Nissan 370Z Forum - View Single Post

rAiN · 09-21-2013, 12:37 PM

a simple exploit injection in database can cause this, admin really needs to save and backup database weekly and revert back to before the spam break outs.

this can be easily done by changing a file name to inject.xss to inject.xss.jpg and upload them into the forum image uploader.

since we dont know what the "cracker/hacker" used the file to contaminate the database but that is how they usually get into database. or at least one of the way.

09-21-2013, 12:37 PM	#132 (permalink)
rAiN Track Member Join Date: Jan 2009 Location: va Posts: 721 Drives: 2012 370z mt Rep Power: 17	a simple exploit injection in database can cause this, admin really needs to save and backup database weekly and revert back to before the spam break outs. this can be easily done by changing a file name to inject.xss to inject.xss.jpg and upload them into the forum image uploader. since we dont know what the "cracker/hacker" used the file to contaminate the database but that is how they usually get into database. or at least one of the way.