Public Notice Regarding Forum Exploit > Mitchel's Personal Web Portal

Public Notice Regarding Forum Exploit

I have received numerous e-mails today regarding an exploit that was used on my site today to direct my forum's page to http://www.google.com. I have identified the root cause of the issue and am working to resolve the underlying issue.

At this time I have removed the forums module from the general public view. I will plan on re-enabling this later this evening once I have access to correct the bad database entries. I have been in contact with the DotNetNuke core team regarding this issue and I have been assured that in 4.5 it should be resolved.

I am also preparing a "Securing the Forums Module" blog which will walk you through a procecdure that I have tested that should prevent this type of exploit from occuring again in the future.

Again, I greatly appreciate the feedback and the prompt notice everyone has given me. I will work to get this back online as soon as possible!

Posted by Mitchel on Friday, March 30, 2007

Tags: DotNetNuke, Announcements

Comments

Currently, there are no comments. Be the first to post one!
Click here to post a comment

RSS Feeds/Syndication

Subscribe To Blog RSS
Subscribe To Blog Updates by E-Mail
Add blog to Technorati Favorites

Donate

Show your appreciation for the content/modules made available by MitchelSellers.com by making a donation. Donations are used to assist with dedicating time to creating free content.