gamingmaster14 (October 8, 2008 at 2:55 am)

LOL! those are the most newbest ways to hack.

magnum789 (October 7, 2008 at 7:52 pm)

lol yeah:p

AssShow (October 7, 2008 at 4:33 pm)

html+php ownz

StrikeMike2k (October 3, 2008 at 5:00 pm)

This guy is funny... Did he say "input type=dropdown" at 12:51? HAHA funny. select tag would be a better way of saying it.

pimpjongen (September 30, 2008 at 6:23 pm)

This works is because of 2, bad practice, loops:while(list($key, $val) = each($_GET)) { $GLOBALS[$key] = $val;same with $_POST;Both the variables in GET and POST are written into the GLOBAL scope, thus overwriting the initialized $MailToAddress and $MailSubject.So for this exploit POST/GET doesn't matter. PHP5 is vulnerable as well. Even register_globals off won't help.Script google: PHP formmail + "asking for a name"Now why didn't the hacker explain that? I'm just a developer...

jessehanson1981 (September 23, 2008 at 10:48 pm)

"we can spoof the subject of the email", "inject into the web page" classic .. is this video directed towards noobs or programmers? you realize the web page is your browser don't you..

djshaunp (August 20, 2008 at 6:15 pm)

You sir are a uber dip shit deluxe. Plenty of people use or used this script, that's why it had a large rating on hotscripts[dot]com. Next time, save yourself from looking like a total retard, and do your research before you open your man hole.

thirtysixway (August 20, 2008 at 6:45 am)

Just because it was some mail example doesn't mean people are actually using or advertising that they're using it. Fucking moron.

gumpdy (August 15, 2008 at 3:59 am)

hacking is me laughing so hard that I start coughing

djshaunp (August 14, 2008 at 11:47 pm)

Are you all retarded? The script that was exploited by your's truly is an Open Source mail form script. You can download the source code anywhere. Google PHP formmail, ugh. Instead of hating, do you research and stfu.