I've been using links 2.0 for quite some time now with no issues until recently I received this message from my security software stating that someone exploited my site using the command: /usr/bin/perl nph-verify.cgi. The file opened was links/cgi-bin/admin/data/links.db and when I checked into it I found a link to a gaming site (binbang.com) so I removed it. How did this happen? How can I prevent it from happening again? I've double checked my permissions for the file in question and it is 644. Shouldn't this stop anyone from writing to this file?
Basshook
Basshook