Messages posted by: JTD

First off visit this page www.stadiosk8.com/guestbook/admin.php And delete the hack entry. Second disable the enable html part. If for some reason they changed your login and password please look for that subject here on the forum and reset both of them. Then do the above.

Example above is another good reason to NEVER ENABLE HTML

Next time please do a SEARCH Here is the thread just 5 topics below yours. See how easy that is.
http://proxy2.de/forum/viewtopic.php?t=2934

Anonymous wrote:Well I am in a different time zone, so I was taking zzzzzzz....

My emotions are all mixed up now, I appreciate you telling me about the vulnerability of the Guest Book and Forum; yet on the other hand flustrated that you let anyone else visiting the forums know also.

I ran the same programs on my last site for over 5 years without any issues, so now the world knows the vulnerabilities I need to find some way tp solve this.

Steven

The world new about this vulnerability long before this. It isnt anything that is new. And as far as the html exploit. I dont know if there is a fix for this or not. Carb maybe working on something but I'm not real sure. As to the other exploit that is an easy fix.

Another words.Turn off enable html in posts

Does the top part of your config php file look anything like this? And did you set up a database?

$GB_DB["dbName"] = "database name here";
$GB_DB["host"] = "localhost";
$GB_DB["user"] = "user here";
$GB_DB["pass"] = "password here";

*BUMP*

Please do a SEARCH There are already many threads here concerning that very topic.

There is no admin nor mods here. That is one reason carb is redoing the whole guestbook. The original creator does not seem to care about any of his scripts any longer.

Next time please do a SEARCH The topic you want is right below this.

http://proxy2.de/forum/viewtopic.php?t=3563&start=0

How To Change The Drop Down Menu In Advanced Guestbook, by Trevor: http://proxy2.de/forum/viewtopic.php?t=3315

I myself would not even want something like that. Why clutter the GB up with useless stuff. If they put in a link it shows that is good enough. Just my 2 cents worth is all.

Also useing http://lyricsasylum.com/thebook/index.php works nicely also. All your images work this way.

*BUMP*

First of all when you install a program from a cpanel. The install file will not be there when you are done. I dont care what host you use. And I am also almost willing to bet that the guestbook it did install was version 2.2. So if it was we will be seeing you back here when your guestbook gets hacked. And BTW the readme file isnt hard no complicated or long. Nor really has anything to do with php. All it does is tell you how to install the program. And if you dont want to wade though all RELEVANT posts then please dont whine and cry when you need help and someone tells you to please do a search.