Robo Posted January 16, 2015 Share Posted January 16, 2015 i and maybe more have a problem the site is compromised i used the latest upgrade 5,2.15 now i have enclosed the log file from the provider , please find a solution as there might be more problems btw now upgraded to 5.216 cc5216log.txt Quote Link to comment Share on other sites More sharing options...
havenswift-hosting Posted January 16, 2015 Share Posted January 16, 2015 HiThat is not a log file but a snapshot of the Apache processes running at that specific time. Why do you believe that you have sql injection vulnerability - exactly what has the hosting provider said to you ?Ian Quote Link to comment Share on other sites More sharing options...
Al Brookbanks Posted January 16, 2015 Share Posted January 16, 2015 I can't see anything of any relevance or sign of SQL Injection in that file at all. The following line is interesting though: /shop/index.php?_a=viewCat'A=0&catId=5 I saw this before but its not an attack. This happened in a past version when a function was taking an incorrect value without checking its integrity. This is fixed in a recent version. I don't see anything to be concerned about. Quote Link to comment Share on other sites More sharing options...
Robo Posted January 17, 2015 Author Share Posted January 17, 2015 thanks well the provider told me the shop was under attack and send me the log file ... , the shop was not working suddenly thats why i came to them database etc etc problems to many connections... i have now the ...16 version (had 15) and he has blocked some ip adresses , till now it is ok .. i am confident it works out ok grts Quote Link to comment Share on other sites More sharing options...
havenswift-hosting Posted January 17, 2015 Share Posted January 17, 2015 Shop being "under attack" can mean many things but saying it had an sql injection vulnerability is totally different ! Sending that Apache snapshot as "proof" that your shop was under attack (whatever they mean by that) indicates to me that the hosting company dont have much of a clue what they are talking about !!Ian Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.