Support

Admin Tools

#20942 Remote file inclusion attempted

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by acvmultimedia on Tuesday, 16 September 2014 02:18 CDT

Monday, 15 September 2014 04:35 CDT

acvmultimedia
 Hello, by another component I know that I am having this attack.

http://www.legazpiko-udala.info/eu/400urte?a%5B%5D=%3Ca+href%3Dhttp%3A%2F%2Fclimaxlol.it%2Fritardareieiaculazione.html%3Ecome+ritardare+l+eiaculazione%3C%2Fa%3E

What is the best way to avoid it with admin tools? Configurating htaccess file better? I added my actually htaccess file.

Thank you!

Monday, 15 September 2014 07:59 CDT

nicholas
The problem is that this particular request isn't typical of an attack and can't be blocked without also forbidding you from editing articles on your site. Moreover, the URL used leads to a 404 error anyway, so there's nothing to attack to begin with. What makes you think this is an attack at all?

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Monday, 15 September 2014 08:33 CDT

acvmultimedia
Hello Nicholas,

The url now is changed and for the moment there isn´t an attack. The new url is http://www.legazpiko-udala.info/eu/ezagutu/bisita-interesgarriak-2/400-urtez-aske

Your recommendation for these cases? Use the geographic block?

Thanks

Monday, 15 September 2014 10:03 CDT

nicholas
Actually you don't need to do anything. I tried the attack against the new URL and it's blocked already, presumably by another plugin you have installed on your site.

Nicholas K. Dionysopoulos

Lead Developer and Director

πŸ‡¬πŸ‡·Greek: native πŸ‡¬πŸ‡§English: excellent πŸ‡«πŸ‡·French: basic β€’ πŸ• My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 16 September 2014 02:18 CDT

acvmultimedia
Thank you, I anderstand better the problem.

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!