Easy PHP Calendar - We really take care of your dates!
 


Go Back   Easy PHP Calendar > General Discussion > General Support
Reload this Page Header Exploit?

General Support Questions about using the Easy PHP Calendar. (Not installation or customizations)

Closed Thread
 
Thread Tools Search this Thread Display Modes

Header Exploit?
Old 04-02-2012, 05:49 PM   #1
soaringpine
Calendar User
 
soaringpine is offline
Join Date: Apr 2012
Posts: 2
Default Header Exploit?
Hi guys, my calendar quit working out of the blue all of a sudden and I am still trying to determine why. I assumed my provider upgraded php version automatically but that wasn't the case. So I reinstalled some of the files thinking that might do the trick. Contacted my provider after they blocked my IP address because they said the calendar/events/editors/tinymce/header.php file contains an exploit.

My site will not work at all - I am receiving the following message:

Fatal error: Incompatible file format: The encoded file has format major ID 2, whereas the Loader expects 4 in /home2/pack414/public_html/calendar/functions/functions.inc.php on line 0

Cannot access the admin panel for the calendar either - ssI receive the same message.

Any help is much appreciated. This is a Cub Scout site and I need to get it back up and running ASAP. THANKS!
 

Old 04-02-2012, 06:14 PM   #2
ve9gra
Support Team
 
ve9gra's Avatar
 
ve9gra is offline
Join Date: Jun 2003
Location: New Brunswick, Canada
Posts: 4,965
Default
Download the Tester script and check which version it tells you you need. Download the .zip version and then follow the upgrade documentation to replace the system files only.

http://docs.easyphpcalendar.com/
__________________
-- Gervais
EPC Tutorials... We're here to help!
Offering custom integration services. Contact me here.
* Not affiliated with EasyPHPCalendar or NashTech Inc.
 

Old 04-02-2012, 06:16 PM   #3
ve9gra
Support Team
 
ve9gra's Avatar
 
ve9gra is offline
Join Date: Jun 2003
Location: New Brunswick, Canada
Posts: 4,965
Default
Oh, and before you blow away the old files, I would suggest that you open a support ticket and upload the file that your host told you had an exploit. Brian will be able to confirm if it had been tampered.
__________________
-- Gervais
EPC Tutorials... We're here to help!
Offering custom integration services. Contact me here.
* Not affiliated with EasyPHPCalendar or NashTech Inc.
 

Old 04-02-2012, 11:14 PM   #4
Brian
EPC Developer
 
Brian's Avatar
 
Brian is offline
Join Date: Jun 2001
Location: Florida, USA
Posts: 10,878
Default
And that file is part of TinyMCE and not part of the calendar. Make sure you are using the latest release of TinyMCE.
__________________
-- Brian

Questions?
Instructions: Version 6 - Version 7 | FAQ | Errors FAQ | Paths FAQ | Forums | Support | Web Site Hosting
 

Old 04-03-2012, 06:33 AM   #5
ve9gra
Support Team
 
ve9gra's Avatar
 
ve9gra is offline
Join Date: Jun 2003
Location: New Brunswick, Canada
Posts: 4,965
Default
Err... Brian, this file is part of the EPC package... no?

calendar/events/editors/tinymce/header.php
__________________
-- Gervais
EPC Tutorials... We're here to help!
Offering custom integration services. Contact me here.
* Not affiliated with EasyPHPCalendar or NashTech Inc.
 

Old 04-03-2012, 10:22 AM   #6
Brian
EPC Developer
 
Brian's Avatar
 
Brian is offline
Join Date: Jun 2001
Location: Florida, USA
Posts: 10,878
Default
You're absolutely correct. I misread the path.

That file is in plain-text and there is no code that can execute anything else. It's possible that on outside script or user modified that file and included malicious code in it. You may want to see if your host can tell when and who/how that file was modified.
__________________
-- Brian

Questions?
Instructions: Version 6 - Version 7 | FAQ | Errors FAQ | Paths FAQ | Forums | Support | Web Site Hosting
 

Old 04-03-2012, 01:17 PM   #7
soaringpine
Calendar User
 
soaringpine is offline
Join Date: Apr 2012
Posts: 2
Default
I downloaded the latest version and updated the appropriate files and the server still does not like it (exploit showing up). Before I did that I ran the /tester directory and everything checked out fine.
 

Old 04-03-2012, 01:28 PM   #8
Brian
EPC Developer
 
Brian's Avatar
 
Brian is offline
Join Date: Jun 2001
Location: Florida, USA
Posts: 10,878
Default
You're going to need to send me that file and/or give me more specific details about it because I have no idea what you mean by exploit.

I assure you that it is not distributed with the calendar.
__________________
-- Brian

Questions?
Instructions: Version 6 - Version 7 | FAQ | Errors FAQ | Paths FAQ | Forums | Support | Web Site Hosting
 
Closed Thread

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
date in header of eventlist set to Dutch bisoes General 4 02-10-2009 01:02 PM
Replace Header image filch General Support 1 11-26-2007 10:42 AM
Event Manager's Header webSlave Customizations (Themes / Templates) 3 10-08-2005 09:35 AM
cant login and header error redd General Support 4 08-13-2005 11:44 PM



All times are GMT -4. The time now is 04:36 PM.
Mark Forums Read | View Forum Leaders
Easy PHP Calendar - Archive - Top


vBulletin skins developed by: eXtremepixels
Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Copyright 2009 NashTech, Inc.

| Home | Register | Today's Posts | Search | New Posts |