got this from my hosting company this week...
".... we have checked we still see these outdated scripts there.
Anchor CMS found - ():
define('VERSION', '1.5.6');
location:<location here>/ocart
Please make the required updates as soon as possible as insecure scripts can lead to compromised accounts and defacing of files which can have a severe effect on your security....."
any idea WTF they are talking about? they didn't supply a CVE number nor an exact script that was vulnerable... just what I have posted above....I have a feeling they just see a non 3.x version defined there.... maybe I'll just increase the version to 5.5.6 and shut them up LOL
Mike B
Do you really still use v.1.5.6.(0) ?define('VERSION', '1.5.6');
No wonder, is/that my advise don't work ...
Ernie
My Github OC Site: https://github.com/IP-CAM
5'200 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.
If you are using 1.5.6.0, you should definitely upgrade to 1.5.6.4, as some of the changes were security related.
Remember to backup everything and do a test upgrade before upgrading a live store.
Remember to backup everything and do a test upgrade before upgrading a live store.
I agree too. 1.5.6.5 is my first choice for the 1.5 line.
Opencart 1.5.6.5/OC Bootstrap Pro/VQMOD lover, user and geek.
Affordable Service £££ - Opencart Installs, Fixing, Development and Upgrades
Plus Ecommerce, Marketing, Mailing List Management and More
FREE Guidance and Advice at https://www.ecommerce-help.co.uk
Who is online
Users browsing this forum: Bing [Bot], jp1077 and 76 guests