• mlg@lemmy.world
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    Injection attack submitted through apache, processed by an outdated PHP, forwarded to fat java who’s running a ye olde ass library to do sql input sanitization (it failed lol), and passed onto MySQL via a ruby script, which had a stroke because the request was to write to /var/log because someone was screwing around in sqlmap

    Oh and /var/log “accidentally” had 777 perms lmao