WordPress 4.7.5 was released on May 16 and is an update which fixes six security issues of version 4.7.4 and earlier. The fixed security issues are: Insufficient redirect validation in the HTTP class. Improper handling of post meta data values in the XML-RPC API. Lack of capability checks for post meta data in the XML-RPC […]
WordPress 4.7.5 Security Update Weiter lesen »
WordPress 4.7.3 was released on March 6 and contains 39 maintenance fixes and fixes following six security issues: Cross-site scripting (XSS) via media file metadata. Control characters can trick redirect URL validation. Unintended files can be deleted by administrators using the plugin deletion functionality. Cross-site scripting (XSS) via video URL in YouTube embeds. Cross-site scripting (XSS)
WordPress 4.7.3 Security Update Weiter lesen »
The update for WooCommerce Version 2.6.14 was released on February 3. It’s an update which brings small improvements and fixes. * Fix – Ensure product exists in wc_update_product_stock. * Fix – Send emails using the site language. * Fix – Remove tilde typo. * Fix – Fixed notice in get_rating_count. * Tweak – Define arg
WooCommerce 2.6.14 Update Weiter lesen »
WordPress Version 4.7.2 was published on January 26 and contains three important security fixes. The security issues were: The user interface for assigning taxonomy terms was shown to users without the permission to use it in Press-This. WP_Query was vulnerable to a SQL injection when passing unsafe data. The update prevents plugins to accidently crate security
WordPress 4.7.2 Security Update Weiter lesen »
Magento 1.9.3.1 This update contains mostly functional fixes but also one fix for a CSRF vulnerability. It restored the old tax calculation algorithm for shipping charges. Resolved an issue with setting the session lifetime to 0. The monthly cron job that cleans up the table that contains IP addresses and passwords runs properly. All configurable
Magento 1.9.3.0-1 Updates Weiter lesen »
Magento 2.1.3 The latest version of Magento 2.1 was released on December 14 and contains 90 bug fixes and new features. The feature highlights of this version are: New PayPal and Braintree payment features Increase conversion rates through faster checkouts by empowering customers to save their PayPal account as a payment option. Reduce chargebacks and
Magento 2.0.10-11 and 2.1.3 Updates Weiter lesen »
Magento 2.1.1 This update after the big 2.1 update contains functional fixes and no security related fixes. Fixes issues: The installation with magento setup:upgrade –keep-generated works now and you can also upgrade now with sample data to 2.1.1. The Category page now displays current, rather than outdated, product prices. ier pricing now works correctly with
Magento 2.1.1-2 Updates Weiter lesen »
Heute habe ich über Twitter zufällig den SWITCH Security Report entdeckt. Das Computer Emergency Response Team (CERT) von SWITCH hat seit seiner Gründung energisch für die Cybersicherheit in der Schweiz gesorgt. Sein grösster Verdienst ist sicher, dass es – mit unermüdlichem Einsatz im Verborgenen – die Toplevel-Domain .ch nachweislich zu einer der sichersten weltweit und der
SWITCH Security Report Weiter lesen »
Fast jedem Online-Shop Betreiber sind die drei Buchstaben SSL schon mal begegnet. Doch kaum einer weiss was sich dahinter verbirgt. Es hat mit «Sicherheit» zu tun. Doch was genau wird damit sicher(er) und welcher (kaufmännische) Nutzen ergibt sich daraus? Wir klären auf! Was haben SSL und TLS gemeinsam? SSL steht für «Secure Sockets Layer» und
SSL: Unnötiger Hype oder echter Nutzen für Online-Shops? Weiter lesen »