Collaborate Disseminate
Equifax divulged on Wednesday that the culprit behind this summer’s breach of 143 million Americans was an Apache Struts vulnerability, CVE-2017-5638, patched back in March. Continue reading Equifax Confirms March Struts Vulnerability Behind Breach
The massive Equifax data breach that exposed highly sensitive data of as many as 143 million people was caused by exploiting a flaw in Apache Struts framework, which Apache patched over two months earlier of the security incident, Equifax has confirmed… Continue reading Equifax Suffered Data Breach After It Failed to Patch Old Apache Struts Flaw
The nightmare that is patching IoT devices, essential bug bounty programs, controlling voice assistants, flaws in Apache Struts2, and more security news! Paul’s Stories Fixing, upgrading and patching IoT devices can be a real nightmare Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers Hackers Can Silently Control Siri, Alexa & Other Voice […]
The post Critical Flaw in Apache, Wikileaks Unveils Project Protego, and Linux 4.13 – Paul’s Security Weekly #529 appeared first on Security Weekly.
In our Apache server we received around 200 HTTP GET requests from the same IP and a common string in each request is “md5”, e.g.
index.php?option=com_s5clanroster&view=s5clanroster&layout=category&task=category&… Continue reading Received "md5" in access logs
In our Apache server we received around 200 HTTP GET requests from the same IP and a common string in each request is “md5”, e.g.
index.php?option=com_s5clanroster&view=s5clanroster&layout=category&task=category&… Continue reading Received "md5" in access logs
Below is my apache access log.
175.139.240.59 – – [28/Jul/2017:23:42:50 +0000] “HEAD http://xx.xxx.xx.xxx:80/mysql/admin/ HTTP/1.1” 301 –
…
175.139.240.59 – – [28/Jul/2017:23:42:50 +0000] “HEAD http://xx.xxx.xx.xxx:80/phpM… Continue reading Apache Access Log Indicates DOS Attack? Or any other attack?
Apache Struts 2 framework,versions 2.5 to 2.5.12,with REST plugin insecurely deserializes untrusted XML data. A remote,unauthenticated attacker can leverage this vulnerability to execute arbitrary code in the context of the Struts application. Continue reading VU#112992: Apache Struts 2 framework REST plugin insecurely deserializes untrusted XML data
In my modsecurity auditlog there is a binary file logged as text:
How can I prevent modsecurity from bloating my logfiles with the content of binary files like that?
Continue reading How can I prevent modsecurity from logging binary data
I’m looking for a security solution for my web-server Apache in windows enviroment for an authenticated services published to internet, I cannot setup a DMZ because it is heavily connect to all other servers of that network.
… Continue reading Can a reverse proxy protect from web-server exploit?
I user opencart v2.3.0.2 and after finished my site I use a scanner to scan my website but after while from starting scaning I get this error :
Fatal error: session_set_save_handler(): Session handler’s function
table is corrupt in \system\library\session.php on line 16
i use many scanner some times vega , wa3f , Acunetix .
I use XAMPP as a web server
the session file where he show me the problem :
adaptor = new $class($this);
} else {
throw new \Exception('Error: Could not load session adaptor ' . $adaptor . ' session!');
}
if ($this->adaptor) {
session_set_save_handler($this->adaptor);
}
if ($this->adaptor && !session_id()) {
ini_set('session.use_only_cookies', 'Off');
ini_set('session.use_cookies', 'On');
ini_set('session.use_trans_sid', 'Off');
ini_set('session.cookie_httponly', 'On');
if (isset($_COOKIE[session_name()]) && !preg_match('/^[a-zA-Z0-9,\-]{22,52}$/', $_COOKIE[session_name()])) {
exit('Error: Invalid session ID!');
}
session_set_cookie_params(0, '/');
session_start();
}
}
public function start($key = 'default', $value = '') {
if ($value) {
$this->session_id = $value;
} elseif (isset($_COOKIE[$key])) {
$this->session_id = $_COOKIE[$key];
} else {
$this->session_id = $this->createId();
}
if (!isset($_SESSION[$this->session_id])) {
$_SESSION[$this->session_id] = array();
}
$this->data = &$_SESSION[$this->session_id];
if ($key != 'PHPSESSID') {
setcookie($key, $this->session_id, ini_get('session.cookie_lifetime'), ini_get('session.cookie_path'), ini_get('session.cookie_domain'), ini_get('session.cookie_secure'), ini_get('session.cookie_httponly'));
}
return $this->session_id;
}
public function getId() {
return $this->session_id;
}
public function createId() {
if (version_compare(phpversion(), '5.5.4', '>') == true) {
return $this->adaptor->create_sid();
} elseif (function_exists('random_bytes')) {
return substr(bin2hex(random_bytes(26)), 0, 26);
} elseif (function_exists('openssl_random_pseudo_bytes')) {
return substr(bin2hex(openssl_random_pseudo_bytes(26)), 0, 26);
} else {
return substr(bin2hex(mcrypt_create_iv(26, MCRYPT_DEV_URANDOM)), 0, 26);
}
}
public function destroy($key = 'default') {
if (isset($_SESSION[$key])) {
unset($_SESSION[$key]);
}
setcookie($key, '', time() - 42000, ini_get('session.cookie_path'), ini_get('session.cookie_domain'));
}
}
please ask for any information you may need to help .
also suggest any tags will be so helpful