Thanks for finding the RFI vulnerability in our FAQ. We have fixed it now, but we don't understand how the attacker found it so quickly.
We suspect it might be an inside job, but maybe they got the source another way. Here are the logs for the month prior to the attack, can you see anything suspicious?
Please submit the attackers IP as the flag as follow, DO{x.x.x.x}
File: more.7z
| Action | Rating | Author team |
|---|---|---|
| Read writeup |
not rated
|
Scavenger Security |
| Read writeup |
not rated
|
secret_squirrels |
