Hi there lately my website were attack by some hacker, they upload aspx type file and spam some weird stuff..After i delete all suspricous aspx file, cleaning all vunerable and check superuser, setting allowable file extensions, etc. but somehow they still able to upload new aspx spy file So i just want to ask is there a way disable upload all type file upload to server? or blocked aspx spy file? Thanks
Best
What DNN version? Did you upgrade DNN to the latest version too (you should)? One of the fixed issues is in the RAD editor (DNN uses CKEditor now) You should also check all ascx files as they can be compromised too. I don't think blocking uploads will help you if they are using a vulnerability in an old version of DNN.
Hi,
My website is suffering from these same issues. Did the update resolve it? I'm upgrading to DNN version 9.6.7.
Thanks, Kiet
Thanks for the quick reply and recommendation! Is the upgrade path 9.6.7 -> 9.10.2? My current upgrade path is
9.1.1 -> 9.3.0 -> 9.6.4 -> 9.6.7 -> ???
https://docs.dnncommunity...rade-path/index.html
9.3.2 -> most recent
The 9.3.2 is the one where you might encounter impact. Depending on the (amount of) third party extensions. For instance, there was an Newtonsoft issue with DNN Sharp extensions. Speaking of DNN Sharp: they moved as Plant an app towards the concept of Low code. Meaning that s few of their modules is available as stand alone but the majority is part of their low code appbuilder.
Another follow up. Can I upgrade to 9.10.2 and not remove Telerik? Looks like I have alot of dependencies identified by the Telerik Dependency Report. >>>
WARNING! Dependencies on Telerik were discovered in assemblies that will NOT be addressed by un-installing per the instructions with 9.8.0. The list below includes all.
<<<
You can upgrade but important issues would remain. My advice would be to do some cleaning.
And after all this: get rid of Telerik :-)
Oy! Not the answer I wanted to hear but what I was expecting. Thanks Tycho! Going from DNN 6.0.2 -> 9.1.1 was brutal so hopefully this won't be as bad.
These Forums are dedicated to the discussion of DNN Platform.
For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:
Awesome! Simply post in the forums using the link below and we'll get you started.