PHP app hack attack
Posted: Mon May 21, 2007 10:21 am
Ok...
I have built a PHP driven website and up to late yesterday i have been attacked...
I have downloaded my index.php file and i am seeing code being inserted into the file
so i have my original code in the file but somewhere along this above code is appearing...
What kind of attack is this?
what should i be looking for in my coding that is being used to carry out this attack?
what is recommended to stop it?
I have built a PHP driven website and up to late yesterday i have been attacked...
I have downloaded my index.php file and i am seeing code being inserted into the file
Code: Select all
<!-- o4 --> <LINK REL="StyleSheet" HREF="http://pipka.mcdir.ru/ghuma/ghstyle.css" TYPE="text/css"><!-- c4 --></head>
<body><!-- o4 --> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Acyclovir">Acyclovir</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Abilify">Abilify</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Amitriptyline">Amitriptyline</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Biaxin">Biaxin</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=<span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span>"><span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span></font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Diazepam">Diazepam</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Femara">Femara</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=<span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span>"><span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span></font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Lodine">Lodine</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Metformin">Metformin</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Nexium">Nexium</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Oxycontin">Oxycontin</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Plavix">Plavix</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=<span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span>"><span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span></font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Seroquel">Seroquel</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Tysabri">Tysabri</font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=<span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span>"><span style='color:red;text-decoration:blink' title='Alert a moderator!'>grilled spam</span></font>, <br></a> <a class=prost href="http://xmlpdf.com/photos/search/search.php?q=Zocor">Zocor</font>.</a> <!-- c4 -->
What kind of attack is this?
what should i be looking for in my coding that is being used to carry out this attack?
what is recommended to stop it?