Joomla Templates Club 406,261 posts

[folkefiende Friend folkefiendeJoin date: January 2010Posts: 6Downloads:0Uploads:0 Thanks: 2]

#153513

I recently found that in the internal messaging area I had an option to send a message to a back end username that I did not recognize (as we only have 2 users on the site). After looking at the jos_users table I found that there were 8-9 active usernames with access and they were ALL related to Joomlart. NOT LIKING THIS!! After deleting them I went to other Joomlart templates that I’ve used and checked to see if they were there, but this seems to be a new development. Aside from being sneaky, this is a security risk I’m not interested in taking. Has anyone else noticed this problem with new template installs? Check your jos_users table.

Viva la Rocket Theme!!- it’s better and CHEAPER!

[smitheringale Friend smitheringaleJoin date: December 2009Posts: 236Downloads:0Uploads:0 Thanks: 63 Thanked: 44 times in 18 posts]

#352632

Hi folkefiende.

I don’t know if its sneaky or not – but this is not new to me and the ja people have even mentioned it a few times on these forums.

I seem to recall the issue started with Ja-ores with the k2 implementation. One could not log into the admin area at all and had to go into the phop database and change the admin password in the jos_users table. I think this problem was fixed though.

In this table you also saw a number of other joomlart users that shouldnt have been there.

It seems to have appeared at about the time of k2 being implemented – and I believe there is a separate user list called k2_users or something like that in the database that has unwanted users.
I think this is something to do with how k2 works and how the quickstart template comes with users already in place for the blog, comments and what not.

I don;t think this is a way to get a back door into your site – i’m sure if they wanted to do that they would do it in a much more sophisticated way and hide it from us. My point is that this is too crude to be there way of having a backdoor to your site – whether it is or is not a backdoor in actuality.

Also, I can’t see what they’d gain from doing this – and they’d have a lot to lose.

Although, I think i’ve seen a thread on this forum about low-level viruses in some of the quickstart files – so this is a side issue you might want to look for.

<em>@folkefiende 190221 wrote:</em><blockquote>I recently found that in the internal messaging area I had an option to send a message to a back end username that I did not recognize (as we only have 2 users on the site). After looking at the jos_users table I found that there were 8-9 active usernames with access and they were ALL related to Joomlart. NOT LIKING THIS!! After deleting them I went to other Joomlart templates that I’ve used and checked to see if they were there, but this seems to be a new development. Aside from being sneaky, this is a security risk I’m not interested in taking. Has anyone else noticed this problem with new template installs? Check your jos_users table.

Viva la Rocket Theme!!- it’s better and CHEAPER!</blockquote>

[smitheringale Friend smitheringaleJoin date: December 2009Posts: 236Downloads:0Uploads:0 Thanks: 63 Thanked: 44 times in 18 posts]

#352633

Apart from having a bloody-awful logo of a spaceman that makes me want to take his helmet off and slap him – I don’t think RocketTheme is a patch on Joomlart. Joomlart is much better – and you get what you pay for in life.

<em>@folkefiende 190221 wrote:</em><blockquote>Viva la Rocket Theme!!- it’s better and CHEAPER!</blockquote>

1 user says Thank You to smitheringale for this useful post

1. Arvind Chauhan

[Author]

Posts