Last night we received 2025 return requests against order number 1.
These are not genuine and the name and email used in each one where just random strings and sample@email.tst. The telephone number was listed as 1 waitfor delay '0:0:111' -- - which suggests some sort of hack attempt.
Obviously I can just delete the returns. But is this something we should be concerned about? What is the recommended course of action.
Opencart 2.3.0.2
To follow up on the above, I've just been looking at some of the return requests and one has a model number of "-1' OR 2+163-163-1=0+0+0+1 -- " there's also another with "-1' OR 2+858-858-1=0+0+0+1 or 'UcvXzCfk'='"
Clearly this was an SQL injection attack which I assume OpenCart is designed not to allow, but should I be worried?
Clearly this was an SQL injection attack which I assume OpenCart is designed not to allow, but should I be worried?
I've seen this loads of times on sites I manage though with not as many requests. If you stick Crawlprotect on it will help. You can also remove the returns links if you don't need them or put a decent captcha extension on.
Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk
No probs. SQL Injections as are a real pain. Get the right pieces in place any you can stop a lot if not all of them. For now that is. :-)
Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk
PS. It's a good idea to take a full backup of your site and database. One day someone may get through. It's how quickly you can recover that's key.
Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk
Excellent. Crawlprotect is no longer maintained but the last release is still good and free protection.
Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk
You could also block the IP-addresses of this attacker in your '.htaccess', at the very top. It looks something like this:
Code: Select all
Order Deny,Allow
# reject known hackers and spammers
deny from 37.187.90.226
deny from 194.67.196.0/22
deny from 92.63.108.0/23
Export/Import Tool * SpamBot Buster * Unused Images Manager * Instant Option Price Calculator * Number Option * Google Tag Manager * Survey Plus * OpenTwig
Who is online
Users browsing this forum: No registered users and 398 guests
