Security breach related to this add-on
Permalink Browser Info Environment
Not sure if any damage was done, but got this disturbing email today...I deleted the add-on. Hadn't been using it. Not sure if there is an easy for anyone using it.
There has been a submission of the form Contact through your concrete5 website.
Name
Ali Elderov
Email
cyberkatze@yandex.ru
Phone
999000
Best time to call
Email preferred
Event date (if applicable)
Comment
hallo! please secure your web-site.. all can see content on backend if usehttp://photosbyge.com/packages/tc_photo_gallery/... this url and can navigate throught directories... best regards!
To view all of this form's submissions, visithttp://photosbyge.com/index.php/dashboard/reports/forms/?qsid=13325...
There has been a submission of the form Contact through your concrete5 website.
Name
Ali Elderov
cyberkatze@yandex.ru
Phone
999000
Best time to call
Email preferred
Event date (if applicable)
Comment
hallo! please secure your web-site.. all can see content on backend if usehttp://photosbyge.com/packages/tc_photo_gallery/... this url and can navigate throught directories... best regards!
To view all of this form's submissions, visithttp://photosbyge.com/index.php/dashboard/reports/forms/?qsid=13325...
Type: | Pre-Sale |
---|---|
Status: | In Progress |
I see that the developer has stopped supporting it.
You are correct. tcPhotoGallery is no longer supported.
This security problem isn't related to tcPhotoGallery. It is a problem with the configuration of your web server. This is usually solved by adding "Options -Indexes" to your .htaccess file.
This security problem isn't related to tcPhotoGallery. It is a problem with the configuration of your web server. This is usually solved by adding "Options -Indexes" to your .htaccess file.