The Forum has been Updated
The code has been upgraded to the latest .NET core version. Please check instructions in the Community Announcements about migrating your account.
I don't know how they've got it. They messed with member ID #2 and made it admin and went to town.
In the member table, they added:
How can I go through the database and remove this? They updated MANY fields and columns with this.<
In the member table, they added:
Code:
Member'sName<script src=removed></script>
How can I go through the database and remove this? They updated MANY fields and columns with this.<
Posted
you will almost certainly need to do this manually, sounds like you also need to ensure you have ALL current patches applied.<
Posted
I have all the patches unless a new one just came out.
Anyhow, could there be a regex to delete everything after the first "<".<
Anyhow, could there be a regex to delete everything after the first "<".<
Posted
not if they have updated many fields and columns, it would be just as quick to do it manually.
There are NO known hacks/issues that will allow someone who is not an admin create one, therefore you must still have an issue that is not patched, or a MOD that requires patching, you need to scour your log files to find out how they managed to change a member to admin<
There are NO known hacks/issues that will allow someone who is not an admin create one, therefore you must still have an issue that is not patched, or a MOD that requires patching, you need to scour your log files to find out how they managed to change a member to admin<
Posted
Unfortunately I can't access SQL Server logs. Will the info be in IIS Logs?
What should I look for?<
What should I look for?<
Posted
It would be in the IIS logs. As to what to look for, that's a tougher question...<