Jump to content

Archived

This topic is now archived and is closed to further replies.

ardesjo

Customer saw other customers cart?

Recommended Posts

This is freaky. I just got an Email from a customer. She said that when she went to our webshop she could see another persons name and shopping cart content...

She named the person, and it matched to an order that had been placed just 10 minutes before I recieved the Email.

 

She said she proceded to log out and log in with her own account and then had a friend of hers go to our webshop, and the friend could now see what she had in her cart.

 

What the heck is going on?

Share this post


Link to post
Share on other sites

This is freaky. I just got an Email from a customer. She said that when she went to our webshop she could see another persons name and shopping cart content...

She named the person, and it matched to an order that had been placed just 10 minutes before I recieved the Email.

 

She said she proceded to log out and log in with her own account and then had a friend of hers go to our webshop, and the friend could now see what she had in her cart.

 

What the heck is going on?

You need to try a couple of different setting in your admin panel.

 

Administration -> Configuration -> Sessions -> set Recreate Sessions to TRUE

 

While you are there, set Prevent Spider Sessions to TRUE

 

Try that..


Community Bootstrap Edition, Edge

 

Avoid the most asked question. See How to Secure My Site and How do I...?

Share this post


Link to post
Share on other sites

×