Jump to content

keat

Premium Member
  • Content Count

    1,367
  • Joined

  • Last visited

  • Days Won

    18

keat last won the day on October 20 2017

keat had the most liked content!

Community Reputation

19 Good

2 Followers

Profile Information

  • Gender
    Male
  • Location
    Leeds UK

Recent Profile Visitors

6,121 profile views
  1. Are you usung any special carachters, like percent signs, excalmation marks, or apostraphies etc. I'd hazard a guess that you may be tripping an SQL Injection rule.
  2. By default, POF sets the order to pending, but to satisfy the process at our end, Brian gave me the coding to have this go straight to Processing (instead of pending) I saw the GITHUB post you suggested, and it looks like this is the same scenario for me, but instead of this happening days later, it was happening instantaniously. I'm happy for the store to send the email, so switching the feature off inside the POF admin panel, seems to have done the trick.
  3. No chance, the site has been modified too much to risk updating it. Although I have considered letting Al and the team have a look at updating it. Anyhow, it seems that there is a checkbox inside POF config, to send a confirmation email, which I disabled for now. Put a test order on and only got one email, so I may have found the reason.
  4. I have 'order status for email' configured for processing. And BSmither once told me how to have POF change the status of the order to processing. I've just discovered, when a customer places an order and uses POF, the system sends 2 emails to the customer in quick succession. Any ideas ? Is maybe POF sending one, then the store sending another when the order goes to processing ??
  5. Try this. Create a file called ini-custom.inc.php Populate with the bleow code, and drop this in the root of your store. When you try and run the backup again, see if an error log has been created. <?php # Custom initialization commands # Filename: ini-custom.inc.php # File location: main CubeCart folder ini_set('memory_limit', '256M'); ini_set('max_execution_time', '60'); ini_set('error_log', 'error_log'); ini_set('log_errors', 'off'); ?>
  6. A cheat that i've used a few times, which may come on handy for the future. Take a screen shot of the area you are interested in. Open the screen shot with Photoshop (other image editors are available) User the colour picker tool, and click on the colour in question. You can now distinguish it's hex code, which is searchable in your code editor, plus also, you can determine the hex code of your new colour and modify accordingly. It may technically not be the correct way to do this, but it's worked for me numerous times.
  7. There's an update to 6.2.3 by the way, as a bug was found.
  8. Instead of just deleting these, I'm now blacklisting the IP's, see if there's a pattern in there also.
  9. Looking for newsletter sign up and it doesn't appear on my home page, but the link (if I type it in manually) is still live. index.php?_a=newsletter. However, this appears to only contain an email address, so it's not this. If I log in to the cart back end, choose 'customer list', it will be in there. Sticks out like a sore thumb due to the pattern. I alredy deleted the recent entry, so there would be nothing to see. I'm using Recapture V2, maybe I should consider V3, is there any code for this ?
  10. Where is this ? I don't recall seeing it, maybe I removed it at some point in the past. Mican skin by the way
  11. Recapture is switch on, so I'm guessing they circumvented it.
  12. New accounts are created daily, but about once per week I see a pattern, which I'm guessing is some form of malicous attack, but I've no idea what. A new account will be created where the surname is identical to the christian name. In the most recent example LydiaTrucTSO LydiaTrucTSO. There's never an address in the account, no order is ever placed, it usually has a russian TLD in the email, and the IP generally points to the Netherlands, although I've seen Russia, Belarus and Ukrane, which are now blocked on my server. I've no idea what it is they are trying to do when creating an account, and as the pattern is always the same, I'm assuming it's a BOT of some sort. any thoughts as to what might be going on ? [04/Mar/2019:19:20:05 +0000] "GET /index.php?seo_path=lubrication-cleaning%2Fgrease%2Fcopper-thread-compound-500g HTTP/1.0" 200 27391 "https://www.mydomain.com/index.php?seo_path=lubrication-cleaning%2Fgrease%2Fcopper-thread-compound-500g" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:20:06 +0000] "GET /register.html?agreed=true HTTP/1.0" 200 21478 "https://www.mydomain.com/register.html?agreed=true" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:22:40 +0000] "POST /register.html?agreed=true HTTP/1.0" 302 - "https://www.mydomain.com/register.html?agreed=true" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:22:41 +0000] "GET /?_a=account HTTP/1.0" 200 20048 "https://www.mydomain.com/?_a=account" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:22:41 +0000] "GET /register.html?agreed=true HTTP/1.0" 302 - "https://www.mydomain.com/register.html?agreed=true" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:22:42 +0000] "GET /index.php?seo_path=lubrication-cleaning%2Fgrease%2Fcopper-thread-compound-500g HTTP/1.0" 200 27462 "https://www.mydomain.com/index.php?seo_path=lubrication-cleaning%2Fgrease%2Fcopper-thread-compound-500g" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99" [04/Mar/2019:19:22:43 +0000] "GET /index.php HTTP/1.0" 200 30029 "https://www.mydomain.com/index.php" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 OPR/53.0.2907.99"
  13. Same thread but here it is condensed. in modules/gateway/print order form/gateway.class.php around line 68 find: $order->logTransaction($transData); Replace this with // $order->logTransaction($transData); // $transData may get modified later around line 255 find: $GLOBALS['cart']->clear(); } } Replace this with: /* NEW */ $transData['status'] = 'FProc'; $transData['notes'] = 'Forced to Processing. ' . $transData['notes']; $order->orderStatus(Order::ORDER_PROCESS, $cart_order_id); /* */ $GLOBALS['cart']->clear(); } /**/ $order->logTransaction($transData); // $transData may have been modified earlier } Here is my V1 https://www.cabletiefan.co.uk/webimages/pof.rar
  14. PayPal Express has the ability to overwrite the delivery address which has caught us out in the past, this also upsets customers when his goods go somewhere he didn't want them to. EG, customer uses his personal paypal account to order goods for work. Paypal will overwrite his delivery address with his personal address. Ther guy is now at work awaiting delivery of his goods, but they went to the wrong place. We fell foul of this numerous times.
  15. I use the PayPal Standard gateway, have done for many years without serious issue.
×
×
  • Create New...