Vakow‘s admin site is up for hacks and the access is controlled by the default password any cms tool/DB ships with (I don’t want to disclose that, but you are free to make a wild guess!).
Have a look at the hacked admin screenshot below:
From the hacked site, I can of course delete the site, delete any user, grab user’s mobile number and any goddamn data that I want to. Too bad!
@RG – Fix it before my hand starts exploring the site 
[Thanks to a reader (am not taking his name) for sending the plug]
We’re feeling so goofy that we can’t tell. It was just stupid!
The password was reset to root/root just a couple of days ago when we updated our database.
Anyway, it has been ‘fixed’ now. Thankfully, there was no breach or ‘hacking’. Many thanks to Arpan who mailed us immediately.
We have also explained the situation on our blog:
http://blog.vakow.com/2008/03/05/feeling-so-goofy-that-we-cant-tell/
Thank You
Sincerely
RG and Amitu
As if startup life isnt difficult as it is!
BTW, Vakow IS NOT UP FOR HACKS (anymore)
Howdy
Isnt that the standard django-admin site? Why is that even open to the public?
Cheers
S
I would say Interesting !
would impressed by RG’s open reply !
Best luck To Hacker, Vakow & pluggd.in !
-Raxit