2.6 Million Domains and ~45,000 Exposed Phpinfo() Later… the Story of Unprotected Phpinfo()by@sdcat
1,039 reads

2.6 Million Domains and ~45,000 Exposed Phpinfo() Later… the Story of Unprotected Phpinfo()

December 2nd 2022
4 min
by @sdcat 1,039 reads
tldt arrow
Read on Terminal Reader

Too Long; Didn't Read

I scanned 2.6 million domains for exposed phpinfo files. The discoveries where shocking. Many outdated PHP, server or module versions. Many unsafe PHP settings for production systems and quite a lot of sensitive informations are exposed through phpinfo, like database credentials, email accounts, API secrets, access to cloud services or private keys.

Companies Mentioned

Mention Thumbnail
Mention Thumbnail
featured image - 2.6 Million Domains and ~45,000 Exposed Phpinfo() Later… the Story of Unprotected Phpinfo()
sdcat HackerNoon profile picture

@sdcat

sdcat

Credibility

react to story with heart

RELATED STORIES

L O A D I N G
. . . comments & more!
Hackernoon hq - po box 2206, edwards, colorado 81632, usa