Hacker News new | ask | show | jobs
by abc123xyz 4450 days ago
Rapidshare is still vulnerable, search for "enc" session cookie, can login as any user then by editing this cookie :D it also works via their api

fun fun fun
1 comments
abc123xyz 4450 days ago
Still works...

http://i.imgur.com/RLXeySY.png

link
abc123xyz 4450 days ago
http://api.rapidshare.com/cgi-bin/rsapi.cgi?sub=getaccountde...

accountid=46048788 firstname=mandeep lastname=sihag servertime=1397038309 addtime=1359871506 username=heavenlybeast directstart=1 country=IN mailflags=n language=en jsconfig= email=heavenlybeast@live.com curfiles=36 curspace=1213591844 rapids=0 billeduntil=0 nortuntil=0 maxspacegb=10 additionalspacegb=0 maxdaytrafficmb=100 additionaldaytrafficmb=0 traffictoday=20511350 accounttype=0 valid=1 payabo=0 promocode=0 promotype=0 promovaliduntil=0 maxfilesize=300000000

link