Guys please help, i don't know why my Joomla site can hacked by this BeyazKurt. He is adding his own article and setting this as my frontpage. What will i do to prevent this. Thanks.
Hey bro,its really a serious issue. I can surely help you in this regard and prevent your site from beoing hacked again by any stupid fellow. Add me up in any of the Ims,which you prefer and then we can discuss. Dont worry,i will help you to the fullest. Thanks..
I think its MYSQL injection, because at first he injected on the top of the frontpage news. Then, he created his own news and added to the news items. Below is the exact message: 0wn By BeyazKurt - - F@CK ALL "SEX" SITES! Pikaçu bi çarp şunlarıda porn neymiş anlasın saygısızlar! After that message there is image of Picachu (Pokemon) cartoon character. My site is not a sex site, its just an online magazine. By the way, my hosting is on Godaddy.com. Thanks
If you are using a CMS (Content Management System) you probably got hacked through a known vulnerability. This happen (it always happen) if you do not use the latest version. If you made the website yourself, be sure to escape all the user inputs before sending them to the SQL queries. For example, in PHP, you can use mysql_real_escape_string. The number one rule is to always, always update the web applications you are using once a new version is available. Or you WILL get hacked. And if you are developping an application yourself, be sure to know what you are doing. If you provide us with more info I can try to help you. By the way... this is my first post here. Hi everyone.
Password Reset Forgery exploit for joomla, all 1.5.x installs prior to and including 1.5.5 are affected. To fix this add this code: if(strlen($token) != 32) { $this->setError(JText::_('INVALID_TOKEN')); return false; } PHP: after line 113: global $mainframe PHP: of /components/com_user/models/reset.php