PhotoPost Community - View Single Post

oldengine · February 12th, 2012, 01:16 PM

No, the drop down link was not there.

This spam outfit obviously knew about the exploit. They were NOT logged in, nor had they ever registered.

They simply used the same URL each time:

Code:

Content visible to verified customers only.

Which worked for them to send hundreds of spam emails while NOT logged in until I commented out code in misc.php. Now they'll get a white screen.

The other thing about this exploit was that HUNDREDS of email addresses could be placed in the To: line.

inetnum: 124.107.69.88 - 124.107.69.88
netname: SLITES
country: PH
descr: 322367987_Edago Dexter Cyberzone Co.

February 12th, 2012, 01:16 PM	#17 (permalink)
oldengine Member Verified Customer Join Date: Oct 2004 Location: Florida Posts: 318	No, the drop down link was not there. This spam outfit obviously knew about the exploit. They were NOT logged in, nor had they ever registered. They simply used the same URL each time: Code: Content visible to verified customers only. Which worked for them to send hundreds of spam emails while NOT logged in until I commented out code in misc.php. Now they'll get a white screen. The other thing about this exploit was that HUNDREDS of email addresses could be placed in the To: line. inetnum: 124.107.69.88 - 124.107.69.88 netname: SLITES country: PH descr: 322367987_Edago Dexter Cyberzone Co. Last edited by oldengine; February 12th, 2012 at 01:21 PM.