CMS Made Simple Forums

... is some small private site this one will come later . . . Thanks for the way CMSMS is developing, it is very stable for in 15 years i never had a hacked site even when no updates were made. Regards, Jan

That's a legit red flag for sure. If you have a backup from before those files appeared I would revert to that, then make upgrading a priority. We still don't know what version you were using though, so advice will be limited.

Thanks for the replies everyone. My assumptions of hack are because some rogue files appeared in the site root - wp-comments.php and a folder wp-content. The site has never been Wordpress.

I’m currently working through your suggestions on modules, will report back the results.

There are a lot of problems that can cause the problem you have. Wrong code in the template for example. Even wrong code in an (old) module. As DIGI3 is saying, it doesn't have to be a hack. What you can try is : Check if your php version on the server did not change (for expl. to php 8.0) Deactive ...

I wouldn't necessarily assume a hack,. A white screen will generally result in an entry added to your php error log, so that's always the best place to start. We may be able to offer more advice but would need to know what version the site was when it was down (before you upgraded), what php version...

Hello, my site was hacked recently. The front end is blank but I can access the admin panel. I have looked around the admin and notice that under the Content tab all I see is File Manager - Content Manager, News etc have disappeared. ...

I don't think your site has been hacked.
I expect the hosting provider changed something (PHP upgrade or something else) which makes the (old?) CMS Made Simple install fail.

You probably need someone with CMSMS and hosting experience to troubleshoot and solve the problem for you.

... version of the url. Note that this is just a guess, it could also be a php version issue, a browser plugin, some other server change, a corrupt or hacked installation, or any number of other things.

... try to fix vulnerabilities as we find them or as we are notified of them and as fast as possible. That doesn't mean that there is no way it can be hacked, but surely not more than any other CMS with active development I can say that I have been working intensively with CMSMS in collaborative projects ...

Especially if your hosting offers public access to a database frontend (usually phpmyadmin) or your database allows connections from any host. My host offers the option but I've never enabled that. I suppose my host's phpmyadmin interface was another possibility but it seems like it was just an att...

Considering the severity of the fixed security issue it is possible it has been used to compromise your website. Especially if your hosting offers public access to a database frontend (usually phpmyadmin) or your database allows connections from any host. That said it will be very hard to track down...

CMSMS 2.2.12 has just been released which addresses a security issue in FileManager. Possibly related to the issue I raised in this thread?

I have already installed the latest version and changed my database password as advised.

This is good information about cmsms and its hacking. I am sure it will help me if such issue occurred.

It was my own account (primary, admin) they logged in as. The other user's account was not used. I do appear on haveibeenpwned.com as "Onliner Spambot" but that is not a password leak as far as I can make out. I use good security practices, every password is strong and unique (KeePass). If...

When we've had cases where malicious files were uploaded via the admin interface it's been down to password reuse from a user who had their password exposed in a different breach. Make sure you and your admins are using unique passwords. It's well worth checking in https://haveibeenpwned.com/ to see...