Your host said the URL to kcfinder was:
But there is no /kcfinder/ directory in this mod's zip file... Not sure how or why you have a /kcfinder/ directory but it doesn't appear to be included with this mod.

So BOP, when I was hacked by TH3 HACK3R could they have installed it in the cart then? I saw a reference to Black Hack3r in files. I have tried to uninstall this mod but it crashed my site so I have isolated it. I wish Michael would reply as this is really stressing me out

It's certainly possible... I would suggest anyone with this mod installed check for a /kcfinder/ directory in their /microcart/ directory, just to be sure.

At this point all I know for sure is /kcfinder/ does not come as part of this mod. I can't say whether an exploit in this mod allowed it to be uploaded or an exploit it something else did.

I got smashed 5 times BOP, my database is still psychopathic. have a look if you like...PLEASE!!!

I would suggest you look for .php files in the following directories- I've found them in these directories while cleaning up hacked sites before (check all sub-folders of these folders as well)-

/customavatars
/customgroupicons
/customprofilepics
/images
/signaturepics

If you have attachments stored in a web accessible location check that folder too.

These folders should not contain .php files.

As for being in your database the only real place they could be is in a plugin. Check and make sure you don't have any plugins listed in Plugin Manager (not product manager) at the top listed under the "vBulletin" product. If you do make sure these are plugins you created yourself and double-check the code. This is the most often exploited spot.

Second most exploited in my experience is hidden as a plugin of Forum Runner but this will be cleaned if you re-run the upgrade script which I recommend you do if you've been hacked.

Any 3rd party products should be re-installed after a hack to make sure their plugins are the original values and don't contain backdoors left by the hacker.

Thank you so much mate, awesome

Hello,

Regarding the post about:

The fix I use is, go to: Admin CP > Settings > Options > Site Name / URL / Contact Details
In the 'Redirect Domain Whitelist' field, add:
<a href="https://www.paypal.com/" target="_blank">https://www.paypal.com</a>
<a href="https://www.sandbox.paypal.com/" target="_blank">https://www.sandbox.paypal.com</a>


I have implemented this and still receive the following error

Invalid Redirect URL (https://www.paypal.com/cgi-bin/websc...ethod%3Dpaypal)

please see screenshot

http://tinypic.com/r/25icgtk/8

Thank you

Daniel

Hello,

After the install I 'am only accessing the index page. Please see the attachment. Any solutions?

Thanks in advance.

cart.php and cart_gateway.php need to be in the same directory as forum.php

for me its /public_html

see if thats the answer

Thanks for the reply. I've moved the files, not seeming to have any effect.

Thanks again.

Right I solved my problem about the "Invalid Redirect URL"

https://www.paypal.com


Just like that without the html code, its very frustrating when people post here and dont post the exact answer they have some weird formating and expect you to spend hours decoding it like hieroglyphics.

when you go to options, Site Name / URL / Contact Details. Redirect Domain Whitelist

its simply

https://www.paypal.com

and that should direct the page to the paypal payment page


Daniel of Awesomemetalbands.com

amandatx,

stupid question you obviously have Vbullitin installed? can you go to your forum? do you see a new tab called e shop?

Daniel

you are more then welcome to discuss this with me on AMB, i am very new to MicroCART, but would be great to exchange ideas

http://awesomemetalbands.com/metalchat.php

Yes, I have vBulletin installed. No, there is no tab labeled e shop associated with the forum nor the server.

can member add product??

No. Can't get pass the index screen.

thanks for information :)

We're up and running! This mod is out of site/sight! :)!

Hello,

Discount doesn't show until item quantity is changed? How can this be rectified, apologies if this has already been posted.

Is it possible to use paypal pro for normal paypal and credit card processing instead of just the standard paypal which take the user away form the website? We are using this Haddon but many customers payments aren't being registered when the customer doesn't return to the website after completing their payment with paypal.

Any suggestions would be greatly appreciated.

Thanks
Huw

Is anybody interested for an update release of this mod? If yes, then click Like or post a comment below.

