Wir möchten Redundanzen innerhalb der OXID Plattformen abbauen und die einzelnen Plattformen stärken. Daher können jetzt neue Blogbeiträge direkt im Forum unter der Kategorie “Blog” veröffentlicht werden.
To provide the customers with a safe shopping experience operate your OXID eShop smoothly, make sure you install the latest OXID eShop version 6.4.1. As per version 6.4.1, we have fixed, among others, a security issue in the core application (). Our colleagues at PAYONE have taken care of some bugs in their module as […]
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Christoph Albrechthttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngChristoph Albrecht2022-02-08 15:25:242022-02-08 15:25:25OXID eShop Version 6.4.1
To improve security and performance, we have ensured you can now use PHP 8.0. Note that we no longer support PHP 7.3 since this version has reached end of life. We have updated the GraphQL and B2B modules also to support PHP 8.0. Also, we ensured OXID eShop is compatible with the updated modules. In […]
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Christoph Albrechthttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngChristoph Albrecht2021-12-15 15:43:092022-03-23 10:50:32OXID ESHOP VERSION 6.4.0
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning input parsing in Smarty plugins – many thanks to Dr. Dominic Breuker @it.sec!! Security improvement concerning template names. Security improvement for vulnerability in jQuery library
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Tomas Cesnauskashttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngTomas Cesnauskas2021-08-03 13:46:192021-08-03 13:54:48OXID eShop version 6.3.1
Security improvement concerning input parsing in Smarty plugins – many thanks to Dr. Dominic Breuker @it.sec!! Security improvement concerning template names. Security improvement for vulnerability in jQuery library
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Tomas Cesnauskashttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngTomas Cesnauskas2021-08-03 13:46:022021-08-03 13:54:39OXID eShop version 6.2.5
OXID eShop v7.0.0 release candidate 1 is publicly available. You may find it tagged as https://github.com/OXID-eSales/oxideshop_metapackage_ce/releases/tag/v7.0.0-rc.1 on GitHub. A „stable“ version is much more than just a software package, as for example compatible modules, documentation for this series, content of OXID Academy, tools for updating etc. need to be prepared and shipped as well. All […]
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Benjamin Jörgerhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngBenjamin Jörger2021-07-22 14:25:242021-07-22 14:25:25OXID eShop v7.0.0 RC.1 is published
PHPMailer version used in OXID eShop seems to be vulnerable. Fortunately, we do not use this vulnerable method in core. Please check your extensions/modules for using the vulnerable method and fix with the proposed workaround!
By default, admin templates in OXID eShop Professional and Enterprise Edition cannot be customized/extended. Here is a workaround to help you creating consistant patches.
https://oxidforge.org/wp-content/uploads/2021/05/apply-patch.png238858Benjamin Jörgerhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngBenjamin Jörger2021-05-26 12:26:582022-03-15 10:13:12Customize Admin Templates for Professional and Enterprise Editionen
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). PHP 8 will be supported while support for PHP 7.1 and 7.2 is going to be ditched. Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
https://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.png00Heike Reuterhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngHeike Reuter2021-04-20 13:36:002021-04-20 13:37:25OXID eShop version 6.3.0
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
https://oxidforge.org/wp-content/uploads/2020/03/oxid_620.png219268Heike Reuterhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngHeike Reuter2021-04-20 13:32:202021-04-20 13:34:30OXID eShop version 6.2.4
The latest doctrine/dbal release could lead to fatal errors if you build up your own OXID eShop repository leveraging metapackages. Read in this blog post how to avoid this behavior.
https://oxidforge.org/wp-content/uploads/2021/04/Selection_144.jpg287290Clemens Scholzhttps://oxidforge.org/wp-content/uploads/2018/01/OXID_forge_sub.pngClemens Scholz2021-04-12 14:56:572021-04-12 14:56:59Latest doctrine/dbal release could lead to fatal errors
Amazon Pay offers a newer version v3.6.8 of their OXID module and kindly requests customers to install this new version as soon as possible. In this blog post we show how you can update this module version with Composer as fast as possible. Of course, the new module version will be included in the next OXID eShop release.
