Welcome to the E-Blah Community!
We would like to welcome you to our community and invite you to register an account or login.
Being a registered member is important, as it gives you several advantages over the normal Guest status. After registering you will be able to download files and images, post messages, and access member-only portions of the forum - just to name a few. Registration is quick and simple, and only takes about a minute of your time.

E-Blah Community    E-Blah Discussion    E-Blah Bugs  ›  hacker attack
Users Browsing Forum
No Members and 1 Guests

hacker attack  This thread currently has 879 views. Print
1 Pages 1 Recommend Thread
Sergio
September 26, 2011, 10:35am Report to Moderator Report to Moderator

Cultural heritage conservator
Posts: 68
Gender: Male
Posts Per Day: 0.01
Time Online: 1 days 4 hours 13 minutes
Location: Palermo Italy
The Forum (version 10.3.3) has been attacked and was obscured.
How do I prevent other problems?


I found the index.php file with this content:

<html dir=" rtl">
<head>
<title>..:: DaDa3 Was Here ! ::.. </title>
</head>
<body bgcolor="000000">
<p align=center> <font style="font-size: 20"><font color="#57FEFF"><b>~ ^-^ ~</b></font></font></p>

<p align=center> <font style="font-size: 30"><font color="#FF0000"><b>~ loGin.Dz </b></font></font></p>

<p align=center> <font style="font-size: 25"><font color="#57FEFF"><b>~ ....... ~ </b></font></font></p>

<p align=center> <font style="font-size: 26"><font color="2080ff"><b> This Site Will be HacKeD by AlGerien </b></font></font></p>

<p align=center> <font style="font-size: 50"><font color="#ff0000"><b> Access denied</b></font></font></p>

<p align =center><img src=http://www.clearchain.com/images/freebsd-devil.jpg></p>

<p align="center">

</body>

</html


Sergio Tinè
Logged Offline
Site Site Private Message Private message
Nat
September 26, 2011, 12:08pm Report to Moderator Report to Moderator

Here to help
Administrator
Posts: 1,988
Gender: Male
Posts Per Day: 0.55
Reputation: 87.23%
Reputation Score: +41 / -6
Time Online: 6 days 3 hours 30 minutes
Location: Manchester UK
Age: 57
What other scripts are running on your site?


"Thats the way the mop flops"
Logged Offline
Site Site Private Message Private message Reply: 1 - 6
Sergio
September 26, 2011, 12:57pm Report to Moderator Report to Moderator

Cultural heritage conservator
Posts: 68
Gender: Male
Posts Per Day: 0.01
Time Online: 1 days 4 hours 13 minutes
Location: Palermo Italy
dd-formmailer.php with (recaptcha)
the hosting service invites me to edit the forum !


Sergio Tinè
Logged Offline
Site Site Private Message Private message Reply: 2 - 6
Sergio
September 26, 2011, 12:59pm Report to Moderator Report to Moderator

Cultural heritage conservator
Posts: 68
Gender: Male
Posts Per Day: 0.01
Time Online: 1 days 4 hours 13 minutes
Location: Palermo Italy


Sergio Tinè
Logged Offline
Site Site Private Message Private message Reply: 3 - 6
Nat
September 26, 2011, 2:25pm Report to Moderator Report to Moderator

Here to help
Administrator
Posts: 1,988
Gender: Male
Posts Per Day: 0.55
Reputation: 87.23%
Reputation Score: +41 / -6
Time Online: 6 days 3 hours 30 minutes
Location: Manchester UK
Age: 57
That could be the problem.. as it allows an upload, its possible that a file could be uploaded, then used to hack in..


"Thats the way the mop flops"
Logged Offline
Site Site Private Message Private message Reply: 4 - 6
Sergio
September 27, 2011, 4:43am Report to Moderator Report to Moderator

Cultural heritage conservator
Posts: 68
Gender: Male
Posts Per Day: 0.01
Time Online: 1 days 4 hours 13 minutes
Location: Palermo Italy
ok,
but I would like to know how can I prevent someone inserts a string of code in the registration form


Sergio Tinè
Logged Offline
Site Site Private Message Private message Reply: 5 - 6
Justin
October 21, 2011, 7:01pm Report to Moderator Report to Moderator

The E-Blah Developer
E-Blah Programmer
Posts: 15,252
Gender: Male
Posts Per Day: 2.45
Reputation: 93.31%
Reputation Score: +307 / -22
Time Online: 39 days 5 hours 58 minutes
Location: Tallassee, AL
Age: 32
Quoted from Sergio


Just because it's https doesn't mean it can't be hacked.

I would concur that it's probably that script. The best way to prevent hacking is to lock down what file types can be uploaded and/or remove the feature all together.


My Websites: Revolution Reality (My Blog)  | Portfolio

"But you, O Lord, are a compassionate and gracious God, slow to anger, abounding in love and faithfulness." — Psalm 86:15 NIV
Logged Offline
Site Site Private Message Private message Reply: 6 - 6
1 Pages 1 Recommend Thread
Print

E-Blah Community    E-Blah Discussion    E-Blah Bugs  ›  hacker attack