Support Forum

Every time that you post a problem, PLEASE add the Joomla and the extension's versions and revisions (for example: Joomla 3.3.6, Contact Enhanced 3.3.5), PHP version and Server's Operating System. If you only manage only one site it is easier if you edit your profile and just add that information to your signature. Don't forget to add a detailed description of the problem. If possible, write down all steps to simulate the problem.

Before submitting a new post, PLEASE make sure you are running the latest version, test in different browsers (IE, FF, Chrome,..) and clear Joomla and browser's cache after every change you make.

Also, most questions are already answered in our FAQ and in iFAQ and Contact Enhanced documentation pages.

  1. Forum
  3. Ideal Joomla Extensions
  5. Component: Contact Enhanced
  7. Bot is hitting contactenhanced endpoint causing 500 errors
× Contact Enhanced is a contact component manager created to replace Joomla! core contacts component and add lots of advantages and new features (see Features ) and it offers many plugins and modules for several different purposes,
Product page | Documentation Page

Bot is hitting contactenhanced endpoint causing 500 errors

6 years 10 months ago #23229 by asalaices
I am not sure the BOT is supposed to be hitting an "edit" function but I see that trustedwebsite BOT is hitting :

www.greenlotushemp.com/compone...ZGFyZD9JdGVtaWQ9Nzcx&view=edit

And generating 500 errors.
Is this normal ? Or is there a bug in the component as it interacts with Joomla 3.7.2 and latest version of the plugin is: 3.6.5.
Thanks

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23230 by asalaices
Additional Info about error:

Error message data:
1 Call to a member function get() on null in file: /home/jorgeadr/public_html/greenlotushemp.org/components/com_contactenhanced/views/edit/view.html.php line: 36

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23231 by support
Dear asalaices,

That's odd. I see the edit button is visible for public users. Please go to Components -> Contact Enhanced -> Options and under the Permissions tab make sure the Public and Guests do not have any Permissions.

Best regards,
Douglas Machado
iStoreLocator | iFAQ | Ideal Related Articles | Contact Enhanced

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23233 by asalaices
Neither have Edit access:

ScreenShot2017-05-31at7.25.35PM.png
Attachments:

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23235 by asalaices
I had Not noticed that ... This is some scary stuff .. Anybody can literally edit any contact right now.

Please help me fix it, its a huge security issue !

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23236 by support
Dear asalaices,

I cannot reproduce this issue locally.

Can you please create a full backup and provide FTP access to /components/com_contactenhanced/, so I can investigate this issue?

You can send the FTP credentials using the Support -> Contact Form.

Best regards,
Douglas Machado
iStoreLocator | iFAQ | Ideal Related Articles | Contact Enhanced

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23237 by asalaices
I have explicitly denied Edit,Edit State and Edit Own and the Edit Icon has gone away, but it certainly needs permanent fixing.

Thanks

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23238 by support
Dear asalaices,

That's odd. I cannot reproduce this issue. Which user groups you had to change?

Best regards,
Douglas Machado
iStoreLocator | iFAQ | Ideal Related Articles | Contact Enhanced

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23239 by asalaices
I just set the permissions to the Public Group. Did not touch any other.

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23240 by asalaices
LOL I get a "Error HTTP/1.1 403 FORBIDDEN" when trying to send credentials via the Contact Form:
idealextensions.com/support/contact.html

Please provide email address I can send that to.
Thanks

Please Log in or Create an account to join the conversation.

6 years 10 months ago #23241 by support
The 403 FORBIDDEN error might be due to keyword filtering or to AdminTools blocking the request for some reason.

You can just reply to this New forum post notification email.

Best regards,
Douglas Machado
iStoreLocator | iFAQ | Ideal Related Articles | Contact Enhanced

Please Log in or Create an account to join the conversation.

  1. Forum
  3. Ideal Joomla Extensions
  5. Component: Contact Enhanced
  7. Bot is hitting contactenhanced endpoint causing 500 errors
Powered by Kunena Forum

Copyright © 2018 IdealExtensions.com. All Rights Reserved.

This site is not affiliated with or endorsed by the Joomla!™ Project. It is not supported or warranted by the Joomla!™ Project or Open Source Matters™. The Joomla!™ logo is used under a limited license granted by Open Source Matters™, the trademark holder in the United States and other countries.
We may collect your IP address and your browser's User Agent string while using our site for security reasons and deriving aggregate information (analytics). This information is retained for a minimum of 1 and a maximum of 24 months.
Feedback