Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
in catalog/controller/extension/d_social_login/callback.php file,
find:
Code: Select all
if (isset($_REQUEST['hauth_start']) || isset($_REQUEST['hauth_done']))
Code: Select all
if (isset($_REQUEST['hauth_start']) || isset($_REQUEST['hauth_done']) && !empty($_SESSION['__csrf']))
find:
Code: Select all
public function index (){
$_REQUEST['hauth_done'] = 'Live';
require_once("system/library/hybrid/auth.php");
require_once("system/library/hybrid/endpoint.php");
Hybrid_Endpoint::process();
}
Code: Select all
public function index () {
if (!empty($_SESSION['__csrf'])) {
$_REQUEST['hauth_done'] = 'Live';
require_once("system/library/hybrid/auth.php");
require_once("system/library/hybrid/endpoint.php");
Hybrid_Endpoint::process();
}
}
find:
Code: Select all
if (isset($this->request->get['provider'])) {
Code: Select all
if (isset($this->request->get['provider']) && !empty($this->session->data['__csrf'])) {
Code: Select all
$this->log->write('Missing application provider.');
Code: Select all
$this->log->write('Missing application provider or missing CSRF token.');
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
In catalog/controller/extension/module/oneall.php file,
find:
Code: Select all
if (isset($this->request->post) && !empty($this->request->post['connection_token']))
Code: Select all
if (isset($this->request->post) && !empty($this->request->post['connection_token']) && !empty($this->session->data['__csrf']))
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
In catalog/controller/account/socl_login.php file,
find:
Code: Select all
if (isset($soclall_id) && !empty($soclall_id) && isset($this->request->get['network'])) {
Code: Select all
if (isset($soclall_id) && !empty($soclall_id) && isset($this->request->get['network']) && !empty($this->session->data['__csrf'])) {
Code: Select all
if ($login_info && ($login_info['total'] > $this->config->get('config_login_attempts')) && strtotime('-1 hour') < strtotime($login_info['date_modified'])) {
Code: Select all
if (($login_info && ($login_info['total'] > $this->config->get('config_login_attempts')) && strtotime('-1 hour') < strtotime($login_info['date_modified'])) || (empty($this->session->data['__csrf']))) {
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
In catalog/controller/module/gluu_sso.php (or catalog/controller/extension/module/gluu_sso.php) file,
find:
Code: Select all
if(!$this->customer->isLogged () and $this->gluu_is_port_working() and !empty($this->request->get['route']) and $this->request->get['route'] == 'account/login'){
Code: Select all
if((!$this->customer->isLogged () and $this->gluu_is_port_working() and !empty($this->request->get['route']) and $this->request->get['route'] == 'account/login') (empty($this->session->data['__csrf']))) {
Code: Select all
if( isset( $_REQUEST['session_state'] ) ) {
Code: Select all
if (isset($_REQUEST['session_state']) && !empty($_SESSION['__csrf'])) {
Code: Select all
if (is_array ($result) && ! empty ($result['email']))
Code: Select all
if (is_array($result) && !empty($result['email']) && !empty($this->session->data['__csrf']))
Code: Select all
public function admin_login($username) {
Code: Select all
if ($user_query->num_rows) {
Code: Select all
if ($user_query->num_rows && !empty($this->session->data['__csrf'])) {
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
In vqmod/xml/fb_login_one_page.xml file,
find:
Code: Select all
if(isset($this->request->post['email_address']) && $this->request->post['email_address'] != 'undefined'){
Code: Select all
if(isset($this->request->post['email_address']) && $this->request->post['email_address'] != 'undefined' && !empty($this->session->data['__csrf'])){
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Thank you.
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Dedication and passion goes to those who are able to push and merge a project.
Regards,
Straightlight
Programmer / Opencart Tester
Users browsing this forum: No registered users and 171 guests