Our website was also inffected in the last days by attackers.
I would like to know if this exploit allowed hackers to read files (for example, config file where database password is stored), in order to know if they could get credentials for database. Off course, our database server is not accessible from outside server but anyways... I also would like to know if they could have make some SQL injection in order to know if I should check database or restore a previous backup.
Thank you very much.
Comment