Forgot your password?
typodupeerror
PHP Security SourceForge

Malicious PhpMyAdmin Served From SourceForge Mirror 86

Posted by Unknown Lamer
from the tin-foil-hat-activate dept.
An anonymous reader writes with a bit of news about the compromised download of phpMyAdmin discovered on an sf.net mirror yesterday: "A malicious version of the open source Web-based MySQL database administration tool phpMyAdmin has been discovered on one of the official mirror sites of SourceForge, the popular online code repository for free and open source software. The file — phpMyAdmin-3.5.2.2-all-languages.zip — was modified to include a backdoor that allowed attackers to remotely execute PHP code on the server running the malicious version of phpMyAdmin." The Sourceforge weblog has details. Someone compromised a mirror (since removed from rotation of course) around September 22nd. Luckily, only around 400 people grabbed the file before someone caught it.
This discussion has been archived. No new comments can be posted.

Malicious PhpMyAdmin Served From SourceForge Mirror

Comments Filter:

I don't want to achieve immortality through my work. I want to achieve immortality through not dying. -- Woody Allen

Working...