Users of the Undernet network have noticed the site has been down for a few days. The website had an old calendar PHP script which was unused, but never deleted from the site.
“The calendar had an exploit that allowed users to read local files on the server by issuing local commands thought the php query string”, the admin of the Undernet website magic explained IRC-Junkie in a reaction.
“The website is running in a jail so he was unable to get anything of importance. He was able to read a very old sql dump where all password except two test passwords was encrypted using MD5.”
Prior to this hack the website have been down as well, which was unrelated to the hack however. “The reason for the original downtime was that the server was rebooted and httpd didn’t autostart as it should and no one noticed.”