Username: 
Password: 
Restrict session to IP 

WeChall v4

1 2 3 4 5 6 7
Global Rank: 227
Totalscore: 94359
Posts: 1682
Thanks: 1359
UpVotes: 920
Registered: 16y 311d




Last Seen: 8h 48m
The User is Offline
WeChall v4
Google/translate1Thank You!1Good Post!0Bad Post! link
Hello Challengers

This is WeChall4, finally Smile
The whole stuff is recoded from scratch, so expect many errors.
But i hope i fixed some minor bugs that were present in wc3.

List of new features:
- Multi Language
- You can now sort tables by multiple columns. (It`s a bit tricky yet unpatented)
- News announcements when an account got linked.
- Forum attachments.
- Forum got a "ThankYou", "ThumbsUp", "ThumbsDown" button.
- Avatar gallery.
- Site master table
- Usergroups and Userguestbook.
- Sites Tagged
- Challs Tagged
- Ranking by Tag
- Links can hide your username/creator now
- Account: allow a member to send you email without revealing your address
- PM Search

7 New challenges by myself:
- Thanks to all people that tested the challs and other stuff. The list of contributors is long Smile
- Yourself PHP is an old-school xss challenge. Thx to Kender for pointing me on that flaw.
- Table Names is a mysql injection challenge where you have to find out the table and database name.
- No Escape is mysql injection challenge with an uncommon, yet interesting, flaw.
- The Guestbook is a mysql injection with an obvious flaw.
- Crappyshare is a php/curl exploit challenge.
- Paranoid is the poor try of another stegano challenge by myself. (i usually hate stegano)
- Snake is a fun challenge where you have to cheat in a browsergame.

List of (rather important) bugfixes:
- Forum-Creator for empty threads
- RSS News Feed was totally broken
- Menu not up-to-date after actions like login or read a thread
- CSTC has onsitename hidden by default
- Passwords are SHA1+salted now
- Chall solutions are case-insensitive now where ambigious
- Multiple users can share a rank now (at least considered)
- ScrewSQL has been renamed to Screwed Signup


This all has a price. We will loose all the link-votings and forum-polls Sad
Please vote for your favorite links again! NOW!

Also: Please report any bug / problem / missing feature you encounter.
Thanks!

I wish you happy challenging!
The geeks shall inherit the properties and methods of object earth.
Last edited by gizmore - Aug 27, 2010 - 22:24:32
Global Rank: 68
Totalscore: 227674
Posts: 245
Thanks: 420
UpVotes: 281
Registered: 15y 362d
shadum`s Avatar







Last Seen: 158d 13h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
The site updates don't seem to be working for HackBBS and Rankk, maybe others. WCv4 has only been up for an hour or so since the server issue. Maybe you are already working on it.

Rankings start at #32 rather than at #1 also.

I like the challenge category ranking.
Last edited by shadum - Aug 27, 2010 - 22:53:07
Global Rank: 68
Totalscore: 227674
Posts: 245
Thanks: 420
UpVotes: 281
Registered: 15y 362d
shadum`s Avatar







Last Seen: 158d 13h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
The "Icons", "Values", and "Zoom" check boxes on the "Your Stats" page don't seem to do anything.
Global Rank: 27
Totalscore: 343437
Posts: 1
Thanks: 2
UpVotes: 2
Registered: 14y 277d
flipp`s Avatar




Last Seen: 206d 6h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
Rankings start at #75 rather than at #1 now ...

I liked the former design better... Still have to get used to the new one, I guess.

Anyway, I thank you, and all the guys who spend hours coding these challs for us to spend hours to solve them...
Global Rank: 227
Totalscore: 94359
Posts: 1682
Thanks: 1359
UpVotes: 920
Registered: 16y 311d




Last Seen: 8h 48m
The User is Offline
RE: WeChall v4
Google/translate1Thank You!1Good Post!0Bad Post! link
All the bugs from shadum should have been fixed. Thank you for reporting them.

If anyone spot something weird, please report.

As i stated in the news, wechall4 was not really ready for release, but good enough for the server move timing.

I guess we will find a lot of bugs that are left, but i will fix them quickly Smile

Edit: And thank you flipp Smile, your ranking bug was a duplicate from shadum... maybe some other rankings than global are broken too?
I hope you get used to the new design.

