cammo Posted July 18, 2011 Share Posted July 18, 2011 One of my clients discovered he could no longer log into his admin account and was not receiving the password reset emails as his email address was no longer recognised.Luckily one admin account was untouched, so I was able to log in and see what happened and the email address for his admin account had been changed!How is this possible?.. Someone had hacked in and changed the email address associated with his account?The shop is running v1.2.5.Is there any security holes that can be plugged with this version to prevent it happening again?Also, what are the limitations on the password used? I tried a very complex one but it was not allowed? Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now