For Neopets ONLY discussion.
Sun Jan 22, 2006 7:15 pm
I have heard over a few days of the so called hacking going on in neopets. As text based mmorpg programmer I have to be a master at php and mySQL. The real danger with neopets isn’t the bruteforce or the little script kiddies stealing accounts; it is the big kids Minipulating php and mySQL strings to access the database. I was curious so I tested a few scripts on neopets and all but one failed, the one that diddnt is a small thing called javascript. Yes, I said it javascript. There are ways to acess and or alter database info. Btw I am pretty sure neopets uses unix platform database. Which in this case is easier to exploit. I DO NOT want to hack neopets But protect them. There site has a large security hole in the petcentral and neomail pages. I was also wondering where I could report this to neopets. Ty,
Sun Jan 22, 2006 7:51 pm
I would guess using one of the contact us forms, or try sending a bug report. I'm not really sure where else you could send the information, unless you plan to try snail mailing them.
Maybe someone else will have a better suggestion for you.
Sun Jan 22, 2006 9:01 pm
Try calling the office and giving the person who answers a reasonable explanation of your phonecall. Stating your not in anyway a crazed fan would be a good idea. Good luck!.
Mon Jan 23, 2006 7:09 pm
You might want to
send a PM to dolphinling. He's worked with TNT recently about some holes in security and may have an idea of how to better get TNT's attention and get your info directed to the right person.
Powered by phpBB © phpBB Group.
phpBB Mobile / SEO by Artodia.