Page 1 of 1
Joomla site hacked?
Posted: Thu Mar 06, 2008 2:55 am
by ben-work
I came here earlier and saw IFRAME links in the title and menu items, I assume the site was hacked. Just curious - if it's known how it happened, was this a new vulnerability? Or was the site not running the latest version..
EDIT: I should point out I mean the main website not this forum.
Re: Joomla site hacked?
Posted: Thu Mar 06, 2008 9:15 am
by brad
Nothing related to Joomla.. rather a 3rd party component... should be ok now though.
Re: Joomla site hacked?
Posted: Thu Mar 06, 2008 4:39 pm
by PhilD
Hey Brad,
I know you don't want to bash others hard work, but in the interest of others who may be using the same 3rd party component, could you maybe mention what the component is instead of just saying it was a 3rd party component. I'm sure the component developer wouldn't mind mention if the problem is legit and they are working on a fix. This may help someone else who is using the same component and may be unaware of a compromise in the component. Then again, if people won't read, they won't know anyway until it's to late.
Re: Joomla site hacked?
Posted: Thu Mar 06, 2008 7:42 pm
by brad
It was the custom install/integration of the WP blogs.
Re: Joomla site hacked?
Posted: Fri Mar 07, 2008 1:07 pm
by ilox
So Brad, it wasn't anything to do with this message presently appearing above this page, and any other Forum page?
Code: Select all
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3366: Undefined index: 13.5
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3391: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2914)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3393: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2914)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3394: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2914)
[phpBB Debug] PHP Notice: in file /includes/functions.php on line 3395: Cannot modify header information - headers already sent by (output started at /includes/functions.php:2914)
Just wondering?
FYI: viewing with Firefox 2.0.0.11 through Xandos Linux on an ASUS EEE PC.
Re: Joomla site hacked?
Posted: Fri Mar 07, 2008 7:59 pm
by brad
Nothing to do with that at all.
Re: Joomla site hacked?
Posted: Sun Mar 09, 2008 6:23 am
by mihu
Is that why my favorite "Official working group blogs" gone?
Re: Joomla site hacked?
Posted: Sun Mar 09, 2008 7:07 am
by brad
mihu wrote:Is that why my favorite "Official working group blogs" gone?
A brief holiday?
Re: Joomla site hacked?
Posted: Mon Mar 10, 2008 6:10 pm
by JasynL1977
Is the Joomla site down or hacked?
I cannot perform a search, preview the demo, access the latest Joomla 1.5 stable download, or access the extensions page.
Is there something going on over there? It seems the Joomla team is strangely silent on these issues; it actually surprises me. You would think that a web site going down like this, especially one that generates a ton of traffic, would not go unnoticed.
Jason
Re: Joomla site hacked?
Posted: Mon Mar 10, 2008 6:37 pm
by mihu
I think it's down. I will try to get someone on it.
Thanks for report.
Re: Joomla site hacked?
Posted: Mon Mar 10, 2008 7:09 pm
by brad
JasynL1977 wrote:Is the Joomla site down or hacked?
I cannot perform a search, preview the demo, access the latest Joomla 1.5 stable download, or access the extensions page.
Is there something going on over there? It seems the Joomla team is strangely silent on these issues; it actually surprises me. You would think that a web site going down like this, especially one that generates a ton of traffic, would not go unnoticed.
Jason
Perhaps if you posted a new thread on the issue rather than assuming our site is hacked you'd receive a better response. FYI Apache was down and needed to be restarted on one of our 5 servers. Only the Extensions site and the doc.joomla.org site were affected though.
As for us being strangely silent on 'these' issues... I really have no idea what you are hinting at..