osCommerce News
Recent posts
post item
osCommerce 4.07 release
October 26, 2022
osCommerce 4.07 release notes  ...
post item
FREE osCommerce Design Webinar
October 18, 2022
osCommerce is looking to have a Webinar to demonstrate how to modify existing and create new designs. All interested parties, businesses, designers, and developers, are welcome to indicate their interest to participate by commenting on this post in our Forums: https://forums.oscommerce.com/topic/497631-webinar-oscommerce-design/ See you online soon! ...
post item
osCommerce Apps - free until 1/1/23
October 13, 2022
While the osCommerce team are working hard on adding apps to the App Shop, we have decided to make ALL available osCommerce-made applications free in the App Shop until the 1st of January 2023.  You're welcome to download any app via the App shop, and use it to build your own osCommerce site or such for your client. Your feedback is highly appreciated.  With best wishes, osCommerce team ...
post item
osCommerce 4.05 release
September 21, 2022
osCommerce 4.05 has been released! Read more to find out how to upgrade to the latest version and what has changed ...
post item
Hybrid Ecommerce
August 16, 2022
osCommerce brings a new type of Ecommerce platform to the market - a so called Hybrid Ecommerce. So what is Hybrid Ecommerce? We see it to be the best of both worlds - an open source (and free) Ecommerce solution that is also hosted as if it was SaaS (or EaaS - Ecommerce as a Service). This means users (businesses and developers) do not need to worry about hosting requirements and at the same time have full access to the source code and can change or implement any custom features, integrations, etc. Of course, it is always possible to host osCommerce on your own server! It is just so much easier (and quite likely more cost effective!) to use osCommerce's own hosting solutions.  Hybrid Ecommerce from osCommerce Users can choose to have osCommerce installed for free on one of our servers to try osCommerce before use.  Once satisfied with its features, speed, robustness - they can choose to move to a paid osCommerce hosting account or to download and use osCommerce site on their own server. Move to an osCommerce-managed server is done automatically. Server environment is optimised for osCommerce, allowing it to give the best performance. It is also managed and upgraded with the latest server software. Most importantly, osCommerce installation can be automatically updated to the latest version of osCommerce (and Applications) as well. Any customisations, done right, will stay but all the standard modules and the core of osCommerce will be regularly updated, bringing fixes, changes, new features. Full FTP and mySQL access are offered to businesses and developers should they require such.   ...
post item
osCommerce 4.03 release
August 16, 2022
osCommerce 4.03 has been released. Read more about what's new in the latest version of popular open source free shopping cart! ...
post item
osCommerce 4.02 release
August 09, 2022
osCommerce 4.02 release, update notes, download instructions ...
post item
osCommerce 4.01 release
August 04, 2022
osCommerce 4.01 is available from https://www.oscommerce.com   Changes are available from osCommerce Wiki:  https://wiki.oscommerce.com/index.php?title=Change_Log We will continue working on fixing issues and adding features, osCommerce will be regularly developed and updated. ...
post item
osCommerce 4.0 Interview
August 03, 2022
What is osCommerce 4.0? How it was created and why? What is the team behind osCommerce? How was osCommerce released during the war in Ukraine?  All of this and more in the video interview, done by David Goodale of Merchant Accounts (Canada):     Visit Merchant Accounts Canada  for the full video and transcript ...
post item
osCommerce proudly developed in the UK and Ukraine
July 27, 2022
As many readers would know, osCommerce is headquartered from the UK but the majority of our team members are in Ukraine. Same as it was for Magento btw, and for many other amazing technological solutions. What many readers perhaps do not realize is that osCommerce continues to be developed while the war is raging in Ukraine.  For example, the final touches to version 4 were made in the evening, while air raid sirens were wailing in many locations in Ukraine where our colleagues are located. We would like to once again express our appreciation and applaud the strong spirit of our colleagues who managed to complete their task (be it with a delay) and release osCommerce 4.0! Those men and women who continue to work hard on adding more features, enabling the App Shop, fixing those teething problems that users of osCommerce report to us. We are working hard to release more features and solutions, and will be updating you in due course! ...
