Thread:Project:Support desk/How to fix hacked webpage/reply

Hi guys,

to keep your system secure, keep your components up to date and do not use vulnerable software. E.g. the MediaWiki version, which you are using, is no longer supported and has known security vulnerabilities. Well likely that someone exploits them. Do an upgrade to MediaWiki 1.21!

From your PHP version I see that your operating system also is not current; update "squeeze16" is available already quite some time.

Apart from that it would be important to check, how your server got compromised: Your wiki is configured to allow everyone to edit it - also without having an account. One countermeasure can be to disable account creation and/or to enforce people having an account and to put a captcha in during account creation or even during editing.

If it is only a few single pages, which you want to keep, you can export them using 'Special:Export'. If you want to keep the database, extensions like Nuke can help remove bigger amounts of spam.