Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

checkout_process.php being used to spam


sven_s

Recommended Posts

Hi there,

 

My host has reported that supposedly somebody is passing POST data which is then using checkout_process.php to send spam. Has anyone ever encountered this problem? Any help would be very much appreciated.

 

thanks,

sven

Link to comment
Share on other sites

Change your checkout_process.php to a custom filename.

 

In includes/filenames.php, search for checkout_process.php and change that to the same name that you renamed checkout_process.php to.

BACKUP your current files before editing. Did I mention to BACKUP your current files, first?

 

"I'm not a hero, I'm a firefighter; it is my job to save lives. I'm a Jesus Christ Firefighter saving souls from the flames!"

 

Installed contribs: Almost XP Buttons *** Attribute Sort *** Auto Thumbnail Change *** Column Product Listing (for SPPC v4.0) *** Contact Us Registered *** Country-State Selector 1.3.3J *** CC# Db Mask 1.3 *** Email Order Clickable Link *** Extra Images *** Linkpoint API CVM *** Loginbox Best *** New Spiders *** New Attrib Mgr v.5.0 w/ New Attrib Include *** Multi Product Update *** MySQL Cron *** Pricing per Category *** Product Listing in Columns v2.2 [later upgraded to CPL(SPPC)] *** Product Sort v1.6 *** Seperate Pricing Per Customer v4.15 *** Simple Down for Maintenance [Gokou] *** Ultimate_SEO_URLs_v2.2.2 *** UPS Worldship Export 1.3 *** Welcome Email username & password

Link to comment
Share on other sites

Change your checkout_process.php to a custom filename.

 

In includes/filenames.php, search for checkout_process.php and change that to the same name that you renamed checkout_process.php to.

 

Thanks for the tip! I'll see if that works.

 

I just wanted to mention something interesting. At the exact times my host reported the spam attacks, people with AOL acconts placed orders. I was just wondering if anyone had ever heard of some sort of virus/spyware that sniffs for php mail functions and uses them to spam when the user surfs to them?

Link to comment
Share on other sites

Hi there,

 

My host has reported that supposedly somebody is passing POST data which is then using checkout_process.php to send spam. Has anyone ever encountered this problem? Any help would be very much appreciated.

 

thanks,

sven

 

a customer id needs to be session registered to run checkout process so this is not possible.

Treasurer MFC

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...