Today I received an alert from the security team that the Joomla site was hacked, the hackers tweeted an image located in the server's fabrik upload folder.
After investigation, I conclude that all they did was to upload the image with the fileupload component (in using it in AJAX mode) and they got the image name from the preview image, since the uploads are configured to be renamed to 12 random characters.
How can I disable the preview popup and the small icon link to the same image just uploaded?
Regards,
Marco A.
After investigation, I conclude that all they did was to upload the image with the fileupload component (in using it in AJAX mode) and they got the image name from the preview image, since the uploads are configured to be renamed to 12 random characters.
How can I disable the preview popup and the small icon link to the same image just uploaded?
Regards,
Marco A.