Webmastersite.net
Register Log In

Errors All of a Sudden

Comments on Errors All of a Sudden

pcarlow
Member

Usergroup: Customer
Joined: Apr 05, 2004

Total Topics: 4
Total Comments: 15
pcarlow
Posted May 01, 2006 - 8:39 PM:

Site was working fine earlier today and now this:

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/pcarlow/public_html/shark/classes/database.php on line 82

Warning: mysql_fetch_row(): supplied argument is not a valid MySQL result resource in /home/pcarlow/public_html/shark/classes/database.php on line 69

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/classes/database.php:82) in /home/pcarlow/public_html/shark/prestart.php on line 115

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/pcarlow/public_html/shark/classes/database.php on line 82

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/classes/database.php:82) in /home/pcarlow/public_html/shark/commonfuncs.php on line 317

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/classes/database.php:82) in /home/pcarlow/public_html/shark/end.php on line 29

Parse error: syntax error, unexpected T_ELSE in /home/pcarlow/public_html/shark/commonfuncs.php(343) : eval()'d code on line 306
pcarlow
Member

Usergroup: Customer
Joined: Apr 05, 2004

Total Topics: 4
Total Comments: 15
pcarlow
Posted May 01, 2006 - 9:20 PM:

Ok i found that config.php had been modified today so i compared it against another install and found that the last line was missing. I added the line back and now the error just reads:

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/config.php:1) in /home/pcarlow/public_html/shark/prestart.php on line 115

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/config.php:1) in /home/pcarlow/public_html/shark/commonfuncs.php on line 317

Warning: Cannot modify header information - headers already sent by (output started at /home/pcarlow/public_html/shark/config.php:1) in /home/pcarlow/public_html/shark/end.php on line 29

Parse error: syntax error, unexpected $end in /home/pcarlow/public_html/shark/commonfuncs.php(343) : eval()'d code on line 230

Running version 3.14, have i been hacked?
pcarlow
Member

Usergroup: Customer
Joined: Apr 05, 2004

Total Topics: 4
Total Comments: 15
pcarlow
Posted May 01, 2006 - 9:23 PM:

More fooling with config.php (removed extra spacing) and now down to this:
Parse error: syntax error, unexpected $end in /home/pcarlow/public_html/shark/commonfuncs.php(343) : eval()'d code on line 230
Paul
developer

Usergroup: Administrator
Joined: Dec 20, 2001
Location: Diamond Springs, California

Total Topics: 61
Total Comments: 7868
Paul
Posted May 03, 2006 - 7:41 AM:

For the mysql warnings you need to read the pinned procedure thread.

Unexpected end means a file isn't fully uploaded, exception the eval()'d code implies it's probably something in a template.

Header information messages are covered in the manual's troubleshooting section, notice is says there it's line 1 of config.php.

Running version 3.14, have i been hacked?

Well as I stated quite clearly in the critical security update email sent to you a month or two ago, running 3.14 is certainly inviting people to hack you. I certainly couldn't tell you if that happened via psychic power when you don't show me the site, though, of course.
pcarlow
Member

Usergroup: Customer
Joined: Apr 05, 2004

Total Topics: 4
Total Comments: 15
pcarlow
Posted May 03, 2006 - 11:42 AM:

Yeah, i was hacked for sure, found several links injected into my templates. I've got everthing back in working order and changed file permissions on the templates.
Paul
developer

Usergroup: Administrator
Joined: Dec 20, 2001
Location: Diamond Springs, California

Total Topics: 61
Total Comments: 7868
Paul
Posted May 03, 2006 - 7:15 PM:

changed file permissions on the templates

In 3.14? So now you only get your passwords stolen and spam/warez hosting scripts uploaded to places you won't notice, instead of your templates defaced? Is that better?

It might be safe (no confirmed explots) if you delete upgrade.php, but there are possibly other vulnerable files which could allow any 777 directory anywhere on the server could present a point for the hacker to take over.

('Course it's also possible the exploit happened through a different script.)
Search thread for
Download thread as
  • 0/5
  • 1
  • 2
  • 3
  • 4
  • 5



This thread is closed, so you cannot post a reply.