I got an email today complaining about a fraudulent page on my MU.. looking at the web server through ftp I see no page there, so I am wondering if this site has been hacked or was it just handling 500 errors wrong..
the link was - myMUsite.com/wp-content/anothersite.co.uk/index.php
I guess it caused a 500 internal server error somehow, and firefox sprung a warning possible spoof message.
I have now created a custom 500 error page and directed that to another server which seems to make the problem go away.. I think... is this normal?
I saved a temporary screenshot of the error page if anyone wants to see it..