Showing 4 results for: March 2012 ×[Honeypot Alert] ×

[Honeypot Alert] Zen Cart 'admin/sqlpatch.php' SQL Injection Attacks

Our web honeypot sensors picked up attacks aimed at exploiting a Zen Cart SQL Injection vulnerability. The attacks send a POST request to the following URLs: POST /admin/sqlpatch.php/password_forgotten.php?action=execute POST /black_market/admin/sqlpatch.php/password_forgotten.php?action=execute POST /cart/admin/sqlpatch.php/password_forgotten.php?action=execute POST /product_info.php/products_id/1658/admin/sqlpatch.php/password_forgotten.php?action=execute POST /shop/admin/sqlpatch.php/password_forgotten.php?action=execute POST /shopping/admin/sqlpatch.php/password_forgotten.php?action=execute POST /store/admin/sqlpatch.php/password_forgotten.php?action=execute...

[Honeypot Alert] Status Report for February 2012

Monthly Web Honeypot Status Report We have received a tremendous amount of positive feedback on our web-based honeypot alert blog posts. While we agree that this data is useful for raising awareness of individual attack details, we feel that what...