PHP SQL injection flaw in xt: Commerce 3.0.4

In the version xt:Commerce 3.0.4 an error has been reported. xt:Commerce is a shop based on PHP

Druch a bug in a php function eregi (null byte injection) to conduct SQL injection is possible in which the admin password can be reset. The bug is in the xt: Commerce Version 4.0.13 not be included.


The xt: Commerce developers are already responding to the vulnerability and a SECURITY FIX released.


xt: Commerce is a PHP shop has already been installed more than 100,000.

 

Author

Ratings


Shopware macht mir einen guten Eindruck. Danke für den Tipp.
Written by phpler At 26.02.2011 13:28:02

Wir haben Shopware für uns entdeckt.
Written by admin At 25.02.2011 09:16:44

Welche Shopsoftware setzt Ihr so ein?
Written by phpler At 24.02.2011 10:02:43

Here you can write a comment


Please enter at least 10 characters.
Loading... Please wait.
* Pflichtangabe

Related topics

News for PHP developers: Laravel 11 release

On March 12, 2024, the long-awaited version 11 of the Laravel framework was released, bringing with it a number of exciting new features and improvements for the PHP development community. ...

Mike94

Autor : Mike94
Category: PHP Magazin

PHP Summit – Spring

Vom 21 bis 23. März 2011 präsentiert das PHP Magazin und die Entwickler Akademie den nächsten PHP Summit ...

admin

Autor : admin
Category: Software & Web-Development

PHP 7.0 Beta 1 veröffentlicht

Mit der PHP Version 7.0 b1 wurde die dritte Vorabversion der neuen PHP 7 Serie veröffentlicht. ...

admin

Autor : admin
Category: Software & Web-Development

What's new in PHP 8.2.10

PHP 8.2.10 is one of the latest versions of PHP, which brings a number of improvements and new features. In this article we will discuss some of the outstanding new features and improvements in this version. ...

admin

Autor : admin
Category: Software-Updates

Bootstrap 2.3.1 veröffentlicht

Das beliebt Frontend-Framework Bootstrap erhält nun doch eine neue 2.3.1 Version mit der die Entwickler einige Fehler beheben wollen. ...

admin

Autor : admin
Category: Software & Web-Development

Why texting with artificial intelligence is really good

Artificial intelligence is about to take over the world. The biggest companies are developing systems that can write a text for you. And they do it very well. ...

admin

Autor : admin
Category: SEO & Online-Marketing

Maßstäbe im Shophosting seit über 15 Jahren
Greifswald, Deutschland

Publish a press release

Share your news and information

Share your news and information with others

You want to inform other users about an interesting IT topic, then sign up now and share it with our PHP community

learn more

Publish a press release