tec Posted March 19, 2006 Posted March 19, 2006 Hi there, ok, the strangest thing. My client just got an email from a customer of theirs. the customer said he logged into his account and saw activity in there with someone elses name. So, i went into the admin, went to customers, found the person who emailed, looked at their orders, and sure enough, there is an order with someone elses name who doesnt even live in the same state. I searched for the other persons name in the customer section, but could not find him anywhere, but i can see his order so my questions are 1. does anyone know how this can happen? 2. how do i and what is the best way to fix this? :blink:
custodian Posted March 19, 2006 Posted March 19, 2006 I recently read a thread where someone was talking about hijacked sessions. To people come to the website #1 comes through a link with a session ID and start shopping meanwhile another person comes through on the same link with the same session ID... they essentially hijack the session. Merging the two accounts. I just looked for the thread but can't seem to find it, if I do I will post it here in the even that I have my info wrong. My Contributions Henry Smith
tec Posted March 19, 2006 Author Posted March 19, 2006 I recently read a thread where someone was talking about hijacked sessions. To people come to the website #1 comes through a link with a session ID and start shopping meanwhile another person comes through on the same link with the same session ID... they essentially hijack the session. Merging the two accounts. I just looked for the thread but can't seem to find it, if I do I will post it here in the even that I have my info wrong. thank you very much for the info, i will keep my eye open. i went into the cart to create a new account, once my account was created there were already purchases in there from another client. i am working on a site that someone else started, it seems that they copied the customers info etc from the DB from the old store to the new store, and all of these names that keep popping up in peoples accounts, are all the names of people from the previous cart that were not brought over to the new cart. so its like it is taking the new information from a customer and 'sharing' the account with a customer from the previous cart. both carts are osc.. i have never seen anything like this, it is very wierd, like i said, even when i went in and created a brand new account, in my order history i had purchases. When i went to the admin, found my name under customers, clicked on orders, and saw the other customers name there, only they are only a customer of the old site and were not brought over to the new site
custodian Posted March 19, 2006 Posted March 19, 2006 That's starting to sound like something differenet from what I was referring to. My Contributions Henry Smith
tec Posted March 19, 2006 Author Posted March 19, 2006 That's starting to sound like something differenet from what I was referring to. Ya i am lost on this one, i am not quite sure how to approach it, perhaps it is time to put out some money to have a programmer to look at it.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.