1. Jean Machuron
  2. Sherlock Holmes
  3. Bug report
  4. Thursday, 29 August 2019
  5.  Subscribe via email
Hello

We have an hotspot pro install working fine but since a couple of days some people try to hack it by directly adding parameters/words to the main hotspots page.
This provokes an sql error for now but we would like to fix it before it could give access to something else ?
To explain, the main map is at https://activ-ha.com/c/ and any correct address would be https://activ-ha.com/c/#something.
however attackers try to access https://activ-ha.com/c/somethingelse which gives a 1064 sql error :
You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near ') AND type_alias = 'com_hotspots.hotspot'' at line 3

Can you let me know how to solve this ?

Thanks
Jean
Responses (7)


There are %s replies to this question. If you want to see them you need a valid subscription.
If you have a valid subscription, please login now.
Visit store now
Sorry, the discussion is currently locked. You will not be able to post a reply or a comment at the moment.

Last questions

Hotspots Pro 6.0.13 compatability with Joomla 5.3.
Running Hotspots Pro 6.0.13 on Joomla 4.4.13 and want to upgrade to Joomla 5.3.1...
2 Replies
Posted on Friday, 04 July 2025
  • New
  • some questions on Hotspots
    Hi, On Hotspots extension : 1) is it possible to add our own map layer / v...
    0 Replies
    Posted on Thursday, 03 July 2025
  • New
  • Trying to resize the image in the comments
    Hey everyone, Basically I am trying to make the images in the comments smalle...
    9 Replies
    Posted on Wednesday, 12 August 2009
    J5 compatibility for Hotspots
    Hi guys, Just started to update my old J3x website. Is there J5 compatibility p...
    2 Replies
    Posted on Monday, 24 February 2025
    • #Hotspots
    • #hotspots Joomla 5
    error message when adding/cofiguring email address
    When configuring the email plugin that send a email message to admin when a new ...
    0 Replies
    Posted on Friday, 09 May 2025