This is why facts are so important. Consider the inflammatory nature of this thread. The reads..? hundreds? ya think? thousands?
chowell18, your site was hacked BEFORE you upgraded to 2.7 .. Do you know that?
Here is google's cache of a page of your site:
Im downloading that, should it change.
Thats from December 11, and if you look in the source code, you were running 2.3.3 .. and if you look further down, in the footer -- there are spam links. LOTS of them.
hacked. Different symptom - same problem. Upgrading a site thats already exploited does nothing once your data has been compromised.
Coming here, and starting this thread is all well and fine, but not sharing the whole truth isnt really fair to everyone else, if you knew you had been hacked just prior.
If, on the other hand, you didnt even know you were hacked at 2.3.3, then how is anyone here to trust that you properly secured your site at any given time.
Someone continuing to run insecure software .. knowingly, at the very least.
I thought upgrading to 2.7 would fix any vulnerabilities from previous versions - that is the purpose of upgrading, no?
Yes, and you missed your share of upgrades. That said, upgrading a compromised site doesnt seal up holes that were created while the site was vulnerable.