CMS Made Simple Forums

Content management as it is meant to be
https://forum.cmsmadesimple.org/

CMS website been hacked

https://forum.cmsmadesimple.org/viewtopic.php?t=60821

Page 1 of 1

CMS website been hacked

Posted: Mon Apr 23, 2012 5:32 pm
by QueenieLady1
My website has been hacked through my CMS and they have changed my CMS username and password so I can't get in and change them.

How do I get into my website through CMS and change the username and password please?

He has left some extremist muslim comments OMG what will my customers think.

How do I stop this happening again?

Hope to hear from you very soon

Thanks :)

Re: CMS website been hacked HELP URGENT

Posted: Mon Apr 23, 2012 5:38 pm
by Dr.CSS
You will have to get into the DB and make changes there to get back into the site...

It really helps to know what version of CMSMS and all other info you can give...

http://forum.cmsmadesimple.org/viewtopi ... =40&t=2661

Re: CMS website been hacked HELP URGENT

Posted: Mon Apr 23, 2012 5:48 pm
by QueenieLady1
I don't have access to the database only through CMS, the person who created the website is no more, ive tried to contact him but no reply :(

Where do I find the version of CMS I'm using, as when I go to log in (where I can't, as username & password changed) there is no version displayed?

Sorry I'm no programmer which is why someone else designed it for me :(

If I could get into my CMS I could regain my site back. UK2 have put a hold on my site, what an awful nightmare, the site has been fine for over 2 years and now this :(

Do you need to know my website address to have a look?

What else do you need to know to help me please?

Re: CMS website been hacked HELP URGENT

Posted: Mon Apr 23, 2012 6:29 pm
by RonnyK
Check the version.php file in the root of your install, that will tell you the version number.

Ronny

Re: CMS website been hacked HELP URGENT

Posted: Mon Apr 23, 2012 6:40 pm
by calguy1000
a: if you do not have admin access to the site... you will need ftp and control panel access.

b: If you do not have this information (which you should, you own the site). You should contact the company that is hosting it for you and get them to reset the passwords.

c: Once you have complete access via control panel and ftp you can access the database to change CMSMS passwords and then begin the process of de-hacking your site (usually completely nuking the site and restoring to a known good backup is the way to go).

d: Then you can begin with the process of upgrading/fixing so that it does not get hacked again.

if you need assistance with steps c and d because the original developer cannot be found, it is possible for somebody here to help you. You will need to create a detailed post in the 'Help Wanted/Commercial' forum.

Re: CMS website been hacked HELP URGENT

Posted: Mon Apr 30, 2012 11:42 am
by QueenieLady1
Hi

I have informed my hosts of the first 2 points and awaiting their reply.

It's sooo annoying that my CMS username and password has been changed and I, with my tiny bit of knowledge can't reclaim it back. I tried to change the password in CMS but it wants my username to change password but my username has been changed by the hacker.

Thanks for all your help, when I hear back from hosts I will try and follow your next steps :)
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited