Jaimin
September 17, 2016, 9:10am
1
Hi there,
My OJS Website recently got defaced by some hacker.
It was because of an OJS Upload exploit.
When you go to the second step “Uploading the Submission”, you can upload .phtml files and hackers can use the backdoor to deface.
REF: http://bagasunix.blogspot.in/2016/06/cara-deface-web-dengan-teknik-ojs-exploit.html
This is a very serious matter, please look on to it and do whatever is required.
Also, please post down below the code we should add to prevent this in future.
Best Regards,
Vitaliy
September 17, 2016, 1:54pm
2
If uploaded files are not in the public access directory, how it possible to hack something on site?
Hi @Jaimin ,
See e.g. this thread .
Regards,
Jaimin
September 22, 2016, 7:09am
4
I recommend everybody to add this code to .htaccess, as my website was again hacked even though I had moved files folder away from root.
Also, please create a mechanism that no other files other than the required one’s in OJS can be directly accessed. Thank you.
Regards,
Hi @Jaimin ,
That may not be sufficient – for example, .php files could still be uploaded. Can you clarify how your system was hacked after moving the files area out of the web root? Execution of malicious uploads shouldn’t be possible after that; more likely there was a backdoor installed upon the first break-in.
Regards,
1 Like