Known missing: site-icons in forum.
The geeks shall inherit the properties and methods of object earth.
Last edited by gizmore - Aug 27, 2010 - 23:56:30
Global Rank: 68
Totalscore: 227674
Posts: 245
Thanks: 420
UpVotes: 281
Registered: 15y 362d
shadum`s Avatar







Last Seen: 158d 13h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
HackQuest and TDHack still fail when you try to update.
Global Rank: 6
Totalscore: 509955
Posts: 28
Thanks: 45
UpVotes: 36
Registered: 16y 265d
phoenix1204`s Avatar












The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
When i re-validate the wechall challenges i solved some days ago (after database backup), i sometimes got something like that in french (despite i set english as primary language in my profile...) "Your answer is correct but nothing change" as if i already solved this challenge ("Malware", "Fix us") which in fact was true but not in wc4...
Last edited by phoenix1204 - Aug 28, 2010 - 08:50:34
Global Rank: 342
Totalscore: 68413
Posts: 3
Thanks: 5
UpVotes: 4
Registered: 15y 72d
Bejker`s Avatar


Last Seen: 213d 7h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
There is a problem when I am looking ranking page 2,3...etc offline.Here is error:
GeSHi`ed Plaintext code
1
2
3
4
56
7
8
9
1011
PHP Unknown Error(4096):
Argument 1 passed to WC_RegAt::calcExactRank() must be an instance of GWF_User, boolean given, called in /home/wechall/www/wc4/modules/WeChall/method/Ranking.php on line 46 and defined in /home/wechall/www/wc4/modules/WeChall/WC_RegAt.php line 157
Backtrace starts in File: /home/wechall/www/wc4/index.php line 133.
Module_WeChall::onRequest()....... Module_WeChall.php Line 69 in /home/wechall/www/wc4/modules/WeChall/Module_WeChall.php.
GWF_Module::onRequest()........... GWF_Module.php Line 63 in /home/wechall/www/wc4/inc/GWF_Module.php.
GWF_Module::requestMethod()....... GWF_Module.php Line 919 in /home/wechall/www/wc4/inc/GWF_Module.php.
GWF_Module::requestMethodB()...... GWF_Module.php Line 991 in /home/wechall/www/wc4/inc/GWF_Module.php.
WeChall_Ranking::execute()........ Ranking.php Line 23 in /home/wechall/www/wc4/modules/WeChall/method/Ranking.php.
WeChall_Ranking::templateRanking() Ranking.php Line 46 in /home/wechall/www/wc4/modules/WeChall/method/Ranking.php.
WC_RegAt::calcExactRank()......... WC_RegAt.php Line 157 in /home/wechall/www/wc4/modules/WeChall/WC_RegAt.php.
GWF_Debug::error_handler()........ GWF_Debug.php Line 59 in /home/wechall/www/wc4/inc/util/GWF_Debug.php.

Also, File not found: www.wechall.net/sites.php when I type wechall in google...
Last edited by Bejker - Aug 28, 2010 - 20:12:28
Global Rank: 342
Totalscore: 68413
Posts: 3
Thanks: 5
UpVotes: 4
Registered: 15y 72d
Bejker`s Avatar


Last Seen: 213d 7h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!1Good Post!1Bad Post! link
Ok this also isn't good...http://www.wechall.net/challenge/. I see directory structure of challenges...In the directory list, installor.php. For example:
GeSHi`ed Plaintext code
1
Fatal error: require_once() [function.require]: Failed opening required 'html_head.php' (include_path='.:/usr/share/php:/usr/share/pear') in /home/wechall/www/wc4/challenge/Z/cookie_is_a_lie/install.php on line 3
Last edited by Bejker - Aug 28, 2010 - 21:07:34
Global Rank: 32
Totalscore: 313757
Posts: 182
Thanks: 182
UpVotes: 205
Registered: 16y 294d
livinskull`s Avatar





Last Seen: 1d 17h
The User is Offline
RE: WeChall v4
Google/translate2Thank You!2Good Post!0Bad Post! link
The SSL certificate used is the wrong one...
that from gizmore.org...
1 2 3 4 5 6 7
Skygrinder, Bejker, flipp, tunelko, John W, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, SwolloW, dangarbri, csuquvq have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 21139 times.