danwin1210.me hacked / imap_open exploit
So, it seems there is a nasty PHP imap_open exploit in the wild:
Will you be affected? Probably, if you run WHMCS, Hostbill or any other software which use imap_open function (mail import via IMAP).
disable function in php.ini:
disable_functions = exec,imap_open<...>
And: remove php-imap if you don't use it at all.
!secOPS should verify my posted crap!