since yesterday, I can not access administration on our I can not view, edit or delete index.php and htaccess file from /public_html/
both index.php and .htaccess files have 444 permissions . Even if I modify permission to 644 , after refresh , both files go back to 444 permission.
if I try do overwrite with a new index.php file… new file are almost immediately became identical with older one …
last days I upgrade PHP from 7.4 to 8.0… can be this a reason fro this behavior ?
permission are corect, but folders are infected by malware, now we try to clean it.
after scanning with imunify360, a lot of folders from
/var/upgrade/upgrade_4.2.4_ultimate-4.3.1_ultimate.tgz/package/app
/var/upgrade/upgrade_4.2.4_ultimate-4.3.1_ultimate.tgz/package/app
/var/upgrade/upgrade_4.2.4_ultimate-4.3.1_ultimate.tgz/backup/js/
CS cart just release v.4.16.2 SP1 with similar potential vulnerability
Earlier this week, we sent an email about this issue. We received word of a major security issue in all versions of CS-Cart 4, including 4.16.2. This vulnerability could potentially let an attacker upload a PHP file to the server and execute it. We are not disclosing more details, because to our knowledge, the vulnerability hasn’t been exploited yet.
maybe we are the only one with vulnerability exploited