mailing list archives
XSS Vulnerability in MIVA Merchant 5 - Includes Fix
From: admin () hyperconx com
Date: 14 Sep 2005 01:24:52 -0000
and checkout pages overriding various store safeguards and functions.
MIVA Corporation has been very cooperative and has already posted an update to their software entitled (core-4). Users
of MIVA Merchant 5 should login to their admin panels and allow the update wizard to make the current updates to
(core-4). An earlier patch entitled (core-2) should be installed prior to installing (core-4).
The update includes the sanity checking and cleanup of several key variables and fixes other security issues found with
the new templating system.
- XSS Vulnerability in MIVA Merchant 5 - Includes Fix admin (Sep 16)