VirtueMart 3.8.6 comes to address a new Cross-site Scripting (XSS) security vulnerability caused by the manufactuer dropdown which was found by 4N_CURZE.
The problem itself was easy to fix, although the value was whitelisted everywhere else, it was missing for the manufacturer drop-down list.
Besides, VirtueMart 3.8.6 also was added some new interesting features which are useful for real marketplaces, which offer products of different vendors. Multicart can be mentioned here. Multicart means for a multi-vendor shop, that there is an extra cart for each vendor. So when a customer buys products from different vendors he needs to do a...
Subscribe to this list via RSS
Blog posts tagged in virtuemart 3.8.6
VirtueMart 3.8.6 comes to address a new Cross-site Scripting (XSS) security vulnerability caused by the manufactuer dropdown which was found by 4N_CURZE.
The problem itself was easy to fix, although the value was whitelisted everywhere else, it was missing for the manufacturer drop-down list.
Besides, VirtueMart 3.8.6 also was added some new interesting features which are useful for real marketplaces, which offer products of different vendors. Multicart can be mentioned here. Multicart means for a multi-vendor shop, that there is an extra cart for each vendor. So when a customer buys products from different vendors he needs to do a...