Hello,

someone hacked my admin password and changed it so i can no more log into my board. I am using ubb 6.3.0.

What can i do to get the pass back.

He also changed the mail adress so i cant send the pass to me.

please help it urgent

Does someone know where the security hole is and are there fixes for it???

There are a handful of potential problems in that version. The solution right now would be to edit vars_misc.cgi... find the line reading "BBStatus" and change the value from "ON" to "OFF"

Then immediately rename cp.cgi, so the user can't get back in to the board.

Report back here when you've done that. Next, you'll be shown how to create a new admin user... and after that, you get to upgrade to 6.6.

well i restored the forum and the users with my old backup.

well and now i am going to take a look at other board systems which are hopefully more secure than ubb

UBB is secure, you're using a 1 and a half year old version. The compromise you had was fixed a year ago, so it's not like you didn't have time to upgrade.