Whilst looking into a problem I have with CJ Loader, installed with an earlier version of Tabbed Products Pro, I came across this on 23 July 2013, in the News section:
http://code.google.com/p/minify/On some PHP systems, file system functions accept parameters containing null bytes
("\x00"), but do not handle them correctly. See:
http://www.php.net/manual/en/securit....nullbytes.php
An attacker may be able to use Minify to reveal the contents of any file PHP has access to
within the document root, including sensitive configuration files....
...You are strongly encouraged to upgrade to Minify 2.1.7
It may not be Zen Cart applicable.
Results 1 to 1 of 1
Threaded View
-
3 Aug 2013, 06:43 AM #1
Totally Zenned
- Join Date
- Feb 2009
- Location
- UK
- Posts
- 1,303
- Plugin Contributions
- 1
Google Notice: Vulnerability of Minify (CJ Loader) versions
Reply With QuoteSimilar Threads
-
v151 ionCube Loader and Zend Guard Loader Causing admin issues?
By bi11i in forum All Other Contributions/AddonsReplies: 1Last Post: 6 Oct 2013, 07:01 PM -
Can Templates from Prior Versions Be Added to Later Versions?
By PSurf in forum Templates, Stylesheets, Page LayoutReplies: 18Last Post: 6 Dec 2011, 02:38 AM -
css/js loader !!
By Miff in forum All Other Contributions/AddonsReplies: 0Last Post: 28 Nov 2011, 01:19 PM -
CJ Loader (CSS/Javascript Loader) plugin function is not loaded by zen cart?
By tripflex in forum All Other Contributions/AddonsReplies: 1Last Post: 11 Jul 2011, 03:55 PM
