vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)
-   -   Question About Forum DB (https://vborg.vbsupport.ru/showthread.php?t=197297)

shagoon 11-26-2008 02:37 PM
Question About Forum DB
 
Hello,

I'm running latest vbulletin forum 3.7.4 PL1, and I just had a security breach (not due to the forum), the attacker had gained access to an Administrator's account which only had "Can Administer Users" permission set to Yes, all other permissions were denied to that Administrator's account.

Now he claims he has our forum DB in his possession, and that he took it via an exploit from that Admin user.

Note:
- he didn't log into any other Admin account
- all I can see from control panel log is that he used moderate.php (action: posts), email.php (action: start, dosendmail) and user.php (actions: prune, pruneusers) scripts

My question is: Could he have downloaded somehow the forum DB ?

Thanks in advance.

Guest190829 11-26-2008 03:00 PM
Well it's hard to tell, he could have gotten DB access by a route other than the vB AdminCP...but the only way I could see him getting access directly from the AdminCP is using the Database Backup tool available.

Lynne 11-26-2008 03:04 PM
This is probably a question better posted over at vb.com. But, as far as I know, there is no way he could transfer a copy of your database to himself without shell access or ftp access.


All times are GMT. The time now is 07:23 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01052 seconds
  • Memory Usage 1,705KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (3)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete