Shopping Cart Software
site Hacked, questions
This is a discussion on site Hacked, questions within the osCMax v1.7 Discussion forums, part of the osCMax v1.7 Forums category; I am helping someone with their site which has been hacked a few weeks ago. The hacker added a whole ...
| |||||||
 | Register | FAQ | Donate | Members List | Calendar | Mark Forums Read |
|
#1
03-12-2010, 04:29 PM
| |||
| |||
 site Hacked, questions I am helping someone with their site which has been hacked a few weeks ago. The hacker added a whole paragraph of stuff on top of every page. The first thing I want to do is get rid of this. But I could not seem to find which files has been modified. At first I thought it might be main_page.tpl.php but that doesn't seem to be it. Whatever has been added seems to be before main_page.tpl.php. But I am not familiar with OSCmax so I am not sure where to start. I know this is only 1 of the problems, but this is my starting point. Any suggestions would be appreciated.      |
|
#2
03-13-2010, 07:38 AM
| ||||
| ||||
 Re: site Hacked, questions If really osCMax 1.7, your best course of action is to install a 'fresh' copy of 'Max 2.0.15 and import the relevant tables of the existing database. Then look to do any required customisation to match the 'old' store.
__________________ Hosting plans with installation, configuration, contributions, support and maintenance. |
|
#3
07-26-2010, 10:01 AM
| |||
| |||
| Re: site Hacked, questions Im not sure simply installing to a fresch copy is the best action. If you do not have all of the correct permissions, etc. set on your site as well as a secure admin your friend may encounter the same problems. In addition if the account is hosted with Cpanel and a standard FTP (as most are) these may be the point of entry. In other words, I would not assume the attacker got into the site via an OscMax vulnerability. I think if you check the header and footer coding and the includes you might be able to locate the source. a .js file (java) can also include the rogue code that is creating your headache. Unfortunately there are too many ways to create problems like the one you describe to be able to give you an easy answer about exactly where to look. |
|
#4
07-26-2010, 10:11 AM
| ||||
| ||||
 Re: site Hacked, questions Good grief - You dredged this one up from the past! Should be long gone by now  Correct to assume that it may not just be osCMax, of course and a wiki has long since been written to assist people with security aspects, relating to running 'Max (and others). Still stand by, shouldn't be running osCMax 1.7 and in the intervening months there has been quite a few upgrades too!
__________________ Hosting plans with installation, configuration, contributions, support and maintenance. |
|
#5
07-26-2010, 08:52 PM
| |||
| |||
| Re: site Hacked, questions You are right, this is old! I failed to check the date. Hopefully it will still have some use, but I think I better not check the forum until after that 2nd cup of coffee. |
|
#6
07-27-2010, 12:35 AM
| ||||
| ||||
 Re: site Hacked, questions Hey, I know that feeling well. 
__________________ Hosting plans with installation, configuration, contributions, support and maintenance. |
 |
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Website Recently Hacked | deju | osCMax v2 Customization/Mods | 19 | 04-17-2009 10:27 PM |
| Algozone tempates site hacked | michael_s | Off topic & Chit Chat | 1 | 04-20-2008 09:04 AM |
| Website Hacked - Possible Security Breech | robp | osCommerce 2.2 Discussion | 5 | 10-09-2007 11:49 AM |
| 777 permission files and folders hacked | trap | osCMax v2 Installation issues | 1 | 01-17-2006 06:18 AM |
| Quantity Tracking Pro - anyone hacked this into MS2 MAX ? | malcol27 | osCMax v1.7 General Mods Discussion | 0 | 02-20-2005 07:10 AM |
All times are GMT -8. The time now is 07:17 PM.