Hacked Hacked
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Hacked

Started by strokesfan, January 30, 2006, 12:28:43 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

strokesfan

My coppermine gallery was recently hacked into and pictures were deleted and so was my account. Is there any way I can still log in to coppermine or do I have to start from the beginning?

Joachim Müller

use a third-party tool like phpMyAdmin to directly access your database. Browse coppermine's users table, edit your admin account accordingly. Make sure to remove all possible backdoors the attackers might have left - I even suggest getting professional help if your site isn't just a hobby.

strokesfan

How do you find out which one is their table? I am asking for professional help but they aren't familiar with coppermine but will try to figure it out.

kegobeer

How were you hacked?  What version of Coppermine are you running?  Are you sure you were hacked thru a Coppermine vulnerability?  Maybe someone guessed your admin password?
Do not send me a private message unless I ask for one.  Make your post public so everyone can benefit.

There are no stupid questions
But there are a LOT of inquisitive idiots

strokesfan

My password is too weird for anyone to guess. Pretty sure I'm using the latest coppermine. I installed it in Nov 2005.

Joachim Müller


kegobeer

Again - what version of Coppermine?  "The latest" doesn't really identify the version you are using.
Do not send me a private message unless I ask for one.  Make your post public so everyone can benefit.

There are no stupid questions
But there are a LOT of inquisitive idiots

strokesfan

I decided to just reinstall it. They deleted all of the pictures so I couldn't have gotten it working even if I used the admin account they made. Thanks anyways everyone :)

Joachim Müller

If they had left a backdoor (I would if I was a script kiddie), they could still re-gain access. I don't understand why you're not doing as suggested and post a link. If you don't need actual support though, that's fine.
Anyway, marking this thread as "solved".

Tarique Sani

I guess it should be marked 'bogus' rather than 'solved' saying solved implies that Coppermine was actually hacked - we have no evidence of the same happening ....
SANIsoft PHP applications for E Biz

Joachim Müller

hehe, Thu already flagged it as "invalid", that's a wise workaround (as we don't have "bogus" as an option to flag a thread yet)  ;)

@strokesfan: I'm afraid this will possibly happen to you again (getting your site hacked) if you don't accept what supporters tell you to do. You should have been more specific as well what you mean by saying that your site got "hacked": has it been defaced, or has the attacker just ruined things (deleting pics etc.)
We're not happy to have threads that yell "hacked" in the subject line without making sure that it was actually coppermine that got hacked due to a code vulnerability. Although you haven't accused coppermine to be the culprit, this thread leaves a sore taste in the throat. We would have prefered it if you would have been more cooperative both for your benefit (having possible vulnerabilities on your site locked) as well as for us (having a clean reputation or fixing possible security threads/bugs that we're not aware of).

Bottom line: please do as suggested, we're only trying to help.