watou Posted March 28, 2023 Share Posted March 28, 2023 I am wondering if anyone has seen the situation where an AdminLoginController.php file that is from a different version of PrestaShop has somehow "magically" appeared in their controllers/admin directory? Is there a vulnerability exploited in the wild that has done this? Or there is some small chance that I'm entirely forgetting I had done so, but frankly there is just no way I can recall doing that. I detected the problem by experiencing the "admin login loop" symptom and hunting for oddities. Replacing the above file with the official 1.7.7.4 version of the file has resolved the "admin login loop" problem, but where that file came from is the real mystery. Thank you for any ideas. Link to comment Share on other sites More sharing options...
JBW Posted March 29, 2023 Share Posted March 29, 2023 Yes, this file is usually infected /changed by a Trojan/Virus. It is collecting and sending your login credentials to an external server. Try this cleaner script: 1 Link to comment Share on other sites More sharing options...
watou Posted March 29, 2023 Author Share Posted March 29, 2023 2 hours ago, JBW said: Yes, this file is usually infected /changed by a Trojan/Virus. It is collecting and sending your login credentials to an external server. Try this cleaner script: I am very grateful for your response. This was exactly what was needed. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now