SMF Support > Server Performance and Configuration

Prevent SQL Injection

(1/1)

rockintyler8:
Is there a way I can prevent SQL Injection?  I recently had to shut down my SMF 2.0.2 forum because someone changed the forum Title to "Hacked by Anonymous".

vbgamer45:
The forum title is stored in a file and is not sql injection.
SMF 2.0 has safeguards against sql injection and there are no known flaws for sql injection for the core SMF software

rockintyler8:
I have no idea how but my forum was hacked...

vbgamer45:
Change all your staff passwords and your passwords would be the first thing I do and make sure there are no other admins on the forum.

Arantor:
The odds are that your forum was hacked by other users on the server due to improperly set permissions, and nothing to do with SQL injections anyway.

Navigation

[0] Message Index