Messages posted by: JTD

Ricky Fan Are you uploading the whole folder? Or just the files themselves. If you are uploading the whole folder then that is wrong. Just upload the files in the folder.

*BUMP*

Yes I fixed your guestbook lol. And posted the link for upgrading for you. And yes the problem will happen again untill you upgrade and patch it.

Ricky Fan wrote:You seem to be doing such a great job and I really need hel. Our fanclub guestbook was hacked by some jerk, he's been spamming for a couple of days now and has decided to get tougher and added his html file to the last entry. I have stopped the use of HTML code on the site, but can you delete his entry?

Then is that enough or is there something else I shoud do to prevent this happening again. You said earlier about not having to update to 2.3.1, just add the patches, I haven't a clue what that is all about, how to get them, how to add them. Can you send me info or direct me somehow? It's a non profit making club and members use the guestbook to keep in contact. Thank you so very much for any help you can give us.

www.rickynelson.co.uk/conversation

Ok your guestbook is now fixed. I didnt see where they changed any of your login or passwords. Also here is the link for the guestbook upgrade and mods. http://proxy2.de/forum/viewtopic.php?t=3563

Ok carb get your mind out of the gutter.

And what could be taken wrong about that anyway.

Hey no problem Camilla. I see you are a dog lover like i am. My Passion is GreatDanes.

Carbonize wrote:What I would like is for someone to send me the files for Advanced Guestbook 2.2 as I think I've lost the copy I had, or it's on my laptop which is gathering dust in my house. I'll check on that later. I'm sure 2.2 uses the same naming scheme, ie gb_name gb_url etc. To check simply visit your addentry.php page and view the source code. Look for the <input tag that is used for the name (it should be the first one you come across) and see what the name="" attribute says. Then simply look in your files for that name.

Ok I sent you a copy Again To your gmail account. Dont lose it this time. lol

JTD wrote:Please do a SEARCH of the forums. This has been discussed many times already.

As above!

Biggiek wrote:Thanks Dude!!!

Should I also upgrade to the new version!

Thanks!!!

Yes upgrade to version2.3.1

Applied patch guestbook working fine. Another good job by carbonize.

Camilla wrote:Big problems
Someone has hacked into our guestbook , does anybody know how to get rid of it
I can't get into the panels to delete this. Our adress is http://www.krambjornen.com. Look at guestbook.

Please, please can anybody help us I would be forever greatful

Your guestbook is now fixed. Do not renable html and please upgrade to version2.3.1 I have reset your login info to the default ones.

Graysbrooke wrote:Yes, my guestbook was hacked into today - by the same people I guess.
They have inserted html into the last entry's comment field. You need to access the database directly and remove the code.

Anyone know how they did it and how it may be prevented?

Easy to fix if you had left a url to your book. The above advice goes for you also disable html and upgrade to version2.3.1

Please do a SEARCH of the forums. This has been discussed many times already.

PandA.nl wrote:

BTW: the exploit seems to work on both 2.2. and 2.3.1

The sql exploit ony works on 2.3.1 if you have a very outdated version of php.

yvil wrote:hello

can anyone tell me where i can get this mod? i tired of being spammed...

thanks

Try SEARCHING the forums.

You can bann Ip's in the admin section.