Message Text |
I've been using WSNLinks for my full time job as advertisement management for real estate agents... it is not publicly available since it's in a sub-folder and root is password protected (even though the folder is not). Someone changed main.tpl, displaylinks.tpl and wraper.tpl files - added porn links, crap download links.. and javascript at the end of the wrapper to activate a couple of Trojans and download of wmf files... I alarmed my host about it.. not sure what they do at this point, but I cleaned up the tpl files - basically deleted pretty much everything and left only a couple of templates I edited at the beginning and attachment folder - overwritten everything and trying running upgrade.php but it gives me blank page. The application does not work... give me the following messages:
Warning: mysql_fetch_row(): supplied argument is not a valid MySQL result resource in /home/zaemxlth/public_html/ads/classes/database.php on line 94
Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/zaemxlth/public_html/ads/classes/database.php on line 108
Error: The file /pagination.tpl does not exist.
Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/zaemxlth/public_html/ads/classes/database.php on line 108
Also, any ideas on security of this application? I have project I can not afford this happening and would like to make sure I do everything possible to avoid it. Appreciate any suggestions.
|