Kicked out of admin.php

Posted: Wed May 19, 2004 5:42 pm

Ok .. I've been reading all day on NukeCop, phpnuke and now here.

I was hacked this morning, but I visited my site in the middle so not much damage was done.

I've fixed everything, trying to figure how they got in and still have one problem.

I deleted all the authors in my database just in case they hid something. I registered as the God Admin. I can log into the admin.php but when I try to do anything it takes me back to the admin log in.

This happen to anyone else? anyone know the fix?

Site: lazarusmaze.com
Version: php-nuke 7.2
Extras: Donate O'Meter, CPG, MS Anaysis (any known problems with these??)
Non standard Theme created by Telli
Just installed the patch 2.4 released this month

Thanks in advance!

Posted: Wed May 19, 2004 5:46 pm

Did you try clearing your browsers cache? I know its sounds overly simple an answer but ? I gotta ask.

Edit and yes both of these have had issues so if you didn't have the most recent versions its worth checking.
CPG, MS Anaysis

Posted: Wed May 19, 2004 5:50 pm

Yes I did just in case I had a bad cookie.

Nothing to simple is stupid, sometimes it's the little things that get you Laughing

Posted: Wed May 19, 2004 6:40 pm

Thanks .. I do have the most current because of the issues ... hope there isn't more I like both of the scripts.

I think it's my computer ... I'm on a different one and I can access all the admin functions. I wonder if I put a block on my own IP addy. Boy that would make me feel stupid!!!!!

Posted: Wed May 19, 2004 7:05 pm

LMAO I've done that one many times its one thing that I've grown weary of testing is a ban script.

Posted: Wed May 19, 2004 7:13 pm

Before you cut out have you had any luck tracking the attack and what exactly was used? If not and you want help to figure it out you could send your server log and I'll take a whack at it.
webmaster/@/netflake~DOT~com

Posted: Thu May 20, 2004 9:48 am

No but this one bothers me. I've been hacked before on a different domain, all they pretty much did was change files and setting ... more of a 5-minute bother then anything. I didn’t have the security update for CPG installed. But this one uploaded a bunch of stuff to my root directory. I did the standard change all my passwords after the attack was fixed, but this morning I went to my CPanel and all my IP Blocks where gone. Some I'm having my Hosting company take a look if they were hacked directly, or if it was just me Rolling Eyes

BTW ... when I logged in this morning I received this error:
Fatal error: Call to undefined function: word_wrap_pass() in /h*/r*/p*/r*/includes/topic_review.php on line 221 (edited the path, but I'm sure you know what it is)