Hack or Edit by host ?
Posted: Sat Jun 07, 2008 6:45 am
Earlier this week I noticed the fonts had changed on the site I created with CMSMS. Then my client contacted me and said they'd noticed other things had changed, like the color of the title text, font size's and various php errors appearing.
I thought at first that they had edited the content as they also have the admin password for cmsms. But after checking all the templates and styles I found nothing wrong.
I then took a loot at the source code from the browser and found a whole bunch of text injected at the front of the document, lots of links to http://www.lj-soft.com
Eventually I tracked this down to /includes.php where this text had been appended to the end of the file. My client doesn't have a clue how to edit files and upload with ftp, so I'm wondering how could someone of done this without ftp access.
Is this a known hack and vunerability of the version I'm using or could this be something that the server host has done ?
The site is hosted with godaddy. Site name: http://www.eska.co.uk
Once I'd removed this text everything went back to normal.
I thought at first that they had edited the content as they also have the admin password for cmsms. But after checking all the templates and styles I found nothing wrong.
I then took a loot at the source code from the browser and found a whole bunch of text injected at the front of the document, lots of links to http://www.lj-soft.com
Eventually I tracked this down to /includes.php where this text had been appended to the end of the file. My client doesn't have a clue how to edit files and upload with ftp, so I'm wondering how could someone of done this without ftp access.
Is this a known hack and vunerability of the version I'm using or could this be something that the server host has done ?
The site is hosted with godaddy. Site name: http://www.eska.co.uk
Once I'd removed this text everything went back to normal.