PHP SQL injection flaw in xt: Commerce 3.0.4
In the version xt:Commerce 3.0.4 an error has been reported. xt:Commerce is a shop based on PHP
2011-02-21 00:00:00 2011-02-21 00:00:00 admin
Druch a bug in a php function eregi (null byte injection) to conduct SQL injection is possible in which the admin password can be reset. The bug is in the xt: Commerce Version 4.0.13 not be included.
The xt: Commerce developers are already responding to the vulnerability and a SECURITY FIX released.
xt: Commerce is a PHP shop has already been installed more than 100,000.
Say thank you!
You like the article and want to thank the author? Send him an amount of your choice.
Say thanks!
Related topics
PHP 5.3.4 schließt 100 Bugs sowie offene Angriffspunkte
Nicht nur in PHP 5.3.4 wurden Bugfixes integriert sonder auch bei PHP 5.2.15 wurde nachgearbeitet. ...
Autor :
admin
Category:
Software & Web-Development
PHP World Kongress – 24. – 25. November 2009 Konferenzzentrum München
€ 100,- Rabatt für Besucher von www.php-resource.de! ...
Autor :
admin
Category:
Miscellaneous
500. Artikel bei phphatesme.com
Der 500. Artikel ist veröffentlicht. Eine Leistung, die den jungen Blog direkt an die Spitze der deutschsprachigen Bloggerszene katapultiert hat und das innnerhalb der letzten 1,5 Jahren. ...
Autor :
phphatesme
Category:
Software & Web-Development
Laravel 10 published
Laravel version 10 is available for download with a minimum requirement of PHP 8.1. ...
Autor :
admin
Category:
Software & Web-Development
xt:Commerce 6.5 for PHP 8.1 and new PayPal Checkout
The open source online store software xt:Commerce now supports PHP 8.1. in version 6.5 and discontinues support for PHP 7.4. ...
Autor :
TheMax
Category:
Software-Updates
Which technologies should a PHP programmer master?
In today's digital world, the role of a PHP programmer is of great importance. ...
Autor :
admin
Category:
Miscellaneous
