I had a similar issue
Turn OFF your CACHE, then DELETE the whole cache folder, then try again.

I haven't tried it again recently, so not sure if it is working now or not, or caused by ES

Thanks for the reply

I've deleted the cache multiple times but it kept popping back up... For any serious membership site, this is a major major issue

Does it happen if CACHE is turned OFF?

When I was having similar issue, it only happened when a user fails to register, and the form is prefilled with the info he already entered so he does not have to enter everything again.

No it only happens with cache on...

I dont mind if the form gets prefilled.... the only issue is, if it gets prefilled with other people's information

I cant afford to run the site without any cache... so need a resolution for this..

I'm having issues with registration and caching too. There's also another thread with someone having the same issues as me.

As we speak, Mark is logged into my site and is looking at it, so hopefully a solution is round the corner.

Hello,

Can you try this,

1. Clear your browsers cache

2. Clear your Joomla's cache (Try clearing it multiple times, sometimes it's really sticky)

3. Download the attached file and upload it into /components/com_easysocial/controllers/

Thank you for the reply,

I can upload the file but but at this time I wont be able to turn the caches on since I am afraid I lack the capital to do it... When this issue started happening, I already cleared/deleted caches etc and informed the customer many times already that the issue "may" be resolved. There's a backlash because of other people's info showing up...

Is there a way that others can test it, and confirm that the issue is gone... rather than me testing it on the LIVE site... and I can then go ahead and bring the caches on...

Also, which caches do you want on? The "conservative" one in global settings? or the system - cache plugin? or both

Mark, please see my ticket. It is worse, much much worse.

On another device, I visited the site and was logged in as Super User.

The device hasn't visited the site for ages.

Despite login out several times, it kept login me back in as Super User by itself after visiting a few pages.

For obvious reasons this is the worse possible scenario for a site owner.

Site is now offline.

Hi Mark,

Is your issue happened only on your other device? How about if you access with your PC? Is this issue persist?
Please advise.

Hi Sam,

I'm going to do some testing today, but would appreciate it if Mark would have a look with the updated credentials provided on the CRM ticket that he has been working on.

I just can't risk putting the site live with such a serious security issue.

Some of the fixes from my site have made it through to 1.2.11, so I'm worried this could affect others too (see the post below for example. This patch came as a result of an issue I had reported).

http://stackideas.com/forums/editing-profile-logs-you-out

I'm now following 4 seperate topics regarding login, registration and cache and my site has experienced all of them.

As I have no choice but to delay launching the site, I think it would be good if you guys can collectively have a good look, thorough test (I don't mind how many users you have to create), so that we can all be 100% certain that one user cannot access another's data and worse still, won't suddenly find themselves logged in with Super Admin rights.

I know this is a really hard one for you to crack, but it's the stuff of nightmares for me when you are just about to put a site live that you have spent nearly 5 months building!

I do appreciated and thank Mark for the work is is doing in trying to fix this.

Mark.

Hello Mark,

Sorry I missed this ticket earlier. As I understand most of your issue has been fixed once you turned off the conflicting plugin with Supercache am I correct?

Hi Mark,

Yes, with a combination of your hard work in troubleshooting the issue, this fixes in 1.2.11 & 1.2.12, plus the excellent advice from Richard in this thread, things seem to have settled down.

I have friends doing some testing and trying to break things, so I will of course report back.

The bottom line is that I had to disable the Joomla Cache System Plugin. The Joomla cache in Global Configuration is fine to stay on.

Hope this helps others.

Mark.

Thanks for the heads up on this Mark