Support

 Hi Nicholas,
I got this email

"Hello administrator,
A new user 'updater', username 'updater', has registered at http://mywebsite.ca/."

I think I am having problems because a user successfully signed up to the site using IP address as User Group: Administrator

Name*: updater
Login Name*: updater
User Group: Administrator
Email*: [email protected]
Last Visit Date: Never

User Notes: Sign-up IP address

The user signed up to the site using IP address 173.208.211.250

The user agent string of the user's browser was:
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:49.0) Gecko/20100101 Firefox/49.0

This information was automatically recorded in this User Note by Admin Tools Professional.
but it's not shown in Security Exceptions Log



My website:
Joomla! 3.6.2
PHP 5.3.28 (my hosting provider can not upgrade PHP to a higher version so I am using Admin Tools Professional 3.8.3)

My Admin Tools: Configure WAF is as the following:

Enable IP workarounds: NO
Allow administrator access only to IPs in Whitelist: NO
Allow administrator access only to IPs in Whitelist: YES
Administrator secret URL parameter: XXXXXXXXX

IP blocking of repeat offenders: YES
IP blacklisting of persistent offenders: YES
Permanently blacklist IP after: 3 automatic IP blocks

I wonder how can a user successfully signed up to the site using IP address as User Group: Administrator without loggin and how to prevent this happenning again? Please help.

Thank you very much.

This is a Joomla! bug that was revealed (and a fix issued) last week. The version of Admin Tools released at the same time, 4.0.2, will block this bug, but your version is still vulnerable. You need to update Joomla! and/or Admin Tools immediately.

Thank you Dale!

You're welcome!

This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.