Since I have not been able to contact Abraxas, I am posting here for all to see.
Abraxas has an sql injection on the "admin" field for sending messages. If one is able to generate an SQL error then they bring down the forums.
You can fuzz it yourself with the following payload:
_token=q2TpZNcUUgWe2UDbrHYw1SYF7gItscEgQJyeFSky&recipient=l2PhvDarUf&admin=ยงยง&message=hi&message_delay_min=0&message_delay_max=2&send_message=1
on the /msg
path using a POST method.
I do not believe I am able to mod after since there is a conflict of interest between my mod duties and my recent activities.
Good for you. So now your not a mod. More free time to continue to keep people safe and out of jail. I for one will continue to listen very carefully...