Al Brookbanks

Stupid CloudLinux playing up. Please try now..

Please see: https://support.cubecart.com/Knowledgebase/Article/View/228/43/how-do-i-upgrade-from-cubecart-v6-to-latest-v6

Please upgrade manually.

Hopefully it's not related to this: https://forums.cubecart.com/topic/52932-cubecart-6112-released-critical-security-update/ Please; make sure this store is patched. change the name of the admin_xxxxxx.php file and reflect the change in the includes/global.inc.php file. check for any administrator accounts that you don't recognise them and delete them if there are any. change your administrator password.

Just before the weekend Robin Peraglie from RIPS Technologies reported a critical security hole in all current CubeCart version 6 releases. All customers on our Technical Support & Management service plan have been contacted about this and 93% (with correct login on file) have been proactively patched over the weekend. If you are a client on this service plan who has been contacted to be told that we haven't been able to access your store, please login and update this information here as soon as you can and let us know. We will then get your store secured - please don't delay. CubeCart version 6.1.12 has been released which patches this vulnerability. If you can't upgrade to this version please either; make the code changes published against Github Issue #1763 -- or -- download CubeCart 6.1.12 and replace the classes/admin.class.php file. Download: CubeCart-6.1.12.zip At CubeCart we take security with utmost importance. We thank Robin for reporting this vulnerability responsibly and we hope that no CubeCart merchants are affected by this maliciously.

Great! We could do this under the Technical Support & Management plan. More info here: https://www.cubecart.com/technical-support

It will be something like: http://ostastore.com/shoposta/admin_xxxxxx.php xxxxx will be a random string of text and or number. You could find it via FTP or hosting file manager.

Hi Sandrine, 1. That might be a bug. 2. CubeCart always ask for a delivery address regardless if the order is digital or not. Something for a future release maybe. 3. This should be available since 6.1.11. https://github.com/cubecart/v6/issues/1748 Questions: 1. "is the outstanding balance still valid with the same code reference" yes. It is still available. I'm not sure it tells them but it is. 2. "When the recipient uses her/his gift card, can the value be redeemed to pay for shipping cost as well as products ?". Yes it comes off the net of the total basket.

CubeCart downloads and attempts to extract a zip file over existing files. It seems a lot of hosts block this working. Probably due to web server permissions.

It works from my testing. Anything in the PHP error log?

We are pleased to announce the release of 6.1.11. This is a maintenance release with a couple of minor new features. Upgrade is not essential but recommended. What's New? - 29 resolved issues - Improvements to structured data (Foundation skin) - Ace code editor added to replace code snippet text field. Netsparker Audit Result Passed with no exploitable security issues found. Download: CubeCart-6.1.11.zip

You could try this.. https://stackoverflow.com/questions/11658605/how-to-get-bxslider-to-hide-the-slides-until-the-page-loads

I remember you mentioning it now.

What version did you come from? It shouldn't be any different with any upgrade from v6.

Maybe I should reword it as I expect this isn't the first confusion. LOL

Orbit was discontinued which is why we chose BXSlider.

Welcome to CubeCart @Mgr

You should upgrade to CubeCart version 6 and use the new PayPal powered by Braintree extension.

Thanks Ian thats really insightful.

I don't know why the images don't show but I would restore a backup and start over.

It's impossible for me to know. If it wasn't done then the upgrade would have overwritten any customisations. It should have been done when any customisations were made. What do you mean be rerunning the upgrade? You can't just do it again expecting it to fix the issue unless it was restored to its previous state. Issues like this are impossible to advise about as we don't know the history and what has and hasn't been done. The server error is probably due to cache as it's not got the expected file structure. If you can roll it back to how it was before or if you have a backup of how it was prior upgrade we could get this all done for you via tech support.

I did wonder about MX records. I think Godaddy have outright blocked phpMailer since the recent security issue for PHP mail. Thanks for this.

Can't you use this? https://www.cubecart.com/extensions/payment-gateways/paypal-standard

I quite agree.

.. I thought you would pick up on that bit. Hehe.