The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
|||||||
|
#1
06-20-2009, 12:09 AM
|
|||
|
|||
tRyaG TeaM exploit. beware
i have been hacked my administrator password and email changed...and i was trying to figure out how they did it...
i than decided to check out my styles...boom...there was a exploit style added.. called tRyag TeaM i clicked on it and it brings me to a black screen. the screen shows every single directory/files. aswell as gives the user (whoever chooses to view the forum with this style) access to every single file. They can download the file, upload the file, edit the file..even if the directory is password protected they can access the files... I am keeping the style if any vbulletin reps would like the file to maybe find a fix for this. 
|
|
#3
06-20-2009, 12:13 AM
|
|||
|
|||
|
should be using hostgator. is there a way to make sure?
|
|
#4
06-20-2009, 01:08 AM
|
|||
|
|||
|
Quote:
Best bet would to be google them and see if there is a pattern.
|
|
#5
06-20-2009, 02:09 AM
|
|||
|
|||
|
If it was from a skin, I suggest reporting the skin to moderators here if its where you downloaded it from for further inspection.
Though highly unlikely it was the skin, chances are good it was an out of date vBulletin, insecure modification or weak password/server security.
|
|
#6
06-20-2009, 04:26 AM
|
|||
|
|||
|
never downloaded the skin. I got a funny error and when I got my forum back up I was locked out of my for so I had to use tools.php
I finally got back in and noticed y email account and password were changed so I instantly changed them back I had to do some editing on my navbar so I went to styles and noticed the style there. It wasn't there befor? How did it get there? I have no idea. But somehow the hacker got it on my server and used it to edit code to get admin access I have his ip adress. He didn't use a proxy
|
 |
«
Previous Thread
|
Next Thread
»
Linear Mode
|
|
All times are GMT. The time now is 01:59 PM.