Your Cart

Shopping Cart Items: 0   Sub-Total : $0.00    View Cart    Checkout
Welcome, Guest ( Customer Panel | Login )


Home | Profile | Register | Active Topics | Members | Search | FAQ


Forgot your Password?
 All Forums
 VPCart Forum
 VP-Cart 8.00 Issues
 where is shop_load_number_subcat.asp?		  New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

JoT
Starting Member

United Kingdom
9 Posts
Posted - August 13 2017 :  06:03:55  Show Profile  Reply with Quote
Can anyone please tell me where the script shop_load_number_subcat.asp is/should be located? I''m getting 3-4 website errors generated per day on calls to this script but can''t find it anywhere - not in the vpcart.plus.8.1.0.11 software package. It looks like it''s being called from js\categories\load_numbersubcats.

JoT

danielrichardson
VP-CART Super User

Australia
276 Posts
Posted - August 14 2017 :  08:40:18  Show Profile  Reply with Quote
shop_load_number_subcat.asp is in the root directory, what is the exact of error msg?
Go to Top of Page

serjtankian
VP-CART Super User

Armenia
378 Posts
Posted - August 14 2017 :  14:41:00  Show Profile  Visit serjtankian's Homepage  Reply with Quote
i can see the file exist in my installation folder, it''s located under your root directory

http://prntscr.com/g8fo9a

or in my host with vpasp is under httpdocs folder

https://prnt.sc/g8fpgk



*peace - serj*
Go to Top of Page

JoT
Starting Member

United Kingdom
9 Posts
Posted - August 14 2017 :  23:20:42  Show Profile  Reply with Quote
Thank you, both. I see it now. I''m just seeing an error in our server logs, looks like when it''s being spidered by maybe Bing. Very odd. will look into it further over the next couple of days but any suggestions gratefully received.

Error is:

15/08/2017 Time: 00:54:43
Page: /shop_load_number_subcat.asp
Query string:
Error Code(s): 80040e14
Error description(s): [Microsoft][ODBC SQL Server Driver][SQL Server]Incorrect syntax near ''=''.
User agent: Mozilla/5.0 + (compatible; + bingbot/2.0; + + http://www.bing.com/bingbot.htm)
Requesting IP: 157.55.39.77

JoT
Go to Top of Page

apswater
VP-CART Super User

444 Posts
Posted - August 15 2017 :  11:28:02  Show Profile  Visit apswater's Homepage  Reply with Quote
https://stackoverflow.com/questions/26750894/microsoft-ole-db-provider-for-sql-server-error-80040e14-incorrect-syntax-near

I really wouldn''t worry about errors generated by bots. They try to do injects and remove querystrings all the time tripping off errors.

That particular error is most likely a syntax error on the sql statement. If you only see it with bots I would just ignore it.
Go to Top of Page

JoT
Starting Member

United Kingdom
9 Posts
Posted - August 15 2017 :  16:04:07  Show Profile  Reply with Quote
Thank you, apswater. I''m just being overly-cautious since we had an attempted hack the other night. Some lovely person in Viet Name probed for an old sql-inject vulnerability (which no longer exists) the other night so I''m extra vigilant with the server logs atm.

JoT
Go to Top of Page

serjtankian
VP-CART Super User

Armenia
378 Posts
Posted - August 16 2017 :  14:50:52  Show Profile  Visit serjtankian's Homepage  Reply with Quote
with the latest SQL server patch, it''s not easy to inject. Hacking type has moved to social engineering which this actually not a hacking



*peace - serj*
Go to Top of Page

danielrichardson
VP-CART Super User

Australia
276 Posts
Posted - August 18 2017 :  05:11:44  Show Profile  Reply with Quote
one thing, better you use a hosted gateway like paypal, authnet, sagepay, or some, which no records any credit card data in your database.
Go to Top of Page

JoT
Starting Member

United Kingdom
9 Posts
Posted - August 18 2017 :  05:25:18  Show Profile  Reply with Quote
i agree, danielrichardson: we don''t store any cc data

JoT
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000
0 Item(s)
$0.00
  • Your Cart Is Empty