LCKB ** OLD LCKB DATABASE ** Website Scripting & Security Website Releases Ep4 Websites
Fix for FCV2005 Website

Threaded Mode
Fix for FCV2005 Website
Veni Offline
Super Moderator
******
Posts: 114
Threads: 3
Thanks Received: 0 in 0 posts
Thanks Given: 0
Joined: Oct 2014
Reputation: 0
#1
07-29-2021, 03:43 PM

sup,

this seems to fix the problem some people are facing with the fcv2005 website. you can abuse the lost password feature to reset the password of accounts you know the username of. seems to work on every website that uses it.



Either replace the file, or just take every change from the switch statement:



 

switch ( $code )
{
case 1:
if(!$this->Mlostpass->validnow($this->Mlostpass->user)) $this->errors[] = 'You have\'t entered your username.';
elseif(!$this->Mlostpass->valid_username($this->Mlostpass->user)) $this->errors[] = 'The username you entered is invalid.';

else{
$this->load->set('gsecret', $this->Mlostpass->get_secret_question($this->Mlostpass->user) );
$_SESSION['lp_user'] = $this->Mlostpass->user;
$type = 1;
}
break;
case 2:
if(!$this->Mlostpass->validnow($this->Mlostpass->secret_answer)) $this->errors[] = 'You have\'t entered your secret answer.';
else{
if ( $this->Mlostpass->get_secret_answer( $_SESSION['lp_user'], $this->Mlostpass->secret_answer) )
{
$type = 2;
$_SESSION['secret_answer'] = $this->Mlostpass->secret_answer; // added
}
else
{
$this->errors[] = 'The secret answer is incorrect.';
}
}
break;
case 3:
if(!$this->Mlostpass->validnow($this->Mlostpass->new_password)) $this->errors[] = 'You have\'t entered your new password.';
else if(!$this->Mlostpass->get_secret_answer( $_SESSION['lp_user'], $_SESSION['secret_answer'])) $this->errors[] = 'Answer not correct!'; //added
else if(!$this->Mlostpass->validnow($_SESSION['secret_answer']) || !isset($_SESSION['secret_answer'])) $this->errors[] = "Answer not correct!" // added
else {
if(!$this->Mlostpass->valid_password($this->Mlostpass->new_password)) $this->errors[] = 'The new password you entered is invalid.';
else {
if(!isset($this->Mlostpass->new_password_again)) $this->errors[] = 'You have\'t entered new password-repetition.';
else {
if($this->Mlostpass->new_password != $this->Mlostpass->new_password_again) $this->errors[] = 'The two passwords you entered do not match.';
else {
if($this->Mlostpass->update_password()) {
$this->load->set('success', array('Your password was successfully changed.', 'You\'ve been logged out for security reasons!'));
unset($_SESSION['lp_user']);
unset($_SESSION['secret_answer']); // added
}
else{
$this->errors[] = 'Password could not be updated.' ;
}
}
}
}
}
}

 

case 2 and 3 have been modified in this. Havent tested it myself, but people told me it works.

2

Find
Revenge Offline
Junior Member
**
Posts: 38
Threads: 4
Thanks Received: 0 in 0 posts
Thanks Given: 0
Joined: Dec 2020
Reputation: 0
#2
07-29-2021, 07:59 PM

????? 

Find
saschi123 Offline
Junior Member
**
Posts: 4
Threads: 0
Thanks Received: 0 in 0 posts
Thanks Given: 0
Joined: Apr 2012
Reputation: 0
#3
07-29-2021, 08:47 PM

Good fix.

Find
cristiangramosa Offline
Junior Member
**
Posts: 31
Threads: 8
Thanks Received: 0 in 0 posts
Thanks Given: 0
Joined: Apr 2021
Reputation: 0
#4
07-30-2021, 01:04 AM

anyone have this site files?

Find


Forum Jump:


Users browsing this thread: 1 Guest(s)