Super Suite
Get all extensions for one suite price
Design Extender
Design and create unlimited websites
Data Bridge
Develop database-driven websites
eCart
Build a responsive shopping cart + checkout
MySQLi Server Behaviors
Generate streamlined MySQLi
Free PayPal Toolkit
Paypal, PayPal Credit, and Skype
Help
1/20/2014 9:54 am | #1 derekmparker375520 I designed a site about a year ago that includes Power CMS and was just informed by the company hosting the site that it was hacked. Apparently the hackers were able to upload scripts that were sending out thousands of emails from the site and the hosting company thinks they were able to do it through the content management system. Any ideas on what this may have been or how I should go about taking care of it?
1/20/2014 10:35 am | #2 Jason ByrnesWebAssist
What version of Power CMS is used on this site? In your order history, i see you have Power CMS 1. If you used this version on the site, there is a known issue post in the download center about this problem.
go yo your account, in the download section go to all my downloads and go to the Power CMS 1 download page.
1/20/2014 10:55 am | #3 derekmparker375520 Sorry, I said Power CMS and I meant Power CMS Builder in Design Extender. It's Design Extender 1.1.5. Should I still use the configuration.php file that I downloaded from the Power CMS 1 download page?
1/20/2014 10:59 am | #4 Jason ByrnesWebAssist
No, Power CMS builder will contain the security fix.
The only way that sPower CMS builder could have been hacked, is if they guessed your admin username and password. make sure to use a strong username and password for the super admin on you site.
1/28/2015 5:00 pm | #5 Eileen Isn't is possible that hackers can have access to your admin and password through the internet, unless your site is completely secured by an SSL? This is a concern I have about the PowerCMS Builder in Dreamweaver.
1/29/2015 10:12 am | #6 Jason ByrnesWebAssist
Not unless you publish that information out on the internet.
the possibility of hackers having your CMS Admin login information is the same as any other web site login.
Use a good strong username and password and don't publicly share that information and it should be good.
1/30/2015 8:24 pm | #7 Eileen I plan to publish the CMS admin pages for a client so that they can edit content on their browser on their own computer. When they enter their admin and password through a browser, it will travel through their server to the host server unsecured, and leave their website open for the possibility of someone seeing that information and hacking into their account. Have I missed something?.. as I believe unless those pages are https, that information would be unsecured.
2/02/2015 8:48 am | #8 Jason ByrnesWebAssist
Yes, to secure the transmission of the password information to the host server, you should use SSL.
Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.
These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.
©1999-2024 WebAssist.com Corporation. All rights reserved and all that jazz.
Account or customer service questions?
Please user our contact form.
Need technical support?
Please visit support to ask a question
Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...
Uploading file...
