This scan might be exploited, please help.
Schoeny1 opened this issue · 1 comments
Schoeny1 commented
Hello Steve,
We have found a plain text file in a few Magento 1 and 2 sites. It was a plain txt file in the root of the site called srobbins.txt and the contents were just this:
"Steve was here A"
I am thinking your scan might have been modified by bad guys. I assume they are scanning for vulnerable ways to upload a file to a site. do any of your scanners test for this?
steverobbins commented
That's more or less one of the objectives of this project, to find vulnerabilities. But there is no way to use this tool to actually exploit a vulnerability. It could have been modified but that's out of my control.
I recognize that file, though. You can contact me offline for more info: steve@steverobbins.com