Jump to content

Check version in PS hacking problem


c64girl

Recommended Posts

16 hours ago, Nickz said:

Most likely in your source code or another scrapable data gives away your version. 

Ok have it block those files from public:

 

37.139.x.x - - [30/Dec/2021:08:22:58 +0100] "GET /docs/readme_en.txt HTTP/1.0" 403 365 "-" "-"

37.139.x.x - - [30/Dec/2021:08:22:58 +0100] "GET /js/admin.js HTTP/1.0" 200 53999 "-" "-"

37.139.x.x - - [30/Dec/2021:08:22:58 +0100] "GET / HTTP/1.0" 301 331 "-" "-"

37.139.x.x- - [30/Dec/2021:08:22:59 +0100] "GET / HTTP/1.0" 200 192859 "-" "-"

 

Those files have "2007-2018 PrestaShop" or "2007-2019 PrestaShop" thats why this site know the main version like 1.7.5 or 1.7.6 thats whay it not show 1.7.6.X last number.

 

Prestashop need to fix it its very dengerous to people that have versions before 1.7.6.6 because there is an exploit that can bypass the auth admin login.

Edited by c64girl (see edit history)
Link to comment
Share on other sites

11 hours ago, c64girl said:

because there is an exploit that can bypass the auth admin login.

Relax not every hacker is 5 Star super star and capable. Most read over an exploit and believe it sooo easy. Similar to the attitude of Prestashop newbies

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...