VirtueMart Forum

VirtueMart 2 + 3 + 4 => General Questions => Topic started by: vmtitov00 on October 06, 2018, 10:10:25 AM

Title: Security breach? User registration messages from an inactive VM
Post by: vmtitov00 on October 06, 2018, 10:10:25 AM
Hello,

I keep receiving user registration messages (subj: A new shopper ************ registered at your shop *********), about 3-5 in a week. "Users'" data are obviously fake. I have VM installed but it is not active and not accessible from site's menu. It looks like the site is being getting hacked. Current configuration is Joomla 3.8.12 + VM 3.4.0 (to be updated to 3.4.1 in a few minutes).

Any advise would be very appreciated.
Title: Re: Security breach? User registration messages from an inactive VM
Post by: Jörgen on October 06, 2018, 10:29:01 AM
You can access joomla login by link and register a fake user.

Is it a complete VM registration or just Joomla data?

Jörgen @ Kreativ Fotografi
Title: Re: Security breach? User registration messages from an inactive VM
Post by: GJC Web Design on October 06, 2018, 11:14:49 AM
just try

http://www.yourwebsitename.com/index.php?option=com_users&view=registration
Title: Re: Security breach? User registration messages from an inactive VM
Post by: AH on October 06, 2018, 12:52:16 PM
To prevent this -  I use an override:

templates\YOURTEMPLATE\html\com_virtuemart\user\edit.php

This will prevent users editing their own data - but I decided that it was worth it for my purposes



<?php
/**
*
* Modify user form view
*
* @package VirtueMart
* @subpackage User
* @author Oscar van Eijk
* @link https://virtuemart.net
* @copyright Copyright (c) 2004 - 2010 VirtueMart Team. All rights reserved.
* @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.php
* VirtueMart is free software. This version may have been modified pursuant
* to the GNU General Public License, and as distributed it includes or
* is derivative of works licensed under the GNU General Public License or
* other free or open source software licenses.
* @version $Id: edit.php 9881 2018-06-20 09:03:58Z Milbo $
*/

// Check to ensure this file is included in Joomla!
defined('_JEXEC') or die('Restricted access');

//quorvia edited to prevent bots registering

?>

<h1><?php echo $this->page_title ?></h1>
<?php echo shopFunctionsF::getLoginForm(false,false); ?>

Title: Re: Security breach? User registration messages from an inactive VM
Post by: GJC Web Design on October 06, 2018, 13:23:20 PM
I make my over ride much ruder....
Title: Re: Security breach? User registration messages from an inactive VM
Post by: vmtitov00 on October 07, 2018, 10:32:35 AM
Thanks to everybody for suggestions. I made a test registration from my web site and received a similar message. Its template has recently changed, that's what made me anxious.