annethomas Posted October 30, 2010 Posted October 30, 2010 Need to upgrade to milestone 3 (pci compliance ) but all links to that milestone appear broken. Any ideas? Thanks! Cross-site scripting vulnerability in keywords parameter .../advanced_search_result.php Severity: Area of Concern Impact: A malicious web site could cause arbitrary commands to run on a client through a specially crafted link to the vulnerable server. In some cases, this could result in the compromise of the client's cookies, leading to unauthorized access to web applications.
Jan Zonjee Posted October 30, 2010 Posted October 30, 2010 Need to upgrade to milestone 3 (pci compliance ) but all links to that milestone appear broken. Any ideas? Does this work? http://www.clubosc.com/how-to-download-oscommerce-2-3.html
MrPhil Posted October 31, 2010 Posted October 31, 2010 By the way, Anne, just for future reference, there is no such thing as 2.2 MS3. There was 2.2 MS2, then 2.2 RC1, RC2, and (for almost 3 years) RC2a. Supposedly a "2.3" release is going to be out "any day now" (I'm not holding my breath). There has been some security-related work done on it, but I don't know if there's anything that explicitly addresses PCI compliance. Much of PCI-DSS compliance (needed if you want to directly accept credit cards and use a payment gateway/merchant account) involves security features and audits of your hosting account, rather than some magic fixes to osC.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.