I have a database update facility, updating a website with images and text. The updating is restricted to a couple of people (customers). The database has been interfered with - text changed and images removed for supporting folder.
The setup includes a secure folder on the server I use - challenging for a UN/PW to access the editor. I have checked with the Server people and they confirm that I have set it up correctly and that everything is correct at their end. The suggest the hacking occurs at the backend.
I notice that the server 'challenge window' contains a warning - see attached image
Server people say the problem is not theirs, but that someone accessed the editor through the backend - I do not understand this. I am attaching an image, which says that the server is requesting that un/pw be sent in an insecure manner.
I am using Coldfusion 9
The database is msaccess
This is the link to the editor
Many thanks for any help.