welcome to my space

Latest Entries
Mar 12

Hacked, how to check for damages?

Written by jack
  • Hello,

    Earlier today, a hacker managed to hack a Administrator on my forum www.RapidLinks.co.uk (http://www.rapidlinks.co.uk/)
    He claims it was via SQL Injection due to a security exploit in the ibProArcade Modification. (He claims to be a friendly hacker who wanted to show me an exploit)
    He managed to get the hash'es and salt codes for a Administrator, and managed to decrypt the password as it was a very simple password.
    He gained access to admincp for around 30 mins and edited plugins, faq.php, usercp.php (Accoring to Control Panel Logs).
    I deleted the Plugin he created but I was wondering if there is a way to check if any damage was done such as adding a backdoor?
    I know very little about PHP and MYSQL, therefore I am asking here.

    Help would be greatly appreciated.

    Regards,
    Saurav


  • 1. Slap admin for having easy password.
    2. report the vulnerability in the modification @ vbulletin.org


  • What Version Of ibproarcade do u have?

    It was the latest one. I have uninstalled it now.


  • What Version Of ibproarcade do u have?







    • #If you have any other info about this subject , Please add it free.#
    Your name:
    E-mail:
    Telphone:

    Your comments:


    If you have any other info about Hacked, how to check for damages? , Please add it free.
    Filed under: portal.zjbr.com

    • Categories

    • Recent Posts

      • None found