Website Hacked

Talk about writing modules and plugins for CMS Made Simple, or about specific core functionality. This board is for PHP programmers that are contributing to CMSMS not for site developers
Post Reply
Pierre M.

Re: Website Hacked

Post by Pierre M. »

Hello,

please notice ALL offending URI contain a double slash. Double slash URI pattern filtering prevents these attacks whatever your CMSms version.
Short to-be-tuned hardening example :

Code: Select all

RewriteCond %{REQUEST_URI} \/\/
RewriteRule ^.*$ - [F,L]
The dev team is very responsive, bugfixes are provided. Dear Users, always run current stable official version (back up and upgrade).

Pierre M.
Top
Post Reply

Return to “Developers Discussion”