Security issue

Just happened to me. vbSEO rewrite settings randomly reverted to the 001 option and a member said that the search engine redirected her to a file download site. I instantly recalled reading about this happening to people here.

Reuploaded the vbseo xml which seems to have fixed the Google redirection from what I can tell. Will go through the suggestions in this thread.

Pretty awful feeling, though. I don't have time to check up on each of my websites and happened to log in today to catch the exploit just hours after the code was injected. Huge eye-opener.

We are currently looking into this.

Originally Posted by neumadr

Just happened to me. vbSEO rewrite settings randomly reverted to the 001 option and a member said that the search engine redirected her to a file download site. I instantly recalled reading about this happening to people here.

Reuploaded the vbseo xml which seems to have fixed the Google redirection from what I can tell. Will go through the suggestions in this thread.

Pretty awful feeling, though. I don't have time to check up on each of my websites and happened to log in today to catch the exploit just hours after the code was injected. Huge eye-opener.

Please try to revert back your settings and then change vbseo/resources/xml/config.xml permissions to 644 to make it un-rewritable and it shouldn't happen again

i also had my config.xml randomly modified (so the URL structure got messed up), it was chmod 644

now its chown root:root

can i send the modified xml file that i backed up to a vbseo team member for investigation?

i didn't authorize the change. my password was very very long and i have been using the latest versions consistently

please advise

If you have any logs or anything else, please submit them via ticket.

Hello All, Please see http://www.vbseo.com/f2/config-xml-s...73/#post277736

Hi,

I have this issue too on one of my forums (hopefully not any others too!).

My config.xml was already set to 644. And my password too is pretty strong for all thing such as server, ftp, etc.

I've redownloaded VBSEO and have re-uploaded the xml file. Though is there anything else I can do to stop this?

Hello ,

This is a different issue , you need to check config.xml settings changed randomly - security issue?

Additionally the security issue explained in this thread has NOTHING to do with vBSEO

I am currently closing this thread in order to avoid any misunderstandings user MTD created.

Current 3.5.1. pl1 exploit discussion thread:
config.xml settings changed randomly - security issue?