Menu

#91 Exploit that has been exploited

open
Geoff Humphrey
Interface (16)
9
2011-06-29
2011-06-24
Anonymous
No

http://www.exploit-db.com/exploits/17435/

I was defaced from the ip 46.52.40.169

He placed a file named 502.php in my label_images directory. And from there modified index.php

Discussion

  • Geoff Humphrey

    Geoff Humphrey - 2011-06-29
    • labels: --> Interface
    • assigned_to: nobody --> gpzhumphrey
     

  • Geoff Humphrey

    Geoff Humphrey - 2011-06-29

    I'm searching for a solution to this still; it appears to be via the sections/reference.inc.php file. As a stopgap (not a solution), remove the file from the directory. I'll post a way to address it when I get one.

     

  • Geoff Humphrey

    Geoff Humphrey - 2011-06-29

    Revised file to shut out potential SQL Injection attack.

     
    reference.inc.php

  • Geoff Humphrey

    Geoff Humphrey - 2011-06-29

    To prevent this injection, upload the attached file to the [root]/sections/ directory. This isn't an elegant solution - simply a quick one to prevent these attacks. Unfortunately, some functionality has been removed.

     

  • Geoff Humphrey

    Geoff Humphrey - 2011-06-29
    • priority: 5 --> 9
     

  • Nobody/Anonymous

    Nobody/Anonymous - 2012-12-02

    Your writing style is just what I look for when I want good content. You have a great grasp of this topic and wonderful intuition.
    <a href="http://www.flixya.com/blog/5033362/To-Get-the-Best-Photography-Engage-a-Calgary-Weddi" title="Photography">Photography</a>