PHP SQL injection flaw in xt: Commerce 3.0.4
In the version xt:Commerce 3.0.4 an error has been reported. xt:Commerce is a shop based on PHP
2011-02-21 00:00:00 2011-02-21 00:00:00 admin
Druch a bug in a php function eregi (null byte injection) to conduct SQL injection is possible in which the admin password can be reset. The bug is in the xt: Commerce Version 4.0.13 not be included.
The xt: Commerce developers are already responding to the vulnerability and a SECURITY FIX released.
xt: Commerce is a PHP shop has already been installed more than 100,000.
Related topics
News for PHP developers: Laravel 11 release
On March 12, 2024, the long-awaited version 11 of the Laravel framework was released, bringing with it a number of exciting new features and improvements for the PHP development community. ...

Autor :
Mike94
Category:
PHP Magazin
Multi-Branchen-Marktplatzsoftware 7.2.2 veröffentlicht
Die Software ebiz-trader steht in der Version 7.2.2 zur Verfügung. ...

Autor :
admin
Category:
Software & Web-Development
PHP World Kongress 2009 in München
Pierre Joye, Leiter Core-Team für PHP unter Windows stellt die aktuellste und die kommende PHP-Version vor. ...

Autor :
admin
Category:
Software & Web-Development
Zend Framework 1.8.2 veröffentlicht
Das zweites Maintenance Release des Zend Frameworks ist veröffentlicht worden ...

Autor :
admin
Category:
Software-Updates
PHP 7.0 Beta 1 veröffentlicht
Mit der PHP Version 7.0 b1 wurde die dritte Vorabversion der neuen PHP 7 Serie veröffentlicht. ...

Autor :
admin
Category:
Software & Web-Development
What's new in PHP 8.2.10
PHP 8.2.10 is one of the latest versions of PHP, which brings a number of improvements and new features. In this article we will discuss some of the outstanding new features and improvements in this version. ...

Autor :
admin
Category:
Software-Updates