Menu

#2266 File Hacked!

Security_Hole
closed-out-of-date
Craig Knudsen
Security (98)
5
2008-04-04
2008-03-03
JvdK
No

Hello,

The file send_reminders.php has been hacked on my server en used to send out large amounts of spam. Big time security issue! Can you fix this.

Discussion

  • Craig Knudsen

    Craig Knudsen - 2008-03-03

    Logged In: YES
    user_id=14386
    Originator: NO

    Not without some details!

    What version of WebCalendar do you have installed?

    Do you have email enabled in System Settings? Event Reminders enabled in System Settings?

     

  • Craig Knudsen

    Craig Knudsen - 2008-03-03
    • status: open --> pending
     

  • JvdK

    JvdK - 2008-03-03

    Logged In: YES
    user_id=2025844
    Originator: YES

    Hello,

    version: WebCalendar v0.9.42 (21 Jul 2003)
    E-mail is enabled and Event reminders is enabled.

    Thanx for your quick reply.

     

  • JvdK

    JvdK - 2008-03-03
    • status: pending --> open
     

  • Craig Knudsen

    Craig Knudsen - 2008-03-04

    Logged In: YES
    user_id=14386
    Originator: NO

    Version 0.9.42 has known security holes. You should immediately upgrade to 1.0.5 to prevent being hacked again.

     

  • Craig Knudsen

    Craig Knudsen - 2008-03-04
    • status: open --> pending-out-of-date
     

  • SourceForge Robot

    SourceForge Robot - 2008-04-04
    • status: pending-out-of-date --> closed-out-of-date
     

  • SourceForge Robot

    SourceForge Robot - 2008-04-04

    Logged In: YES
    user_id=1312539
    Originator: NO

    This Tracker item was closed automatically by the system. It was
    previously set to a Pending status, and the original submitter
    did not respond within 30 days (the time period specified by
    the administrator of this Tracker).

     

Log in to post a comment.