Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

File injection possibly via jQuery


aspire321

Recommended Posts

Hello.

My OSC v2.3.4.1 has had the .htaccess file modified, to redirect search engine traffic to a pharma site.

It's easy to fix the htaccess file when that happens, but I'm looking for a solution.

I read here that file injection is more likely to be caused by something that writes files.  E.g. admin/backups.php, categories.php, define_languages.php

Because there was a directory created in the root folder which had an obfuscated coded image file.

In looking further it appears this could possibly be a jQuery v1.11.1 exploit.

Is it possible to update jQuery to a newer version to solve this?

Thanks a lot for your input.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...