1
dickinsd
PHP April Fools Hack??
  • 2005/4/1 21:58

  • dickinsd

  • Quite a regular

  • Posts: 278

  • Since: 2004/11/14


Has anyone else noticed this??

if you add this to the address of most (nearly all) php pages

?=PHPE9568F36-D428-11d2-A769-00AA001ACF42

You get a php gift.

e.g.

https://xoops.org/modules/newbb/?=PHPE9568F36-D428-11d2-A769-00AA001ACF42

How is this happening?

I know of some sites where it doesn't work, what have they done to stop it?

This does not only effect XOOPS sites, it seems to be a php thing so it covers most php sites e.g.

http://www.fedoraforum.org/?=PHPE9568F36-D428-11d2-A769-00AA001ACF42

Dave

ps look at http://www.php.net top left where logo should be

2
ewonline
Re: PHP April Fools Hack??
  • 2005/4/1 22:13

  • ewonline

  • Not too shy to talk

  • Posts: 198

  • Since: 2004/11/17


If you turn expose_php = off in the php.ini, it wont show.
The default is on, so it shows, just like you can attach a little string to show the phpinfo without actually calling phpinfo(); in a php file.

3
dickinsd
Re: PHP April Fools Hack??
  • 2005/4/1 22:48

  • dickinsd

  • Quite a regular

  • Posts: 278

  • Since: 2004/11/14


Oh, so its the Web server that is at fault?

Its nothing that can be a security risk?

Dave

Login

Who's Online

441 user(s) are online (322 user(s) are browsing Support Forums)


Members: 0


Guests: 441


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits