CMS Made Simple Forums

Sorry I can't give the version number but I can tell you it was installed in July 2007 and was downloaded from the CMS MS site, sot it would be whatever version was current at that time. It's not my site, I just installed it and up to now it's been running fine. Today I received a message that the site has been hacked and as a consequence has now been disabled....hence why I can't check what version cms it was.

I'm told a file called id.txt has been uploaded to xxxxxxxxx and have been advised to replace the site with the latest version. Problem is, I'm pretty sure that just replacing the site won't be enough and the database will also have been compromised. Do you think this would be the case? Also is the latest version of CMS Made Simple secure from this sort of hack ?

Apologies for the lack of detail but since the site is now down I can't see any way to get the information you may need.

All advice much appreciated.

If you have FTP access, which you should or you won't be able to upgrade, you can check the version.php in the root for version you were running...

After you have the ver., download that ver. from here if you don't have the original ver. CMSMS folder, backup config.php and any folders/files you've added since install (including modules) like uploads/images etc. etc., then delete all files/folders from site and FTP from the original ver. CMSMS folder all folders/files except the install folder, then upload your config.php the backed up folders/files...

Check admin to see if it's ok, check site then upgrade to newest, if it's a major upgrade start with intermediate upgrade as News went from custom templates in News module folder to DB templates...

Thanks Mark

I had a look at the version.php and it's 1.2 as below.

$CMS_VERSION = "1.2";
$CMS_VERSION_NAME = "Barbados";
$CMS_SCHEMA_VERSION = "29";

I'll do what you said and let you know if it all works ok.

Thanks again.