On May 20 WooCommerce released a new update to fix some small security vulnerabilities and found bugs. Fixes and enhancements Added notice about public uploads directory. Disallow directory listing in woocommerce_uploads when «Redirect only» is the selected download method. Added correct handling of nonces to database update notice dismissal. Updated WooCommerce admin version to 1.1.3 […]
WooCommerce 4.1.1 Security and Fix Update Weiter lesen »
WordPress 5.4.1 was released on April 29 and features 17 bug fixes in addition to 7 security fixes. This update should be installed as soon as possible to fix the open vulnerabilities.All WordPress versions since 3.7 have an update available to fix the vulnerabilities. Security Fixes The following vulnerabilities have been found: Password reset tokens
WordPress 5.4.1 Security Update Weiter lesen »
Magento 2.3.5 was released on April 29 and includes over 180 functional fixes and over 25 security enhancements. Magento enhanced the userexperience and the security in this update. For more information on the installation of this update visit devdocs.magento.com. Security Patch (APSB20-22) Magento 1.9.4.5 contains this security patch too. This security patch fixes vulnerabilities that
Magento 2.3.5 Update Weiter lesen »
WooCommerce released a new security update on February 13. This update enhances the security and does not fix any vulnerabilities. Show a notice when a logged-in customer pays for a guest order. Disallow links in coupon error messages. Fix: Restored the default behavior of the «Shipping destination» option. Remember to create a backup before installing
WooCommerce 3.9.2 Security Update Weiter lesen »
WordPress 5.3.1 was released on December 13 and contains 46 fixes/enhancements and some security fixes. WordPress 5.3 and earlier are affected by this vulnerability and there are fixes for older versions of WordPress as well. You should install this update as soon as possible to protect your site against exploits. Security fixes Unprivileged user could
WordPress 5.3.1 Security Update Weiter lesen »
WordPress 5.2.4 was released on October 14 and fixes a few vulnerabilities in WordPress. This update is available for all versions of WordPress since 3.7 and fixes the following bugs: An issue where stored XSS (cross-site scripting) could be added via the Customizer. A method of viewing unauthenticated posts was disclosed. A vulnerability which allowed
WordPress 5.2.4 Security Update Weiter lesen »
Magento released new updates for Magento 1.9, 2.2 and 2.3. The most important changes are enhancing security and are making Magento PSD2 compliant. The new Payment Services Directive (PSD) regulation requires changes in the processing of credit cards, for example 3D-Secure is now required by the PSD2 regulation. Security Patch (SUPEE-11219) This security patch contains
Magento 1.9.4.3, 2.2.10 and 2.3.3 Updates Weiter lesen »
WooCommerce 3.7.1 brings two security fixes. The fixes only harden WooCommerce and do not fix vulnerabilities. We might have to wait for the next major release for them to be fixed entirely. Security Fixes Add an exit after the redirect when checking author archive capabilities for customers. Ensure 404 pages with single product urls cannot
WooCommerce 3.7.1 Security Update Weiter lesen »
After a summer break from updates, WordPress 5.2.3 received new security and bug fixes on September 5. For older versions of WordPress (down to 3.8.x) there is also a fix for jQuery, which was already in version 5.2.1, but not available for older versions of WordPress. WordPress 5.2.3 also fixes over 20 design and functionality
WordPress 5.2.3 Security and Fix-Update Weiter lesen »