02-12-2006, 07:51 PM
Quote:Whats New ... in v1.2.7
v1.2.7 is a security bugfix release. The changes included in this release are largely intended to provide more solid protection against a potential SQL injection attack or other attempted exploits.
No new features have been added in 1.2.7.
Five Bugfixes included:
- sanitization of input data across many files, to block hacking attempts
- added new /admin/includes/.htaccess file to prevent mis-use of files in subfolders
- rounding errors in tax calculations have been repaired
- music product-type had syntax error on call to extra_main_template_vars
- changed processing of SSL links in zen_redirect function to use $request_type as indicator
For a list of changed files, see docs/changelog-v1-2-7.html
Stay tuned for the upcoming v1.3.0 due shortly!
IMPORTANT NOTES
* Please be sure to review and apply the Site Security Recommendations to your site prior to taking your shop "live". If uncertain about how site security applies to you, talk to your web host to ensure that you have proper measures in place.
* If you are upgrading, it is recommended that you add the enclosed new /admin/includes/.htaccess file to your site.
http://www.zen-cart.com/modules/ipb/inde...opic=41626&st=0&#entry227307
download it at Sourceforge http://prdownloads.sourceforge.net/zenca...p?download
release notes: http://sourceforge.net/project/shownotes...p_id=83781&release_id=392886