Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Hacked


nepalbcn

Recommended Posts

Hi, my site has been hacked, they left a cra.php file in my root directory that says "hacked by crackers_child". Great. I call my hosting provider and they say it's because I'm using OSC and that they can't do nothing.

Could that be true? Can someone add a file in my root through OSC?

Link to comment
Share on other sites

Hi, my site has been hacked, they left a cra.php file in my root directory that says "hacked by crackers_child". Great. I call my hosting provider and they say it's because I'm using OSC and that they can't do nothing.

Could that be true? Can someone add a file in my root through OSC?

Now, when I try to buy something I just won't jump to the login. When I put the mouse over "checkout" the left bottom of the browser says that I'm going to www.mysite.comcheckoutshipping.php, it should say www.mysite.com/catalog/checkout_shipping.php, I'm trying to fix it.

Link to comment
Share on other sites

Depending on whether you've kept up-to-date with security alerts, which add-ons you've used, your installation settings and some other stuff, it *could* be true, but it sounds like your web host is rubbish and trying to pass the buck IMO.

 

See if you can figure out when the attack happened (beware: file times may be forged) and match it against your web access logs. Always keep an off-server backup of your site source code and database: until you download what's currently there and compare it, you can't trust the on-server copy your site.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...