100% yes

Just downloadable products is ok for you or do you need the support for tangible products?. I'm talking for the exact same script, but currently I've removed the tangible products to make the code more solid.

@Johnny G

Seen that you're in EU. Some great knews. It'll support EU VAT with auto VAT id validation.

Hello,

Finally I decided to post the update here and not as a seperate mod as in my version I don't support tangible products. But I'll continue updating this version for any bug fixes.

I've named this version 2.0.0 to be visible seperated from 1.x versions. In this version I've added/fixed:

1. Fixed several design issues especially with sidebar
2. Added Tab Menu to support the new vb Navigation manager
3. Added to all php files the code: define('SKIP_ALL_ERRORS', true); to skip all waring messages. I suggest to add this line to your config.php at the top (just after <?php).
4. Corrected the HTML editor to take the full width space when you're adding/editing products

For someone who was getting error trying to import images in the HTML editor, he must set the correct paths in file: microcart/editor/assetmanager/settings.php

To update your installation:

• Upload microcart_admin.php to your admincp directory
• Upload functions.php at microcart/
• Upload cart.php at your forum directory
• Import product-microcart_v200_27Dec2014.xml and don't forget to select "Overwite".

If you've to report any other bugs feel free to do it here. I'm not always on this site but I'll try to visit it in a regular basis. Please don't PM for bugs. Post them here.

I wish to all a Happy and Prosperous New Year. Health, Happiness, Success to all of you and to your beloved persons. And for sure Peace for the world.

I would like tangible, physical products. But, not to worry, needs of the many vs the needs of the few :D
Thanks anyways!!

I've post some files with bug fixes and design issues that I found. They're on my last post in previous page. Sorry but there is no other way to release them.

I'm sure I speak for many people when I thank you for your efforts.

Finally I'll include tangible products too, but the final mod should be commercial with a small fee. As you're using it for tangible products please tell me something. In data table there are fields for Product code and Manufacturer but I can't find them in the form. Have been removed? As I remember these fields were there.

@Johnny G

Happy and Prosperous New Year :)

If you want you can give a look at: http://www.phpkiosk.com/demo/vb4x/cart.php

demouser1
demopass1

For testing EU VAT and Shipping do the follow tests during Checkout (for testing purposes assumes that Shop is locating in Greece).

1.- Select United Kingdom as Location. You'll see that if you set a valid EU-GB VAT id the VAT should be 0. If you left it empty or your auto check fails (invalid VAT id) you'll debit with VAT 20% according to the new EU rules (Customer's country and not Seller's country).

2.- Change the location to Greece. Now, with or without a valid VAT id you'll be debited with VAT 20%

3.- Last change the location to United States and you'll see that none VAT will be debit.

Wow. Many thanks!!
I'll have a look this weekend :D

Finished :)

I would be very interested in this mod to sell tangible products on my site (we sell our club branded items like stickers and mugs to raise money for charity).

I am located in Canada and my members are Canadian.

Paypal for payment is perfect.

Any chance there would be a way to interface with Canada Post whom we use for shipping?

They have a module for this that I use with Zen Cart, but my users hate having to leave the site to use zencart to order stuff.

I'd be willing to do testing with you if that helps.

D.

if i install MICROCART_114_16_05_2011a.zip and after that i use your patch is this patch work?

thanks again...

Yes, it should works. But if you wait some hours I'll release here this version:
http://demo.teriakis.com/vb4x/cart.php
You can find testing account login in header.

Has fixed all bugs of microCART and added some new features. The reason that I changed the name is because there are 2 versions of microCART and I wanted to avoid a system mess.

Later on and if I see that there are active installation of microCART (I don't think so with so many bugs that I found), I'll release a data importer.

Nick, superb effort :D

Newest version is here, https://vborg.vbsupport.ru/showthread.php?t=316501
But wait till the developer fixes a bug with the tables in the DB.

I've just seen it, thanks :)

And the bug is now fixed in the other version. :)

<a href="https://technidev.com/microcart-1-1-4-arbitrary-files-deletion-sql-injection-xss/" target="_blank">https://technidev.com/microcart-1-1-...injection-xss/</a>

Can I please for fix for this?