1
ipwgc
URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/20 16:11

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


I see in all comment this user bellow post sale information
HOW THIS HAPPEN HERE, IN THE MAIN XOOPS WEBITE??,

PLEASE CHECK THIS SITUATION , AND GIVE AS URGENT SOLUTION, BECAUSE THIS PROBLEM, AFECT OUR WEBSITE.

REGARDS
DAVID

CHEK HERE
https://xoops.org/userinfo.php?uid=130241
################
The website wholesale for many kinds of fashion shoes, like the nike,jordan,prada,****, also including the jeans,shirts,bags,hat and the decorations. All the products are free shipping, and the the price is competitive, and also can accept the paypal payment.,after the payment, can ship within short time.
################

2
ipwgc
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/20 16:20

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


PLEASE I NEED SOLUTIONS IR ORDER NOT HAVING THIS SAME PROBLEM IN MI WEBSITE

REGARDS
DAVID

3
btesec
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/20 20:31

  • btesec

  • Friend of XOOPS

  • Posts: 623

  • Since: 2007/2/20


can some form of captcha be added to Xoops comment system

4
Mamba
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/20 23:43

  • Mamba

  • Moderator

  • Posts: 11366

  • Since: 2004/4/23


Quote:
URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
I see in all comment this user bellow post sale information
HOW THIS HAPPEN HERE, IN THE MAIN XOOPS WEBITE??,

There is no need to create a panic here. There is NO vulnerability here - it is a user who registered and started to post spam. His account has been banned and his posts have been deleted.

The only way to avoid it would be to force approval of every message/comment here, which wouldn't be very productive. Therefore we're willing to deal with this little inconvenience.

Having a Captcha on comments wouldn't change much, because it would affect only bots, but not real users.

In summary - the best way for us is to keep eye on spammers, delete their messages and ban them.
Support XOOPS => DONATE
Use 2.5.10 | Docs | Modules | Bugs

5
ipwgc
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/21 0:31

  • ipwgc

  • Quite a regular

  • Posts: 216

  • Since: 2005/8/13


THANK YOU BAMBA

BLESSINGS TO YOU AND THE XOOPS TIME
DAVID

6
timgno
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN
  • 2011/6/21 11:12

  • timgno

  • Module Developer

  • Posts: 1504

  • Since: 2007/6/21


Quote:
Mamba wrote:
....
In summary - the best way for us is to keep eye on spammers, delete their messages and ban them.


I believe that this spammer is not only here on xoops, but has been banned in several forums

7
wishcraft
Re: URGENT XOOPS.ORG IS VULNERABLE IN ALL COMMENTS, HOW THIS HAPPEN

You could always install Xortify 2.50 on XOOPS.ORG this will utilize stop forum spam which is normally aware of spammers before they get to this site.
Resized Image
www.ohloh.net/accounts/226400

Follow, Like & Read:-

twitter.com/RegaltyFamily
github.com/Chronolabs-Cooperative
facebook.com/DrAntonyRoberts

Login

Who's Online

185 user(s) are online (80 user(s) are browsing Support Forums)


Members: 0


Guests: 185


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Mar 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits