Results 1 to 2 of 2
  1. #1
    Join Date
    Sep 2001
    Posts
    86

    Is this a hack attempt?

    We received the following error message:

    *****************************************
    Invalid SQL: SELECT * FROM products
    WHERE buy_isposted=1
    AND product LIKE '%http://217.59.104.226/%'

    AND buy_maxbuy > 0 ORDER BY http://217.59.104.226/ ASC LIMIT http://217.59.104.226/,20
    mysql error: You have an error in your SQL syntax near '://217.59.104.226/ ASC LIMIT http://217.59.104.226/,20' at line 4

    mysql error number: 1064

    Date: Saturday 26th of June 2004 12:16:05 PM
    Script: /buy.php?substrings=http://217.59.104.226/&orderby=http://217.59.104.226/&sort=http://217.59.104.226/&limit=http://217.59.104.226/
    Referer:

    *****************************************

    It looks like someone has replaced all of the variables with the IP, for example they did something like this:

    http://www.ourdomain.com/buy.php?sub...17.59.104.226/


    According to Whois The IP is a place in amersterdam. We think that this IP is used as a proxy to surf anonymously. How would we check to see if this IP has logged into our server?

    Any help would be greatly appreciated!

  2. #2
    Try a mySQL forum if you still dont get a response.

Related Posts from theWHIR.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •