[joomla] Probe via search module?
Mitch Pirtle
mitch.pirtle at gmail.com
Tue Mar 9 08:21:17 EST 2010
That is a VERY old issue from the PHP4 days... This script kiddie
should point their script over at Karjackistan or some such place
where everyone is still rocking Windows for Workgroups. Gah.
-- Mitch
On Tue, Mar 9, 2010 at 12:43 AM, Gary Mort <garyamort at gmail.com> wrote:
>
>
> On Mon, Mar 8, 2010 at 11:22 PM, Web Project <web at kluger.com> wrote:
>>
>> Hi,
>>
>> My log watch detected the following request on my Joomla site. --
>>
>> index.php?module=search&q=./../../../../../../../../etc/passwd
>>
>> Is this sort of thing a known exploit?
>
> That is not even a joomla function.
> Joomla functions would be options=com_something&task=sometask&q=something
> It's more likely an exploit for some other set of PHP code and their just
> scanning every website for it.
> _______________________________________________
> New York PHP SIG: Joomla! Mailing List
> http://lists.nyphp.org/mailman/listinfo/joomla
>
> NYPHPCon 2006 Presentations Online
> http://www.nyphpcon.com
>
> Show Your Participation in New York PHP
> http://www.nyphp.org/show_participation.php
>
More information about the Joomla
mailing list