Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by Malvarlin

  1. It appears to be resolved Cleared all the cookie data (why I didn't do this at the start I don't know) but that has sorted it. But that said does anyone have any idea why this happened?
  2. Hi Yes have looked in the network traffic, nothing looks amiss there but then not really sure what i'm looking for, but nothing looks out of place or odd. Definitely no section headed POST in the debug info on any browser, even did a search and no instances of POST found. I am seeing a few of these and just to add to the mix I CAN login from both EDGE and CHROME if I go incognito/inprivate Hack: 1668870901.70090 --- Duration: 123580 µs [ERROR - NOT CACHED] INSERT INTO `xxx_CubeCart_system_error_log` (`message`,`url`,`backtrace`,`time`) VALUES ('[<strong>Notice</strong>] /homepages/34/d376591905/htdocs/xxx/shop2/cache/skin/8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:90 - Undefined index: USERNAME','https://shop2.xxx.co.uk/admin_SYDV7U.php?_g=login','handleError() (8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:90)\ncontent_6378f2eb30d129_34149981() (smarty_template_resource_base.php:123)\ngetRenderedTemplateCode() (smarty_template_compiled.php:114)\nrender() (smarty_internal_template.php:216)\nrender() (smarty_internal_templatebase.php:238)\n_execute() (smarty_internal_templatebase.php:116)\nfetch() (gui.class.php:342)\ndisplay() (admin_SYDV7U.php:44)\n','1668870901'); also the user data when i do login is displayed here '__admin_data' => 'admin_id' => 1 'customer_id' => 'status' => 1 'name' => Paul 'username' => xxx 'new_password' => 1 'email' => [email protected] 'verify' => 'logins' => 38 'super_user' => 1 'notes' => 'failLevel' => 0 'blockTime' => 0 'lastTime' => 1668871365 'browser' => Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/ Safari/537.36 Edg/107.0.1418.52 'ip_address' => xxxxxxx 'language' => en-GB 'dashboard_notes' => 'order_notify' => 1 'tour_shown' => 1 '__admin' => 'user_language' => en-GB
  3. There is no POST section for either working or none working.... just PHP, GET, SESSION, COOKIE, MySQL Queries then Memory, Cache and page load time PHP is giving this though on Edge and chrome, but reprting no errors on firefox PHP: [Notice] /homepages/xxxxxxx/shop2/cache/skin/8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:90 - Undefined index: USERNAME[Notice] /homepages/xxxxxxxxx/shop2/cache/skin/8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:90 - Trying to get property 'value' of non-object[Notice] /homepages/xxxxxxxxxxx/shop2/cache/skin/8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:93 - Undefined index: PASSWORD[Notice] /homepages/xxxxxxxxxxxx/shop2/cache/skin/8ad9390f9a6a833bc5276a33c0a82ba788c3b384_0.file.login.php.php:93 - Trying to get property 'value' of non-object GET:
  4. OK so The page that doesnt work has very little in the session part SESSION: '__client' => 'ip_address' => xxxxxxxxxxxxxxx 'useragent' => Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/ Safari/537.36 'session_start' => 1668710929 'session_last' => 1668711252 'language' => en-GB 'currency' => GBP '__system' => 'token' => c042be28e04e880081bd8f1f70a380a3 'token_acp' => 12aa9b91d9f6ca5acdc9a34eec442759 COOKIE: '__zlcmid' => 17okaypUGfeZUB3 '_ga' => GA1.3.1705602839.1640953619 'accept_cookies' => true 'CCS_270BDD668E' => a57b7aff50c027097a6bd0e7dd51eb44 'CC_270BDD668E' => f6e70a76a9e3c26979045f2aa0bc0e9e compared to the firefox one that does work SESSION: '__client' => 'ip_address' => xxxxxxxxxxx 'useragent' => Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:106.0) Gecko/20100101 Firefox/106.0 'session_start' => 1668711348 'session_last' => 1668711349 'currency' => GBP 'admin_id' => 1 '__system' => 'token_acp' => 43b727377de1856843dc47fa3880daa3 'recent_extensions' => '0' => 'name' => Advanced Export 'url' => https://www.cubecart.com/extensions/plugins/advanced-export 'image' => https://www.cubecart.com//img/sellers/457/506/master.png 'price' => &pound;25.00 '1' => 'name' => Google Analytics for eCommerce 'url' => https://www.cubecart.com/extensions/plugins/google-analytics-for-ecommerce 'image' => https://www.cubecart.com//img/sellers/1/505/master.png 'price' => Free '2' => 'name' => gpwebpay 'url' => https://www.cubecart.com/extensions/payment-gateways/gpwebpay 'image' => https://www.cubecart.com//img/noimage.png 'price' => Free '3' => 'name' => Basix (Bootstrap Responsive Skin) 'url' => https://www.cubecart.com/extensions/skins/basix-bootstrap-responsive-skin 'image' => https://www.cubecart.com//img/sellers/1/440/master.png 'price' => Free '4' => 'name' => Amzin (Bootstrap Responsive Skin) 'url' => https://www.cubecart.com/extensions/skins/amzin-bootstrap-responsive-skin 'image' => https://www.cubecart.com//img/sellers/1/455/master.png 'price' => Free '5' => 'name' => CBurst (Bootstrap Responsive Skin) 'url' => https://www.cubecart.com/extensions/skins/cburst-bootstrap-responsive-skin 'image' => https://www.cubecart.com//img/sellers/1/467/master.jpg 'price' => Free '6' => 'name' => Dillion (Bootstrap Responsive Skin) 'url' => https://www.cubecart.com/extensions/skins/dillion-bootstrap-responsive-skin 