Mojoportal is uploading aspx, asp, asmx,... files.

This forum is only for questions or discussions about working with the mojoPortal source code in Visual Studio, obtaining the source code from the repository, developing custom features, etc. If your question is not along these lines this is not the right forum. Please try to post your question in the appropriate forum.

Please do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.

This forum is for discussing mojoPortal development

This forum is only for questions or discussions about working with the mojoPortal source code in Visual Studio, obtaining the source code from the repository, developing custom features, etc. If your question is not along these lines this is not the right forum. Please try to post your question in the appropriate forum.

You can monitor commits to the repository from this page. We also recommend developers to subscribe to email notifications in the developer forum as occasionally important things are announced.

Before posting questions here you might want to review the developer documentation.

Do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.
You must sign in to post in the forums.
7/29/2024 9:46:01 PM
0948230186
Gravatar
Total Posts 4
View Posts

Mojoportal is uploading aspx, asp, asmx,... files.

Hi everyone,
I am currently using Mojoportal v2.7 and have a problem with hackers uploading aspx, asp, asmx,... files to the web, and I don't know why it happens even though I have disabled the upload function. Anyone who has encountered this problem, please help me. And what configuration do I have to make so that hackers cannot upload. Has version 2.9 fixed it?

7/31/2024 10:37:36 AM
Joe Davis
Gravatar
Total Posts 2253
View Posts

Re: Mojoportal is uploading aspx, asp, asmx,... files.

Hello,

You need to secure your filesystem properly. The latest version of mojo does provide some relief from this issue but the problem really is with how your file system permissions are configured. See this documentation for more information: Securing the File System - mojoPortal

Thank you,
Joe

9/25/2024 12:35:47 PM
rosshaden
Gravatar
Total Posts 3
View Posts

Re: Mojoportal is uploading aspx, asp, asmx,... files.

Hackers may still be uploading files in MojoPortal v2.7 despite disabled uploads due to vulnerabilities or incorrect permissions. To fix this, ensure strict file and directory permissions, upgrade to v2.9 if possible, and review any third-party modules for security risks.

You must sign in to post in the forums.