+- MyBB Community Forums (https://community.mybb.com)
+-- Forum: Community Archive (https://community.mybb.com/forum-106.html)
+--- Forum: Archived Forums (https://community.mybb.com/forum-143.html)
+---- Forum: Archived Development and Support (https://community.mybb.com/forum-155.html)
+----- Forum: MyBB 1.6 (https://community.mybb.com/forum-138.html)
+------ Forum: 1.6 Security Management and Support (https://community.mybb.com/forum-153.html)
+------ Thread: [False report] Hacked - MyBB has a exploit? (/thread-126541.html)
[False report] Hacked - MyBB has a exploit? - A+ Forum - 2012-09-22
My site was hacked.
The hackers used some sort of exploit in MyBB. I had all addons disabled at the time, so it could not be a addon(plugin).
Any suggestions? Site was hacked, the files were set to no permissions for anyone, now I get constant error for second time(been hacked 2 times):
Warning: Unknown: Unable to access /home/aplusfor/public_html/aplusforum.com/forum/index.php in Unknown on line 0
Warning: Unknown: failed to open stream: Permission denied in Unknown on line 0
Warning: Unknown: Unable to access /home/aplusfor/public_html/aplusforum.com/forum/index.php in Unknown on line 0
Warning: Unknown: failed to open stream: Permission denied in Unknown on line 0
Fatal error: Unknown: Failed opening required '/home/aplusfor/public_html/aplusforum.com/forum/index.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in Unknown on line 0
CHMOD Status(trying to fix error): +x 0777
When it was working fine before: +x 0755
Just to update: My site is targeted by 100+ people a day with Denial of service, hack attempts.
RE: Hacked - MyBB has a exploit? - Marks-Mans - 2012-09-22
Check Which Files Was Changed Lately
RE: Hacked - MyBB has a exploit? - A+ Forum - 2012-09-22
I have checked all files, there is no log there. I usually have a log that saves every action, it is not on the server for some reason....
RE: Hacked - MyBB has a exploit? - Diogo Parrinha - 2012-09-22
Unless proved otherwise, it is not an exploit in MyBB. If it were, I'm sure other big boards had been attacked by now.
It may have been your host, your theme or a plugin you had running before and a hacker used to hack it and didn't make it visible until now.
You've barely provided any information so right now there isn't much we can do for you.
RE: Hacked - MyBB has a exploit? - A+ Forum - 2012-09-22
Well, I don't know how it was exploited this time. Last time it was MyTabs latest update exploited. So, I disabled all plugins, now I got hacked again.
RE: Hacked - MyBB has a exploit? - Diogo Parrinha - 2012-09-22
The attacker most likely left a window open in case you removed that plugin.
RE: Hacked - MyBB has a exploit? - A+ Forum - 2012-09-22
Then any idea how to fix it?
RE: Hacked - MyBB has a exploit? - Marks-Mans - 2012-09-22
Login Into Cpanel And Then Go To File manager
And Check Which Files Edited or Changed Lately
And Check All directories
RE: Hacked - MyBB has a exploit? - A+ Forum - 2012-09-22
Here is pictures:
RE: Hacked - MyBB has a exploit? - Marks-Mans - 2012-09-22
Check Also the Files That Was Edited Yesterday And before yesterday
Check also your .htaccess what does it contain
and also check your uploads folder
maybe the hacker uploaded php shell