PHP injection @ qb64.net (for the 2nd time...)

by (no login)

It seems to be identical to the attack that occurred earlier this year. Clearly SMF isn't aware of this vulnerability. I'm moving to repair the problem atm. The injection has spread across the Wiki & screen-shot sections too. At this point I'm uncertain about how recoverable these will be.

To be honest I'm getting pretty sick of SMF forums not giving adequate protection as a default against such malicious attacks and then discovering silly things like 'you should have disabled avatars' etc.

Posted on Sep 1, 2009, 2:00 AM

Respond to this message   

Return to Index


Response TitleAuthor and Date
Forum restored! on Sep 1
I sure hope that you can save the WIKI on Sep 1
 *Wiki restored now too! on Sep 2
  * Thanks! I see the screenshots are still messed up. on Sep 2