I visit the excelent site INCONNUETEAM http://www.inconnueteam.net/ and read F4KELIVE OWNZ U !

Can XOOPS be hacked? There is a bug?
Please, be alert all developers and coders.

Thanks in advance

Reosys

Anything can be hacked.

I don't see anything wrong with your site, however. No defacements or anything. Have you fixed it or am I missing something because I don't speak/read French?

Just visited the site and received same message, looks hacked to me. Got the message along with a big graphic on the downlaods section

Any site, can be hacked just takes time. XOOPS is password protected, crack the password and your in. So best make sure its a strong password that can at least withstand a dictionary attack.

Looks to me more like someone hacked the webserver. Try going to http://www.inconnueteam.net/admin.php and you get the correct behaviour (no permission). Try going to http://www.inconnueteam.net/modules/news/article.php and you get the correct message 'article does not exist'.

But if you go to http://www.inconnueteam.net/modules/mylinks/index.php then you get the hacked page. This could be done either by replacing the actual index.php file with the hacked script... OR, it could be done with a 'mod_rewrite' type of rule (in the webserver) which loads the hacked scripted whenever the URL is e.g. http://www.inconnueteam.net/modules/[.+]/index.php . Anyways, this is just a guess. I hope the admins of that site can post here (or PM the core team) once the problem is found. I'd be very interested to know if it is just a webserver hack (especially a risk on shared hosting) or if it is an actual XOOPS vulnerability that has been unconvered.

Thanks.