Hi
Like all sites I get a small proportion of visits looking for known vulns in popular packages e.g. Wordpress and the popular DB/DB admin (neither of which is used by the site!)
However someone is now investigating AmPrF. On checking my logs today I had an attempt to run the cgi with ?myOperation=Used&ItemId=B00000B6SB from one of my banned IP ranges - so returned a 403
A few minutes later the exact same request was made via another proxy (bounced by the API)
My 404 records also show an amateurish investigation of AmPrF based on analysing some of my Javascript used to form requests (nothing worrying there).
I am not an expert on Mr Rs script or its language, we are obviously immune from DB injektion and the script has stood the test of time - but can anyone think of any malformed requests that could be a problem?
I would appreciate any comforting or worrying replies/best paractice for script installs/mods.
I may be paranoid but for any concerns/suggestions I would suggest using an innocuous new thread linking to this or referring to my NIck avoiding any keywords and identifiers that could be picked up by a google search.
Any comments much appreciated.
Hacking Attempt
Moderators: JoJo1956, MrRat, labbs
1 post
• Page 1 of 1
Hacking Attempt
by wrigs » Wed Jul 14, 2010 9:53 am
- wrigs
- Posts: 12
- Joined: Tue May 18, 2010 10:08 am
1 post
• Page 1 of 1
Return to APF - Amazon Products Feed Support
Who is online
Users browsing this forum: No registered users and 1 guest