Products
osCommerce Online Merchant v2.3.4
We're proud to announce the release of osCommerce Online Merchant v2.3.4! This release introduces a new Content Modules feature, secures the Administration Tool if SSL is enabled, and includes new and updated payment modules. Content Modules Content Modules is a new feature that builds and loads the content of a page through modules. The My Account, Login, and Checkout Success pages have been updated in this release to utilize Content Modules and can now be customized and manipulated through modules without editing source code files. Other pages will soon be updated to utilize Content Modules in following releases and improved on with your help and feedback. Log In with PayPal The first featured Content Module being introduced is Log In with PayPal which can be added to the Login page. This allows customers to authenticate themselves through PayPal without needing to create a local store account. Log In with PayPal supports a seamless checkout experience with PayPal Express Checkout where customers don't need to log in again when purchasing and starting the PayPal Express Checkout flow. HTTPS Administration Tool The Administration Tool now loads in HTTPS if SSL has been enabled on the store. Payment Modules The following payment modules have been updated to utilize the latest payment gateway APIs and to have each secured API call verified through CA public certificates. Some payment modules have also been updated to support stored card tokens where customers can securely store their card payment information at the payment gateway and to reference their cards in later purchases without needed to retype their card information again. These include: Sage Pay Direct Stripe Braintree PayPal The following modules have been updated: PayPal Express Checkout v3.0 PayPal Payments Standard v3.1 PayPal Payments Pro (Direct Payment) v3.0 PayPal Express Checkout (Payflow Edition) v3.0 PayPal Payments Pro (Payflow Edition) v3.0 The following modules are being introduced: PayPal Payments Pro (Hosted Solution) v1.0 The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/paypal Sage Pay The following modules have been updated: Sage Pay Direct v3.0 Sage Pay Form v2.0 Sage Pay Server v2.0 The following modules are being introduced: Sage Pay Cards Management Page (content module) The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/sage_pay Authorize.net The following modules have been updated: Authorize.net Server Integrated Method (SIM) v2.0 Authorize.net Advanced Integration Method (AIM) v2.0 The following modules are being introduced: Authorize.net Direct Post Method (DPM) v1.0 The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/authorizenet Stripe The following modules are being introduced: Stripe.js v1.0 (payment module) Stripe Cards Management Page (content module) The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/stripe Braintree The following modules are being introduced: Braintree v1.0 (payment module) Braintree Cards Management Page (content module) The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/braintree WorldPay The following modules have been updated: WorldPay Hosted Payment Pages v2.0 The modules can be downloaded separately for existing stores at: https://addons.oscommerce.com/service/worldpay General Updates This release also includes the following general updates: Orders can now be blocked when no defined shipping rate is available for the destination Session management improvements Payment Acceptance box introduced jQuery libraries updated and minor bug fixes and improvements Download osCommerce Online Merchant v2.3.4 can be downloaded in full and update packages from: https://www.oscommerce.com/Products Thank You! We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. altoid ArtcoInc burt dculley Gergely Gyakutsuki hax8220 joli1811 mattjt83 tim_ver Tsimi wHiTeHaT Reference The osCommerce Online Merchant release notes and upgrade guides can be found at: https://library.oscommerce.com/Online&en&oscom_2_3&release_notes  
Member of the Year 2013 and Month Awards
Member of the Year 2013 The votes are in and we're excited to announce the Member of the Year 2013! We'd like to thank the community for nominating members of the month throughout 2013 and for voting their favourite members for the year. We actually have two winners to announce with the Member of the Year 2013 awards going to  Gary (burt)  and  Jim (kymation) ! Congratulations! On behalf of the community we would like to thank you for the dedicated and continuous support you have provided in helping many store owners and developers around the world with their online stores. We hope you enjoy your 12 month Community Sponsorship prizes! 1 month Community Sponsorship prizes also go to  Ron (starbuck169) ,  Peder (pederb) , and  Tim (clustersolutions)  - thank you for submitting your votes for Member of the Year 2013! Member of the Month Jan/14 We'd like to congratulate  Heather (Mort-lemur)  for being Member of the Month Jan/14 and  Steve (14steve14)  for your nomination. Both are rewarded a 1 Month Community Sponsorship! Member of the Month Feb/14 We'd like to congratulate  Gary (WebSource 5)  for being Member of the Month Feb/14 and  Steve (altoid)  for your nomination. Both are rewarded a 1 Month Community Sponsorship! Submit Your Nomination! If you have been helped by a community member, please consider nominating them for Member of the Month - all Member of the Month winners are voted on at the end of the year to find the ultimate Member of the Year for that year. Nominations for Member of the Month can be submitted in the following forum channel: https://forums.oscommerce.com/forum/96-member-of-the-month-nominations/ Starting this year, all Member of the Month winners and a random community member that has nominated receive a 1 month Community Sponsorship prize! We'd also like to thank the whole community for continuing to help each other out - we look forward to what the new year brings!  
Member of the Month Awards and Member of the Year
We have been proudly promoting helpful members in the community as Member of the Month and we're excited to announce that both Members of the Month as well as those submitting nominations can now win awards! Each month, the chosen Member of the Month as well as a random nomination will win a 1 Month Community Sponsorship prize. This starts this month with the nominations submitted for Member of the Month January 2014. In December of each year, every chosen Member of the Month for the same year will enter a poll for the community to vote on to become the ultimate Member of the Year and will win a 12 Month Community Sponsorship prize. For Member of the Year 2013, the Members of the Month for 2012 will be included in the poll. Three random votes will win a 1 Month Community Sponsorship prize. If a winning community member already has an active Community Sponsorship, their sponsorship duration will be extended with the winning award. To nominate a community member as Member of the Month, submit your nomination in the following forum channel and be in the draw to win a 1 Month Community Sponsorship prize: https://forums.oscommerce.com/forum/96-member-of-the-month-nominations/   (community login required) To vote on the ultimate Member of the Year 2013, place your vote in the following poll and be in the draw to win a 1 Month Community Sponsorship prize: https://forums.oscommerce.com/topic/395387-member-of-the-year-2013/   (community account required to vote)  
osCommerce Online Merchant v2.3.3.4
osCommerce Online Merchant v2.3.3.4 is a general maintenance release focusing on improving core features and the Database Tables "Convert to UTF-8" action introduced in the previous release. This release is in preparation of and building up to v2.3.4. Changelog MySQL Error Functions (Harald) Don't pass a null parameter to the MySQL error functions otherwise PHP will display a warning message. UTF-8 Conversion (Harald) Also manually convert existing data records to UTF-8 and detect encodings to prevent double encodings. Allow a dry-run to show which queries would be performed. LC_NUMERIC Locale (Harald) As LC_ALL is now being used to set the locale, some languages other than English were using commas in float/decimal values which conflicted with MySQL. LC_NUMERIC is now set and forced to the system locale after the main language file has loaded. Release and Upgrade Guide A detailed release and upgrade guide is available online at: https://library.oscommerce.com/Online&en&oscom_2_3&release_notes&v2_3_3_4 Download Full and Update Packages of osCommerce Online Merchant v2.3.3.4 can be downloaded at: https://www.oscommerce.com/Products Thank You! We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. Bug Reporters ABS0lute RWork ungovernable Testers ABS0lute rexxy Shuen Reference A full list of source code changes can be seen at: https://github.com/osCommerce/oscommerce2/compare/v2.3.3.3...upgrade2334  
osCommerce Online Merchant v2.3.3.3
osCommerce Online Merchant v2.3.3.3 is a general maintenance release focusing on improving core features and introducing new security check modules. This release is part of a regular release cycle in preparation of and building up to v2.3.4. Changelog Database Query Logging (Harald) Improve database query error logging. Administration Tool Navigation Menu (Harald) Dynamically load navigation boxes. HTTPS -> HTTP Browser Alert (Harald) Have forms posting from a HTTPS to HTTP page post to a HTTPS version to prevent the browser (Firefox) from alerting the user of being directed to an insecure page. Currencies (Harald) Force decimal places value to an integer value. Action Recorder (Harald) When expiring logged entries, don't pass the database connection link to tep_db_affected_rows(). UTF-8 (Harald) Set the MySQL character set to UTF-8 after a connection is made. Create the database tables in utf8_unicode_ci for new installations. Set the English locale to en_US.UTF-8, en_US.UTF8, enu_usa. Date of Birth (Harald) Take the Configuration -> Minimum Values -> Date of Birth value into consideration to make the date of birth field optional. Administration Tool Automatic HTTP Authentication Login (Harald) Don't use the HTTP Authentication values when the login form is being submitted. Don't show an invalid administrator notice when an automatic HTTP Authentication fails. Don't record failed automatic HTTP Authentication log ins. Canonical Manufacturer ID (Gary) Force the Manufacturer ID to an integer value. Administration Tool -> Who's Online (Harald) Remove the session_decode() functionality and show shopping cart contents only for logged in customers. When regenerating a session ID, update the session ID in the who's online database table to prevent duplicate entries. MailChimp 360 (Foxp2) Fix module title. Administration Tool Extended Security Check Modules (Harald) Introduce new extended security check modules that are called in the new Administration Tool -> Tools -> Security Checks page. These modules are not called on the Administration Tool Dashboard page as normal security check modules as these modules are more resource intensive. New modules include: admin/backups directory public accessibility check admin/backups file public accessibility check admin http authentication check ext/ directory public accessibility check mysql utf8 database tables check version update performed check (30 days) A normal extended_last_run security check module is also added to check if the extended checks have run in the last 30 days. Administration Tool -> Tools -> Database Tables (Harald) Introduce a new Database Tables page to check, analyze, optimize, and repair database tables. A Convert to UTF8 action is also available to convert existing database tables to utf8_unicode_ci. Release and Upgrade Guide A detailed release and upgrade guide is available online at: https://library.oscommerce.com/Online&en&oscom_2_3&release_notes&v2_3_3_3 Download Full and Update Packages of osCommerce Online Merchant v2.3.3.3 can be downloaded at: https://www.oscommerce.com/Products Thank You! We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. Bug Reporters ABS0lute Bob Terveuren D-BlooD dculley Jack_mcs mvanderhoff Scottyj skleiner t.man Reference A full list of source code changes can be seen at: https://github.com/osCommerce/oscommerce2/compare/v2.3.3.2...upgrade2333  
osCommerce Online Merchant v2.3.3.2
osCommerce Online Merchant v2.3.3.2 is a general maintenance release focusing on PHP 5.5 compatibility, improving core features, and introducing new modules. This release is part of a weekly release schedule leading up to the final v2.3.4 release. Changes PHP 5.5 Compatibility Replace mysql_* database function calls with mysqli_*. (Harald) Administration Tool -> Dashboard -> Partner News Add new Administration Tool Dashboard module. (Harald) Administrator Account Initialization Prevent empty administrator account from being initialized. (Harald) tep_catalog_href_link() Take the catalog HTTPS path into consideration for HTTPS links. (Harald) Administration Tool Navigation Menu Collapse navigation menu on the Dashboard page. (Gergely) Google+ +1 and Google+ Share Social Bookmark Modules Show the button images in the chosen language. (Gergely) Template Modules Only include template module class files and language definitions if their files exist. (Harald) Canonical Header Tag Module Link to the main product information page and ignore product attribute combinations. (Gary) New Twitter Product Card Header Tag Module Add Twitter Product Card meta tags to the product information page. (Gary) New Google AdWords Conversion Tracking Header Tag Module Add Google AdWords Conversion Tracking code to the checkout success page. (Gary) Upgrade from v2.3.3.1 to v2.3.3.2 A detailed upgrade guide is available online at: https://library.oscommerce.com/Online&en&oscom_2_3&release_notes&v2_3_3_2 Download Full and Update Packages of osCommerce Online Merchant v2.3.3.2 can be downloaded at: https://www.oscommerce.com/solutions/downloads Thank You! We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. Bug Reporters GniDhal kymation Reference A full list of source code changes can be seen at: https://github.com/osCommerce/oscommerce2/compare/v2.3.3.1...upgrade2332  
osCommerce Online Merchant v2.3.3.1
osCommerce Online Merchant v2.3.3.1 is a security and general maintenance release focusing on improving core features. This release is in preparation of v2.3.4 containing additional improvements. Changes Who's Online Parse REQUEST_URI with tep_db_prepare_input() before storing the value in the database. Replace REMOTE_ADDR with tep_get_ip_address(). Administration Tool -> Catalog -> Categories/Products Fix product price gross tax calculations when adding or editing products. Session Register a shutdown function to close and write the session data. Also check for and allow , (comma) and - (minus) characters in the session ID. tep_redirect() When redirecting from HTTPS -> HTTP and replacing the url with a HTTPS version, also take DIR_WS_HTTPS_CATALOG into consideration which may differ from DIR_WS_HTTP_CATALOG. Upgrade from v2.3.3 to v2.3.3.1 A detailed upgrade guide is available online at: https://library.oscommerce.com/Online&en&oscom_2_3&release_notes&v2_3_3_1 Download Full and Update Packages of osCommerce Online Merchant v2.3.3.1 can be downloaded at: https://www.oscommerce.com/solutions/downloads Thank You! We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. Bug Reporters VanAlles jerico Reference A full list of source code changes can be seen at: https://github.com/osCommerce/oscommerce2/compare/v2.3.3...upgrade2331 Acknowledgements We'd like to thank Chris Wood for bringing a security issue to our attention.  
osCommerce Website Relaunch
We're excited to announce the relaunch of our main website now powered by the new framework behind the development version of osCommerce Online Merchant v3.0! And we're even more excited to announce we've released the source code of the new website as Open Source and is available on GitHub!  The new website is built with the new template engine functionality currently in development for v3.0. This is a fully functional testbed to work out the shortcomings of the current template engine implementation to improve on for the production-ready v3.1 release and to introduce CMS features for not only building an online store but a whole website platform. Although the source code of our website is obviously custom and tailored to our needs, a general website creation tool will also be available in v3.1 to help you get started to build on. This is the start of moving our websites to the new platform and will soon start migrating the Add-Ons and Live Shops sites with the help of the community. Yes - these sites will also be released as Open Source and will also be available on GitHub! We're also looking forward to planning and working on new sites with the community including new Documentation and Language Translation sites. All Open Source and all on GitHub! If we're asking for your trust in using our Open Source products for your online business then it's only fair to trust you with ours. Feedback and discussions on the development of our new website platform can be found at: https://forums.oscommerce.com/forum/89-website-platform/ The actual source code can be found at: https://github.com/haraldpdl/oscommerce_website And as always, our website can be found at: https://www.oscommerce.com We also thank the community for their positive feedback provided so far!  
osCommerce Online Merchant v2.3.3
osCommerce Online Merchant v2.3.3 is a general maintenance release improving over 30 features. This release also introduces new Robot NoIndex and Canonical Header Tag Modules, and Google+ +1, Google+ Share, and Pinterest Social Bookmark Modules. Changes Administration Tool -> Tools -> Send E-Mail Convert HTML e-mail to plain-text if HTML E-Mails is disabled. tep_redirect() Fix URL encoding by replacing '&' with '&'. Administration Tool -> Tools -> Define Languages Keep the selected language in the language selection pull down menu. Checkout Process Improve checking of shopping cart product attributes. Shopping Cart Replace hardcoded text with new TEXT_OR and TEXT_REMOVE language definitions. Product Info Redirect to store index if no product ID exists in the request URL. Administration Tool Dashboard Modules Properly close HTML links. New Products Module Fix check on new products existing. Administration Tool -> Catalog -> Reviews Fix typo in table width. tep_image() Remove extra space in image title. Administration Tool -> Tools -> Action Recorder Fix paging of action recorder listing. Administration Tool -> Catalog -> Categories/Products Fix casing of onkeyup HTML attribute. Administration