Find Jobs
Hire Freelancers

Fix Project: Joomla / Dolphin Login Bridge

$30-250 USD

Completed
Posted over 13 years ago

$30-250 USD

Paid on delivery
Login Security Hole Information: I recently hired a developer to code a joomla 1.5 / dolphin 7 login bridge so that the user could join on the dolphin (community) side of the website and could login on either the dolphin or joomla side of the website. However, the developer left a major security hole in the two websites. Here is the problem: Here is the major security hole: you can use ANY password with one of the website's usernames to gain access to the dolphin community side of the website -- this EVEN works as admin! If you try to login to joomla and get the wrong password (you get an error message). Then, click on the Profile link at the top of the page and you will be redirected and logged in to the dolphin community side of the website as the user -- this EVEN works as admin where serious damage could be done to the website! So, I need the above problem fixed on two joomla 1.5 / dolphin 7 websites. The positive thing about this is that the developer used great HTML comments to comment his work so we know which files were newly created and which ones, including database table, were modified! Please see below: A. bridge table The following information should help inform you what the previous web developer did to bridge the joomla and dolphin login. I will give you all of information that I can think of. Please ask any questions that you may have. Here is the only database entry, it is the table dedicated to the joomla / dolphin bridge and it is named “bridge”. The “which” field can contain either the word joomla or dolphin. The “username” field contains an IP address. The “data” field contains the username:password:* (* means it can be blank, have a 0, or have a 1 after the colon). The “id” field is empty. B. login files There are several login-related files that I will list below and send via a .zip file which contains the login-related files (Of course, you will be given whatever permissions you need to do the job, e.g. FTP, etc). However, the main file is [login to view URL] which is located in the root directory of the website. As for the other files, I did a search for all files that were commented on via the former web developer. The list can be found below along with the comments: • [login to view URL], main bridge file • /community/[login to view URL], start / end reset password bridge • /community/[login to view URL], start / end login bridge • /community/[login to view URL], start / end login bridge • /community/[login to view URL], start / end reset password bridge • /community/inc/[login to view URL], register and log-in on joomla bridge • /components/com_user/[login to view URL], bridge log-in • /components/com_user/models/[login to view URL], bridge reset password • /libraries/joomla/user/[login to view URL], bridge log-in • /libraries/joomla/user/[login to view URL], bridge change password Please let me know if you have any questions. I look forward to hearing from you!
Project ID: 802961

About the project

5 proposals
Remote project
Active 14 yrs ago

Looking to make some money?

Benefits of bidding on Freelancer

Set your budget and timeframe
Get paid for your work
Outline your proposal
It's free to sign up and bid on jobs
Awarded to:
User Avatar
i am mrpowless from boonex .. 4years Dolphin only...service 45k+sites
$99 USD in 1 day
5.0 (3 reviews)
4.0
4.0
5 freelancers are bidding on average $89 USD for this job
User Avatar
Professionals here =================================== Joomla Experts ===================== Ready to start. Please have a look on PM. Thanks.
$120 USD in 2 days
5.0 (94 reviews)
5.9
5.9
User Avatar
I have idea, how to fix your problem. But i got some questions too. Please reply to my PM.
$50 USD in 1 day
0.0 (0 reviews)
0.0
0.0
User Avatar
Hi, I have gone through your project requirement and found we can do this task easily. We have highly experienced in joomla & Dolphin Boonex. Kindly send the project details so we can start. Thanks, webmask
$40 USD in 2 days
0.0 (1 review)
0.0
0.0

About the client

Flag of UNITED STATES
Brockway, United States
5.0
8
Payment method verified
Member since May 8, 2010

Client Verification

Thanks! We’ve emailed you a link to claim your free credit.
Something went wrong while sending your email. Please try again.
Registered Users Total Jobs Posted
Freelancer ® is a registered Trademark of Freelancer Technology Pty Limited (ACN 142 189 759)
Copyright © 2024 Freelancer Technology Pty Limited (ACN 142 189 759)
Loading preview
Permission granted for Geolocation.
Your login session has expired and you have been logged out. Please log in again.