v1.7x-v8x-v9x One Page Checkout & Social Login – PayPal, Stripe, COD v.2.9.4

V

vivozivo

Well-known member
☆ Pro ☆
Joined
Sep 24, 2019
Messages
1,566
Reaction score
1,011
Points
113
NullCash
1,067
1762516357796.png
One Page Checkout & Social Login simplifies the checkout process, enabling customers to check out faster, more easily, and securely. It supports PayPal, Stripe, PrestaShop Checkout, Google Pay, Amazon Pay, COD, bank wire, etc.

LINK

Test it and if you are satisfied, purchase from developer.
It is a matter of shop security.
 

Attachments

  • v2.9.4-ets_onepagecheckout.zip
    655.8 KB · Views: 29
  • readme_en.pdf
    2 MB · Views: 15
Y

yog78

Active member
XNullUser
Joined
May 25, 2021
Messages
1,509
Reaction score
8
Points
38
NullCash
3,949
Thank you very much for sharing this module.
 
JDforce7

JDforce7

Well-known member
Diamond
Elite
XNullUser
Joined
Apr 14, 2024
Messages
435
Reaction score
468
Points
63
Location
Pandora
NullCash
2,485
Thank you very much for sharing this module.
 
H

hxcode

Well-known member
☆ Pro ☆
Master
Joined
Aug 16, 2020
Messages
3,925
Reaction score
470
Points
83
NullCash
26
Thank you very much for sharing this module.
 
F

freiserk

Well-known member
☆☆ Special ☆☆
☆ Pro ☆
Master
Joined
Jan 24, 2019
Messages
3,535
Reaction score
6,638
Points
113
NullCash
28,425
moonfire said:
The file
"ets_onepagecheckout/views/templates/hook/frontJs.tpl"
is hard coded and contain the url
https://zdrowylab.pl
Click to expand...
It's loaded with "echo" from /ets_onepagecheckout/controllers/front/callback.php using the etsProsessProfile function.

1762701710342.png

There's also a hidden ".info" file with encryption in the module's root directory, present in both versions 2.7.4 and 2.7.5.

It's likely loaded from:

classes/OverrideUtil

classes/src/Storage/Session.php

Or even from order.php

In version 2.7.3, none of the above appears.

Nice catch!

Now let's see where they got the @vivozivo module from.
 
A

alphaz0r

New member
XNullUser
Joined
Nov 9, 2025
Messages
11
Reaction score
1
Points
3
Location
Lisbon
NullCash
5
Weird! even though thanks for the share! it's still useful for people who know how to code. They can still review the code and use what is there to build functionality
 
AquariusGaza

AquariusGaza

Well-known member
☆☆ Special ☆☆
☆ Pro ☆
Master
Joined
Sep 29, 2022
Messages
2,134
Reaction score
582
Points
113
NullCash
3,920
OLD VERSION.

LAST VERSION IS 2.9.5
 
moonfire

moonfire

Well-known member
Diamond
Elite
XNullUser
Joined
May 3, 2021
Messages
1,222
Reaction score
484
Points
83
NullCash
1,619
AquariusGaza said:
OLD VERSION.

LAST VERSION IS 2.9.5
Click to expand...
For the record, version 2.9.5 on this forum also contain the suspicions code that @freiserk , @alphaz0r and myself point out
Post automatically merged:

freiserk said:
It's loaded with "echo" from /ets_onepagecheckout/controllers/front/callback.php using the etsProsessProfile function.

View attachment 140454

There's also a hidden ".info" file with encryption in the module's root directory, present in both versions 2.7.4 and 2.7.5.

It's likely loaded from:

classes/OverrideUtil

classes/src/Storage/Session.php

Or even from order.php

In version 2.7.3, none of the above appears.

Nice catch!

Now let's see where they got the @vivozivo module from.
Click to expand...
As for the hidden ".info" file, its very common in the modules on this forum these days.
I haven't figured out where they come from yet.
Post automatically merged:

alphaz0r said:
Wish me luck, going to download it and audit it, then edit out the rogue code 🙏
Click to expand...
I wish you the best of luck :)

I've modified this module a bit. Removed some stuff and added some stuff. But I'm not done yet,
Let me know if you need a second eye when removing the rogue code.
 
Last edited:
I

infoseek

Member
XNullUser
Joined
Aug 11, 2021
Messages
870
Reaction score
3
Points
18
NullCash
18
thanks ,but old and please check if the above problem exists?
 
F

freiserk

Well-known member
☆☆ Special ☆☆
☆ Pro ☆
Master
Joined
Jan 24, 2019
Messages
3,535
Reaction score
6,638
Points
113
NullCash
28,425
moonfire said:
For the record, version 2.9.5 on this forum also contain the suspicions code that @freiserk , @alphaz0r and myself point out
Post automatically merged:


As for the hidden ".info" file, its very common in the modules on this forum these days.
I haven't figured out where they come from yet.
Post automatically merged:


I wish you the best of luck :)

I've modified this module a bit. Removed some stuff and added some stuff. But I'm not done yet,
Let me know if you need a second eye when removing the rogue code.
Click to expand...

We need to remove that ".info" file because it's extremely suspicious, or, in an isolated local environment, see what it generates and how it behaves on a network.

Thanks for your work.
 
You must log in or register to reply here.
Top