You are here: Forum
Welcome, Guest. Please login or register.
Did you miss your activation email?
23 Jul 2008, 14:09

Login with username, password and session length
Home Chat Help Search Calendar Login Register
Pages: [1]
« previous next »
Print
Author Topic: Hosting company blocked access to Admin page - Help  (Read 142 times)
0 Members and 1 Guest are viewing this topic.
nialltwomey
Forum Member
*

Karma: 0
Offline Offline

Posts: 3
« on: 12 May 2008, 05:34 »
Hi
Our hosting company has blocked access to our CMSMS (v1.2.2). They have reported that CMSMS has a  security flaw and was used to upload harmful php scripts and have reported the following  log file extract as an example. I dont underatand this log extract. Is there really a problem or are they misinterpreting how CMSMS works ? Does this log really indicate a problem
Any help much appreciated.
Thanks
Niall

58.186.47.164 - - [10/May/2008:01:08:47 +0100] "GET /admin/moduleinterface.php?mact=FileManager,m1_,defaultadmin,0&m1_path=%2Fuploads%2F&m1_module_message=sa.php%20was%20uploaded%20successfully%3Cbr%2
F%3E&m1_module_error= HTTP/1.1" 200 12088 "http://www.naomhmearnog.ie/admin/moduleinterface.php?mact=FileManager,m1_,defaultadmin,0&m1_path=%2Fuploads%2F&m1_module_message=pleech.remote_2_no_check_ip.
php%20was%20successfully%20deleted%3Cbr%2F%3E&m1_module_error=" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.14) Gecko/20080404 Firefox/2.0.0.14"
Logged
mikeim
Forum Member
*

Karma: 0
Offline Offline

Posts: 129
« Reply #1 on: 12 May 2008, 07:03 »
I believe this issue has been addressed and fixed in the latest version of CMSMS. I'd recommend upgrading to 1.2.4
Logged
Pages: [1]
Print
« previous next »
Jump to: