phpmailer updates
-
Saturday, 14th January, 2017
-
21:53pm
All customer updates have had a patch applied to their sites to address potential vulnerabilities in third party programming plugin called "phpmailer" that sites use to send out customer order emails with.
phpmailer is used in over a million websites worldwide including non shopping cart websites like Wordpress, and just prior to Christmas 2016 and again in the new year 2017, vulnerabilities were discovered by global security researchers. The researchers determined a way that these holes could be exploited to allow attackers to use websites they do not own to send out spam emails. The original plugin's authors have released patched versions of the mailer to fix these security holes and we have now completed applying these fixes to ALL customer websites on the v1, v2, v3 and v4 ozcart platforms. We have also applied these changes to the websites of any hosting-only customers who are using third party scripts that use this programming plugin to send emails for their websites (e.g. Wordpress).
If you have any questions please contact our support team via the ticket system and we'd be glad to assist you further or answer your questions.
