X-Cart: shopping cart software

X-Cart forums (https://forum.x-cart.com/index.php)
-   Changing design (https://forum.x-cart.com/forumdisplay.php?f=51)
-   -   HACKING ATTEMPT !!! HOW TO FIX IT??? (https://forum.x-cart.com/showthread.php?t=5766)

MOC 12-29-2003 11:04 AM
HACKING ATTEMPT !!! HOW TO FIX IT???
 
Hi,
i have changed the anonymous_checkout.tpl. There i placed my design including the auth.tpl code.

Eveyting works great. But instead the image buttons i want to use standard form buttons. Now i wanted to change the REGISTER LINK to a button: so i removed the text link and placed that code into it

Code:
                              <form action="register.php" method="post">
<input type="submit" class="core-button" value="New Customer Registration">
</form>

If i click on that button, i get an error HACKING ATTEMPT. What did i wrong?

Thanks
Saskia

Version: 3.5.1

funkydunk 12-30-2003 03:36 AM
This has happened to me several times and each tim ei fix it I vow to record what I did, but each time I forget.

The culprit is :

Code:
        if ($current_area != "A" && $current_area!=$usertype && $mode!="checkout") {
                echo "Hacking attempt!!!!"; exit;
        }

in include/register.php

1) Have you got a hidden field in the form that is named 'mode'?
2) Does it do this if you clear your cookies? - it might be because you are registering as a customer and the usertype recorded in the session is admin.

If all else fails, you could comment out that code and it will go away. :?


All times are GMT -8. The time now is 07:53 AM.

Powered by vBulletin Version 3.5.4
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.