To prevent site hacking by hackers you have to do following few steps.

  • Rename the admin directory
  • Add .htaccess protection to the admin directory
  • Also add .htacess for protecting the catalog directory
  • Also delete the admin/filemanger.php and associated link of that file
  • Also delete the admin/define_language.php file and it’s all links

For maintaining the security of osCommerce site many contribution are available.

Also we recommended following contributions for security

  • Register Global’s Patches
  • Admin access level
  • Security pro
  • Permissions
  • Captcha
  • htacess