Print Page - possible security issue

Title: possible security issue
Post by: Beekeeper on November 24, 2011, 12:20:52 AM

I upgraded to cpg1.5 a couple of weeks ago
Other than myself as Admin there is one registered user who is known to me.
This evening I received this email

This email was sent at 2011-11-23 21:50:38 using the contact form at http://www.mareham-le-fen.co.uk/photo/contact.php from the IP address 109.73.68.18

The guest named «tpyrnpovod» with the email address hdrjdw@hnkvzi.com said:
bVimgc <a href="http://pfbajozeyuzq.com/">pfbajozeyuzq</a>, ialmlcbkdgqd (http://ialmlcbkdgqd.com/), [link=http://xhwcofrgeosf.com/]xhwcofrgeosf[/link], http://avofsuwezjef.com/

obviously contact.php isn't visible on the webpage so the person must know the that there is a contact.php file in coppermine, Is this something I should worry about or is it just someone trying to prove how clever they are

Title: Re: possible security issue
Post by: Αndré on November 24, 2011, 12:28:11 PM

Quote from: Beekeeper on November 24, 2011, 12:20:52 AM
obviously contact.php isn't visible on the webpage

Just have a look at Home > Contact ::)

Title: Re: possible security issue
Post by: Beekeeper on November 24, 2011, 03:44:32 PM

Thanks for that,
For some reason I have never noticed the contact option on the home link, it was the message content that made me assume it could be a possible attack attempt of some discription,
My appologies for wasting your time

Title: Re: possible security issue
Post by: Αndré on November 24, 2011, 03:52:27 PM

You can disable the contact form in the config, if you don't need it.

Additionally, please

Quote from: Joachim Müller on September 28, 2008, 12:46:26 PM
tag your answer as "solved" by clicking on the "Topic Solved" button on the bar at the left hand side at the bottom of your thread.

coppermine-gallery.com/forum

Support => cpg1.5.x Support => cpg1.5 miscellaneous => Topic started by: Beekeeper on November 24, 2011, 12:20:52 AM