2010-04-08, 09:44 PM
So today my forum was defaced, luckily i had just gotten online so i was able to lockdown the site, fix the index, and find the shell in less then 5mins of the hack.
(not saying url for now)
But the shell was in a very unusual place
\forum\inc\3rdparty\diff\Diff\Engine\
Now my guess was that the person uploaded it somewhere else and then moved a shell to that dir.
Im using the latest version of MyBB and was just wondering if people could list ways they think this shell was uploaded. And then tell me how i could prevent it.
Thanks in advance.
(not saying url for now)
But the shell was in a very unusual place
\forum\inc\3rdparty\diff\Diff\Engine\
Now my guess was that the person uploaded it somewhere else and then moved a shell to that dir.
Im using the latest version of MyBB and was just wondering if people could list ways they think this shell was uploaded. And then tell me how i could prevent it.
Thanks in advance.