Web Wiz - Green Windows Web Hosting - Celebrating 25 Years!
Web Wiz Homepage Search Web Wiz

  New Posts New Posts RSS Feed - Help : Web Wiz Hack
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

Help : Web Wiz Hack
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
Trade Mad View Drop Down
Newbie
Newbie


Joined: 01 December 2005
Status: Offline
Points: 2 		Post Options Post Options   Thanks (0) Thanks(0)   Quote Trade Mad Quote  Post ReplyReply Direct Link To This Post Topic: Help : Web Wiz Hack
    Posted: 01 December 2005 at 11:06pm
http://www.dobique.com/database/df/forum_posts.asp?TID=84&get=last#84418
http://www.dobique.com/database/df/forum_posts.asp?TID=1640&PN=1&TPN=128
http://www.dobique.com/database/df/forum_posts.asp?TID=1981&PN=1&TPN=2
 
A user make this pages like this ; just sending a message to these topics.
How can i fix them??
How can a message do this??
 
i just upgrade to 7.96 from 7.8 to fix it but it doesn't work...
 
Help!!!
 
User's e-mail addresses is : webwizhack@hotmail.com , a@webwizhack.cjb.net
 
I blocked his e-mail adresses and stop registering to forum....
 
(My forum page adress : http://www.dobique.com/database/df  )
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 02 December 2005 at 7:27am
It looks like this person is entering a CSS style sheet as their post that in this CSS style sheet it replaces the background image of the page with a black background.

If you delete the post it will solve the issue, and until I can find a fix turn off the WYSIWYG posting editor from the admin area.

I did spend many hours writing code to prevent this not long ago, but it looks like someone has found away around this.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 02 December 2005 at 8:00am
I've just tested the latest version 7.96 with the exact CSS code I found on your site that the hacker used.

I found that the CSS was sucessfully filtered so that the CSS didn't work.

If the user is still able to use this CSS on your site, then it sounds like you have not updated all the required files on your site.

Make sure that you have updated all the files in the functions folder with those from the latest version, and then delete all the posts that the hacker has used this CSS in.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
Trade Mad View Drop Down
Newbie
Newbie


Joined: 01 December 2005
Status: Offline
Points: 2 		Post Options Post Options   Thanks (0) Thanks(0)   Quote Trade Mad Quote  Post ReplyReply Direct Link To This Post Posted: 02 December 2005 at 2:55pm
Originally posted by -boRg- -boRg- wrote:

If the user is still able to use this CSS on your site, then it sounds like you have not updated all the required files on your site.
 
I don't know if this user can do this again...Smile 
I have to wait him to try making this again...
 
Thank you very much for your care & help...Smile 
Back to Top
Wrightwood View Drop Down
Newbie
Newbie


Joined: 09 November 2005
Status: Offline
Points: 23 		Post Options Post Options   Thanks (0) Thanks(0)   Quote Wrightwood Quote  Post ReplyReply Direct Link To This Post Posted: 05 December 2005 at 2:35am
This maybe should be posted in Mods but I am curious how this user who has a board I can't understand because it is not in English is able to post his statistics at the bottom of the page?  I wanted you all to know what I am referring to.  Follow the link he provided.
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.08
Copyright ©2001-2026 Web Wiz Ltd.

Become a Fan on Facebook Follow us on X Connect with us on LinkedIn Web Wiz Blogs
About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.

Copyright ©2001-2026 Web Wiz Ltd. All rights reserved.