- Jun 15, 2020
- 108
- 77
- 28
Active eCommerce CMS By ActiveITzone 23471405 v9.8.1
- Thread starter abolix
- Start date
-
Welcome to Original Babiato! All Resource are Free and No downloading Limit.. Join Our Official Telegram Channel For updates Bypass All the resource restrictions/Password/Key? Read here! Read Before submitting Resource Read here! Support Our Work By Donating Click here!
Chijioke
Member
- Apr 18, 2020
- 58
- 9
- 8
@NullMaster
Please could you help solve the automatic erasure of the mysql in v4.0.
Thanks in advance
@nulled123, @phpcore @TassieNZguys any idea how to get .svg extension activate on the file uploader on Ver.4.0 /
when uploading the below error comes ,
also on my server the mysql was automatically deleted .. may they have a back door if someone can help with that would save us all , because i was doing modifications, but suddenly database was gone and http 500 error comes ,,
thanks in advance ,
Please could you help solve the automatic erasure of the mysql in v4.0.
Thanks in advance
Last edited:
- Jun 15, 2020
- 108
- 77
- 28
I can help you come in telegram @krapteamlive
is free xd
i have in my shop , i love emart
I believe the backdoor that drops the entire database is in the /vendor/laracon21/timezones/src/routes/web.php
All of laracon21 packages are backdoors. Nothing usefull there.
Found backdoors in mehedi-iitdu/core-component-repository too.
This ZIP file contains all modifications I made in those files. It may work, I'm not sure yet. But if you want to try, just unzip the file inside vendor directory.
I recommend you to change the database password as well.
EDIT: Forgot one file: /app/Http/Controllers/DemoController.php, comment the lines 42 and 43.
All of laracon21 packages are backdoors. Nothing usefull there.
Found backdoors in mehedi-iitdu/core-component-repository too.
This ZIP file contains all modifications I made in those files. It may work, I'm not sure yet. But if you want to try, just unzip the file inside vendor directory.
I recommend you to change the database password as well.
EDIT: Forgot one file: /app/Http/Controllers/DemoController.php, comment the lines 42 and 43.
Chijioke
Member
- Apr 18, 2020
- 58
- 9
- 8
kasun955
New member
- Nov 18, 2020
- 27
- 7
- 3
after some time my database blank, Killer Script☠
i just added some addon
https://babiato.tech/threads/active-ecommerce-cms.8917/post-410268
look this and make it like this it may help you ...
but keep in mind to make a back of the database before you do anything else many thanks to @wonraywildsparks
giving this solution which is working for now... may need to keep on monitoring
Another backdoor found. Something deleted all the store's products. Working on that too.
kasun955
New member
- Nov 18, 2020
- 27
- 7
- 3
do you think if the cms was paid and purchased will they still have this troubling backdoors ?
raqib
Active member
- Jan 22, 2020
- 138
- 43
- 28
can I report this to Envato? I have purchased this item
It's complicated. In theory yes. Envato prohibits any type of backdoor in its products. But if backdoors are not active when using the software legitimately, it is difficult to explain how you found the backdoor.
But the code that deletes the entire database is very explicit, I think it can be reported.
Chijioke
Member
- Apr 18, 2020
- 58
- 9
- 8
Yes, seems like it.
User has no privacy for his business - not a good decision
raqib
Active member
- Jan 22, 2020
- 138
- 43
- 28
raqib
Active member
- Jan 22, 2020
- 138
- 43
- 28
Yes, exactly....
You should check and if found then report the envato team then....
The backdoor that drops the database has been inserted into the routes. This opens a security vulnerability. If a malicious agent accesses that particular route in a store's system using Active eCommerce, even if the software was legitimate, it would trigger the behavior of the backdoor, erasing all data from the database.
Similar threads
