: Website hack resulting in auto redirect - where to start looking? My website is being redirected to a non-existent page (/showpage.php) for some users when they hit the homepage. For other

Posted in: #Apache #Hacking #Php #Security

My website is being redirected to a non-existent page (/showpage.php) for some users when they hit the homepage. For other users, the site works fine. I have looked in the index.php files and some other commonly used files. I believe strongly that this is a hack but I don't know how to get rid of it.

Any advice on where to start looking? Any experience dealing with something like this? I would greatly appreciate even the slightest thought on the matter.

10.02% popularity Vote Up Vote Down

: Not able to see databases in symlinked folder I created a folder on my Dropbox and then symlinked it to both of my computers that I use for development. The folder is working correctly and

@Pope3001725

Posted in: #Database #Php #Phpmyadmin

1 Comments

: Posting public key Should I put my public PGP key on my website so that people can securely contact me? I have seen personal sites where their public key is at the bottom of the page, such

@Pope3001725

Posted in: #PersonalWebsite #Security

2 Comments

: Best way for beginner to learn JavaScript and PHP coding I have a job interview coming up and in job description it states I need to be able to write JavaScript and PHP coding. Now its been

@Pope3001725

Posted in: #Javascript #Php

2 Comments

: Using Google pagespeed service - w3 validator gives errors I've started using google pagespeed service and now when I check my site on http://validator.w3.org/ with doctype HTML5 and encoding UTF8

@Pope3001725

Posted in: #PageSpeed #W3cValidation

2 Comments

Login to post a comment!

2 Comments

Sorted by latest first Latest Oldest Best

@Gloria169

Searching on the associated filename in online exploit databases can sometimes yield insights/hints. For example, this exploit can affect the noted PHP webapp script (Warning: do not click on the demo there for the XSS exploit).

As indicated in that, this involves two types of common exploits:

Cross-site scripting (XSS) exploits - used to bypass access controls in browsers.
SQL injection exploits - used to attack data-driven applications.

There are many virus and web security scanner applications that utilize exploit databases, which can run on and monitor your server. An outdated list of some of them can be found here - search for others in Google.

10% popularity Vote Up Vote Down

@Kevin317

Check your htaccess file as that is commonly where redirect hacks are placed. If you can't find it anywhere ask your host to check the Apache conf files as they may be the ones who are comprimised.

10% popularity Vote Up Vote Down

Feed

: Website hack resulting in auto redirect - where to start looking? My website is being redirected to a non-existent page (/showpage.php) for some users when they hit the homepage. For other

More posts by @Pope3001725

: Not able to see databases in symlinked folder I created a folder on my Dropbox and then symlinked it to both of my computers that I use for development. The folder is working correctly and

: Posting public key Should I put my public PGP key on my website so that people can securely contact me? I have seen personal sites where their public key is at the bottom of the page, such

: Best way for beginner to learn JavaScript and PHP coding I have a job interview coming up and in job description it states I need to be able to write JavaScript and PHP coding. Now its been

: Using Google pagespeed service - w3 validator gives errors I've started using google pagespeed service and now when I check my site on http://validator.w3.org/ with doctype HTML5 and encoding UTF8

Login to post a comment!

2 Comments

Back to top | Use Dark Theme