'image' => https://www.cubecart.com//img/sellers/1/482/master.jpg 'price' => Free '7' => 'name' => Améo - Lyra payment gateway - Pay by Installments 'url' => https://www.cubecart.com/extensions/payment-gateways/ameo-lyra-payment-gateway-pay-by-installments 'image' => https://www.cubecart.com//img/sellers/424/503/master.jpg 'price' => Free '8' => 'name' => Améo - Lyra payment gateway 'url' => https://www.cubecart.com/extensions/payment-gateways/ameo-lyra-payment-gateway 'image' => https://www.cubecart.com//img/sellers/424/502/master.jpg 'price' => <strike class="price">&euro;39.99</strike> &euro;19.99 '9' => 'name' => "Postmaster" P&P Quote Generator for UK Mainland-Despatched Courier Rates 'url' => https://www.cubecart.com/extensions/shipping-methods/-postmaster-p-p-quote-generator-for-uk-mainland-despatched-courier-rates 'image' => https://www.cubecart.com//img/sellers/437/495/master.png 'price' => &pound;9.99 '10' => 'name' => Royal Mail - Click & Drop 'url' => https://www.cubecart.com/extensions/plugins/royal-mail-click-drop 'image' => https://www.cubecart.com//img/sellers/1/494/master.png 'price' => <strike class="price">&pound;100.00</strike> &pound;59.00 '11' => 'name' => Duplicate (cc or bcc) or block sending of order emails 'url' => https://www.cubecart.com/extensions/plugins/duplicate-cc-or-bcc-or-block-sending-of-order-emails 'image' => https://www.cubecart.com//img/sellers/8/483/master.jpg 'price' => &euro;25.00 'version_check' => 1 'rss_news' => 'title' => News & Announcements Latest Topics 'link' => https://forums.cubecart.com/forum/1-news-announcements/ 'description' => News & Announcements Latest Topics 'language' => en 'items' => '0' => 'title' => CubeCart 6.4.6 Released (PHP 8 Support) 'link' => https://forums.cubecart.com/topic/57960-cubecart-646-released-php-8-support/ '1' => 'title' => Short Survey: CubeCart with stock synchronised point of sale system 'link' => https://forums.cubecart.com/topic/57872-short-survey-cubecart-with-stock-synchronised-point-of-sale-system/ '2' => 'title' => CubeCart 6.4.5 Released 'link' => https://forums.cubecart.com/topic/57773-cubecart-645-released/ '3' => 'title' => Pay Later from PayPal is here 'link' => https://forums.cubecart.com/topic/57414-pay-later-from-paypal-is-here/ '4' => 'title' => CubeCart 6.5.0 Beta 3 Released 'link' =>
  5. OK, this gets weird. After successfully logging in, once and once only. I decided to go back to basics, deleted the store and cleared the DB. I have now reinstalled a vanilla copy of 6.4.4, no imported data etc. I am now unable to login, no error messages just goes back to the login screen BUT i can login via my phone, on the same wifi network. anyone got any idea what is going on?? edit: edge and chrome have same effect but firefox lets me in!!!
  6. tried accessing the admin login page via http:// and it worked and have now changed the SSL settings, don't know why I didn't think of that,,,,, duh thanks for the assist
  7. Hi Different database, active shop is also on a sub domain (shop. and shop2.) and yes pointed to separate directories. I'm thinking its something to do with https maybe and it thinks its being spoofed as in im logging in to shop2. but the db thinks it should be shop. and so is doing something about it......
  8. Hi I have just 'moved' a copy of a store to another subdomain, as a backup and test platform, all seems to work except when I try to login to the admin side it just goes back to the login page. No error messages and the access log table records a successful login. Any ideas please thanks Paul
  9. Thanks, think I have managed to follow it all from there and will have a go at altering some bit.
  10. Hi I am trying to alter the layout of the categories menu and think I need to look at where this gets defined {if $CATEGORIES} {$CATEGORIES} {else} Can anyone point me to the right file please? thanks Paul
  11. OK so I exported all the customer data from my live store and imported it to the test database then ran the query below and it works DELETE FROM `CubeCart_customer` WHERE `first_name`=`last_name` and `order_count`=0 and CUSTOMER_ID NOT IN (SELECT CUSTOMER_ID FROM CubeCart_addressbook)
  12. I will give it a spin on my test store over the weekend and see what happens!
  13. As well as implementing the file mentioned above can anyone see any issues with using the following select statement to delete existing customers created by the hacker? SELECT * FROM `CubeCart_customer` WHERE `first_name`=`last_name` and `order_count`=0 and CUSTOMER_ID NOT IN (SELECT CUSTOMER_ID FROM CubeCart_addressbook) the above should show what will be deleted and should only get accounts with matching first and last name, no orders and no address's registered once happy with that i intend to run as a delete statement.
  14. Thanks for the reply. Can you recommend any replacement for these or at least the vertical menu?
  15. Can anyone confirm if the below SemperFi plugins still work with v 6.4.2 please, before I upgrade? Custom Foundation 5 v3.5 Site News with comments v7.1 Vertical Navigation Box v10.1 many thanks Paul
  16. Did you manage to resolve this at all? I have the same plugin but now SemperFi have disappeared I want to replace it.
  • Create New...