Kloxo Exploit – Zero day exploit
There is an active zero day Kloxo exploit with no workaround at this moment. If you are using Kloxo, it is recommended that you take necessary steps to protect your server immediately until there is an official patch is released to address this Kloxo exploit.
Many hosting providers already suspended virtual machine which were using Kloxo. There is an SQL injection vulnerability within Kloxo which allows the attackers to gain admin access. Many hosting providers have reported that their clients Kloxo installations were compromised.
Again if you are using Kloxo on your server, it is highly recommend that you take necessary steps to protect your server. You can stop Kloxo via SSH using the following command:
Also, you can subscribe to WebhostingTalk thread here. There is an ongoing discussion on this Kiloxo exploit.