I've updated to 1.1.5. Today I got a notice that someone unexpected had registered a new account. Looking at httpd logs definitely showed someone was probing and then passing in code:
66.166.99.188 - - [27/Nov/2008:09:17:59 -0500] "GET /mantis/manage_proj_page.php HTTP/1.0" 302 - "-" "-"
66.166.99 ...
Search found 1 match
- 28 Nov 2008, 14:21
- Forum: General Discussion
- Topic: Security problem?
- Replies: 5
- Views: 10450