Our site www.viart.com site is operated by latest Viart Shop 5 with default Clear design
Topic Information
Anjula
Anjula
Brief.
We have updated files:
block_merchant_contact.php
block_forum_breadcrumb.php
block_products_breadcrumb.php
block_articles_details.
after release 3.3.2 has been issued.
 
Description.
There were some cross-site scripting vulnerabilities.
 
Solution.
We recommend to download an updated version of the files from here:
http://www.viart.com/downloads/blocks_xss_fix-3.3.2.zip
Then extract the above mentioned files into the 'blocks' folder of your shop replacing existing ones. Don't forget to make a backup copy of the current file in case something goes wrong.
Last modified: 8 Jan 2008 9:55 AM
 
DickS
DickS
Thanks!
 
I uploaded the patched files and get following error (I have friendly URLs active):
 
Fatal error: Call to undefined function: get_custom_friendly_url() in /www/htdocs/v203634/shop/blocks/block_products_breadcrumb.php on line 31
 
Denis (Guest)
Denis (Guest)
We have updated the archive. Now everything must work properly.
Sorry for the inconveniences.
 
ViArt Support Team
 
DickS
DickS
Thanks. YOu guys rock Smile