« previous next »
Pages: [1]   Go Down

Author Topic: PHP internal error creating possible leak of data  (Read 2459 times)

0 Members and 2 Guests are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34060
  • malware fighter
PHP internal error creating possible leak of data
« on: April 16, 2013, 10:17:49 PM »
See: http://sitecheck.sucuri.net/results/www.sevdaduragi.net/bursa-sohbet-odalari.html
PHP error: Fatal error</b>: Call to undefined function ilk_resmi_al() in <b>/
Creating a possible leak of data, read here: http://www.leakedin.com/2012/04/page/1685/
Firekeeper flag
Quote
    === Triggered rule ===
alert(url_content:"%3C"; url_content:"%2F"; url_content:"%3E"; msg:"Suspicious looking GET request containing %3C, %3E, and %2F. Suspiciously HTML-like."; reference:url,http://ha.ckers.org/xss.html; reference:url,http://en.wikipedia.org/wiki/Cross-site_scripting;)

=== Request URL ===
http://www.google.com/search?client=flock&channel={flock:context}&q=PHP+error%3A+Fatal+error%3C%2Fb%3E%3A+Call+to+undefined+function+ilk_resmi_al%28%29+in+%3Cb%3E%2F&ie=utf-8&oe=utf-8&aq=t
Also read on WP dot org:  http://wordpress.org/support/topic/random-script-mess-it-up (posted okuogren)
Web application version:
WordPress version: WordPress 3.2.1
WordPress directory: htxp://www.sevdaduragi.net/wp-content
WordPress theme: htxp://www.sevdaduragi.net/wp-content/themes/sohbet/
Wordpress internal path: /home/sevdaduragi.net/httpdocs/wp-content/themes/sohbet/index.php
WordPress version outdated: Upgrade required.
Main site alerted by avast! Web Shield as having JS:Decode-TX[Trj]
And in this Anti WPA code: http://board.deioncube.in/printthread.php?tid=1065

polonus

Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34060
  • malware fighter
Re: PHP internal error creating possible leak of data
« Reply #1 on: April 16, 2013, 10:48:50 PM »
Quote
Revealing data or debugging information helps an adversary learn about the system and form a plan of attack.
Taken from http://www.hpenterprisesecurity.com/vulncat/en/vulncat/php/system_information_leak_php_errors.html (info source fortify dot com) In a broader sense read: http://www.defensecode.com/public/web_vulns/information-leak.html
Hardening the software so it does not give out this info to the world is an important security measure...

Regarding obfuscation and errors this tool might help towards this goal, example: http://ddecode.com/phpdecoder/?results=54a91431e44ab48462d4db6a59ae3db8
Together with this scanner http://evuln.com/tools/php-security/

polonus
« Last Edit: April 16, 2013, 10:51:49 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37699
Re: PHP internal error creating possible leak of data
« Reply #2 on: April 16, 2013, 11:48:50 PM »
Logged
Pages: [1]   Go Up
« previous next »