It would appear the attacker knows about a parameter called uors that may execute raw php so he is displaying (echo) some text and if he sees that text in the http response then he knows the server is vulnerable.
Update: Another Magmi attack below
More about neonprimetime
Top Blogs of all-time
- pagerank botnet sql injection walk-thru
- DOM XSS 101 Walk-Through
- An Invoice email and a Hot mess of Java
Top Github Contributions
Copyright © 2016, this post cannot be reproduced or retransmitted in any form without reference to the original post.