SCF Advanced Search


Members
Stats
  • Total Posts: 32431
  • Total Topics: 9857
  • Online Today: 1649
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)











Author Topic: Help with SPIP hack  (Read 1823 times)

0 Members and 1 Guest are viewing this topic.

jheysen

  • SCF Global Moderator
  • *****
  • Posts: 855
  • KARMA: 110
  • Gender: Male
Help with SPIP hack
« on: 08. January 2015., 21:59:56 »
Well, I just had a website I manage defaced, it's a SPIP we use on my university to deliver material to students.
The hack was done using a SPIP vulnerability, as I have googled so far (There's even a video of how to do it), but I can't manage to restore the site.
So far I removed the defacing message but now I got an empty page. I'm looking inside the DB for where the theme is set, without luck.

Anybody knows how to restore SPIP after this kind of attack?
I'll keep googling and experimenting though :p

Regards,
J.

Samker's Computer Forum - SCforum.info

Help with SPIP hack
« on: 08. January 2015., 21:59:56 »
Sponsored Links:




jheysen

  • SCF Global Moderator
  • *****
  • Posts: 855
  • KARMA: 110
  • Gender: Male
Re: Help with SPIP hack
« Reply #1 on: 09. January 2015., 01:59:20 »
Well, finally I could solve it.
I HAD TO MANUALLY ALTER THE DATABASE.
There was an article in the DB with the redirect code, witch I deleted manually. The hackers also dropped a redirect link in the site description (meta table), that one was trickier to spot.

Glad that some SQL-fu got me working again.

Hope this helps ;p

Samker

  • SCF Administrator
  • *****
  • Posts: 7444
  • KARMA: 312
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: Help with SPIP hack
« Reply #2 on: 09. January 2015., 06:11:23 »

As I see it's an old vulnerability (2009.): http://passingcuriosity.com/2009/security-and-spip/


Well, finally I could solve it.
I HAD TO MANUALLY ALTER THE DATABASE.

...

Bravo masters! :up:


jpyrat

  • SCF Newbie
  • *
  • Posts: 1
  • KARMA: 2
  • Expert SPIP
Re: Help with SPIP hack
« Reply #3 on: 09. January 2015., 14:51:51 »
Hi,

Do you need someone to securise and maintain your SPIP installation ?

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising