VirtueMart 3.2.6 has been released to address a minor XSS vulnerability present in previous versions as well as improve the infrastructure. It occurred when the features feeds and search were used together. It happened only for feed enabled, so administrators can close the leak by disabling the feed functions.
The vulnerability has been addressed by using getCurrentUrlBy function, which works with a whitelist for variable names and it urlencodes any value.
DOWNLOAD VM3 NOWVirtueMart 3 component (core and AIO)
VirtueMart 3.2.6 Improvements
Important patch to prevent memory leak when switching languages.
usermodel, extra check if the already loaded user has...
Joomla
- Subscribe to this category
- Subscribe via RSS
- 50 posts in this category
Subcategories from this category:
Joomla Templates, Free Joomla Templates, Commercial Joomla Templates, Joomla Template Frameworks, Free Joomla Template Frameworks, Commercial Joomla Template Frameworks, Joomla Extensions, Free Joomla Search Extensions, Free Joomla Form Management, Free Joomla Video Player , Free Joomla File Management, Free Joomla Gallery Extensions , Free Joomla Real Estate Management, Free SEO Management, Free Joomla Shop Extensions, Free Joomla Social Extensions, Free Joomla Content Extensions, Free Joomla Performance Extensions, Free Joomla Menu Modules, Free Joomla Mobile Extensions, Free Joomla Multilanguage Extensions, Free Joomla Accordion Modules, Free Joomla Audio Players, Free Joomla Slideshow Modules, Free Joomla Weather Extensions, Free Joomla Backup Extensions, Joomla Location Map Extensions, Free Joomla Security Extensions, Joomla Service, Joomla General and 5 other subcategories.
VirtueMart 3.2.6 has been released to address a minor XSS vulnerability present in previous versions as well as improve the infrastructure. It occurred when the features feeds and search were used together. It happened only for feed enabled, so administrators can close the leak by disabling the feed functions.
The vulnerability has been addressed by using getCurrentUrlBy function, which works with a whitelist for variable names and it urlencodes any value.
DOWNLOAD VM3 NOWVirtueMart 3 component (core and AIO)
VirtueMart 3.2.6 Improvements
Important patch to prevent memory leak when switching languages.
usermodel, extra check if the already loaded user has...
Do not miss this great Olwebdesign Black Friday sale!
All templates in the site 20% OFF.
Use the code: 3DDsc20Co
This offer is valid 24-26 November...
Tagged in:
black friday deals
black friday offer
Free Joomla Templates
joomla 3.8 templates
joomla 3.x responsive templates
Last modified on
Do not miss the fantastic discount on best Joomla extensions.
We offer huge 35% discount on single Joomla extension subscriptions, apps, developer plans and bundles!
coupon code: BLACK
Coupon valid from 23rd to 28th November....
Last modified on