PhpMyAdmin Malicious Code Found

Turns out a file has been updated on sourceforge containing a rather evil eval statement. This is the type of code injection that is typically used on exploited wordpress sites where the config file is writable. lock down your server folks. Not a big problem if you have placed your PhpMyAdmin behind a http auth.


Be the first to comment

Leave a Reply

Your email address will not be published.