Greenguy's Board

Greenguy's Board (http://www.greenguysboard.com/board/index.php)
-   Programming & Scripting (http://www.greenguysboard.com/board/forumdisplay.php?f=15)
-   -   Matt's Formmail Script Problem (http://www.greenguysboard.com/board/showthread.php?t=19437)

Cliff 2005-05-09 12:39 PM
Matt's Formmail Script Problem
 
If a site is running a typical "Matts" formmail script, version 1.92 and a site is getting 400+ hostile emails being generated from it with the fields being filled in along the lines of the following...

/../../../../../../../../../../etc/passwd^^

but mostly the fields are filled with

"FormFillText"

Is there anything I can do to stop this happening please?

I renamed the script to something really obscure, back in 2002, and renamed it again two minutes ago. The hosting is so basic (not mine) and won't allow me to do much else than use perl scripts.

Any advice gratefully accepted, thanks :)

urb 2005-05-10 05:09 AM
Renaming the script will definately work.

cd34 2005-05-10 11:29 AM
upgrading to the latest version and making sure the referrer and destination fields are properly assigned will work as well.

That's a pretty old exploit that they are trying.

Cliff 2005-05-10 12:11 PM
Thanks guys :D


All times are GMT -4. The time now is 04:33 PM.

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
© Greenguy Marketing Inc