Page 1 of 1
lot of numbers in the admin panel
Posted: Mon Jun 02, 2008 10:01 am
by lilalu
Hi,
in the admin panel I see always some code:
c1608e58b7a40647381b4667630bf061
82d58bfc8dc7a2fa985939b01d5b694f
69175bee376c12eba6ddbd1f632a7f10
What does it mean?
Besides, it appeared after an intense spam attack via contact form. Obviously, the captcha failed.
Thanks.
Re: lot of numbers in the admin panel
Posted: Mon Jun 02, 2008 10:08 am
by pb
This can be md5 sequences of hacked passwords.
First c1608e58b7a40647381b4667630bf061 is mark_start
Re: lot of numbers in the admin panel
Posted: Mon Jun 02, 2008 2:06 pm
by calguy1000
You've been hacked because you're probably running an older version of CMS Made Simple (1.2.2-1.2.4) and somebody found your website.
You need to
a) delete everything from your site (all files, and all tables in the cms database)
b) restore from a known good backup
c) change all CMS passwords
d) upgrade to CMS 1.2.5
Re: lot of numbers in the admin panel
Posted: Mon Jun 02, 2008 2:17 pm
by vilkis
Just conceptual question: is it possible that FormBuilder has security issues?
Vilkis
Re: lot of numbers in the admin panel
Posted: Mon Jun 02, 2008 2:27 pm
by lilalu
Thanks for your advice. I feared that the system has been hacked.
In fact, 1.2.2 is running.
For deleting all the tables what would you recommend? phpadmin?
I made table backups with mysqldumper.
Do you have a suggestion for the vexed captcha problem?
Re: lot of numbers in the admin panel
Posted: Wed Jun 04, 2008 6:49 pm
by Pierre M.
lilalu wrote:
In fact, 1.2.2 is running.
Uh... very unsecure.
lilalu wrote:
For deleting all the tables what would you recommend? phpadmin?
When PhpMyAdmin does it right, what else should we use ?
Pierre M.