Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Should add "AvisVerifies" #18

Closed
gwillem opened this issue Feb 13, 2019 · 5 comments
Closed

Should add "AvisVerifies" #18

gwillem opened this issue Feb 13, 2019 · 5 comments

Comments

@gwillem
Copy link
Collaborator

@gwillem gwillem commented Feb 13, 2019

https://www.intrinsec.com/magecart-unveiled-focus-on-an-ecommerce-targeted-threat/

Anyone got the right codename?

@damienwebdev
Copy link

@damienwebdev damienwebdev commented Mar 1, 2019

@gwillem are you asking for the module name?

Loading

@gwillem
Copy link
Collaborator Author

@gwillem gwillem commented Mar 1, 2019

Indeed! The referenced article is now down, but it's still viewable via Google Cache (and I've made a local copy).

The attack vector is a POST to /index.php/AvisVerifies/dialog/index/, as was reported earlier by @pocallaghan

Loading

@damienwebdev
Copy link

@damienwebdev damienwebdev commented Mar 1, 2019

Netreviews_Avisverifies

Loading

@gwillem
Copy link
Collaborator Author

@gwillem gwillem commented Mar 1, 2019

Loading

@damienwebdev
Copy link

@damienwebdev damienwebdev commented Mar 1, 2019

@gwillem I believe there is a new version (v2.14.0), which no longer contains that constructor. https://marketplace.magento.com/netreviews-verifiedreviews.html#product.info.details.release_notes

Loading

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

2 participants