Hi Forum,
My site was hacked last night.
SMF 1.1.11
TP 1.0 Beta 4
The hacker managed to upload a compressed script using TP. He put a file called dbc.php.pjpg in the tp-images/File folder and then used it to replace my index.php file.
My access log for that periodThis what I get in my browser when I navigate to myserver/tp-images/dbc.php.pjpg


It looks like a nice little hacking interface. I checked the IP Address and it's not a registered member of my forum. I tried all the links that the hacker used which I see in my access log.
This is what he used
http:// web site address /FCKeditor/editor/filemanager/browser/default/browser.html?connector=connectors/php/connector.php
That shows the content of the tp-images/File folder and
with a file upload box at the bottom.
Bloc, I understand that FCK Editor comes from a 3rd party and that you're just including it with TP but maybe you should modify the one in your distribution to include a security check and make sure only forum members that are logged in can upload files.