1.8.x

MySubscriptions 2.0.1 [Latest]

Submitted by Bitdefender, , Thread ID: 21596

Thread Closed

RE: MySubscriptions 2.0.1 [Latest]

#11
13-06-2016, 03:57 AM
LeadEnthusiast Wrote:
12-06-2016, 07:59 PM
DP_PN Wrote:
I checked your all your posts and they make no sense at all...everytime you say there's a vulnerability, I can't seem to find it...you say "there's SQLi" but all the input is escaped properly. You say there's 'LFI' but you don't provide proof and no files are even included...

But you say in your intro thread you are 14 years old so I understand you don't seem to know what you tlakin about. If you do, you should maybe contact the owner on his website via PM or smth. Maybe we get new version soon.

No one really knows if he is legit yet about what he's saying because of stuff like this. Just watch what your putting on your website really. Check the code yourself if you think it's safe then use it.

Considering the image he made in paint ahah....the writing in the e-mail is not even close the owner's writing on his forums!
What a joke XD
13-06-2016, 09:14 AM
bingo Wrote:
i cant debate on my statements as its totally users decision. the max i could do is to provide a warning bell and nothing much

Oh great here is i got reply from author now Smile
[Image: 607281b6ed5d4f55ba69b019f3016371.png]

RE: MySubscriptions 2.0.1 [Latest]

#12
13-06-2016, 12:48 PM
DP_PN Wrote:
13-06-2016, 03:57 AM
LeadEnthusiast Wrote:
12-06-2016, 07:59 PM
DP_PN Wrote:
I checked your all your posts and they make no sense at all...everytime you say there's a vulnerability, I can't seem to find it...you say "there's SQLi" but all the input is escaped properly. You say there's 'LFI' but you don't provide proof and no files are even included...

But you say in your intro thread you are 14 years old so I understand you don't seem to know what you tlakin about. If you do, you should maybe contact the owner on his website via PM or smth. Maybe we get new version soon.

No one really knows if he is legit yet about what he's saying because of stuff like this. Just watch what your putting on your website really. Check the code yourself if you think it's safe then use it.

Considering the image he made in paint ahah....the writing in the e-mail is not even close the owner's writing on his forums!
What a joke XD
13-06-2016, 09:14 AM
bingo Wrote:
i cant debate on my statements as its totally users decision. the max i could do is to provide a warning bell and nothing much

Oh great here is i got reply from author now Smile
[Image: 607281b6ed5d4f55ba69b019f3016371.png]

That and the font in gmail's email system doesn't even look like that.
~ fdigl ~

RE: MySubscriptions 2.0.1 [Latest]

#13
Ya right.. looking like fake and disturbing all members who are using it.
shame on you.
if you [@bingo] get that mail than send on [email protected].

RE: MySubscriptions 2.0.1 [Latest]

This post was last modified: 14-06-2016, 08:43 AM by bingo
#14
I dont know why some guys want to create mess. you never know gmail has font formatting and bold letter editor ?

i guess i should stop replying to this thread and leave you guys alone . sorry if i wasted your time.

RE: MySubscriptions 2.0.1 [Latest]

This post was last modified: 14-06-2016, 10:54 AM by NSA
#15
13-06-2016, 09:14 AM
bingo Wrote:
i cant debate on my statements as its totally users decision. the max i could do is to provide a warning bell and nothing much

Oh great here is i got reply from author now Smile
[Image: 607281b6ed5d4f55ba69b019f3016371.png]

Fucking a, that's a 10/10 legit email right fucking there!

[Image: Lp5c83A.png]
xxx

RE: MySubscriptions 2.0.1 [Latest]

#16
14-06-2016, 10:51 AM
NSA Wrote:
13-06-2016, 09:14 AM
bingo Wrote:
i cant debate on my statements as its totally users decision. the max i could do is to provide a warning bell and nothing much

Oh great here is i got reply from author now Smile
[Image: 607281b6ed5d4f55ba69b019f3016371.png]

Fucking a, that's a 10/10 legit email right fucking there!

[Image: Lp5c83A.png]

At least that one looks way more legit.
~ fdigl ~

RE: MySubscriptions 2.0.1 [Latest]

#17
14-06-2016, 08:42 PM
LeadEnthusiast Wrote:
14-06-2016, 10:51 AM
NSA Wrote:
13-06-2016, 09:14 AM
bingo Wrote:
i cant debate on my statements as its totally users decision. the max i could do is to provide a warning bell and nothing much

Oh great here is i got reply from author now Smile
[Image: 607281b6ed5d4f55ba69b019f3016371.png]

Fucking a, that's a 10/10 legit email right fucking there!

[Image: Lp5c83A.png]

At least that one looks way more legit.

That's cause I inspect element it.
xxx

RE: MySubscriptions 2.0.1 [Latest]

This post was last modified: 15-06-2016, 05:09 PM by bingo
#18
Hahahhahahahha i am forced to post this .. just after my report 2 days back. today (just now ) he posted new version of his plugin I.E MySubscriptions 2.0.2.zip

i also received an reply mail for audit and some other stuff BUT I DONT CARE SHOWING IT TO YOU GUYS.

i audited his attachment plugin and the funny thing is he failed to fix it even after my report and tips. same sqli and lfi exist Smile i replied him saying there is NO BUG Smile [he posted v2.0.2 just now after i told him its safe]

i wonder what happens if he sees this thread Smile i simply hate the attitude the guy got on the first day when he never bothered to reply my mail which clearly tells how careless he is towards his customers forum lol .he dont care if they get jacked

he is spoiling his own name. one days some bad guy finds it and starts mass defacing owners using his p;lugin and then he realises his mistakes

and he says this in changelog
Change Log
2.0.2
- Bug fix in the IPN handler of recurring PayPal subscriptions - more specifically end_of_time wouldn't work

RE: MySubscriptions 2.0.1 [Latest]

#19
Good Bingo.
You may right.
thanks.
1

RE: MySubscriptions 2.0.1 [Latest]

This post was last modified: 21-06-2016, 01:05 PM by DP_PN
#20
15-06-2016, 04:59 PM
bingo Wrote:
Hahahhahahahha i am forced to post this .. just after my report 2 days back. today (just now ) he posted new version of his plugin I.E MySubscriptions 2.0.2.zip

i also received an reply mail for audit and some other stuff BUT I DONT CARE SHOWING IT TO YOU GUYS.

i audited his attachment plugin and the funny thing is he failed to fix it even after my report and tips. same sqli and lfi exist Smile i replied him saying there is NO BUG Smile [he posted v2.0.2 just now after i told him its safe]

i wonder what happens if he sees this thread Smile i simply hate the attitude the guy got on the first day when he never bothered to reply my mail which clearly tells how careless he is towards his customers forum lol .he dont care if they get jacked

he is spoiling his own name. one days some bad guy finds it and starts mass defacing owners using his p;lugin and then he realises his mistakes

and he says this in changelog
Change Log
2.0.2
- Bug fix in the IPN handler of recurring PayPal subscriptions - more specifically end_of_time wouldn't work

I got a subscription myself a few days ago for $5. And you're wrong....he fixed the end of time not working properly because the wrong database table field was being used in the where clause.

What the hell are you tlking bout regarding sqli and lfi. U got no idea what you're talking about man, grow up.

Everybody can use this plugin without problems! bingo is a joke.

And if the e-mail you sent him looks like the other one, I'm sure he got it :D

Users browsing this thread: 7 Guest(s)