[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <k8dno3$dp7$1@ger.gmane.org>
Date: Mon, 19 Nov 2012 17:45:56 +0100
From: Lucio Crusca <lucio@...web.org>
To: full-disclosure@...ts.grok.org.uk
Subject: phpmyadmin compromised?
Hello *,
I've setup my browser to remember login & password at my server phpmyadmin
login page. It usually fills the two fields correctly, but today it showed
this crap instead:
http://img208.imagevenue.com/img.php?image=38933_php_myadmin_compromised_122_430lo.jpg
Since I've already suffered a security breach through phpmyadmin in the
past, I immediately suspected another one. Please note that phpmyadmin is
shielded by http digest authentication since the previous accident.
Are you aware of any security problems related to phpmyadmin (or to
Iceweasel 10 for that matter) that can cause such garbage on the login page?
Thanks in advance
Lucio.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists