graham_chow wrote:About a week ago, I rang up a company because their web site had obviously been hacked. I went back yesterday and they had fixed it up. I noticed a few things like directory listing of obviously content that should not be publicly available and then I stumbled upon a hidden "admin logon page". Having just completed realistic 2 and having a user name I could not resist in trying the SQL injection hack. I'm in and it presented me with lots of nice tools to add and remove content to their site . I can't anonymously call this time because the technical detail is too high for the receptionist. Is the best bet to send them snail mail or should I just move on and forget about it? It is not an ecommerce site, but they would have enermies who would like to deface their website. It is not a political website - they just do necessary things that the public generally don't like.
Users browsing this forum: No registered users and 0 guests