cxs exploit path wrong

Community forum to discuss cxs.
If you believe that there is a problem with your cxs installation and want support then, as a paid product, you should use the helpdesk after having consulted the documentation.
Post Reply
UWH-David
Junior Member
Posts: 28
Joined: 04 Nov 2017, 02:26

cxs exploit path wrong

Post by UWH-David »

I am seeing this on one of our installs:

Web upload script path : /home/csf/public_html/wp-content
Web upload script URL : http://thedomain.com/wp-content/plugins ... rocess.php
Remote IP : 111.111.111.111
Deleted : No
Quarantined : Yes [/home/cxs/cxscgi/20190902-111450-XW1cGlR8iXLSCGA1s5JanQAAARM-file-DH3JX9.1567448091_1]

NOTE: [/home/csf/public_html/wp-content] does not exist on this server. However, ModSecurity is still triggering cxs to scan the attempted uploading of potentially malicious data

What is causing csf to populate instead of the username of the account?
Post Reply