MOON
Server: Apache
System: Linux s5.yayogua.com.py 6.12.0-124.55.3.el10_1.x86_64 #1 SMP PREEMPT_DYNAMIC Thu May 7 16:54:02 EDT 2026 x86_64
User: w3com (1005)
PHP: 8.2.32
Disabled: NONE
Upload Files
File: /home/w3com/mail/.istvan_nagy@w3_com_py/cur/1581101635.H30575P4885.s3.yayogua.com.py,S=7046:2,S
Return-path: <alemussi@gmail.com>
Envelope-to: istvan.nagy@w3.com.py
Delivery-date: Fri, 07 Feb 2020 15:53:55 -0300
Received: from mail-vk1-f175.google.com ([209.85.221.175]:46741)
	by s3.yayogua.com.py with esmtps (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128)
	(Exim 4.87)
	(envelope-from <alemussi@gmail.com>)
	id 1j08lG-0001Es-1z; Fri, 07 Feb 2020 15:53:54 -0300
Received: by mail-vk1-f175.google.com with SMTP id u6so72874vkn.13;
        Fri, 07 Feb 2020 10:53:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=a8CVPJ4mdc0a7czru1fpJdEHUMmVz/KR4sC+/Zdusus=;
        b=sz49NfKvRr8mMG9R+SPOeK3wagVcSd6D+TApqt+2ZsH6c/DiTG+tyn2gazjbdPXRGz
         PS+K3JVb10ihioP5SBoF6QL9G9ekCY+rYoIyVIMu03iShh02i3M0lBsKT3s2fvzyMgKz
         mTf/Jhxn3Dup5s+eDXKku+OgzPByKLGUohU9iZjoN6y2aSfbh5GVpixcB1MbM2JuH2/3
         zIfCayQ2VL1P+QtjNedMEpWauCZFLsu8Vfy1JS5jP/73sSwagrmmiza5H5pfF+UjLqLy
         HfZi3tL/sydhVaK1/7rtWZstS2Y2n7mYA84ZzJQ4eeWd6mdyrbLT5l0/NprZGsOkxtE2
         /ADA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=a8CVPJ4mdc0a7czru1fpJdEHUMmVz/KR4sC+/Zdusus=;
        b=QcH6R8j7ae6+g6+pTGTmOCCDP/dP3pIK28wXp0AtlCVQzA8NHzi7EhRE8ucXh5u1O4
         Iqli33sZCvf2m8bfbrueZVTsFJjOFTgJBotAVy+K/yjGxT8J+6rMTPWUZa6rJUoQfY1n
         kg6CNkZQ1up+JFi29XKTfoQqcUpKQgQw1jH5b8xG69eDbac9tcH0H12+pXA9/KRWMwA+
         FDx1GiN/6vSID7VewCHRYXsbnlLGC60yXovCI3UQndNLAv8Nl/sPlNQlp/WfvyrZY3tk
         lgGSKw4q/OGGF72I58FERCWERR3tNST9L/7q8dKjsvYzX+hyFwjDyOLXmph3Znjhv8EN
         W85g==
X-Gm-Message-State: APjAAAXzTurEXEI/xbojAimr6MeMdqVHkJBblm/Se+v/Cdl8Tkngi+pM
	b77Y2ZrVPQiTe+PINBmpWAxj1t3ZvOcUd36Nw7AwEw==
X-Google-Smtp-Source: APXvYqyFDXt3Cu3Vg+ftkfi+afc1Tst91h66iE9ioGLCogeGd/OU3m6A3ofTEv6VFCPFdDftCzkGpfvYl4nnwYaRXXk=
X-Received: by 2002:a1f:9684:: with SMTP id y126mr347093vkd.84.1581101572686;
 Fri, 07 Feb 2020 10:52:52 -0800 (PST)
MIME-Version: 1.0
References: <000001d5ddd6$77285750$657905f0$@w3.com.py>
In-Reply-To: <000001d5ddd6$77285750$657905f0$@w3.com.py>
From: Alejandro Mussi <alemussi@gmail.com>
Date: Fri, 7 Feb 2020 15:52:45 -0300
Message-ID: <CAKXAaPi6xtvTJmMXo=3dKz-Z-6EMW8TrhbZm66790dnWrAi-Fg@mail.gmail.com>
Subject: =?UTF-8?Q?Re=3A_Soluci=C3=B3n_a_vulnerabilidades?=
To: =?UTF-8?Q?Mart=C3=ADn_Cubilla?= <martin.cubilla@w3.com.py>
Cc: Istvan Nagy <istvan.nagy@w3.com.py>
Content-Type: multipart/alternative; boundary="00000000000098083c059e00e519"
X-Spam-Status: No, score=-2.0
X-Spam-Score: -19
X-Spam-Bar: --
X-Ham-Report: Spam detection software, running on the system "s3.yayogua.com.py",
 has NOT identified this incoming email as spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 
 Content preview:  Que tal Martin, No accede a ninguna pagina ese link. Podes
    habilitar de vuelta para mirar? On Fri, Feb 7, 2020 at 1:46 PM Martín Cubilla
    wrote: [...] 
 
