&phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Discussion regarding Joomla! security issues.

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
initsoul
Joomla! Apprentice
Joomla! Apprentice
Posts: 13
Joined: Sat Mar 22, 2008 12:58 pm

&phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby initsoul » Sat Apr 26, 2008 8:20 pm

Why does &phpMyAdmin=someJunkCharacters get suffixed to joomla urls ?

~ Soul

joels341
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sun Apr 22, 2007 4:29 am

Re: &phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby joels341 » Sat Apr 26, 2008 11:52 pm

I have noticed this behavior too. Did you recently do an export/import using PHPMyAdmin? I was never sure if this was a problem with Joomla or with PHPMyAdmin.

I wonder if it is caused by a hacking attempt......

I'd like to know. Anyone else have this problem with/without PHPMyAdmin import/export?

User avatar
fw116
Joomla! Ace
Joomla! Ace
Posts: 1365
Joined: Tue Sep 06, 2005 11:18 am
Location: Germany

Re: &phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby fw116 » Sun Apr 27, 2008 12:14 am

search google fpr mysql and UTF-8 and myphpadm

joels341
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sun Apr 22, 2007 4:29 am

Re: &phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby joels341 » Sun Apr 27, 2008 6:42 am

Havn't found anything using the keywords you suggested. You seem to indicate that this has something to do with character encoding. I don't see what problem with character encoding would add this kind of string to the end of URLs.

Please provide more information fw.

User avatar
fw116
Joomla! Ace
Joomla! Ace
Posts: 1365
Joined: Tue Sep 06, 2005 11:18 am
Location: Germany

Re: &phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby fw116 » Sun Apr 27, 2008 10:20 am

i found this one:

maybe u have this issue, dont know, so check:

Description:
We received an advisory from Jim Hermann, and we wish to thank him for his work. phpMyAdmin saves sensitive information like the MySQL username and password and the Blowfish secret key in session data, which might be unprotected on a shared host.
Versions before 2.11.5.1.

check also:
http://www.phpmyadmin.net/home_page/security.php

and
viewtopic.php?f=267&t=255490

joels341
Joomla! Apprentice
Joomla! Apprentice
Posts: 23
Joined: Sun Apr 22, 2007 4:29 am

Re: &phpMyAdmin=eAzftBAxjUhcYv4-J87%2CP1B8J-d

Postby joels341 » Sun Apr 27, 2008 6:32 pm

That may or may not be it. If it is that, it looks like the solution is to check your server for a possible security breach, reinstall the OS, change all your passwords, and check the version of your phpMyAdmin and other software versions.

According to secunia.com, the username/password/blowfish info in session data vulnerability exists in phpMyAdmin version 2.11.5 and lower. The solution to this is to make sure you upgrade to at least version 2.11.5.1.

The current version of phpMyAdmin is 2.11.5.2, released April 22nd, 2008.

User avatar
jcalvert
Joomla! Enthusiast
Joomla! Enthusiast
Posts: 242
Joined: Sun Feb 19, 2006 10:00 am

links corrupted with "phpMyAdmin" in exported Joomla databas

Postby jcalvert » Tue Jan 26, 2016 1:06 am

Not a hacking attempt – glitch in an old version of phpMyAdmin running under Plesk (but perhaps not limited to Plesk).

See: viewtopic.php?f=714&t=904304&p=3358810#p3358810

JC


Return to “Security - 1.0.x”

Who is online

Users browsing this forum: No registered users and 4 guests