Install 2.2.5 from
http://modx.com/download/previous-releases/ and import your database.
When your site is back online, upgrade to 2.2.7:
- Extract the 2.2.7 archive
- ftp all extracted files to your server OVERWRITING the old files
- check that /core/config/config.inc.php is writeable
- open www.yourwebsite.tld/setup/
- click through Upgrade-Install
- delete everything in /core/cache
- make /core/config/config.inc.php read-only
- done
This is ALL you have to do while upgrading MODX.
- optional: check the installed addons for security (edit: or compatibility) issues. if there aren't any issues, just leave them alone.
Quote from: meltingdog at Apr 24, 2013, 07:25 AMHi all,
Today, however, their host actually deleted the site altogether, saying their FTP details had been compromised and serveral IPs where actually accessing the account and implanting stuff. He changed the FTP details.
I think this is the main reason why many of your MODX sites get infected. And this isn't a MODX problem at all.
At first, you should check your own computer with something like
Kaspersky Rescue Disk (assumed you're using windows).
Next, advise your customers to do the same with every computer they use to edit the websites.
[ed. note: DasItsch last edited this post 11 years ago.]