 Content analysis details:   (-2.0 points, 5.0 required)
 
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
                             See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: w3.com.py]
 -1.9 BAYES_00               BODY: Bayes spam probability is 0 to 1%
                             [score: 0.0000]
 -0.0 SPF_PASS               SPF: sender matches SPF record
 -0.0 RCVD_IN_MSPIKE_H2      RBL: Average reputation (+2)
                             [209.85.221.175 listed in wl.mailspike.net]
  0.0 FREEMAIL_FROM          Sender email is commonly abused enduser mail provider
                             (alemussi[at]gmail.com)
  0.0 HTML_MESSAGE           BODY: HTML included in message
 -0.1 DKIM_VALID             Message has at least one valid DKIM or DK signature
  0.1 DKIM_SIGNED            Message has a DKIM or DK signature, not necessarily valid
 -0.1 DKIM_VALID_AU          Message has a valid DKIM or DK signature from author's
                             domain
X-Spam-Flag: NO

--00000000000098083c059e00e519
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Que tal Martin,

No accede a ninguna pagina ese link. Podes habilitar de vuelta para mirar?



On Fri, Feb 7, 2020 at 1:46 PM Mart=C3=ADn Cubilla <martin.cubilla@w3.com.p=
y>
wrote:

> Buenas Tardes Sr
>
> Como podr=C3=ADamos solucionar una vulnerabilidad que tiene el CMS actual=
 de la
> p=C3=A1gina esta sanbernardinocountryclub.com.py, es el CMS este
> personalizado, su seguridad es muy b=C3=A1sica.
>
> Ayer tuvimos una inyecci=C3=B3n de SQL, que pude revertir por tener back =
ups
> actualizados
>
> Desde que yo estoy, solamente usamos wordpress que nos brinda mayor
> seguridad
>
> Saludos
>
> Mart=C3=ADn
>


--=20
---------------------------------------------------------
Alejandro Mussi Campos Cervera

--00000000000098083c059e00e519
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">Que tal Martin,<div><br></div><div>No accede a ninguna pag=
ina ese link. Podes habilitar de vuelta para mirar?=C2=A0</div><div><br></d=
iv><div><br></div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr" cla=
ss=3D"gmail_attr">On Fri, Feb 7, 2020 at 1:46 PM Mart=C3=ADn Cubilla &lt;<a=
 href=3D"mailto:martin.cubilla@w3.com.py">martin.cubilla@w3.com.py</a>&gt; =
wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0=
px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div lang=
=3D"ES-MX"><div class=3D"gmail-m_3060617609205147197WordSection1"><p class=
=3D"MsoNormal">Buenas Tardes Sr<u></u><u></u></p><p class=3D"MsoNormal">Com=
o podr=C3=ADamos solucionar una vulnerabilidad que tiene el CMS actual de l=
a p=C3=A1gina esta <a href=3D"http://sanbernardinocountryclub.com.py" targe=
t=3D"_blank">sanbernardinocountryclub.com.py</a>, es el CMS este personaliz=
ado, su seguridad es muy b=C3=A1sica.<u></u><u></u></p><p class=3D"MsoNorma=
l">Ayer tuvimos una inyecci=C3=B3n de SQL, que pude revertir por tener back=
 ups actualizados<u></u><u></u></p><p class=3D"MsoNormal">Desde que yo esto=
y, solamente usamos wordpress que nos brinda mayor seguridad<u></u><u></u><=
/p><p class=3D"MsoNormal">Saludos<u></u><u></u></p><p class=3D"MsoNormal">M=
art=C3=ADn<u></u><u></u></p></div></div></blockquote></div><br clear=3D"all=
"><div><br></div>-- <br><div dir=3D"ltr" class=3D"gmail_signature">--------=
-------------------------------------------------<br>Alejandro Mussi Campos=
 Cervera<br></div>

--00000000000098083c059e00e519--