Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Pages: [1]   Go Down

Author Topic: What exactly needs to be fixed to kill the phishing hack?  (Read 2345 times)

0 Members and 1 Guest are viewing this topic.

Proxy

  • Coppermine newbie
  • Offline Offline
  • Posts: 2
What exactly needs to be fixed to kill the phishing hack?
« on: May 14, 2007, 01:42:21 pm »
I have had an eBay site inserted in coppermine directory. It was not a password hack, as I've gone through that with the hosting company.
What exactly needs to be cleaned up after running an update. I've faithfully updated all along was at 1.4.10 and my site was shut down while they could figur eout what's going on.
It seems that they upload a file to the gallery, and some how that does some sort of "insert" into \public_html.

Again running what I thought were clean upgrades, run when instructed to by checking here.
Are there some things to look for to see that the install is not clean and maybe I have some older files?


Logged

Stramm

  • Dev Team member
  • Coppermine addict
  • ****
  • Country: 00
  • Offline Offline
  • Gender: Male
  • Posts: 6006
    • Bettis Wollwelt
Re: What exactly needs to be fixed to kill the phishing hack?
« Reply #1 on: May 14, 2007, 02:13:15 pm »
Read that announcement thread http://forum.coppermine-gallery.net/index.php?topic=31534.0
Should give you most info you need
Logged
Pages: [1]   Go Up
« previous next »
 

Page created in 0.018 seconds with 15 queries.