The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#1
|
|||
|
|||
sercurity issue V4.1.4
guys please help..
Ive got the add-on VSA-Donate on my forum. For some reason (i dont know why) someone is able to acess the vbulletin CP panel and change the paypal adress for my website! ive changed the password numerous times and ive never given it to ANYONE.. i have no idea what to do, i dont want people to pay the club a donation and it not come to the club if you know what i mean.. i thionk this is a serious security issue and i need it sorting out.. PLEASE HELP ME regards dan --------------- Added [DATE]1312819077[/DATE] at [TIME]1312819077[/TIME] --------------- the "Hacker" has been able to upload pluin's/addons and change coding.... HELP ME |
#2
|
||||
|
||||
Quote:
https://www.vbulletin.com/forum/show...17#post2191617 |
#3
|
||||
|
||||
What exactly are you saying is an issue ?
If you believe the mod has an issue then I suggest you disabled or remove it, and contact the author to confirm if there really is an issue. |
#4
|
|||
|
|||
ive totally removed the plug-in and will have to see what my programmer says. put as i said whoever has done this has been able to add and code plug in's.
i shall update to the latest version and contact the person who made the vsa-donations add-on thanks for the help regards dan |
#5
|
||||
|
||||
Sounds like you might have a rogue staff member.
|
#6
|
|||
|
|||
Check your control panel log in Statistics and Logs. Check for unknown names and cross check IP addresses.
EDIT: with this kind of stuff going on you had better have your user id number in undeletable and unalterable users in includes/config.php on the server. |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|