Hello all,
Wanted to see if someone can tell me what happened to my vBGallery and more importantly how to prevent it in the future. I use version 6.11 and version 3.7.2 of VBulletin.
I noticed something was wrong where we went to the gallery and got a syntax error at line 3316 (admin line 153)
The files that were affected were:
adm-inc.php, adm-index.php, adm-misc.php and pp-inc.php.
Into these files someone inserted code similar to:
Code:
Content visible to verified customers only.
all had the code inserted before a
Code:
Content visible to verified customers only.
. adm-inc.php at line 153, adm-index.php at line 36, adn-misc.php at line 1077 and pp-inc.php at line 3316.
I'm guessing it's some kind of Javascript injection? What worries me is the
Code:
Content visible to verified customers only.
after which were urls for a bunch of my pages as well as a bunch of free drugs, women health, diets, etc. sites.
Any ideas on how to further secure my site would be appreciated. ( I realize I am not current for either vBulletin or vBGallery)
Thanks
Stan at scrappersworkshop.com