Welcome to Geeklog, Anonymous Saturday, May 04 2024 @ 03:43 am EDT
Geeklog Forums
Security Problem - Anyone Can See
Status: offline
winnerdk
Forum User
Full Member
Registered: 04/24/05
Posts: 339
Location:Panama City, Republic of Panama
I just discovered what could be a big problem.
Anyone can see a listing of the admin directory;
http://www.panama-guide.com/admin/
If they click on one of the links, then they are taken to the "you must be logged on" in order to get there screen.
Why is this happening? The "admin" directory should not be visible to the public at large. I think this error started after I tried to install the PayPal plugin. Now, I need a fix. What should I do?
Help!
Don
www.panama-guide.com
Anyone can see a listing of the admin directory;
http://www.panama-guide.com/admin/
If they click on one of the links, then they are taken to the "you must be logged on" in order to get there screen.
Why is this happening? The "admin" directory should not be visible to the public at large. I think this error started after I tried to install the PayPal plugin. Now, I need a fix. What should I do?
Help!
Don
www.panama-guide.com
20
3
Quote
Lee
Anonymous
There should be an "index.php" file that's part of Geeklog. I'd download the same version that you have and replace that file; it's the "home page" for admin functions.
It looks like the Paypal installation didn't go right since there seem to be Paypal files in there that should probably be in a "paypal" subdirectory (ipnlog.php and product_edit.php, for instance).
It looks like the Paypal installation didn't go right since there seem to be Paypal files in there that should probably be in a "paypal" subdirectory (ipnlog.php and product_edit.php, for instance).
4
4
Quote
Status: offline
::Ben
Forum User
Full Member
Registered: 01/14/05
Posts: 1569
Location:la rochelle, France
You are not lucky with this paypal plugin installation 
Anyway re-upload your admin folder (from a backup if you have one) and remove your "install renamed for securty" folder as soon as possible.
Ben
I'm available to customise your themes or plugins for your Geeklog CMS
Anyway re-upload your admin folder (from a backup if you have one) and remove your "install renamed for securty" folder as soon as possible.
Ben
I'm available to customise your themes or plugins for your Geeklog CMS
2
19
Quote
All times are EDT. The time is now 03:43 am.
- Normal Topic
- Sticky Topic
- Locked Topic
- New Post
- Sticky Topic W/ New Post
- Locked Topic W/ New Post
- View Anonymous Posts
- Able to post
- Filtered HTML Allowed
- Censored Content