows remote attackers to inject arbitrary web script or HTML via a Private Message (PM) in certain circumstances. For the time being I have stopped any registrations.