Environ problem

More
14 years 5 months ago #7686 by d4rkcloud
Environ problem was created by d4rkcloud
Hi,

tonight i've found an anonymous user that visited this link:
../component/flexicontent/?controller=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fproc%2Fself%2Fenviron\0

Somebody call it "local file inclusion".
Do you know anything about this?

Please Log in or Create an account to join the conversation.

More
14 years 5 months ago #7800 by micker
Replied by micker on topic Environ problem
no sorry ...

FLEXIcontent is Free but involves a very big effort on our part.
Like the our support? (for a bug-free FC, despite being huge extension) Like the features? Like the ongoing development and future commitment to FLEXIcontent?
-- Add your voice to the FLEXIcontent JED listing reviews. Thanks![/size]

Please Log in or Create an account to join the conversation.

More
14 years 5 months ago #7901 by d4rkcloud
Replied by d4rkcloud on topic Environ problem
Yesterday a site i was created had a sql injection... from flexicontent!
Do you know qhat could it be????

Please Log in or Create an account to join the conversation.

More
14 years 5 months ago #7944 by kenmcd
Replied by kenmcd on topic Environ problem
.
Please provide some actual evidence.
If there really is a vulnerability in FLEXIcontent people here would like to know specifics in order to fix it.

Note: your example in your first post above is a very old attack which targets poorly configured vulnerable servers.
It has nothing to do specifically with Joomla or FLEXIcontent.

.

Please Log in or Create an account to join the conversation.

More
14 years 5 months ago #7975 by d4rkcloud
Replied by d4rkcloud on topic Environ problem
The message above was sent by a plugin that control every local file inclusion in my site and send a log in my mail.
I don't really know what does that message mean...

Please Log in or Create an account to join the conversation.

More
14 years 5 months ago #7979 by kenmcd
Replied by kenmcd on topic Environ problem
.
What you have posted above is a logged hack attempt.
It is a well known and very old hack attempt on *nix servers which are not secured properly.
It has nothing to do with Joomla/FLEXIcontent specifically.
Search and you will find this hack attempt on many different websites running PHP with many different applications.
The fact that it used a com_flexicontent link for the hack attempt is only because that is the link found by the hacker's spider.

It does not show anything actually happening.
Logged hack attempts are not evidence of an actual breach.

Again, if you have some actual evidence that a hack occurred via an actual vulnerability in FLEXIcontent, please post the evidence here so it can be fixed.

.

Please Log in or Create an account to join the conversation.

Moderators: vistamediajoomlacornerggppdk
Time to create page: 0.404 seconds
Save
Cookies user preferences
We use cookies to ensure you to get the best experience on our website. If you decline the use of cookies, this website may not function as expected.
Accept all
Decline all
Essential
These cookies are needed to make the website work correctly. You can not disable them.
Display
Accept
Analytics
Tools used to analyze the data to measure the effectiveness of a website and to understand how it works.
Google Analytics
Accept
Decline