Today I got an email of my provider. In my Mantis-program is a security hole in the file manage_proj_page.php.
The PHP-options allow_url_fopen and allow_url_include were deactivated.
Here ist the logpart:
75.127.107.0 - - [15/Nov/2008:08:36:44 +0100] "GET /mantis/manage_proj_page.php HTTP/1.0 ...
Search found 2 matches
- 17 Nov 2008, 11:53
- Forum: General Discussion
- Topic: Security problem?
- Replies: 5
- Views: 10472
- 15 Nov 2008, 17:22
- Forum: General Discussion
- Topic: Security problem?
- Replies: 5
- Views: 10472
Security problem?
Hallo
I dont know as, but someone was hacking my server today, and i think he used any security hole in Mantis.
He deleted each entry in my crontab and insert this entry:
* * * * * /path_to_my_webroot/mantis/mc-root/update > /dev/null 2>&1.
This create in mantis-directory a new directory named ...
I dont know as, but someone was hacking my server today, and i think he used any security hole in Mantis.
He deleted each entry in my crontab and insert this entry:
* * * * * /path_to_my_webroot/mantis/mc-root/update > /dev/null 2>&1.
This create in mantis-directory a new directory named ...