1. Home
  2. Forums Index
  3. WebmasterWorld / Ecommerce 10:48 pm May 4, 2026

Forum Moderators: buckworks

Message Too Old, No Replies

Miva Exploit?

         

rogerd

3:21 pm on Jun 8, 2003 (gmt 0)

WebmasterWorld Administrator 10+ Year Member



I have a test site with no traffic, and I was surprised to find it getting probed by a series of Miva file requests. Here are a few samples, but the script tried a couple of dozen differently formed Miva URLs:

GET /Merchant2/merchant.mv
GET /Merchant4/merchant.mvc
GET /cgi-bin/mivavm?Merchant4/merchant.mvc

Is there a new Miva exploit that someone is trying to use? Anyone else getting these kinds of probes?

This is just one more reason to change default directory names and file names whenever possible. Unfortunately, Miva is often preconfigured by the host in a standard way, and some programs react badly to name changes.

Brett_Tabke

10:10 pm on Jun 10, 2003 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



I'd heard about 6 months ago, that the previous version *may* have had some exploits running around but were fixed with that last update.

jasonh

5:07 am on Jun 22, 2003 (gmt 0)

10+ Year Member



Might just be miva scanning for installations, etc.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. WebmasterWorld / Ecommerce 10:48 pm May 4, 2026