my Gallery got hacked. PLease find the file for me my Gallery got hacked. PLease find the file for me
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

my Gallery got hacked. PLease find the file for me

Started by Indrit, December 06, 2008, 06:32:42 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Indrit

Hello all,

I think my Gallery got hacked. Please see it in action:  http://galeri.fieri.com  I am not sure which file they have changed and I would really appreciate if someone out there can help me find the file and fix it.   

Ah.., I am running version 1.4.8.  Please let me know what to do to prevent this low life people who have nothing else to do other than to destroy and bring problems to us.

Best regards,
Indrit

Indrit

PLease try to clik here and see it for your self:  http://galeri.fieri.com/index.php   If you go to  http://galeri.fieri.com  it looks OKAY. I have no idea where and how to fix.

Please someone help

AlexBarTender

I think is index.php. Just download coppermine again, and upload just index.php

That file don't have change associate with your theme aspect gallery 

Indrit

NO! I tried that. It gives me the idea it is index.php but I dont think is that.

Someone pleaseeeeeeeeee any advice ideas?

François Keller

the gallery seems to work as expectetd for me, please if simething is wrong on the gallery post screan captures with comments
Avez vous lu la DOC ? la FAQ ? et cherché sur le forum avant de poster ?
Did you read the DOC ? the FAQ ? and search the board before posting ?
Mon Blog

Indrit

Actually I just finished the upgrade from version 1.4.8 to 1.4.19 and THAT took away all the problems however now When I try to modify  going to:  Config -> General settings -> URL of your coppermine gallery folder (no 'index.php' or similar at the end)   ->  when I modify the URL here to fit the actual URL and I hit "Save new Configuration" I get directed to another page please see the image (LOgin.jpg) attached and when I put in there my LOGIN info I get directed to another page, see attachment (finale.jpg).  As you see is blank page. I have to go back manually to http://galeri.fieri.com/admin.php and when I try to see if all is saved I see in fact it is the same as before.

Indrit

Ah.., also I forgot to add when I do a version check of course via Admin panel I get e list of a lot of files in RED color and a lot in yellow. I know that means those file/folder are missing, if in RED but I can see them in my gallery folder. Something must be wrong somewhere. See attachment.

Please advice

Indrit

Quote from: François Keller on December 06, 2008, 08:07:00 AM
the gallery seems to work as expected for me, please if something is wrong on the gallery post screen captures with comments

Since you asked for it (see attachment) here I had a open page from when my gallery was hacked. THe text on top of the header was there and I could not find what file they changed/modified. Anyway my actual problem it is not this anymore but the one previously mentioned.

Please advice

Hein Traag


Indrit

As a matter of fact I have replaced all files on my gallery with the latest stable release so I am OK on the walk-through that you suggested however I can NOT be able to change anything on my admin page of the gallery.

Joachim Müller

Upgrading does not sanitize your gallery if it has already been infected. Do as Hein suggested and read the sanitization thread thoroughly. Do as suggested there.