close ad
Install the LAtest Updates to Work with CC 2017 and CC 2018
open ad
View Menu

Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

rating

Power CMS may have been hacked

Thread began 1/20/2014 12:54 pm by derekmparker375520 | Last modified 2/02/2015 11:48 am by Jason Byrnes | 1096 views | 7 replies |

derekmparker375520

Power CMS may have been hacked

I designed a site about a year ago that includes Power CMS and was just informed by the company hosting the site that it was hacked. Apparently the hackers were able to upload scripts that were sending out thousands of emails from the site and the hosting company thinks they were able to do it through the content management system. Any ideas on what this may have been or how I should go about taking care of it?

Sign in to reply to this post

Jason ByrnesWebAssist

What version of Power CMS is used on this site? In your order history, i see you have Power CMS 1. If you used this version on the site, there is a known issue post in the download center about this problem.

go yo your account, in the download section go to all my downloads and go to the Power CMS 1 download page.

Sign in to reply to this post

derekmparker375520

Sorry, I said Power CMS and I meant Power CMS Builder in Design Extender. It's Design Extender 1.1.5. Should I still use the configuration.php file that I downloaded from the Power CMS 1 download page?

Sign in to reply to this post

Jason ByrnesWebAssist

No, Power CMS builder will contain the security fix.

The only way that sPower CMS builder could have been hacked, is if they guessed your admin username and password. make sure to use a strong username and password for the super admin on you site.

Sign in to reply to this post

Eileen

Isn't is possible that hackers can have access to your admin and password through the internet, unless your site is completely secured by an SSL? This is a concern I have about the PowerCMS Builder in Dreamweaver.

Sign in to reply to this post

Jason ByrnesWebAssist

Not unless you publish that information out on the internet.

the possibility of hackers having your CMS Admin login information is the same as any other web site login.

Use a good strong username and password and don't publicly share that information and it should be good.

Sign in to reply to this post

Eileen

I plan to publish the CMS admin pages for a client so that they can edit content on their browser on their own computer. When they enter their admin and password through a browser, it will travel through their server to the host server unsecured, and leave their website open for the possibility of someone seeing that information and hacking into their account. Have I missed something?.. as I believe unless those pages are https, that information would be unsecured.

Sign in to reply to this post

Jason ByrnesWebAssist

Yes, to secure the transmission of the password information to the host server, you should use SSL.

Sign in to reply to this post

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now.  Build a store, a gallery, or a web-based email solution.

Want your website pre-built and hosted?

Close Windowclose

Rate your experience or provide feedback on this page

Account or customer service questions?
Please user our contact form.

Need technical support?
Please visit support to ask a question

Content

rating

Layout

rating

Ease of use

rating

security code refresh image

We do not respond to comments submitted from this page directly, but we do read and analyze any feedback and will use it to help make your experience better in the future.

Close Windowclose

We were unable to retrieve the attached file

Close Windowclose

Attach and remove files

add attachmentAdd attachment
Close Windowclose

Enter the URL you would like to link to in your post

Close Windowclose

This is how you use right click RTF editing

Enable right click RTF editing option allows you to add html markup into your tutorial such as images, bulleted lists, files and more...

-- click to close --

Uploading file...