PDA

View Full Version : Printable Catalog V3.0 MS2



michael_s
01-26-2009, 03:00 PM
This is a security update to this package. All versions prior to this v3.6 do not properly sanitize input and are vulnerable to XSS attacks.

v3.6 properly adheres to osCommerce input sanitizing standards and patches the vulnerability.

*** If you are using any version of this mod prior to v3.6, you are vulnerable to XSS attacks through the printable catalog module. ***

More... (http://addons.oscommerce.com/info/1410)