var sidebar_align = 'right';
var content_container_margin = parseInt('350px');
var sidebar_width = parseInt('330px');
osCommerce SPAM sending exploit 11/09/2009
Everyone should be aware of these exploits in osCommerce and osCMax shopping cart software.
It allows sending of spam without logging in, and possibly uploading of files. The "sender" becomes YOU, the merchant, which is a trusted source by customers.
You need to fix this immediately on any servers you have. It's a easy fix.
I also disabled "admin/mail.php" for good measure since that's what they actually use to send spam. Search your apache logs.
LFD (part of CSF firewall) will report the excessive e-mails, but only AFTER the SPAM is sent to all your customers and possibly others.
By olddocks in forum Hosting Security and Technology
Last Post: 12-03-2008, 05:19 PM
By magroot in forum Hosting Security and Technology
Last Post: 02-14-2007, 02:10 AM
By H4H in forum Ecommerce Hosting & Discussion
Last Post: 11-02-2006, 05:47 AM
By MPCN_Russ in forum Web Hosting
Last Post: 11-04-2004, 12:03 PM
By joekushner in forum Dedicated Server
Last Post: 04-09-2004, 01:45 PM