funnycamel Posted February 2, 2021 Share Posted February 2, 2021 (edited) Hello. i'm using Thirtybees 1.1.0-1.1.x I have found that a hacker can send emails on behalf of the website via the CMS, the email goes to ALL customers. I believe this is through some kind of hack via the contact form. For now, I have just completely disabled the Contact Form. Any advice on how to address this issue? Edited February 2, 2021 by funnycamel more details Link to comment Share on other sites More sharing options...
0 30knees Posted February 2, 2021 Share Posted February 2, 2021 Could you share more information how you discovered this? Link to comment Share on other sites More sharing options...
0 ariom Posted February 2, 2021 Share Posted February 2, 2021 (edited) I think the better for you is to install and configure ASAP this 2 very usefull module:Blackhole for Bad Bots from DataKick andNo Captcha reCAPTCHA Module from ThirtyBees I had the same problem and implementing this two security layers did the trick for me ... Edited February 2, 2021 by ariom Link to comment Share on other sites More sharing options...
Question
funnycamel
Hello. i'm using Thirtybees 1.1.0-1.1.x
I have found that a hacker can send emails on behalf of the website via the CMS, the email goes to ALL customers. I believe this is through some kind of hack via the contact form. For now, I have just completely disabled the Contact Form.
Any advice on how to address this issue?
Edited by funnycamelmore details
Link to comment
Share on other sites
2 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now