Tag Archives: security
Magento: Phoning home to Big Brother/Varien?
It appears some have claimed there Magento installation has been making calls back to IP’s owned by Varien/Magento, The thread is initially a year old, and more recent discussions have claimed they haven’t found anything of such nature. I know X-Cart used to use a javascript blank 1×1 gif image to track installations of X-Cart
Magento Version 1.3.2.4 Security Update XSS fix on registration page
If you are running a lower version than 1.3.2.4 of Magento, I’d highly recommend upgrading for security purposes as in the change log, a Cross Site Scripting attack was found in the customer registration page. Magento – Blog – Magento Version 1.3.2.4 Security Update – eCommerce Software for Growth. Possibly Related Posts: Magento vs X-Cart
Magento Security Vulnerability
A new vulnerability has been exposed by Artisan system, they have since removed this blog posting so I’m reposting it for those curious of the details of the exploit and how to correct the problems themselves, since all Varien is offering for a temporary band-aid over the problem is a simple change of admin URL.
Where to find me?
