Aleksejs Posted February 28, 2008 Report Posted February 28, 2008 Nezinu, cik daudzi Latvijā izmanto, bet nesen te bija tēma par osCommerce izmantošanu, tādēļ - uzmanieties ;) http://www.heise-online.co.uk/security/Fla...s--/news/110199 The flawed processing of payment transactions in some web shops can allow goods to be purchased without payment. Web shops based on either of two open source shop systems – osCommerce and xt:commerce – are vulnerable when used in combination with 1&1's ipayment service to handle credit cards. The data sent back by ipayment concerning the success or failure of a transaction are not always correctly analysed; as a result, attackers may only need to call a static URL to make the shop think that payment has been made.
Aleksejs Posted February 29, 2008 Author Report Posted February 29, 2008 Nevis "droši vien", bet "ir izlabots" - raksta apakšā divas norādes uz ielāpiem!
Recommended Posts