Support » Plugin: Flexible Checkout Fields for WooCommerce » Malicious Access Plugin – Woo-Add-To-Carts

  • Resolved vincenzo1993dg

    (@vincenzo1993dg)


    Hi,
    We have been using your “Flexible Checkout Fields” plugin for several years.
    This morning we realized that the checkout fields were all “wrong”, that is, there were fields other than those initially set.
    By checking in depth we realized that, by visiting the checkout page, a “Woo-Add-To-Carts” plugin developed by is downloaded which creates users with an administrator role.
    By enabling the diagnostic mode we deactivated all the plugins and reactivated them one by one and we realized that the cause is due to your plugin.
    Now we have uninstalled the “Flexible Checkout Fields” plugin and by visiting the checkout page no plugins are downloaded and no administrator user is generated.

    Can you give us more information?

    Thank you.

Viewing 15 replies - 1 through 15 (of 23 total)
  • monkriss

    (@monkriss)

    I had the exact same issue. Woo-Add-To-Carts.zip was also downloaded to my media library and 2 admin accounts were created.

    cmenard

    (@cmenard)

    Same problem ! We use Flexible Checkout Fields + Flexible Checkout Fields PRO

    Lot of “Woo-Add-To-Carts.zip” were added to my media library (wp-content/uploads/2020/02) and new admin accounts were created.

    emild

    (@emild)

    BUMP!

    Seems it looks like your plugin are hacked…

    MateDan

    (@matedan)

    Same problem, please resolve it!

    Plugin Support Marta Pawlonka

    (@martapaw)

    Hello,

    We are investigating this issue.

    Best regards,
    Marta

    mahmoodrezaet

    (@mahmoodrezaet)

    Hi,

    please help us how to completely remove the woo-add-to-carts plugin. it created 7 admins.

    Thank you

    Plugin Support Marta Pawlonka

    (@martapaw)

    Hello @vincenzo1993dg @mahmoodrezaet @matedan @emild @cmenard @monkriss @cmenard,

    we need more information here. Please send us a WooCommerce system status. Here’s a screenshot showing how to get it.

    Best regards,
    Marta

    vincenzo1993dg

    (@vincenzo1993dg)

    Hi @martapaw,
    Unfortunately I had to uninstall the plugin and I reinserted the custom fields from code directly into the functions.php.

    Plugin Support Marta Pawlonka

    (@martapaw)

    Please note that we are working on this. I’ll let you know when the fix will be pushed.

    emild

    (@emild)

    @vincenzo1993dg

    how did you do that?

    because I see that we will not see a patch soon and more pages are infected.

    vincenzo1993dg

    (@vincenzo1993dg)

    Hi @emild,
    In my case I used the free version of the plugin. I used it to add 5 custom fields in the billing address and 2 in the shipping address, in addition to sorting the custom fields.
    Having the basics of programming with WooCommerce, through the official documentation, I was able to write the code useful for my needs (creation of fields + sorting).

    Obviously, before doing all this, I uninstalled the Flexible Checkout Fields and Woo-Add-To-Carts plugins, and also removed all the administrator users that had been created.

    For security reasons, while waiting for the problem to be resolved, you should uninstall the two plugins and administrator users if you have not already done so.

    Plugin Support Marta Pawlonka

    (@martapaw)

    @vincenzo1993dg @mahmoodrezaet @matedan @emild @cmenard @monkriss @cmenard,

    please up to date our plugin. This problem shouldn’t occur anymore.
    Apologies for the inconvenience.

    Best regards,
    Marta

    emild

    (@emild)

    @vincenzo1993dg okay,

    thanks for that,

    that’s exactly how I approached it 🙂

    I thought you found a bug in this module and fix it with functions.php 🙂

    Anyway the author has already released patch but 20 000 instalattions… it really scares 🙂

    Regards

    • This reply was modified 7 months ago by emild.
    • This reply was modified 7 months ago by emild.
    • This reply was modified 7 months ago by emild.
    emild

    (@emild)

    @martapaw

    In my opinion it is still not fixed,

    Can lost fields be restored first? The VAT number field has disappeared…

    secondly, after the upgrade still the plugin practically blocks the browser window?

    that is, the only salvation is to restore to the state of yesterday and then update??

    • This reply was modified 7 months ago by emild.
    • This reply was modified 7 months ago by emild.
    Plugin Support Marta Pawlonka

    (@martapaw)

    @emild you need to add once again the VAT Number file.

    secondly, after the upgrade still, the plugin practically blocks the browser window?

    Could you please elaborate on it? You didn’t write about this before, so I do not really know where is the problem. We need more details here:
    Where exactly this occurs? Is this happen also in the Storefront theme? The screenshots will be helpful. Also, please make sure that you tried to isolate the issue and you are sure is it our plugin fault.

    Best regards,
    Marta

Viewing 15 replies - 1 through 15 (of 23 total)
  • The topic ‘Malicious Access Plugin – Woo-Add-To-Carts’ is closed to new replies.