PHPMailer version used in OXID eShop seems to be vulnerable. Fortunately, we do not use this vulnerable method in core. Please check your extensions/modules for using the vulnerable method and fix with the proposed workaround!
By default, admin templates in OXID eShop Professional and Enterprise Edition cannot be customized/extended. Here is a workaround to help you creating consistant patches.
https://oxidforge.org/wp-content/uploads/2021/05/apply-patch.png238858Benjamin Jörgerhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngBenjamin Jörger2021-05-26 12:26:582021-05-26 12:28:19Customize Admin Templates for Professional and Enterprise Editionen
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). PHP 8 will be supported while support for PHP 7.1 and 7.2 is going to be ditched. Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Heike Reuterhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngHeike Reuter2021-04-20 13:36:002021-04-20 13:37:25OXID eShop version 6.3.0
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
https://oxidforge.org/wp-content/uploads/2020/03/oxid_620.png219268Heike Reuterhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngHeike Reuter2021-04-20 13:32:202021-04-20 13:34:30OXID eShop version 6.2.4
The latest doctrine/dbal release could lead to fatal errors if you build up your own OXID eShop repository leveraging metapackages. Read in this blog post how to avoid this behavior.
https://oxidforge.org/wp-content/uploads/2021/04/Selection_144.jpg287290Clemens Scholzhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngClemens Scholz2021-04-12 14:56:572021-04-12 14:56:59Latest doctrine/dbal release could lead to fatal errors
Amazon Pay offers a newer version v3.6.8 of their OXID module and kindly requests customers to install this new version as soon as possible. In this blog post we show how you can update this module version with Composer as fast as possible. Of course, the new module version will be included in the next OXID eShop release.
We ditched the original idea of splitting all storefront OXID GraphQL modules into several fields. Learn why in this blog post.
https://oxidforge.org/wp-content/uploads/2021/02/OXID_graphQL.png286419Heike Reuterhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngHeike Reuter2021-02-26 17:46:032021-03-12 19:19:59About the discarded idea to distribute OXID GraphQL API with different modules
OXID eShop version 6.2.3 is released containing bug fixes, a security improvement, merged pull requests, composer v2 support, oe:module:uninstall-configuration and support for Symfony named services.
https://oxidforge.org/wp-content/uploads/2020/03/oxid_620.png219268Vasyl Liulkahttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngVasyl Liulka2020-11-24 10:53:002020-11-24 10:53:02OXID eShop version 6.2.3
When it comes to internationalization, localization might be an important part of it.
Finally, we were able to update our translation center to a new platform on Crowdin in order to make translations easier for you.
It turned out that Crowdin provides an highly integrated, easy to use and very intuitive platform which I am really happy with.
Read what exactly was changed (and unfortunately lost) with the update in this blog post.
https://oxidforge.org/wp-content/uploads/2020/10/hannah-wright-ZzWsHbu2y80-unsplash.jpg1138640Marco Steinhäuserhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngMarco Steinhäuser2020-10-07 10:50:402020-10-07 10:50:43Crowdin will become the next translation platform for OXID eShop
[Security Advisory] Phar object injection in PHPMailer – CVE-2018-19296
3 Comments/in blog English OXID Security Team / OXID Security TeamNews, Security
PHPMailer version used in OXID eShop seems to be vulnerable. Fortunately, we do not use this vulnerable method in core. Please check your extensions/modules for using the vulnerable method and fix with the proposed workaround!
Customize Admin Templates for Professional and Enterprise Editionen
0 Comments/in blog English benjamin.joerger / Benjamin Jörgeradmin, Development, Templates backend
By default, admin templates in OXID eShop Professional and Enterprise Edition cannot be customized/extended. Here is a workaround to help you creating consistant patches.
OXID eShop version 6.3.0
0 Comments/in blog English Heike Reuter / Heike ReuterNews, Releases
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). PHP 8 will be supported while support for PHP 7.1 and 7.2 is going to be ditched. Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
OXID eShop version 6.2.4
0 Comments/in blog English Heike Reuter / Heike ReuterNews, Releases
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
Latest doctrine/dbal release could lead to fatal errors
2 Comments/in blog English clemens.scholz / Clemens Scholzdoctrine/dbal, Tutorials backend
The latest doctrine/dbal release could lead to fatal errors if you build up your own OXID eShop repository leveraging metapackages. Read in this blog post how to avoid this behavior.
Security Advisory: Preventing Dependency Confusion in PHP with Composer
8 Comments/in blog English OXID Security Team / OXID Security TeamNews, Security
Recently, packagist.org warned about possible attacks in their blog. We want to escalate this warning to OXID module vendors.
Update Amazon Pay module
0 Comments/in blog English pll_603d20f59a55f marco.steinhaeuser / Marco Steinhäusermodules
Amazon Pay offers a newer version v3.6.8 of their OXID module and kindly requests customers to install this new version as soon as possible. In this blog post we show how you can update this module version with Composer as fast as possible. Of course, the new module version will be included in the next OXID eShop release.
About the discarded idea to distribute OXID GraphQL API with different modules
0 Comments/in blog English pll_601c30d328549 Heike Reuter, marco.steinhaeuser / Heike ReuterAPIs, Development, GraphQL
We ditched the original idea of splitting all storefront OXID GraphQL modules into several fields. Learn why in this blog post.
PhpStorm hacks for developers
2 Comments/in blog English vanilla thunder / vanilla thunderIDE, Infrastructure
PhpStorm is the most popular IDE for professional OXID developers. Here we will collect some useful hacks to make your coding experience even better.
OXID eShop version 6.2.3
0 Comments/in blog English vasyl.liulka / Vasyl LiulkaNews, Releases
OXID eShop version 6.2.3 is released containing bug fixes, a security improvement, merged pull requests, composer v2 support, oe:module:uninstall-configuration and support for Symfony named services.
eCommerce Services to disappear in OXID versions < 6
0 Comments/in blog English Vilma_liorensaityte / Vilma Liorensaityteannouncements, Backend, Releases
So called “ecommerce services” in OXID eShop admin panel will be removed as off today. This is just to inform you 😉
Crowdin will become the next translation platform for OXID eShop
0 Comments/in blog English marco.steinhaeuser / Marco Steinhäuseri18n, l10n, language, localization
When it comes to internationalization, localization might be an important part of it.
Finally, we were able to update our translation center to a new platform on Crowdin in order to make translations easier for you.
It turned out that Crowdin provides an highly integrated, easy to use and very intuitive platform which I am really happy with.
Read what exactly was changed (and unfortunately lost) with the update in this blog post.