Edit Post Page

#1 · June 12, 2020, 11:34 am

My forum has been hacked so when I go to edit a post, I get a page full of images of adverts.

Apart from one post that has been cloned and can’t be deleted or edited, everything else seems to be working ok. Can you advise the best way of getting the ability to edit my posts back.

Uploaded files:

#2 · June 12, 2020, 11:59 am

I installed WP-Optimise to clean up the database and that has in fact solved the problem – which surprised me. I was expecting to have to manually clean files. Has this happened to anyone before and if so, are there any suggestions as to how to prevent it from happening again.

One of the topics was cloned and that had spam information also.

#3 · June 12, 2020, 5:07 pm

Hey @tritonts,

if your site was hacked WP-Optimise probably didn’t solve your real problem. If they got access to your database it’s very likely that they created some backdoors get access to your site again. And it’s super important to find the vulnerability that the hackers used.

There are a lot of steps for you to do, but wordpress.org has a good instruction for it:

https://wordpress.org/support/article/faq-my-site-was-hacked/

Need professional help with Asgaros Forum? Book an appointment with us at domra Web Solutions for setup and customization services. Learn more about our Toolbox for Asgaros Forum plugin to enhance your forum experience.

#4 · June 12, 2020, 6:34 pm

Thanks for the reply. The question was more for if there was a current known vulnerability for the forum plugin as it was only that which was affected. The rest of the site – from what I can tell, remained unaffected.

The server has ImunifyAV installed so when a Wordpress site gets hacked it normally picks up any backdoors installed. Nothing showing at the moment. As you rightly say, I just need to tie down how it happened. Everything is otherwise up to date.

#5 · June 13, 2020, 5:19 am

Hey Neil,

I don’t know about any current vulnerability of Asgaros Forum. Maybe Thomas (@asgaros) knows something about current problems.

If you find a new vulnerability of Asgaros Forum, please send a mail directly to Thomas (https://asgaros.com/contact/) and don’t post it here in the forum.

And good luck finding the vulnerability.

Need professional help with Asgaros Forum? Book an appointment with us at domra Web Solutions for setup and customization services. Learn more about our Toolbox for Asgaros Forum plugin to enhance your forum experience.

#6 · June 18, 2020, 3:56 am

Hi @tritonts @qualmy91

I am currently not aware of any security vulnerabilities. Like that issue is caused by some embedded content inside of the spam-posts created by a bot. Deleting the entire topic or deleting the user-account of that topics author should solve it.

If you want to support the development of Asgaros Forum, you can leave a good review or donate. Thank you very much!