Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
montego
Site Admin


Joined: Aug 29, 2004
Posts: 9449
Location: Arizona

PostPosted: Mon Oct 25, 2004 10:13 am Reply with quote

I have searched through the Forums and cannot find where this topic has already been addressed specifically. Very strange situation... I was looking at my Member List and was noticing a blank user in the list. I didn't have time to look into so it had been a few days and then I looked again and noticed three of them this time. I got spooked, and went into phpMyAdmin and sure enough, they had id's but no username but also had a password set. All other fields were blank. I promptly deleted them out of nuke_users.

I have no idea how these got there, nor do I know what kind of risk these were to my nuke site. I don't post my URL to any forums as well as take other precautions to keep my private family portal, well, private.

These "tracks" are a bit unnerving. Has anyone else experienced this issue? Can anyone tell me what kind of risk this would pose? I am thinking that any block/module set up as for "Registered Users Only" would be exposed. Definitely something I do not want.

What should I do?

TIA,
montego
 
View user's profile Send private message Visit poster's website
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©