Read + Write + Report
Home | Start a blog | About Orble | FAQ | Sites | Writers | Advertise | My Orble | Login

Writers Forum - December 2006

What is quest_news.php

December 28th 2006 02:46
Hi all,

In my Traffic Stats email today one entry in URL Stats for www.hotreport.net was:

7 (2) www.hotreport.net/quest_news.php

*I googled "quest_news.php" and scary things like 'exploits , vulnerabilities , articles , phpBurningPortal <= 1.0.1 (lang_path) Remote File Include Exploit.' came up!

Can anyone shed some light on this?

Thanks
52
Vote

   
Subscribe to this blog 


Just this blog This blog and DailyOrble (recommended)

   

   

Link ]
Posted By: pegasus - Category: No Category
Related Posts:
   

Comments
2 Comments. [ Add A Comment ]

Comment by pegasus

December 28th 2006 02:58


Poker Addict
There's more weird ones like that:

www.hotreport.net/top-good-news-stories-of-2006-includes-the-free-hugs-video
//pafiledb_constants.php

A security website had this info about "pafiledb_constants.php":

paFileDB pafiledb_constants.php file include
pafiledb-pafiledbconstants-file-include (26496)
The risk level is classified as MediumMedium Risk

Description:

paFileDB could allow a remote attacker to include malicious PHP files. A remote attacker could send a specially-crafted URL request to the pafiledb_constants.php script using the 'module_root_path' parameter to specify a malicious PHP file from a remote system, which would allow the attacker to execute arbitrary code on the vulnerable system.


Is someone trying to hack?

Comment by jon

December 28th 2006 07:55


Orble News
Urban Hint
Blog Adviser
Jon's Bookmarks
Debate Battle
Orblepedia
Orble Notes
Sydney WeekendNotes
Probably just some hacker bot trying it's luck. You should see all the weird and wonderful URL requests we get in the logs sometimes. Not much to worry about here though -- our servers don't even run PHP.

Thanks for the report though!

Jon.

Add A Comment

To create a fully formatted comment please click here.


CLICK HERE TO LOGIN | CLICK HERE TO REGISTER

Name or Orble Tag
Home Page (optional)
Comments
Bold Italic Underline Strikethrough Separator Left Center Right Separator Quote Insert Link Insert Email
Notify me of replies
Notify extra people about this comment
Is this a private comment?
List the Email Addresses or Orble Tags of the people you would like to be notified about this comment


One per line max of 30

List the Email Addresses or Orble Tags of the people you would like to be notified about this private comment thread. Only the people in this list will be able to see or reply to your comment.


One per line max of 30

Your Name
(for the email going out to the above list, it can be different to your Orble Tag)
Your Email Address
(optional)
(required for reply notification)
Submit
More Posts
November 2009
1 Posts
October 2009
2 Posts
September 2009
4 Posts
Older Posts
545 Posts dating from May 2006
Email Subscription
Receive e-mail notifications of new posts on this blog:
0
View Blog Summary ] [ Create A New Post ] [ Add A Comment ]
Moderated by jon
Copyright © 2006 2007 2008 On Topic Media PTY LTD. All Rights Reserved. Design by Vimu.com.
On Topic Media ZPages: Sydney |  Melbourne |  Brisbane |  London |  Birmingham |  Leeds     [ Advertise ] [ Contact Us ] [ Privacy Policy ]