Results 1 to 6 of 6
  1. #1
    Join Date
    Feb 2014
    Posts
    25
    Plugin Contributions
    0

    Default Hacker 404 errors

    Hi,

    I have a plugin installed that sends me email when anyone 404s. I keep seeing similar style URLs from 404s, and wonder if it is a known hack that tells you something about the sites configuration based on what it returns, or if I'm just losing orders -

    /index.php?disp_order=2&page=61&main_page=products_new2121121121212.1

    Thanks,

    Eric

  2. #2
    Join Date
    Dec 2007
    Location
    Acton, California
    Posts
    706
    Plugin Contributions
    9

    Default Re: Hacker 404 errors

    Quote Originally Posted by erica62 View Post
    Hi,

    I have a plugin installed that sends me email when anyone 404s. I keep seeing similar style URLs from 404s, and wonder if it is a known hack that tells you something about the sites configuration based on what it returns, or if I'm just losing orders -

    /index.php?disp_order=2&page=61&main_page=products_new2121121121212.1

    Thanks,

    Eric
    There basically sql injection attempts.. start off with a set of numbers then change depending on what the command line they used..
    like
    Code:
    products_id=22%27%20and%20%27x%27%3D%27x
    If your up to date on versions, then you should be fine... I've been running basic scans on my development version of ZC155f to make sure my own created forms are safe. Runs about 123 404 errors in server logs by the time the scan is done. The tools are open source in Python2 and are illegal to use without site owner permission. Python is a command line tool and can run on any OS, fake IP, Host and user agent... Staying up to date is the best option for protection.
    Dave
    Working on a new project... MySite..

  3. #3
    Join Date
    Feb 2014
    Posts
    25
    Plugin Contributions
    0

    Default Re: Hacker 404 errors

    So it used to be /index.php?disp_order issue above, and over the last 6 weeks or so it has now been 404s on /status?full and /console daily a few times. I'm getting people all over the world, so as a Zen Cart site, I'm wondering what I'm doing to attract these people, and if they know if I have a ZC site or if these things when working tell them I am using other specific software etc. Thanks, Eric

  4. #4
    Join Date
    Jan 2004
    Posts
    64,973
    Blog Entries
    7
    Plugin Contributions
    76

    Default Re: Hacker 404 errors

    It would seem they're just probing to test whether your site is vulnerable to any weaknesses that other software is often prone to.

    You can spend a lot of time looking at those kinds of things and never benefit from it. While it can be useful to watch for patterns and observe sudden changes, nothing you've posted here suggests anything alarming. Particularly if you're using the latest version of Zen Cart.
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  5. #5
    Join Date
    Nov 2005
    Location
    los angeles
    Posts
    1,287
    Plugin Contributions
    2

    Default Re: Hacker 404 errors

    Quote Originally Posted by davewest View Post
    The tools are open source in Python2 and are illegal to use without site owner permission.
    good luck trying to prosecute anyone on that legality!
    helpful? while i do it for fun, u can say thanks with the green. bitcoin also welcome...

  6. #6
    Join Date
    Feb 2014
    Posts
    25
    Plugin Contributions
    0

    Default Re: Hacker 404 errors

    Thanks Dr. Byte. Using 1.5.1 and in a couple weeks will role out 1.5.5F.

 

 

Similar Threads

  1. constant jscript 404 errors
    By piker in forum Upgrading from 1.3.x to 1.3.9
    Replies: 4
    Last Post: 3 Jun 2010, 11:19 AM
  2. EZ Pages and 404 Errors
    By arihelm in forum Templates, Stylesheets, Page Layout
    Replies: 1
    Last Post: 8 Feb 2008, 03:28 PM
  3. Login / Logout 404 Errors
    By JaxMac in forum Managing Customers and Orders
    Replies: 18
    Last Post: 13 Aug 2006, 11:37 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR