Messages posted by: Lobster

Carbonize wrote:My script did not RESTORE anything. The post is still there because you never deleted it.

I thought they could have put something in the DB, this is way
I went to the "Easy Admin" page. I wanted to remove that blasted post.

I think the problem can only be solved by removing the post.
What should I do? Should I act as a DB administrator, to search
and destroy the bad post?

By the way, could you better explain what you mean in your second
reply? For instance, can you tell me at which point I went wrong
(I put numbers to identify the actions I performed during the upgrade)?

Bye,
Lobster

The guestbook installed here:

http://duestrade.it/vale_guestbook

Has been hacked (sigh... what a shame!), so after reading
the stickies I tried to upgrade to the latest version of
Advanced Guestbook.

To avoid loosing data I created a new guestbook here

http://www.duestrade.it/guestbook

1) I uploaded the .zip with the latest Advanced Guestbook
version and unzipped it;

2) I uploaded the upgrade.zip by Carbonize in the same directory and unzipped it;

3) I modified the first 4 lines of admin/config.inc.php to have them
equals to my dear old guestbook.

4) I went with my browser (firefox) to

http://www.duestrade.it/guestbook/upgrade.php

Everything worked well but now if I go to

http://www.duestrade.it/guestbook

I see the same exploitation. It seems that Carbonize's
upgrade.zip not only restored the old data but also the
hacker's job.

If I go to

http://www.duestrade.it/guestbook/admin.php

and I enter the right user/password pair I get into the
administration page but when I click on "easy admin"
I still get the hacked page.

I really don't know what else to do. Any suggestion?

Bye,
Lobster