10
Hi,
I managed to get back into the admin area by deleting adminmenu.php in /cache.
What seems to have happened is this, the ugly, greasy hackers seem to have added there code <a href links to various crackz, warez sites into the partners block and into 2 custom html blocks I had on the from page, as soon as I updated the module html in admin the front page went back to normal and this also removed the links to these sites fropm the blocks. So everything seems fine now and was pretty easy to fix.
The big question is and I'm hoping someone here will have some sort of answer because im really curious, How did they manage to do this? A hole in xoops?(doubtful) a hole in the shared server? maybe but would i get my host to admit to this? maybe not, I would love to know how they did this atleast so I can make sure it wont happen again.
I would like to state also that this little incident in no way makes me doubtfull of xoops, XOOPS is an excellent CMS I have been using it for along time now and I will continue to use it, XOOPS kicks ass, even if this does turn out to be a hole in XOOPS I will still use it because its the best, unfortunatley these script kiddies have no life whatsoever and are constanlty coming up with new stuff to attack sites with. Sad Gits.
Michael Jackson = King Of Pop
Xoops = King Of CMS