hipstercards.com hacked by 123max [Free Adspace]

Status
Not open for further replies.

123max

Member
Original poster
member
Joined
Jul 12, 2010
Posts
1,454
Reaction score
182
Points
66
Was bored anyways found a password for this site (no damage caused)
anyways it has ad space so you wanna add a google adsense code? PM me if you are a SUB with high rep/MOD/Coder you get free space but for normal members and SUB's with less than 100 rep you need to do a ascend survey to get a space
hurry space is limited!
oh and yeah wanna do the proactive if you can? (on the site main page)
hipstercards.com

m9FOT.png
 
  • Like
Reactions: Kanni
R

rob2k9

Guest
1 i am gonna ask how did you get the password if you hacked it what method did you use ?

2 google adsense cant be used on this as soon as they see there earnings drop they will look into the ad space and see the pub id and have them banned for google you may even get done for it so google adsense is a no no
 

Kanni

Senior
senior
Joined
May 1, 2011
Posts
1,469
Reaction score
323
Points
0
advertise my site? :p
 
R

rob2k9

Guest
send me the details and i can have the full url redirect to any site you want :)

or i can just do it my self simple sql injection with msql5 i am guessing
 

123max

Member
Original poster
member
Joined
Jul 12, 2010
Posts
1,454
Reaction score
182
Points
66
How many pageviews does this site get?
http://www.alexa.com/siteinfo/hipstercards.com
us.png
277,537
Rank in US

I'm a sub with some posts and rep :) hope that I can get it :)
PM me a good banner with site links or ad

1 i am gonna ask how did you get the password if you hacked it what method did you use ?

2 google adsense cant be used on this as soon as they see there earnings drop they will look into the ad space and see the pub id and have them banned for google you may even get done for it so google adsense is a no no
Keylogged the admin by sending a fake email etc. + yea google adsense works
advertise my site? :p
your banner is too large in height make a normal banner with more info not just expressraffle, make it like earn amazon etc. daily raffle blah blah and pm me
 
R

rob2k9

Guest
well change your title if you sent the admin a key logger you didnt hack it :)

and yes google adsense work but any one that uses it is just a total idiot if the admin stops making money they will look into the ads see the google ads and the pid then tell google and that person will lose there acount for illega activity

all so you could have just done sql injection the whole site is open to it

vuln url : http://hipstercards.com/compose.php?id=2194'
Server: Apache : MySQL >=5
Data Bases:
Code:
information_schema,hipsterc_hipsterchipdb
Tables:
Code:
,ad_codes,admin,admin_menu,confirm,ecard_group,ecards,ecards_cat
,ecards_catsubcat,ecards_shopcat,ecards_shopdotcom,ecards_subcat
,ecardssent,ecardssent_clean1,ecardssent_shopdotcom,ecardstosend
,email,email2,email3,featured_home,featured_home_shopdotcom
,featured_today,featured_today_cat,hc_categories,hc_ecards
,hc_fb_categoris,hc_fb_drafts,hc_fb_featuredcards,hc_fb_groups
,hc_fb_menu,hc_fb_sent,hc_fb_users,hc_groups,hc_logs_sent,hc_venues
,hc_wg_users,hc_wg_widgets,login,login_shopdotcom,menu_categories
,menu_sections,mess_cat,message_cat,predef_message,promo2,promo3
,promo4,promos,settings,texts,theme_pics,themes,users,years

but go way to use your smarts sending the email just gonna ask
can you pm me i can get accsess to the site and all its files and maybe
redirect the whole page :) to some ones site or root the server its self
 

Blue

Is Stylin' On You
senior
member
Joined
Mar 18, 2011
Posts
2,485
Reaction score
1,391
Points
147
What would happen if the site reports your ad then, would google ban you?
 

123max

Member
Original poster
member
Joined
Jul 12, 2010
Posts
1,454
Reaction score
182
Points
66
What would happen if the site reports your ad then, would google ban you?
google can't investigate that since the website dosen't have any kind of logs and you can claim that the person is a competitor trying to ban you :D
 
R

rob2k9

Guest
google can't investigate that since the website dosen't have any kind of logs and you can claim that the person is a competitor trying to ban you :D

wrong google has the right to ban any one suspected of trying to cheat there system or being part of illegal activity be it suspected or not

i have lost 2 google accounts for doing so in the past you should really read there tos and all so contact them and hear them out right i spent 3 weeks arguing with them wen i was last banned for all most the same thing

any one doing this can and will be banned on the spot from google with no investigation

you seem to forget as well that every server keeps logs and they will have alog of every ip thaqt logs into the admin panle all they have to do is show there admins ip and the unknown ip and thats it

you should really think before you go and cost some one there google account
 

Codez Hybrid

PHP Coder
senior
member
Trade With Caution!
Joined
Dec 29, 2010
Posts
4,756
Reaction score
1,655
Points
89
Location
Indiana, USA
Website
www.offerscript.net
btw site is also open to XSS
 

123max

Member
Original poster
member
Joined
Jul 12, 2010
Posts
1,454
Reaction score
182
Points
66
ok rob2k9 is right so no google ads!
 
Status
Not open for further replies.