We have inherited a v1 EE site that was recently discovered to be compromised by a modification to the index.php file. My question is: would this have absolutely required either ftp or shell access to the hosting account?
This is an archived forum and the content is probably no longer relevant, but is provided here for posterity.
The active forums are here.
September 13, 2010 10:34am
Subscribe [2]#1 / Sep 13, 2010 10:34am
We have inherited a v1 EE site that was recently discovered to be compromised by a modification to the index.php file. My question is: would this have absolutely required either ftp or shell access to the hosting account?
#2 / Sep 13, 2010 4:26pm
No, there are certainly other ways to compromise a site. Some insecure app might be all that it takes. As far as EE is concerned we recommend that you upgrade to the latest version and build. Also, please talk to your host about the incident they should be able to tell you more.