OrdaSoft forum
Welcome, Guest
Please Login or Register.    Lost Password?
I have version 4.2 PRO and it is vulnerable !!! (0 viewing) 
RealEstateManager component support
Go to bottom Favoured: 0
TOPIC: I have version 4.2 PRO and it is vulnerable !!!
#42471
sysadm (User)
Fresh Boarder
Posts: 3
graphgraph
User Offline Click here to see the profile of this user
I have version 4.2 PRO and it is vulnerable !!! 3 Weeks, 6 Days ago Karma: 0  
I need to update the version 4.2 PRO that I have, because it has vulnerability and create review uncontrollably.

My site is casas.miksita-cu.com/

This is the log

casas.miksita-cu.com:80 78.153.120.33 - - [17/Sep/2019:12:42:38 -0400] "GET /
index.php?option=com_realestatemanager&task=view_house&catid=60&id=24&Itemid=122&user_name=&fk_userid=0&user_email=&title=Listado+de+Casas%7C+Family+House+%7C+Standar+%7C+Hostal+nelffis&comment=Awesome+post.+I+checked+out+your+website+fairly+regularly%2C+and+you%27re+always+coming+up+with+some+good+staff.+I+shared+this+blog+post+on+my+Twitter%2C+and+my+followers+loved+it.+Good+luck+for+the+future.%0D%0A%0D%0Amy+web+blog+...+%3Ca+href%3D%22andrewgavrilov.home.blog/%22%3EVladimir+...FyQAcH936Dh537gE8_DA

and other

casas.miksita-cu.com:80 37.120.205.178 - - [17/Sep/2019:14:17:04 -0400] "GET /components/com_realestatemanager/photos/A3EF3EDF-FBB0-E3BC-552E-C74149B267C2_IMG-20190805-WA0007_808_440_2_.jpeg HTTP/1.1" 200 58914 "casas.miksita-cu.co
m/index.php?option=com_realestatemanager&task=view_house&catid=60&id=24&Itemid=122&user_name=&fk_userid=0&user_email=&title=Listado%20de%20Casas|%20Family%20House%20|%20Standar%20|%20Hostal%20nelffis&comment=Awesome%20post.%20I%20checked%
20out%20your%20website%20fairly%20regularly,%20and%20you%27re%20always%20coming%20up%20with%20some%20good%20staff.%20I%20shared%20this%20blog%20post%20on%20my%20Twitter,%20and%20my%20followers%20loved%20it.%20Good%20luck%20for%20the%20fut
ure.&lang=en-us" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:66.0) Gecko/20100101 Firefox/66.0"

What should I do?? Any patch ??

thanks in advance!!!
 
Logged Logged  
 
Last Edit: 2019/09/18 16:24 By sysadm.
  The administrator has disabled public write access.
#42473
admin (Admin)
Admin
Posts: 6618
graph
User Offline Click here to see the profile of this user
Re:I have version 4.2 PRO and it is vulnerable !!! 3 Weeks, 5 Days ago Karma: 76  
Hello

1. For every old clients, we give 50% discount for every new version of the RealEstateManager. Please write to our contact form.
ordasoft.com/contact-us-form

Please, update to last version.

Before making any upgrades, make backup yours site( files and DataBase). With that you will not lost something important
Please do full XML export.
At first please check upgrade/update process at the test website!
Please install new component and modules without remove old.

When component is updated, the update overwrites the Component configuration, please check component configuration.

If you have custom changes of component or site, you can lose your changes.

Please, in that case do not make update.

2. I not see nothing bad in requests on your site
This is the log

These requests appear when user not correctly fill "request form" and his again is redirect to house where from hi filled the data.



If you would like any further information, please do not hesitate to contact us too.

Best Wishes,
Andrew
OrdaSoft team
 
Logged Logged  
  The administrator has disabled public write access.
Go to top
What are you looking for?
Anti-spam question: How many eyes has a typical person?