vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   Photopost VBGallery Backdoor (https://vborg.vbsupport.ru/showthread.php?t=167192)

rinkrat 01-07-2008 05:44 PM
Photopost VBGallery Backdoor
 
There has been a security hole in Photopost VBGallery that the authors have not publicized so if any of you are running this script, please go look at this thread for your own good.

Anyone with VBGallery should read this thread and fix the hole.
http://www.photopost.com/forum/showt...=134835&page=3

After getting hacked, I found out that the weak link is the Photopost VBGallery. The hackers were uploading PHP files disquised at media files and the server recognises them as php when testing the upload and then runs it and sets up their command center. I got hit twice and a LOT of other people running this script are getting hit.

Here (from my log) is how the second hacker found us by searching for Photopost vbgallery

*** Exploit Details removed. Please do not post such details in public ***

This is the exact time the board went down. There are a bunch of other
entries of him doing his work but at least now I know where they are getting
in. It will make it a lot easier to keep them out

If you have Photopost VBGallery, shut it down until you fix this hole. I wouldn't even post this here but the authors seem reluctant to notify their users about this threat and meanwhile these kids are mowing down sites by the dozens.

Reeve of shinra 01-07-2008 06:37 PM
thanks for the heads up!


All times are GMT. The time now is 02:26 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.00965 seconds
  • Memory Usage 1,710KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (2)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete