MyBB Central

Full Version: DR-MTMRD MyBB Hack.
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Does anyone know the best way to see how a site was intruded?

A friend has been hacked and only her MyBB sites have been compromised. The hacker added and index.htm file to the root of every directory.

The only modified file seems to be .htaccess

Code:
<IfModule mod_security.c>
SecFilterEngine Off
SecFilterScanPOST Off
SecFilterCheckURLEncoding Off
SecFilterCheckUnicodeEncoding Off
</IfModule>

What does this do?

Found this too: http://pastebin.com/SuW8x7xE

I looked at the logs it appears it was her outdated WordPress that was the hole.
This is very good.