edit-icon download-icon

[Vulnerability notice] Backdoor vulnerability in QiboCMS

Last Updated: Apr 18, 2018

Vulnerability description

QiboCMS is a popular open-source content management system, but it has a backdoor vulnerability. A hacker can tamper with the QiboCMS installation package as follows:

  1. Insert HTML code in the /admin/template/center/config.htm file to collect statistics on the URLs of attacked websites.

  2. Implant the PHP Trojan backdoor file /ewebeditor/ckfinder/plugins/fileeditor/codemirror/contrib/php/js/net.php.

How to fix

  1. Modify /admin/template/center/config.htm to delete abnormal HTML code.

  2. Delete the Trojan file /ewebeditor/ckfinder/plugins/fileeditor/codemirror/contrib/php/js/net.php.

Thank you! We've received your feedback.