dbahn
Fri 21st Nov '08, 8:35am
I should have paid closer attention to this to describe the exact files, but here's the question.
After upgrading 3.7.3 to 3.7.4 using FTP overwriting and selecting to overwrite all files, at the very end another window showed up asking to overwrite, which I did. (I think it was a login.php file, or some variation of it.) Anyway, the last step after deleting the install file was a screen to login to the cp directly from the upload steps. It would not login that way, but I could login immediately going to the forum and loging in to the CP as administrator.
So my question is, did I allow a file that shouldn't be there? I've been hacked recently and it occurs to me that it could be some sort of hacking process. Again, I should have written down the name of the file, but I just assumed that it was a perfectly legitimate request since it came from the upload directory.
After upgrading 3.7.3 to 3.7.4 using FTP overwriting and selecting to overwrite all files, at the very end another window showed up asking to overwrite, which I did. (I think it was a login.php file, or some variation of it.) Anyway, the last step after deleting the install file was a screen to login to the cp directly from the upload steps. It would not login that way, but I could login immediately going to the forum and loging in to the CP as administrator.
So my question is, did I allow a file that shouldn't be there? I've been hacked recently and it occurs to me that it could be some sort of hacking process. Again, I should have written down the name of the file, but I just assumed that it was a perfectly legitimate request since it came from the upload directory.