Results 1 to 4 of 4
  1. #1
    Join Date
    Sep 2005

    inurl upload.php

    I was looking through my awstats log and saw that someone had been searching 'inurl upload.php intext powered by' and got to my website.

    Now, my first question is - is this someone looking for an exploit?

    If so, how easy is it to remove this exploit from my website?

  2. #2
    Join Date
    Aug 2002
    Milton Keynes
    They probably were looking for an exploit of some sort.

    The easiest way to remove the exploit from your website is to take the whole thing offline forever and go live in a log cabin in the woods. Problem solved.

    Or you could, you know... keep your software up to date, find which page they ended up at and talk to the developers to see if there's anything you should be concerned about.

  3. #3
    Join Date
    Apr 2005
    make sure you also have mod_security configured to fight these kind of vulnerability attacks
    Sam - Expertise in Windows/Linux server support, IaaS and PaaS Management - Custom Software Development
    Email: exec @ | Skype: unni_active

  4. #4
    Join Date
    Apr 2009
    Virginia, USA
    Thats a "Google Hack". The bad guys look for the string in good searches, and if they find it they hit your site. There are modsecurity rules that specifically look for that and will block the reconnaissance part of the attack with a fake 404, which will send the badguys off to look a different system.
    Michael Shinn
    Secure your server now with Atomic Secured Linux
    Co-Author of Troubleshooting Linux Firewalls
    AIM: mikegotroot | E-Mail: mike @

Similar Threads

  1. PHP Upload
    By yegorpb in forum Hosting Security and Technology
    Replies: 3
    Last Post: 01-12-2006, 07:59 PM
  2. Question about allinurl: and inurl: operators
    By 3-rx in forum Web Design and Content
    Replies: 0
    Last Post: 09-16-2005, 07:17 PM
  3. PHP upload problem after upgrade to PHP 4.4.0
    By GeorgeC in forum Programming Discussion
    Replies: 1
    Last Post: 08-20-2005, 10:23 PM
  4. [php] php upload script
    By kneuf in forum Programming Discussion
    Replies: 1
    Last Post: 07-13-2004, 05:58 PM
  5. PhP upload script doesn't upload the file.
    By Nullified in forum Programming Discussion
    Replies: 7
    Last Post: 06-24-2004, 09:46 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts