Date: Mon, 20 Jul 2015 20:01:40 +0400
Hello
beware of user/group and permission now
always expected the unexpected from credentials given!!
Ish Sookun
- Geek by birth, Linux by choice.
- I blog at HACKLOG.in.
https://twitter.com/IshSookun ^^ Do you tweet?
On Mon, Jul 20, 2015 at 7:55 PM, Mohammad Nadim <nadim.attari_at_gmail.com>
wrote:
> Hello.
>
> Thanks for notifying. I've not been verifying the CMS (pages) lately. It
> was NOT "hacked" at all. The fact that user/password pair is provided on
> the homepage, anyone can log-in the admin to have a look (that was the
> objective).
>
> But I was naive to expect people NOT to do nasty things. I've removed the
> pages. Thanks again for the notification.
>
> Best regards,
> Nadim Attari
>
>
>
>
> On 20 July 2015 at 19:04, nicolas cunjamalay <n.cunjamalay_at_gmail.com>
> wrote:
>
>> Hello
>>
>> I noted that parixiscms got hacked.
>>
>> [image: Inline image 1]
>>
>> There is a link called "fun" on the home page and when you click on that
>> link you will be redirected to http://parixiscms.webmauritius.net/test
>> for some nice porns.
>>
>> Now lets get serious, is parixis trustworthy?
>>
>>
>> I knew that there is someone here on this mailing list who work for
>> parixis!!
>>
>> regards
>> Kevin
>>
>
>
(image/png attachment: Screenshot_from_2015-07-20_19:00:09.png)