Hello,

Since this afternoon I cannot access our site anymore (http://primary-sources.eui.eu/) but instead get a screen with this error:

Parse error: syntax error, unexpected T_STRING in /accounts/istitutoeuropeo/www/primary-sources.eui.eu/sites/all/themes/primary_sources/page.tpl.php on line 1352

I have no idea if this is actually zen-related but thought it might be best to begin checking here.

Any help very much appreciated...!

Best,
Gerben

Comments

Gerben Zaagsma’s picture

To add: the code on line 1352 is this line:

div id="closure-blocks" class="region region-closure"
print $closure_region;
/div

[I removed the "<" and ">" around the divs because otherwise they would not show up in this post]

Gerben Zaagsma’s picture

Title: unexpected T_STRING error » unexpected T_STRING error - site has been hacked

Ok, this is not a technical problem with Zen or so, I just found out the site has been hacked.

Gerben Zaagsma’s picture

Title: unexpected T_STRING error - site has been hacked » site has been hacked via page.tpl.php
Version: 6.x-1.x-dev » 6.x-1.0

This is a follow-up to the previous posting:

It turns out that the page.tpl.php file was injected with code that caused the problems. I reported this to the Drupal security team also but the question remains for us how this happened: via an insecure module, a direct hack of the ftp account or something else.

Again, I don't know if this could be Zen related or that the attacker simply used a theme file but I can share the compromised file so people can have a look at the code.

Best,
Gerben

akalata’s picture

Status: Active » Closed (fixed)