Re: Hacker 404 errors
Originally Posted by
erica62
Hi,
I have a plugin installed that sends me email when anyone 404s. I keep seeing similar style URLs from 404s, and wonder if it is a known hack that tells you something about the sites configuration based on what it returns, or if I'm just losing orders -
/index.php?disp_order=2&page=61&main_page=products_new2121121121212.1
Thanks,
Eric
There basically sql injection attempts.. start off with a set of numbers then change depending on what the command line they used..
like
Code:
products_id=22%27%20and%20%27x%27%3D%27x
If your up to date on versions, then you should be fine... I've been running basic scans on my development version of ZC155f to make sure my own created forms are safe. Runs about 123 404 errors in server logs by the time the scan is done. The tools are open source in Python2 and are illegal to use without site owner permission. Python is a command line tool and can run on any OS, fake IP, Host and user agent... Staying up to date is the best option for protection.
Dave
Always forward thinking... Lost my mind!
Bookmarks