Tool -> Catalog -> Categories/Products Remove legacy product preview code. Checkout Confirmation Improve checking of order comments. Shopping Cart Remove legacy TABLE_HEADING_REMOVE, TABLE_HEADING_QUANTITY, TABLE_HEADING_MODEL, and TABLE_HEADING_TOTAL language definitions. Manufacturers Improve filtering of manufacturers. Product Information Fix the total number of product reviews to count only the reviews in the selected language. Sessions - tep_session_register() Also reference and keep track of null variables in the session. This general bug fix also addresses a compatibility issue with PHP 5.4.0. Sessions - tep_session_recreate() Replace internal logic to use session_regenerate_id() for PHP 5.1+ servers. If $SID is defined, also update its value with the new session ID. Product Information Prevent the session ID being added to product images. Payment Class Remove legacy PHP 3 code. GZIP Compression Automatically disable if PHP 5.4.0 to PHP 5.4.5 is used due to PHP bug #55544. Checkout Shipping Improve checking of the shopping cart ID. Time Zone Compatibility Improve PHP 5.2 Time Zone compatibility by setting the time zone to CFG_TIME_ZONE or to the default time zone if it is not defined. General Typecast remaining variables used in SQL queries. Administration Tool -> Modules Fix edit button link containing the module code. Administration Tool -> Tools -> Banner Manager Properly delete banner image when the banner is being deleted. Social Bookmark Modules Replace hardcoded 'images/' path with DIR_WS_IMAGES. New Robot NoIndex Header Tag Module Adds a noindex meta tag to specified pages. New Google+ +1 Button and Google+ Share Social Bookmark Modules Adds Google+ +1 and Google+ Share buttons to the product information page. New Canonical Header Tag Module Adds canonical meta links to the product information and category listing pages. New Pinterest Social Bookmark Module Adds Pinterest share button to the product information page. Libraries Update 960gs updated to latest version. jQuery 1.4.2 to 1.8.0. jQuery UI 1.8.6 to 1.8.22. bxGallery compatibility changes for jQuery 1.8.0. Upgrade from v2.3.2 to v2.3.3 A detailed upgrade guide is available online at: https://forums.oscommerce.com/page/docs/_/oscom/23/release-notes-v2/oscommerce-online-merchant-v233-r13 Download Full and Update Packages of osCommerce Online Merchant v2.3.3 can be downloaded at: https://www.oscommerce.com/solutions/downloads Acknowledgements We'd like to thank the community for their feedback on our releases. In addition, we thank the following people who participated in the development of this release. Code Contributors acidvertigo  ( acidvertigo ) bxGallery fix for jQuery 1.6.0. burt  ( gburton ) Canonical Header Tag for manufacturer listings Pinterest Social Bookmark Module FWR Media  ( FwrMedia ) GZIP Compression PHP 5.4 Compatibility Bug Reporters bruyndoncx burt cannuck1964 Denre eXcaliburN faaliyet foxp2 francois01 FWR Media Gergely HanV Juto Ken44 Matjaz multimixer pdcelec peter3 wrwrwr www-in-no yansfung  
"extras" Directory Vulnerability Reminder
We have been informed that a list of vulnerable sites has been recently published that have the "extras" directory publicly accessible on their servers. The "extras" directory is not part of the installation but is included in the osCommerce Online Merchant download packages to assist existing users upgrade their sites through various PHP and Perl scripts that had to be manually copied to the server. These scripts are no longer relevant to the newer releases and were removed from the download package 5 years ago for the v2.2 Release Candidate 1 release. Due to an insecure directory listing implementation, the scripts could have allowed any file on the server to be read, including configuration files and database backups, if the location of the file is known. The contents of the "extras" directory include: [DIR] button_template [DIR] mysql_diff [DIR] orders [DIR] pr21_to_pr22 [DIR] taxes [DIR] win32 mysql.php update.php As some of our earlier users have left this directory on their servers, we'd like to remind them to remove the "extras" directory entirely. We'd like to thank Chad Greene (Manager, Facebook CERT) for informing us of the publication of affected sites.  
1 2 3 4 5 6 ...