Page 1 of 1

Possible phpinfo exploit

PostPosted: Wed Dec 23, 2015 1:41 pm
by dingetje
A word of warning:

My Apache packages contain a PHP version that may be vulnerable for the following exploit:

http://www.php-security.org/MOPB/MOPB-08-2007.html

I've noticed a sudden (sharp) increase earlier this year on page hits on an phpinfo page I had on my FREESCO server.
Since then I've removed all open phpinfo pages so now they return a 404 error.

Consider yourself warned!