OXID eShop Version 6.4.1
in blog English / Christoph AlbrechtTo provide the customers with a safe shopping experience operate your OXID eShop smoothly, make sure you install the latest OXID eShop version 6.4.1. As per version 6.4.1, we have fixed, among others, a security issue in the core application (). Our colleagues at PAYONE have taken care of some bugs in their module as […]
OXID ESHOP VERSION 6.4.0
0 Comments/in blog English / Christoph AlbrechtNews, Releases
To improve security and performance, we have ensured you can now use PHP 8.0. Note that we no longer support PHP 7.3 since this version has reached end of life. We have updated the GraphQL and B2B modules also to support PHP 8.0. Also, we ensured OXID eShop is compatible with the updated modules. In […]
OXID eShop version 6.3.1
0 Comments/in blog English / Tomas CesnauskasNews, Releases
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning input parsing in Smarty plugins – many thanks to Dr. Dominic Breuker @it.sec!! Security improvement concerning template names. Security improvement for vulnerability in jQuery library
OXID eShop version 6.2.5
0 Comments/in blog English / Tomas CesnauskasNews, Releases
Security improvement concerning input parsing in Smarty plugins – many thanks to Dr. Dominic Breuker @it.sec!! Security improvement concerning template names. Security improvement for vulnerability in jQuery library
OXID eShop v7.0.0 RC.1 is published
0 Comments/in blog English / Benjamin JörgerNews, OXID7, Releases
OXID eShop v7.0.0 release candidate 1 is publicly available. You may find it tagged as https://github.com/OXID-eSales/oxideshop_metapackage_ce/releases/tag/v7.0.0-rc.1 on GitHub. A „stable“ version is much more than just a software package, as for example compatible modules, documentation for this series, content of OXID Academy, tools for updating etc. need to be prepared and shipped as well. All […]
[Security Advisory] Phar object injection in PHPMailer – CVE-2018-19296
0 Comments/in blog English / OXID Security TeamNews, Security
PHPMailer version used in OXID eShop seems to be vulnerable. Fortunately, we do not use this vulnerable method in core. Please check your extensions/modules for using the vulnerable method and fix with the proposed workaround!
Customize Admin Templates for Professional and Enterprise Editionen
0 Comments/in blog English / Benjamin Jörgeradmin, Development, Templates backend
By default, admin templates in OXID eShop Professional and Enterprise Edition cannot be customized/extended. Here is a workaround to help you creating consistant patches.
OXID eShop version 6.3.0
0 Comments/in blog English / Heike ReuterNews, Releases
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). PHP 8 will be supported while support for PHP 7.1 and 7.2 is going to be ditched. Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
OXID eShop version 6.2.4
0 Comments/in blog English / Heike ReuterNews, Releases
Additionally to bug fixes this patch release contains merged pull requests (thanks to you guys!). Security improvement concerning voucher handling (thanks to dreikern.io) . Pre-installed module: Usercentrics CMP, Third gender support in forms (thanks to 4takte), Klarna Support for new countries added (IT, ES, FR and BE).
Latest doctrine/dbal release could lead to fatal errors
2 Comments/in blog English / Clemens Scholzdoctrine/dbal, Tutorials backend
The latest doctrine/dbal release could lead to fatal errors if you build up your own OXID eShop repository leveraging metapackages. Read in this blog post how to avoid this behavior.
Security Advisory: Preventing Dependency Confusion in PHP with Composer
0 Comments/in blog English / OXID Security TeamNews, Security
Recently, packagist.org warned about possible attacks in their blog. We want to escalate this warning to OXID module vendors.
Update Amazon Pay module
0 Comments/in blog English pll_603d20f59a55f / Marco Steinhäusermodules
Amazon Pay offers a newer version v3.6.8 of their OXID module and kindly requests customers to install this new version as soon as possible. In this blog post we show how you can update this module version with Composer as fast as possible. Of course, the new module version will be included in the next OXID eShop release.