Posting in the Magento forums has been disabled pending the implementation of a new and improved forum solution which should better serve the community.

For new questions please post at magento.stackexchange.com, the community-run support site for the Magento community. We will be providing updates on the new forum solution soon. For questions or concerns please email community@magento.com.

Magento Forum

[solved]Magento eCommerce Platform XXE Injection
 
kiatng
Enthusiast
 
Total Posts:  875
Joined:  2008-09-03
Kuala Lumpur, Malaysia
 

My client alerted me on this http://packetstormsecurity.org/files/114710/SA-20120712-0.txt and ask for a solution. The security team has confirmed the vulnerability (ver 1.6).  Any idea?

Ooops, solution is here http://www.magentocommerce.com/blog/comments/update-zend-framework-vulnerability-security-update/

 
Magento Community Magento Community
Magento Community
Magento Community
Magento Community
Magento Community
Back to top