[Resolved] Redirect to cc for licence Options

[scubadave]

I have used version 3.20 for years now today they auto redirect to cube cart to pay does anyone know a fix or what is going on? Thank you

[Brian Smither]

Welcome scubadave! Glad to see you made it to the forums.

CC3 greater than .7 (I think) doesn't do anything like that. There is nothing in the code that will bounce you out to anywhere.

There is, however, an RSS feed (that may or may not work depending if you have applied a fix) that announces the latest versions available.

Did you upgrade from a really old version to .20 at some time in the distant past? Even so, I'm sure that that particular code would have been missing when that particular file was replaced. Namely, there was some code that calculated something that used a PHP function that, unfortunately, returns a different result depending if the server is 64-bit vs 32-bit. But as I said, that's been long gone.

Can you tell us more, like the steps you took so we can try to duplicate the issue?

[scubadave]

Welcome scubadave! Glad to see you made it to the forums.

CC3 greater than .7 (I think) doesn't do anything like that. There is nothing in the code that will bounce you out to anywhere.

There is, however, an RSS feed (that may or may not work depending if you have applied a fix) that announces the latest versions available.

Did you upgrade from a really old version to .20 at some time in the distant past? Even so, I'm sure that that particular code would have been missing when that particular file was replaced. Namely, there was some code that calculated something that used a PHP function that, unfortunately, returns a different result depending if the server is 64-bit vs 32-bit. But as I said, that's been long gone.

Can you tell us more, like the steps you took so we can try to duplicate the issue?

thank you for your reply the website is thecharitysource.com/ I am open to give access to files to figure it out
Dave

[Brian Smither]

Watching the header activity shows the same actions as the one person who also had this situation. So, yes, I think there may be a very old copy of a file that has that ancient code.

Also, when looking at the source for the admin login, I see a request for a javascript file from China. You might want to get that checked out. Look at the file /admin/includes/footer.inc.php.

When I remember what that file with the ancient code is, I'll get back to you.

==============

Ok, look for the file: /store/classes/xtpl.php, at around line 230:

function parseDecode(){

If that function still uses crc32() at two locations, let us know.

Oh, and verify if your hosting provider moved you to a 64-bit server.

[Robsta]

As Brian said, check your hosting has not moved you to another server, 64-bit or not. If you have a copyright removal key and the server IP has changed if might have a license issue. Something to try is to get your license reset in your .com control panel.

In any case, there is little we can do about licensing issues. You should submit a ticket to Devellion about this as even with the retirement of v3 a year ago, this should not happen.

[scubadave]

Here is the file and I am waiting to here from the hosting company they say they did a rechassis but is not sure of any other upgrades so he will email me when he finds out

Attached File(s)

 xtpl.php ( 11.72K ) Number of downloads: 5

 

[Brian Smither]

As I suspected, there is code that is a remnant of a version of CC3.0.9 or earlier. That means your store must have bee upgraded piecemeal and by hand - usually to keep any mods in place.

In this file, starting at line 243, change:

CODE

    if(isset($config['lkv']) && $config['lkv']>0 && ereg("^([0-9]{6})+[-]+([0-9])+[-]+([0-9]{4})$",$config['lk']) && crc32($uniKey)==-961890963){
        return base64_decode($lkParsed);
    } elseif(crc32($uniKey)!==-961890963) {
        header(base64_decode($uniKey2));
        exit;
    } else {
        return base64_decode($uniKey);
    }

to

CODE

    if(isset($config['lkv']) && $config['lkv']>0 && ereg("^([0-9]{6})+[-]+([0-9])+[-]+([0-9]{4})$",$config['lk'])){
        return base64_decode($lkParsed);
    } else {
        return base64_decode($uniKey);
    }

Once this edit is made, it won't matter if the server is running 32 or 64 bits.

But you haven't responded to the observation about the javascript from China. Since this anomaly is in a file that contains:

CODE

</body></html>

I fear that many more files have been similarly changed.

[scubadave]

that was it thank you I realy appreciate your help I did address the other code and yes I see it in more files I want to be carefull to not screww up the files as I change them

[Brian Smither]

I hope you can determine how those other files got changed.