raindays Posted March 24, 2006 Posted March 24, 2006 I found this file in my cart files. I have been having serious image problems. Anyone elaborate?
Guest Posted March 24, 2006 Posted March 24, 2006 sounds very much like a server setting gone wrong to me. Can you elaborate on where it comes up "in my cart files" is a bit vague - is it actually in your php files, or does it show on your page when navigating your store, and either way, which file/page?
jasonabc Posted March 24, 2006 Posted March 24, 2006 there's a mysterious php file in her images directory - this is what a Google search of the r57shell 1.23 brought up: http://www.pestpatrol.com/spywarecenter/pe...px?id=453096755 Jason My Contributions: Paypal Payflow PRO | Rollover Category Images | Authorize.net Invoice Number Fix
raindays Posted March 24, 2006 Author Posted March 24, 2006 there's a mysterious php file in her images directory - this is what a Google search of the r57shell 1.23 brought up: http://www.pestpatrol.com/spywarecenter/pe...px?id=453096755 I pm'ed him the link
Guest Posted March 24, 2006 Posted March 24, 2006 THIS IS A BUG - doing the rounds and targetting osCommerce stores which have their images directory on 777 permissions. Randomly named files are chucked into the images directory, which then allow complete access to your server. CHECK YOUR IMAGES DIRECTORY TODAY - THERE SHOULD BE NO .PHP FILES WHATSOEVER IN HERE - if there are, DELETE THEM.
custodian Posted March 29, 2006 Posted March 29, 2006 CHECK YOUR IMAGES DIRECTORY TODAY - THERE SHOULD BE NO .PHP FILES WHATSOEVER IN HERE - if there are, DELETE THEM. This also depends on your setup and what you've installed. I use dyncamically watermarked product images, and therefore have a .php file in my image directory called image.php - There should be no .php file in your image directory that YOU haven't put there.. but in reality, this is also true for your entire account and all directory and files contained in it. My Contributions Henry Smith
Recommended Posts
Archived
This topic is now archived and is closed to further replies.