CF was hacked this morning

WA · 11-29-2007, 01:44 PM

Early this morning CodingForums was hacked, specifically, the vBulletin software. The hacker added himself as an admin user, and carried out a few tasks such as email all forum members letting them know about it. The user gained entry through a vulnerability in vBulletin, as we weren't using the latest version.

I've been working with our host and believe everything should be back to normal now. The way member passwords are stored, the hacker should not have access to them. FYI having access to an account is different than knowing its password, due to the way vBulletin stores the passwords. Better safe than sorry however, so I urge everyone to go into the USER CP and change their password.
Usually I'm very cautious when it comes to security, but this time laziness got the best of me as I left the vBulletin software unpatched for a while. Sorry about the downtime, and let me know if you experience any problems.

bazz · 11-29-2007, 02:02 PM

There's a word for people like that!!

It's working better now but I find that the main index isn't presenting correctly in FF. It's as though the tables of forums needs the clear : all attricute added as the grey adverts immediately above it, push it to the right - off the screen.

XP(1024x768)FF 2.0.0.10

bazz

WA · 11-29-2007, 02:08 PM

Quote:

It's as though the tables of forums needs the clear

That was it exactly, thanks. Yep, real pain in the ***, having to stay awake the entire night to take care of this.

bazz · 11-29-2007, 02:28 PM

if your still awake, can you find out why I can't edit a post in the MYSQL forum. maybe a mod can delete it. it's called 5th attempt to post - test.

Whilst i was able to post, I havenlt been able to edit it with a real message.

no rush - sleep is necessary lol.

bazz

WA · 11-29-2007, 02:37 PM

Hmm what happens when you try to edit your thread, by clicking on the "Edit" icon? I tried logging in using a test account, and was able to post then edit a test thread.

bazz · 11-29-2007, 02:41 PM

I tried again to post a new thread and got this.

[big letters] Not Acceptable [/big letters]

An appropriate representation of the requested resource /newthread.php could not be found on this server.

Apache/1.3.37 Server at www.codingforums.com Port 80

I tried to edit the message and got this:

[Big Letters]Not Acceptable[/Big Letters]
An appropriate representation of the requested resource /editpost.php could not be found on this server.

Apache/1.3.37 Server at www.codingforums.com Port 80

So I can't edit the last 'test' message I wrote.

bazz

Strangely, I can edit this message OK.

Inigoesdr · 11-29-2007, 02:50 PM

That explains the login box I got when I tried to load the site this morning. I didn't get the e-mail though. Looks like the mod/admin images are gone.

WA · 11-29-2007, 02:50 PM

Quote:

An appropriate representation of the requested resource /newthread.php could not be found on this server.

Apache/1.3.37 Server at www.codingforums.com Port 80

Ok, that issue should be solved now.

_Aerospace_Eng_ · 11-29-2007, 03:17 PM

The thank user for post buttons appear twice on each post.

real30 · 11-29-2007, 03:31 PM

hello dear

our group has found a bug on Vbulletin 3.6.x Serries

with this Bug you easily in less than 2 minutes get the Admin Access to a Registered User.

Not even updating Patches will solve this Priv8 exploit. (admin please dont make urself tired ; )

you can easily hack 97 % of Vbulletin forums.

of you want ? send me Email for deal.

Email John.hendrich [at] yahoo [dot] com
Y!M : john.hendrich

- regards

matak · 11-29-2007, 03:34 PM

damn hackers.

i will just remind that i also have two "thank you for post" buttons on posts

anyway, sometimes it's good that forum is offlimits, couse i saw sun today, after a long period of time

(j/k i didn't saw sun, couse other forums were online

)

@aerospace i think someone edited your sig couse it's big

real30 · 11-29-2007, 03:44 PM

Quote:

Originally Posted by matak

damn hackers.

i will just remind that i also have two "thank you for post" buttons on posts

anyway, sometimes it's good that forum is offlimits, couse i saw sun today, after a long period of time

(j/k i didn't saw sun, couse other forums were online

)

@aerospace i think someone edited your sig couse it's big

please be polite

bazz · 11-29-2007, 04:02 PM

I agree totally. There is no point in getting annoyed with such inconsequential pieces of pond life who are of absolutely no benefit to anyone.

bazz

funnymoney · 11-29-2007, 04:07 PM

you are really a lousy forum admin, you can't even ban people like you are supposed to... ROFL

Inigoesdr · 11-29-2007, 04:31 PM

Who was supposed to be banned?