TulipTools Internet Business Owners and Online Sellers Community
›
Ecommerce
›
Ecommerce
›
Shopping Cart Scripts and Software
›
osCommerce, osCMax, and CRELoaded
Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
|
Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
|
|
01-26-2006, 09:55 AM,
 Post: #1 |
|||
|
|||
|
Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
Security hole found in osCommerce branch CRELoaded
Quote:Rather simple exploit, but still an exploit nonetheless. Attempts to upload php script and full article and code: http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5921&title=creLoaded%20%3C=%206.15%20(HTMLAREA)%20Automated%20Perl%20Exploit |
|||
![[+]](https://community.tuliptools.com/images/1/collapse_collapsed.gif)
|
01-27-2006, 07:27 AM,
Post: #2 |
|||
|
|||
|
Re: Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
Security concerns are part of the reasonĀ I skipped right by osCommerce when I selected a shopping cart.
|
|||
|
01-27-2006, 07:41 PM,
Post: #3 |
|||
|
|||
|
Re: Security Alert: creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
[quote author=valleygirl link=topic=2363.msg8424#msg8424 date=1138346831]
Security concerns are part of the reasonĀ I skipped right by osCommerce when I selected a shopping cart. [/quote] The software itself isn't the problem, its the end user that is the security concern because many people don't bother to (or don't know to) install security patches as soon as they are released...and when you're using a very popular script like osC that can be a very costly mistake.
"Well, Jay was so giddy that someone named Jay was involved with this site we posted our first non-eBay listing in 3 years here at Lunarbid (we tried two items at Yahoo once upon a time, they bombed)" -Marie posting in a LunarBid thread at OTWA in 2005 wins the award for 'most moronic reason ever given for choosing a venue"
"thanks twat u must have nothing better 2 do. do u talk to all your members like that. will not be recomending your site. best way to put it is TULIPTOOLS.COM IS REALLY SHIT. DONT JOIN." -pubescent owner of rinky dink off2auction.com in 2011 |
|||
|
« Next Oldest | Next Newest »
|
| Possibly Related Threads… | |||||
| Thread | Author | Replies | Views | Last Post | |
| osCMax vs. CRELoaded versions of osCommerce | regic | 1 | 3,852 |
08-21-2006, 10:46 PM Last Post: xppman |
|
Users browsing this thread: 1 Guest(s)
