Did someone try to hack my website? [TinyBrowser plugin]

  • mico
  • Beginner
  • Beginner
  • User avatar
  • Posts: 54
  • Loc: Neo Universe

Post 3+ Months Ago

lately, i got a visitor many times tried to access or did something i dont know what it is to my site. when i checked my Error Log Messages, i found this thing:
he was tried to access (or injecting? anything) folder plugins -which i dont have (and my site is html based), referer: mysite/plugins/editors/tinymce/jscripts/tiny_mce/plugins/tinybrowser/tinybrowser.php?type=file&folder=

i googled about that and found milw0rm . com/exploits/9296 explains:
TinyBrowser is a plugin of TinyMCE JavaScript editor that acts as
file browser to view, upload, delete, rename files and folders on the
web servers.


Did someone tried to hack my website?

Please dont give any harsh comments. i know that i'm still in "web-thing playgroup". I'm learning patiently here.
  • Don2007
  • Web Master
  • Web Master
  • Don2007
  • Posts: 4923
  • Loc: NY

Post 3+ Months Ago

People scan for script vulnerabilities all the time. It's no big deal. What was the IP address associated with that entry?
  • mico
  • Beginner
  • Beginner
  • User avatar
  • Posts: 54
  • Loc: Neo Universe

Post 3+ Months Ago

if its a "normal" thing then, thank God!
it's a personal IP. guess someone did it with his laptop entertaining himself by the traffic jam....

i simply worry. many hacked site i found was done by that IP-country hackers...

is it very vulnerable for an http based site?
  • Don2007
  • Web Master
  • Web Master
  • Don2007
  • Posts: 4923
  • Loc: NY

Post 3+ Months Ago

Why won't you post the IP? It makes me laugh when someone's site is attacked & they won't say who did it.

I don't know how vulnerable your site is. You have to pen test it.
  • mico
  • Beginner
  • Beginner
  • User avatar
  • Posts: 54
  • Loc: Neo Universe

Post 3+ Months Ago

oh, i can post the IP here?
ah, just afraid of the owner found it then he knows its mine, and get pissed off and then try harder to screw my website and or my account etc... well...
  • joebert
  • Fart Bubbles
  • Genius
  • User avatar
  • Posts: 13504
  • Loc: Florida

Post 3+ Months Ago

Like Don said people scan for known security holes all the time. Chances are the IP address you have isn't even the address of the actual attacker, it's probably an infected PC or website that's doing the scanning and relaying the information back to the attacker.

The important thing is to make sure you look out for strange requests like this. If you see a 404 HTTP status response with the request there's most likely nothing to worry about. However if you start seeing requests like this with HTTP 200 OK status codes, you need to make sure you are up to date with whatever software the requests lead to.
  • mico
  • Beginner
  • Beginner
  • User avatar
  • Posts: 54
  • Loc: Neo Universe

Post 3+ Months Ago

I understand.
Thank you so much for d lesson, Don and joebert!

Post Information

  • Total Posts in this topic: 7 posts
  • Users browsing this forum: No registered users and 1 guest
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum
 
cron
 

© 1998-2014. Ozzu® is a registered trademark of Unmelted, LLC.