Notice

The forum is in read only mode.

Support Forum

Welcome! Support Forums have been reactivated

Error security

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Today I have almost died when this error popped up from Akeeba Admin Tools and thought that I have been hacked.
I wanted to debug language files to locate strings to add and translate in JomSocial but on JomSocial page I have got this error:

Something on your site, most likely a highly insecure JoomlaShine template, is broken and tries to save the plugin state in the cache. This is a major security issue and will cause your site to not work properly. Go to your site's backend, Global Configuration and set Caching to OFF as a temporary solution. If you are using a JoomlaShine template contact them and ask for a full refund. They are aware of this major security issue since May 2017 and refuse to fix it. The only solution in this case is using a template from a different provider, preferably one who knows how to write secure code - unlike JoomlaShine.
Thing is I dont use JoomlaShine template.
Every other page is working properly except JomSocial pages where you see this blank page with this text. I thought that it was template issue but it happens on joomla default Beez or Protostar template.
Also i have disabled every component and module to see if thsi error comes from something else but error was still there.
Steps to replicate:
1. Go to Global Configurations
2. Enable Debug System or Debug Language
3. Go to JomSocial page and see the error

Attachments:
6 years 7 months ago
Licenses:

Zdravo Goran.

Thank you for contacting us.
I see this issue for the first time. Indeed it happens only on JomSocial pages.... so probably apply to plugin used there.
Could you try to disable ALL plugins (leave only those crucial like JomSocial User and Joomla! user) and check if anything changes.


- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Zdravo Michal, sorry this took me some time.
This is what I did:
1 method: disabled all plugins except debug plugin, admin tools and jomsocial and then activated them one by one Result same warning all the time...
2 method: changed template and repeated steps from method 1 same warning
3. uninstalled all components, all modules, all non system plugins except admin tools and jomsocial and templates same result
4. Reseted httacces file same result...
I dont know what to do anymore....

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Also I have started to receive
Deprecated: Methods with the same name as their class will not be constructors in a future version of PHP; plgSystemForceAvatar has a deprecated constructor in /plugins/system/forceavatar/forceavatar.php on line 13

Deprecated: Methods with the same name as their class will not be constructors in a future version of PHP; plgSystemForceFields has a deprecated constructor in /plugins/system/forcefields/forcefields.php on line 12

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Little progress I have started to recieve this error : Serialization of 'Closure' is not allowed
Instead of warning

Hope I will be able find culprit but it is definitely in JomSocial unfortunately :(

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Update: I have changed database coalition to utf-8 and now error displayed on JomSocial pages is: Serialization of 'JXMLElement' is not allowed

Hope this clues will help you Michal.

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

New update: I have uninstalled Akeeba Admin tools to see if this error gonna appear to make sure it is not Akeeba doing, activated language debug first and got this error:
Serialization of 'JXMLElement' is not allowed
deactivated lang debug and activated system debug and got the same error.
I have also disabled sef urls and rewriting but all the same...
This is related to JomSocial definitely.
There are no more options to explore for me.

Michal it is up to you now . :)

6 years 7 months ago
Licenses:

HI, Goran.

I'm passing this to our developer.
He'll contact you ASAP.


- Instead of saying: 'it's not working', explain the problem in detail.
- Screenshots with the URL visible in them and the problem marked are more than welcome.
- Tell us how to replicate the problem, we can't fix it if we can't find it.
- Make sure that your site/server meets JomSocial System Requirements
- Make sure to setup JomSocial Cron Job
- Always provide us with access details to the backend and ftp. We need it to debug problems.
- If you have a similar problem, but a solution you found isn't working, open a new thread instead of 'merging' with an existing one.

- Use the "Thank You" feature on any post that helped you
6 years 7 months ago
  • Dimas's Avatar
  • Dimas
  • Visitor
  • Thank you received: 0
Licenses:

Hi,

please check again it should be fine now..



I am not sure why its coming from, but I provide the fix into jomsocial code directly, seems this issue caused by cache files..

thank you!

Attachments:
6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Hello Dimas and thank you. I have updated JomSocial and Joomla and error is there again.
I am getting this error now:

Fatal error: Allowed memory size of 268435456 bytes exhausted (tried to allocate 107791776 bytes) in /home3/p7c2d9v1/public_html/plugins/system/debug/debug.php on line 1225
after upgrade to 4.4.1
Serialization of 'Closure' is not allowed

Attachments:
6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Can you tellme Dimas what file you were edited so I can apply that fix with future updates . If error reaper again
Thank you.

6 years 7 months ago
  • Dimas's Avatar
  • Dimas
  • Visitor
  • Thank you received: 0
Licenses:

Hi Goran,

to fix this
- Please you increase memory_limit on php configuration
- Open this file components/com_community/libraries/activities.php, find this code :

$cache = CFactory::getFastCache();
        $cacheid = __FILE__ . __LINE__ . serialize(func_get_args());
        if ($data = $cache->get($cacheid)) {
            return $data;
        }
replace to
try{
 $cache = CFactory::getFastCache();
        $cacheid = __FILE__ . __LINE__ . serialize(func_get_args());
        if ($data = $cache->get($cacheid)) {
            return $data;
        }
}
catch(exception $e)
{
//
}

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Hello Dimas and thank you again for your help. I have one question in that file I see several same lines with same code:

$cache = CFactory::getFastCache();
        $cacheid = __FILE__ . __LINE__ . serialize(func_get_args());
        if ($data = $cache->get($cacheid)) {
            return $data;
        }
Which one I need to replace

6 years 7 months ago
  • Goran's Avatar
    Topic Author
  • Goran
  • Offline
  • Junior Boarder
  • Posts: 140
  • Thank you received: 13
Licenses:
JomSocial Active GURU Expired Publisher Expired AdAgency Expired iSEO Active

Can you check it one more time and change that file so I dont make any errors.
I want to finish with this problem and move on :)

Moderators: Piotr Garasiński
Powered by Kunena Forum

Join 180,000 websites creating Amazing communities

JomSocial is the most complete, easy-to-use addon that turns Joomla CMS into a
full -fledged, social networking site

TRY NOW BUY NOW