1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 3:04 am May 2, 2026

Forum Moderators: coopster

Message Too Old, No Replies

phpinfo.php

File that was auto inserted?

         

bartainer

3:26 pm on Jan 9, 2006 (gmt 0)

10+ Year Member



Hello;

Is it possible sessions are being attached due to the above file? I did NOT create this page (file) on my server?

Bartainer

coopster

5:11 pm on Jan 9, 2006 (gmt 0)

WebmasterWorld Administrator 10+ Year Member



If you did not create the file then I would find out who did if I was you ;-)

First off, anything that shows up unexpectedly needs to be scrutinized immediately for security purposes. And, more importantly, you need to view the contents of that file to see what purpose it serves! If it is merely a one-line file with a phpinfo() command that it is/was being used to see your server configuration. Are you certain your host didn't drop it out there to check something and then forget to remove it? Have you logged in to see the file's timestamp as well as owner/group permissions?

MattyMoose

6:11 pm on Jan 9, 2006 (gmt 0)

10+ Year Member



By "attached" do you mean "hijacked", as in people stealing other session IDs?

If so, read up here: [blog.phpdoc.info...]

There's a little info on the phpinfo() vulnerabillity here as well: [hardened-php.net...]

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 3:04 am May 2, 2026