Is anyone aware of an vulnerability in cmsms?
One site of mine has had an iframe echoed in the index.php file, the host states its isolated to my site not server wide, this is the only script on the site and im at a loss as to how it was done.
Thanks
Aware of vulnerability?
Re: Aware of vulnerability?
There are no known vulnerabilities in the latest versions AFAIK.
1.0.2 had some none-permanent XSS vulnerabilities (fairly harmless), but they've been fixed.
Do you have any other webapplications installed (like a gallery, forum or weblog?)
Can you get logs around the time this happened?
Regards,
D
1.0.2 had some none-permanent XSS vulnerabilities (fairly harmless), but they've been fixed.
Do you have any other webapplications installed (like a gallery, forum or weblog?)
Can you get logs around the time this happened?
Regards,
D
Last edited by Anonymous on Tue Feb 27, 2007 12:32 am, edited 1 time in total.
-
fadum
Re: Aware of vulnerability?
Just been informed by host that it was a cpanel vulnerability, cmsms safe n sound
thanks
thanks
