Al Brookbanks Posted April 10, 2014 Share Posted April 10, 2014 We are pleased to announce the release of 5.2.9 which is available for immediate download. What's New? Session Fixation Vulnerability & Potential Session Hijack Patch. Thanks to James Sibley from http://www.pentester.co Shared SSL is not longer supported due to this vulnerability as session ID is no longer passed in URL New PayVector Module Improved PayPal Pro Direct Payment Error Handling Canonical Fix for "Sorting" variables Smarty Tags FIxed in Rich Text Editor "RTL" (right to left) language support fix Fix to prevent possible empty order email notifications Fixed hard coded links to admin folder in admin HTML and JS Other miscellaneous bug fixes Download Here: CubeCart 5.2.9 Link to comment Share on other sites More sharing options...
Recommended Posts