Hello.
Based on the most recently available public information, a new method has been discovered that allows unauthorized access to a user's account.
Because of this, we reported the issue to the admin via PM and prepared a fix for older versions (2.x, 3.x).
More information can be found on link below + path for fix security issue:
https://www.opencart.com/index.php?rout ... n_id=47535
Last edited by faca5 on Tue Jun 17, 2025 9:01 pm, edited 2 times in total.
Izdelava spletne trgovine | Najem spletne trgovine | PHP programiranje
If there is a security issue, why not publish it, and provide a fix via github, to improve the OpenCart core code?
Export/Import Tool * SpamBot Buster * Unused Images Manager * Instant Option Price Calculator * Number Option * Google Tag Manager * Survey Plus * OpenTwig
Looks like the issue I reported in February last year.
Has been patched in 3.0.4.0 and above.
https://github.com/opencart/opencart/pull/13710
https://github.com/opencart/opencart/pull/13714
Has been patched in 3.0.4.0 and above.
https://github.com/opencart/opencart/pull/13710
https://github.com/opencart/opencart/pull/13714
Also patched in version 4.1.0.1 and above.
https://github.com/opencart/opencart/co ... 88dfd597cd
https://github.com/opencart/opencart/co ... 88dfd597cd
Excellent.
I have tested on 3.0.3.2. Didn't noted patch already exists in 3.0.4.0 and 4.1.0.1.
Thank you!
I have tested on 3.0.3.2. Didn't noted patch already exists in 3.0.4.0 and 4.1.0.1.
Thank you!
Izdelava spletne trgovine | Najem spletne trgovine | PHP programiranje
Who is online
Users browsing this forum: No registered users and 3 guests
