mock security
I hacked free Internet at my hotel. Sure, I probably shouldn’t document it, in that I got something for free that is normally not, but it really was so easy that I think it deserves to be brought out into the open. If only they’d purchased a new security certificate (their’s expired), I would have gladly punched in my credit card to their totally unsecure site. Yeah right.
I simply saved the page locally, altered the form to post to the server and changed the cleverly named field for:
<input type=hidden name=billing_method_id value=1>
to:
<input type=hidden name=billing_method_id value=2>
Boom. Free.
I wonder what would happen if I started posting data to the creditcard.cgi -> or even better, just injected some sql to show databases, describe tables, then select * from all the stored credit-card #s. hmmmm….
