chaosicq Posted February 7, 2021 Share Posted February 7, 2021 Running version 1.61.24 so up to date, also changed the ftp password and cleaned all files but every couple weeks keep finding it has been hacked again, also removed the one click upgrade module as that was unsafe, has any one got any recommendations that can solve this issue. thank you. Link to comment Share on other sites More sharing options...
joseantgv Posted February 8, 2021 Share Posted February 8, 2021 Do you have another CMS in the same server? Link to comment Share on other sites More sharing options...
chaosicq Posted February 8, 2021 Author Share Posted February 8, 2021 no just this one. Link to comment Share on other sites More sharing options...
endriu107 Posted February 8, 2021 Share Posted February 8, 2021 Do you use default theme? Do you have installed third party modules? Link to comment Share on other sites More sharing options...
chaosicq Posted February 8, 2021 Author Share Posted February 8, 2021 I use a 3rd party theme have done for some time, there are some third part mudules purchased from prestashop, but they are up to date, like seo and a mass edit, + star rating and rich snippets, that sort of thing. Link to comment Share on other sites More sharing options...
endriu107 Posted February 8, 2021 Share Posted February 8, 2021 At first start by checking yours modules to any known vulnerability. Also if you have any of this modules: - autoupgrade (versions 4) - pscartabandonmentpro ; versions v2.0.1 and 2.0.2 - ps_checkout ; versions v1.0.8 & v1.0.9 - ps_facetedsearch ; version v3.0.0 and v2.2.1 - gamification - explorerpro - sampledatainstall - colorpictures Maybe you already delete vulnerable module but you stil have on your server additional file or changed file? Link to comment Share on other sites More sharing options...
chaosicq Posted February 8, 2021 Author Share Posted February 8, 2021 (edited) Thank you should i delete the bottom 2 ? - ps_checkout ; versions v1.0.8 & v1.0.9 Is up to date much later version - gamification yes installed - explorerpro yes installed Have been checking the changed files daily through the admin panel, nothing since the last hack, so trying to locate the source of the problem. Edited February 8, 2021 by chaosicq (see edit history) Link to comment Share on other sites More sharing options...
endriu107 Posted February 8, 2021 Share Posted February 8, 2021 Explorerpro delete, and gamification delete and install newest version, also check your all file because there is possibility that someone already upload another files to your server or some of your file was edited and even you delete those modules they still will able to hack your site. 1 Link to comment Share on other sites More sharing options...
chaosicq Posted February 8, 2021 Author Share Posted February 8, 2021 (edited) Thank you I will do that, much appreciated your time. I think it might be time for the latest 1.7 and a new theme, is it easy to keep the customer data and purchases from ver 1.6 and import them to 1.7, also keep the product data and images, or is it best to start again on that front. Edited February 8, 2021 by chaosicq (see edit history) Link to comment Share on other sites More sharing options...
joseantgv Posted February 8, 2021 Share Posted February 8, 2021 Also check this: https://build.prestashop.com/news/critical-security-vulnerability-in-prestashop-modules/ https://www.prestashop.com/en/blog/vulnerability-september-2020 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now