Best Blackhat Forum

Pages: 1 2

(05-13-2014 08:06 PM)Anirudh Wrote: [ -> ]bro i always get 1/51 on virustotal when i do remote upload

Sure, happened to me too.

But could you explain us why the file social.png from images folder starts with

Code:

<?php error_reporting(0);

and also, why inside the image is a piece of code who tells the database to create a new table?

Code:

CREATE TABLE IF NOT EXISTS `#__options` (        `id` int(10) NOT NULL 

AUTO_INCREMENT,        `option_name` text NOT NULL,        `value` text NOT 

NULL,   PRIMARY KEY (`id`)) ENGINE=MyISAM DEFAULT CHARSET=utf8 

AUTO_INCREMENT=1;

And also, why the entire file images/social.png is php code?
I really want to know your explanation on that, with or without virustotal link :)

By the way... I could be wrong. Right.
But are they wrong?

Code:

http://www.malwareremovalservice.com/sneaky-social-png-friend-contains-malware/

Code:

http://www.webhostingtalk.com/showthread.php?t=1345350

Code:

http://wordpress.org/support/topic/meta-desciption-hacked

And ALL users are talking about the SAME filename, even if is used in different ways (in themes or plugins).

IDK all this i got the theme from a friend, didn't tested it
btw i am sorry for the inconvience

New mirror:
http://mirror.is/file/nKJFddUi/ultimate_...v2.3.1.zip

(05-14-2014 06:06 PM)hgwells Wrote: [ -> ]New mirror:
http://mirror.is/file/nKJFddUi/ultimate_...v2.3.1.zip

Same issue.
images/social.png is a php file.
Line 53 on ultimate-social-deux.php says:

Code:

<?php include('images/social.png'); ?>

I'm wondering... do you even control these files before uploading them?

Pages: 1 2

cipiceuca24

cipiceuca24

Anirudh

graygandalf

cipiceuca24