Security Notice : osCMax 2.0.4 Released

[pgmarshall]

Rosarystuff,

Did you click the link at the end of Michael's post - the one marked "Let me Google that for you"?

That was all I was refering to!

Regards,

[rosarystuff]

Not yet, but I'll get there. No worries.

[rosarystuff]

I'm sorry pgmarshall. My Bad. I should have looked more closely. OOPS!!

Although, how do you guys know what info you find on google is correct and which is not? I've googled for info before only to end up with slightly incorrect advice. I'm just not sure how to tell the difference between who knows what they are talking about and who may not have the experience to know for sure.

Take care,

rosarystuff

[michael_s]

Although, how do you guys know what info you find on google is correct and which is not?

Trial and error until you start retaining some of the stuff you test. Then you start making comparisons of what you find to what you already know.

This is not rocket science and doing it wrong is not going to get anyone killed, so go ahead and get messy with some trial and error to see what works and what doesn't.

That is the best way to learn and to test if what you found on google is correct. It also gives you a good solid reason to make backups regularly

[pvdesign]

Hi michael_s.......

I too had the issue with getting spam through the email of a client who had oscommerce setup....

Did as you suggested and removed the two file and got nothing for a few days but now seem to be getting them back again....
removed these files from the system
/admin/file_manager.php
/admin/define_language.php

your help is appreciated......


Paul

[michael_s]

You missed the previous security patch (2.0.3). Do that one too:

http://www.oscmax.com/forums/oscmax-...-released.html

http://www.oscmax.com/forums/announc...html#post51384