| Ok. There is a temporary solution to avoid using that script. You need give the files admin_editor.php and settemplate.php chmod 000 or copy it to your hard disk and delete it from your hosting. The exploit use admin_editor.php to edit your template files, after chmodiing or deleting they can't edit it. They can get the name of admin (in standard) but the can't do nothing more.
That's only temporary fix, when Pligg team release update you can put files to your web host. |