Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

phpmyadmin compromised?
From: Lucio Crusca <lucio () sulweb org>
Date: Mon, 19 Nov 2012 17:45:56 +0100

Hello *,

I've setup my browser to remember login & password at my server phpmyadmin 
login page. It usually fills the two fields correctly, but today it showed 
this crap instead:

http://img208.imagevenue.com/img.php?image=38933_php_myadmin_compromised_122_430lo.jpg

Since I've already suffered a security breach through phpmyadmin in the 
past, I immediately suspected another one. Please note that phpmyadmin is 
shielded by http digest authentication since the previous accident.

Are you aware of any security problems related to phpmyadmin (or to 
Iceweasel 10 for that matter) that can cause such garbage on the login page?

Thanks in advance
Lucio.




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault