WebYep Security

General discussions about WebYep
Post Reply
coolsvillemedia
Posts: 1
Joined: Wed Feb 27, 2008 2:07 pm

WebYep Security

Post by coolsvillemedia » Wed Feb 27, 2008 2:15 pm

WY V1.2

I have started getting a security message which overlays the login popup window after submitting my login details, as follows:

'The Content Management System has found a severe security problem in the site! Please contact the person who designed this site immediately'

I had just update to latest version of WebYep and had installed TinyMCE.

Thanks for all your help in advance.

Coolsville Media

johannes
Objective Development
Objective Development
Posts: 815
Joined: Fri Nov 10, 2006 4:39 pm
Contact:

Post by johannes » Sat Mar 01, 2008 9:00 am

Please check the webyep-system/data folder for files with the following extensions:

.php
.html
.htm
.css
.js

and remove them (you can keep the readme.html).

vtldeveloper
Posts: 1
Joined: Tue Oct 13, 2009 5:10 pm

Re: WebYep Security

Post by vtldeveloper » Tue Oct 13, 2009 5:15 pm

After removing any such files will more be created? The files I found were from the website web yep is installed on and I did not place them there so they must have been created by the system.

Please advise

vtl developer

johannes
Objective Development
Objective Development
Posts: 815
Joined: Fri Nov 10, 2006 4:39 pm
Contact:

Re: WebYep Security

Post by johannes » Wed Oct 14, 2009 7:09 pm

WebYep should definitely not create files with such filename extensions in the data folder.

Do you still have those files? If so, please contact us directly via the support page and send them to us.

What where their exact names?

tonylees
Rank 2
Rank 2
Posts: 48
Joined: Sat Feb 07, 2009 11:40 pm

Re: WebYep Security

Post by tonylees » Thu Dec 15, 2011 9:54 pm

HI All..
I have just started to get this warning on a site I manage.

To try and combat the problem I upgraded to the latest version (1.7 .1)but I still get the warning. I checked the Data file and there isn't any files in there that shouldn't be there

Has anyone had this?

Cheers
Tony

tonylees
Rank 2
Rank 2
Posts: 48
Joined: Sat Feb 07, 2009 11:40 pm

Re: WebYep Security

Post by tonylees » Thu Dec 15, 2011 10:35 pm

HI all,

I think I have figured it out... there was a index.html in the data folder for some reason! deleted that and everything is good again

The Index.html didn't contain anything malicious, it was just a 403 forbidden page.

Thanks
Tony

Post Reply