reboto Posted July 3, 2007 Posted July 3, 2007 I am new to oscommerce and have just had the "product_info.php" replaced by a hacker's script which inserted a C99 Shell for access to the site files. That is what I have been told by the web host. I have also had instances of phishing files added to the catalog/images folder. I thought I had all permissions set correctly - but apparently something allowed them to get in. The images folder doesn't allow image display if I don't have the group access set at "execute". Tech support at my web host said to look for security updates at os commerce. I haven't found any. Can someone point me in the right direction? Also, could I avoid these problems by simply renaming my catalog folder (and making those changes in the configure.php files?) Thanks Reboto
Guest Posted July 5, 2007 Posted July 5, 2007 change the passwords of your ftp, cpanel, osc admin, upgrade your store to the latest osc http://www.oscommerce.com/forums/index.php?showtopic=268335 and you could go further and install the site monitor module http://www.oscommerce.com/community/contributions,4441 and check your pc that you're using to administer your store for spyware
Recommended Posts
Archived
This topic is now archived and is closed to further replies.