Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Pages: [1]   Go Down

Author Topic: help I've been hacked!  (Read 2794 times)

0 Members and 1 Guest are viewing this topic.

vogel.je

  • Coppermine newbie
  • Offline Offline
  • Posts: 2
help I've been hacked!
« on: December 29, 2011, 05:52:25 am »

Hello, 

My Coppermine Gallery was hacked so I upgraded from version 1.4 to 1.5 successfully.  But the hack didn't go away.  For instance if I go to just about any page and view the source I find this code embedded in the php page:

<div style="position:/**/absolute; overflow:/**/hidden;/**/width:/**/0 "><h2><a href="http://www.prosoftwarestore.com/" alt="Software Store Microsoft Software Adobe Software" title="Software Store Microsoft Software (this goes on and on and on)

What can I do to eliminate this hack?  Is it a matter of simply going in there and deleting this embedded code?  If I do that won't these lines just come back? What should I do?

Thanks - John Vogel
Logged

lurkalot

  • Administrator
  • Coppermine addict
  • *****
  • Country: gb
  • Offline Offline
  • Gender: Male
  • Posts: 947
  • +Tinyportal Support team.
Re: help I've been hacked!
« Reply #1 on: December 29, 2011, 09:02:18 am »

Please follow the rules when asking for support.  It will help us help you.

Just a quick question.  As you upgraded from one major version to another, did you also upgrade your themes?  What happens when you view your gallery using the default theme "Curve"?
Logged
Running SMF 2.1.4  / Tinyportal 3.0.0, bridged with Coppermine 1.6.25, plus cpmfetch 2.0.0

Joe Carver

  • Dev Team member
  • Coppermine addict
  • ****
  • Country: us
  • Offline Offline
  • Gender: Male
  • Posts: 1545
  • aka 'i-imagine'
    • Home Page
Re: Re: help I've been hacked!
« Reply #2 on: December 29, 2011, 12:37:29 pm »

Please follow the rules when asking for support.  It will help us help you.

Specifically, posting the link to your Coppermine is what you and most people are missing in your support requests.

Upgrading alone will not fix a hacked gallery / site. If you have other software on your site, it should also be cleaned and updated.

See Yikes, I've been hacked! Now what? .
It was written in the era of cpg 1.4.x but it still applies today. It is an unsupported thread, so please read it completely, follow all of the steps, make your backups first. Some hosting companies do help their customers with hacking issues - if you are in too deep, ask for help from your hosting company.
Pages: [1]   Go Up
 

Page created in 0.019 seconds with 19 queries.