Hi all,
I think I've been hacked by a somewhat playful attacker as they have changed the details of one of my users and had a look around the members area content but appear to have done little else.
I'm running Joomla 1.5.22 with community builder version 1.2.3.
Somebody visited my site using the following address:
www.mysite.co.uk:443/index.php?option=com_comprofiler&task=registers
They then proceeded to view a number of pages in my members area; looking at the addresses visited, I believe they registered themselves as an administrator on my site which then allowed them to edit content in the members area.
Please can you advise me if this sounds like an unknown vulnerability or if it appears to be a fault in my setup - I've had a look for information regarding including :443 in the address but not found any obvious leads?
Kind regards,
Paul Hughes