You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 63 guest(s) and 2 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Nuke Cops :: View topic - Vulnerability Question [ ]
 Forum FAQ  •  Search  •   •  Memberlist  •  Usergroups   •  Register  •  Profile •    •  Log in to check your private messages  •  Log in

Vulnerability Question
 
Post new topic  Reply to topicprinter-friendly view Nuke Cops Forum Index » Nuke Security
View previous topic Log in to check your private messages View next topic
Author Message
gsicard
Sergeant
Sergeant


Joined: Feb 08, 2003
Posts: 105

Location: Virginia, USA
PostPosted: Wed Apr 09, 2003 9:28 pm Reply with quoteBack to top
I received this from my hosting company:

Quoting Steve <Steve@lowestpricedhosting.com>:

> Molosser Dogs
>
> Sender's Name: Steve
> Sender's Email: Steve
> Message: Hello, based on the URL of your website it apepars you may be
> vulnerable to a PHP nuke vulnerability. To verify if you are vulnerable
> you may try the following url. It is strongly suggested that you take
> PHP nuke offline untill a patch is released.

> http://www.molosserdogs.com/viewpage.php?file=/etc/passwd
>
end quote...

When I click the url above, I get this:

Warning: open_basedir restriction in effect. File is in wrong directory in /usr/local/psa/home/vhosts/molosserdogs.com/httpdocs/viewpage.php on line 38

Warning: Failed opening '/etc/passwd' for inclusion (include_path='.:') in /usr/local/psa/home/vhosts/molosserdogs.com/httpdocs/viewpage.php on line 38

Could someone decipher this for me and let me know if my site is at risk.

Thanks,

Gary
Find all posts by gsicardView user's profileSend private messageSend e-mailMSN Messenger
chatserv
General
General


Joined: Jan 12, 2003
Posts: 3128

Location: Puerto Rico
PostPosted: Wed Apr 09, 2003 11:28 pm Reply with quoteBack to top
http://nukecops.com/postlite1337-viewpage.html+php

_________________
Feed a man a fish and you feed him for a day. Teach a man to fish and you feed him for a lifetime.
ScriptHeaven | NukeResources
Find all posts by chatservView user's profileSend private messageVisit poster's website
Display posts from previous:      
Post new topic  Reply to topicprinter-friendly view Nuke Cops Forum Index » Nuke Security
View previous topic Log in to check your private messages View next topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group

Ported by Nuke Cops © 2003 www.nukecops.com
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::
Powered by · TOGETHER TEAM srl ITALY http://www.togetherteam.it · DONDELEO E-COMMERCE http://www.DonDeLeo.com
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.165 Seconds - 241 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::