Posting in the Magento forums has been disabled pending the implementation of a new and improved forum solution which should better serve the community.

For new questions please post at magento.stackexchange.com, the community-run support site for the Magento community. We will be providing updates on the new forum solution soon. For questions or concerns please email community@magento.com.

Magento Forum

Directory traversal attack? 
 
zhenyew
Jr. Member
 
Total Posts:  5
Joined:  2011-06-07
 

Hi, someone visit my client\’s magento store with the url below,
www.sitename.com//?option=com_product&controller;=../../../../../../../../../../../../..//proc/self/environ�00

Any idea how to prevent it? thanks…

 
Magento Community Magento Community
Magento Community
Magento Community
 
thebod
Moderator
 
Avatar
Total Posts:  81
Joined:  2010-08-11
 

Hi,

this is a generic attack against Joomla, not Magento.
You can simply ignore this, Magento is not vulnerable to this kind of attacks via Joomla-specific parameters.

 
Magento Community Magento Community
Magento Community
Magento Community
 
janesummerglow
Jr. Member
 
Total Posts:  10
Joined:  2012-04-17
 

I’ve had the same.... thanks for advice

 
Magento Community Magento Community
Magento Community
Magento Community
Magento Community
Magento Community
Back to top