A customer reported that there is a attempt by hacker to access my webservice.
The hacker tried to send a php script to my webservice by http post and got a response 200
My IIS webservice is protected by AES encryption ROAESEncryptionEnvelope.
Should I be worried?
Is it possible that a php script is executed by my webservice?
The logging implies that the webservice accepted this script (according by the SA)
I forget to mention that only the binary channel is used.