We build. You grow.

Get best community software here

Start a social network, a fan-site, an education project with oxwall - free opensource community software

Get started
Google+

My oxwall site has been hacked | Forum

Topic location: Forum home » Support » Bug reports and troubleshooting
Michael
Michael Jan 3 '13
I've contacted oxwall directly, still waiting on a response.

Apparently theres a security whole in a php script which allows hackers to run there command from shell access as nobody.

This is the command which is covering up whatever there running
/usr/local/apache/bin/httpd -k start -DSSL

This is the document explaining everything
http://help.ovh.co.uk/HackedMachineExample
#1
Michael
Michael Jan 3 '13
It looks like its the shoutout plugin, it was disabled lastnight and wont re-enbale to I can uninstall it.

That along with anti-spammer are the only plugins that have been added recently.
#2
Start | Demo | About | Policies & Licenses | Blog | Contact Us | Oxwall Foundation | Roadmap | Developer Central | Oxwall hosting | Contribute | Partners | Donation | Community software | Dating software
© Copyright Oxwall Software
Oxwall Community Software