Results 1 to 5 of 5
Oct 25, 2009, 06:42 #1
SQL Injection & XSS attack/WHO HERE CAN FIX THIS?
My site sustained an SQL Injection and XSS attack which is making the database act weird.
Are there any SQL Injection XSS experts in SitePoint who know how to fix it?
Last edited by molona; Oct 25, 2009 at 14:15. Reason: No service requests allowed in the forumsWhitebelt,
Oct 26, 2009, 00:38 #2
- Join Date
- Aug 2000
- Philadephia, PA
- 1 Post(s)
- 0 Thread(s)
This is too vague to help with. What exactly was done (do you know what queries they ran?) and what is "acting weird"?Try Improvely, your online marketing dashboard.
→ Conversion tracking, click fraud detection, A/B testing and more
Oct 26, 2009, 06:06 #3
Thanks for prompt response. I don't know what queries they ran [i wouldn't recongnize a query if it came up and bit me]. I don't know the technical aspects of these things. I just know about the business/legal aspects of the site. My developer doesn't know about sql injection fixes, or XSS fixes. He can't help me.
What happened was that my site was defaced. If I entered information in my CMS to add items and photos to the database that runs the site, this newly added information would not appear where it was supposed to appear. Or sometimes it would appear as a duplicate somewhere else. Someone told me that the hack may have messed-up my tables and columns, etc. on the database. Others said it may just have been a "GLITCH" in my database/php script. I don't know who's right.
My developer was able to get the site to work again as it used to [temporarily]. But it looks like things may be acting up again. I do get TONS AND TONS of automated spam via my contact forms. Most of my traffic on my traffic reports comes from Russia(?); I suspect Russian spammers. These contact forms are not secure. I need to add more security. Thus, the request for an SQL Injection or xss specialist to assist.
Could you recommend someone? Thank you.Whitebelt,
Oct 26, 2009, 06:30 #4
- Join Date
- Jul 2002
- Toronto, Canada
- 49 Post(s)
- 1 Thread(s)
Oct 26, 2009, 08:49 #5
Will do .... thanksWhitebelt,