Exploit for Wordpress... - GoFuckYourself.com

DickShoke · 10-14-2006, 08:01 PM

I was looking through my 404 Error logs and saw all these hits looking for these files. I think hackers are running a program to see if these files are on a server and then they use a know bug to take control of the server...
so watch out...

adxmlrpc.php 81 -
/xmlrpc.php 60 -
/adserver/adxmlrpc.php 59 -
/phpadsnew/adxmlrpc.php 58 -
/phpads/adxmlrpc.php 58 -
/phpAdsNew/adxmlrpc.php 58 -
/forum/viewforum.php 56 -
/Ads/adxmlrpc.php 55 -
/ads/adxmlrpc.php 54 -
/xmlrpc/xmlrpc.php 54 -
/xmlsrv/xmlrpc.php 53 -
/blog/xmlrpc.php 52 -
/drupal/xmlrpc.php 49 -
/community/xmlrpc.php 47 -
/blogs/xmlrpc.php 42 -
/blogs/xmlsrv/xmlrpc.php 41 -
/forum/profile.php 40 -
/blog/xmlsrv/xmlrpc.php 38 -
/blogtest/xmlsrv/xmlrpc.php 37 -
/b2/xmlsrv/xmlrpc.php 35 -
/phpgroupware/xmlrpc.php 34 -
/wordpress/xmlrpc.php 34 -

GrouchyAdmin · 10-14-2006, 08:02 PM

This bug has been around since what? 2002?

quantum-x · 10-14-2006, 09:11 PM

yeah, at least.
You'll see people scanning for a lot of common directories and apps nowadays.

Splum · 10-14-2006, 10:57 PM

Thats why its best to run custom scripts

darksoul · 10-15-2006, 12:16 AM

Quote:

Originally Posted by Splum

Thats why its best to run custom scripts

or rather not run fricking old scripts.
You should always keep up with the updates.

darksoul · 10-15-2006, 12:17 AM

Oh,
and btw this wasn't a wordpress bug rather an xmlrpc. bug which affected
lots of software

10-14-2006, 08:01 PM	#1
DickShoke Confirmed User Join Date: Oct 2003 Location: Cyberspace Posts: 1,236	Exploit for Wordpress... I was looking through my 404 Error logs and saw all these hits looking for these files. I think hackers are running a program to see if these files are on a server and then they use a know bug to take control of the server... so watch out... adxmlrpc.php 81 - /xmlrpc.php 60 - /adserver/adxmlrpc.php 59 - /phpadsnew/adxmlrpc.php 58 - /phpads/adxmlrpc.php 58 - /phpAdsNew/adxmlrpc.php 58 - /forum/viewforum.php 56 - /Ads/adxmlrpc.php 55 - /ads/adxmlrpc.php 54 - /xmlrpc/xmlrpc.php 54 - /xmlsrv/xmlrpc.php 53 - /blog/xmlrpc.php 52 - /drupal/xmlrpc.php 49 - /community/xmlrpc.php 47 - /blogs/xmlrpc.php 42 - /blogs/xmlsrv/xmlrpc.php 41 - /forum/profile.php 40 - /blog/xmlsrv/xmlrpc.php 38 - /blogtest/xmlsrv/xmlrpc.php 37 - /b2/xmlsrv/xmlrpc.php 35 - /phpgroupware/xmlrpc.php 34 - /wordpress/xmlrpc.php 34 - __________________ MILF Porn Creampie BBW Recommended -->Webcam Porn Big Tit Filipina Porn Indian Sex Big Cock Thai Porn

10-14-2006, 08:02 PM	#2
GrouchyAdmin Now choke yourself! Industry Role: Join Date: Apr 2006 Posts: 12,085	This bug has been around since what? 2002? __________________ AIM: GrouchyGfy

10-14-2006, 09:11 PM	#3
quantum-x Confirmed User Join Date: Feb 2002 Location: ICQ: 251425 Fr/Au/Ca Posts: 6,863	yeah, at least. You'll see people scanning for a lot of common directories and apps nowadays. __________________ PrettyInCash.com - BoozedGFs.com - TeenGFs.com - JizzGFs.com- MilfUploads.com -

10-15-2006, 12:17 AM	#6
darksoul Confirmed User Join Date: Apr 2002 Location: /root/ Posts: 4,997	Oh, and btw this wasn't a wordpress bug rather an xmlrpc. bug which affected lots of software __________________ 1337 5y54\|)m1n: 157717888 BM-2cUBw4B2fgiYAfjkE7JvWaJMiUXD96n9tN Cambooth

10-14-2006, 10:57 PM	#4
Splum Confirmed User Join Date: May 2003 Location: USA Posts: 6,195	Thats why its best to run custom scripts