Unpublished Login Module generates login & reminder pgs - Joomla! Forum - community, help and support

-

during risk assessment outside agency, discovered our joomla 3.x website generate login , reminder pages on these urls of

https://. . ./index.php?option=com_users&view=login"
http://. . ./index.php?option=com_users&view=login"
https://. . ./index.php/component/users/?view=login"
http://. . ./index.php/component/users/?view=login"

it happens when view=reset or view=remind
example reset
- /index.php?option=com_users&view=reset"
- /index.php/component/users/?view=reset"
example remind
- /index.php?option=com_users&view=remind"
- /index.php/component/users/?view=remind"

i checked extension manager, , login module unpublished because site not have login abilities included.

is there way or setting prevent these urls working?

so far have come redirecting these urls page (like home page).

those pages can blocked renaming or removing view folders in /components/com_users/views:
    login
    registration
    remind
    reset
your template(s) may have overrides these views in html folder, example:
/templates/mytemplate/html/com_users/login/default.php , should make unavailable.

keep in mind if next joomla update includes 1 or more of folders in /components/com_users, views may restored because part of joomla core.





Comments

Post a Comment

Popular posts from this blog

Joomla 3.3 Installation Error message - Joomla! Forum - community, help and support

-
hi all, bought new hosting account , attempting install joomla 3.3. error message getting, instead of joomla installation page. have spoken godaddy support , claim loaded correctly. error displaying error page: table 'i694666_jos1.jos_template_styles' doesn't exist sql=select id, home, template, s.params jos_template_styles s left join jos_extensions e on e.element=s.template , e.type='template' , e.client_id=s.client_id s.client_id = 0 , e.enabled = 1: table 'i694666_jos1.jos_usergroups' doesn't exist sql=select b.id jos_usergroups left join jos_usergroups b on b.lft <= a.lft , b.rgt >= a.rgt a.id = 1 any idea go here? thanks! robin i guess installation did not completed correctly because looks of it, missing table on site. Board index Joomla! 3.x - Ask Support Questions Here Installation Joomla! 3.x
Read more

Multilanguage infinite redirect loop error. - Joomla! Forum - community, help and support

-
i not sure supposed post description again since it's in fpa generated post, sorry if doubled it: i have error firefox "the page isn't redirecting firefox has detected server redirecting request address in way never complete." other browsers such chromium, chrome, ie , more. goes away if turn off language filter plug in need make multilanguage site. error started after duplicated menus 3 languages (english, thai , italian). erased languages , menus did not resume working correctly (unless disable language filter plug in). right there no other languages menus or modules need use them. site @ http://www.itasne.com/palomnik ps forgot tell when try entering site url looks this: http://www.itasne.com/palomnik/index.php// 2 // language /en/ supposed be. problem description :: forum post assistant (v1.2.4) : 17th april 2014 wrote: multilanguage joomla 2.5 site: have error firefox "the page isn't redirecting firefox has detected server redirecting request address ...
Read more

trim media limit reached

-
hello,   i have installed adobe premiere cs 6....and have trouble videos transitions----->cross disolve. normally not problem, when drag , drop videos transitions, can't drag transitions longer in sequence without comment :trim media limit reached.... so can't work on transition.........   how can solve it, should don't find it...   thanks help.......... you cant make transition past end of source clip.  ie dont have enough media.   transitions made overlapping media .   someone post image illustrates this. More discussions in Premiere Pro CC adobe
Read more