root@server.ergbox.com [ergboxco]# ls -alth
total 65M
drwxr-xr-x 11 ergboxco nobody 4.0K Jan 5 16:19 public_html
drwx--x--x 19 ergboxco ergboxco 4.0K Jan 5 15:37 .
drwx------ 6 ergboxco ergboxco 4.0K Jan 5 00:09 .cpanel
-rw------- 1 ergboxco ergboxco 229 Jan 5 00:09 .lastlogin
drwxr-xr-x 8 ergboxco ergboxco 4.0K Jan 1 11:15 tmp
-rw------- 1 ergboxco ergboxco 15 Jan 1 07:40 .ftpquota
drwx------ 2 ergboxco ergboxco 4.0K Jan 1 04:04 logs
drwxr-xr-x 3 ergboxco ergboxco 4.0K Dec 30 21:38 perl
drwxrwxr-x 4 ergboxco ergboxco 4.0K Dec 30 20:38 perl5
drwxr-x--- 3 ergboxco mail 4.0K Dec 30 20:37 etc
drwx--x--x. 9 root root 4.0K Dec 21 09:38 ..
-rw------- 1 ergboxco ergboxco 28M Dec 21 09:38 backup-12.21.2015_09-37-49_ergboxco.tar.gz
drwxr-xr-x 16 ergboxco ergboxco 4.0K Dec 18 15:12 testerr
drwx------ 6 ergboxco root 4.0K Nov 20 04:16 ssl
drwx------ 4 ergboxco ergboxco 4.0K Nov 19 09:13 .cphorde
drwxr-xr-x 2 ergboxco ergboxco 4.0K Nov 19 09:12 cache
drwx------ 2 ergboxco ergboxco 4.0K Oct 7 15:58 .ssh
drwxr-xr-x 2 ergboxco ergboxco 4.0K Oct 1 13:12 .cpan
-rw------- 1 ergboxco ergboxco 37M Sep 9 21:53 backup-9.9.2015_21-53-18_ergboxco.tar.gz
-rw------- 1 ergboxco ergboxco 15 Sep 8 20:19 .contactemail
drwx------ 2 ergboxco ergboxco 4.0K Sep 8 19:55 .trash
drwxr-x--x 9 ergboxco ergboxco 4.0K Sep 8 17:57 mail
-rw-r--r-- 1 root root 4.5K Jun 12 2015 localhost_access_log.2015-06-12.txt
-rw-r--r-- 1 ergboxco ergboxco 334 Mar 26 2015 2015-03-26 15:19:11.txt
-rw-r--r-- 1 ergboxco ergboxco 339 Mar 26 2015 2015-03-26 15:19:10.txt
-rw-r--r-- 1 ergboxco ergboxco 339 Mar 26 2015 2015-03-26 15:18:37.txt
-rw-r--r-- 1 ergboxco ergboxco 339 Mar 26 2015 2015-03-26 15:18:25.txt
-rw-r--r-- 1 ergboxco ergboxco 334 Mar 26 2015 2015-03-26 15:18:03.txt
-rw-r--r-- 1 ergboxco ergboxco 339 Mar 26 2015 2015-03-26 15:17:30.txt
-rw-r--r-- 1 root root 29K Mar 20 2015 printed-abnormal-print.php
drwxr-xr-x 3 ergboxco ergboxco 4.0K Mar 8 2015 public_ftp
-rw-r----- 1 ergboxco ergboxco 1 Feb 27 2015 cpbackup-exclude.conf
lrwxrwxrwx 1 ergboxco ergboxco 34 Feb 27 2015 access-logs -> /usr/local/apache/domlogs/ergboxco
lrwxrwxrwx 1 ergboxco ergboxco 11 Feb 27 2015 www -> public_html
drwxr-x--- 2 ergboxco nobody 4.0K Feb 27 2015 .htpasswds
-rw-r--r-- 1 ergboxco ergboxco 321 Feb 27 2015 .bashrc
-rw-r--r-- 1 ergboxco ergboxco 658 Nov 5 2014 .zshrc
-rw-r--r-- 1 ergboxco ergboxco 18 Oct 16 2014 .bash_logout
-rw-r--r-- 1 ergboxco ergboxco 176 Oct 16 2014 .bash_profile
root@server.ergbox.com [ergboxco]#
2016-01-05_15-58-44.png
$op = $_GET["op"];
if ($op != null) {
if ($op == "delete") {
$sql = "delete from shops where id=" . $_GET["id"];
CommonDef::doSql($sql);
header("location: account-shops.php");
return;
}
Why this matters... Anyone can take the URL, add "?op=delete&id=1%20OR1=1" to it, and the script will run the delete query, deleting all of the rows from the shops table. This is dangerously bad code, and should be refactored by an experienced programmer. Forewarned is forearmed!ASKER
PHP is a widely-used server-side scripting language especially suited for web development, powering tens of millions of sites from Facebook to personal WordPress blogs. PHP is often paired with the MySQL relational database, but includes support for most other mainstream databases. By utilizing different Server APIs, PHP can work on many different web servers as a server-side scripting language.
TRUSTED BY
ASKER
Thank you for your kind reply, I used ultraedit to search the whole folder and couldn't find any file containing the above two strings. Is it possible the order information was sent from ebay and amazon account directly.
I was able to make a short call to the original developer, he said it is in java code, but which folder contains the java applications.
I also found a php file named account-shops.php, could you please take a look?
I checked the sql database too and indeed found a table called "shops". all the addresses in this table have been updated to the current one.
Thanks.