2011-02-16, 02:34:44
Until we have this fixed with the 3.0 release, please delete /admin/upload-ajax.php from any and all of your installations of GetSimple.
Some hacksters found a way to upload a file without being logged in - not sure how yet, but right now, this is the best way to avoid being hacked.
Sorry about this, but some people have to try and ruin it for everyone... More to come shortly...
Some hacksters found a way to upload a file without being logged in - not sure how yet, but right now, this is the best way to avoid being hacked.
Sorry about this, but some people have to try and ruin it for everyone... More to come shortly...