Security vulnerability or attempted hack?

jkugler · July 30, 2022, 12:03am

I saw this in my logs today.

Jul 29 13:12:27 projects gitea: #033[36m2022/07/29 13:12:27 #033[0mStarted #033[34mGET#033[0m #033[1m/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession#033[0m for #033[1m127.0.0.1:40472#033[0m
Jul 29 13:12:27 projects gitea: #033[36m2022/07/29 13:12:27 #033[0mCompleted #033[34mGET#033[0m #033[1m/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession#033[0m #033[33m302#033[0m #033[33mFound#033[0m in #033[32m1.272828ms#033[0m
Jul 29 13:12:27 projects gitea: #033[36m2022/07/29 13:12:27 #033[0mStarted #033[34mGET#033[0m #033[1m/user/login#033[0m for #033[1m127.0.0.1:40474#033[0m
Jul 29 13:12:27 projects gitea: #033[36m2022/07/29 13:12:27 #033[0mCompleted #033[34mGET#033[0m #033[1m/user/login#033[0m #033[32m200#033[0m #033[32mOK#033[0m in #033[32m6.662754ms#033[0m

I assume this is an attempted hack and nothing to worry about?

Also: could we got have ASCII color escape sequences in syslog output?

lunny · August 5, 2022, 8:34am

Yes, the attempt failed. You can change options in [log].

Topic		Replies	Views
Gitea just may have been hacked General	1	341	December 19, 2023
Chrome and firefox detect gitea as spam website Install/Maintain/Configure	2	533	June 13, 2019
Upgrading git: push fails due to changed security policy: safe.directory Install/Maintain/Configure	5	3505	June 23, 2022
Uploading code to gitea Install/Maintain/Configure	3	1109	February 24, 2022
Unable to push to remote Install/Maintain/Configure	3	8463	May 17, 2018

Security vulnerability or attempted hack?

Related Topics