Version Description
[2016-11-11] =
- Security Fix: Under specific conditions (Gold Cart enabled, using eWay as a payment processor, and using the yet-to-be-released 2.0 Theme Engine) - a SQL vulnerability has been patched.
Download this release
Release Info
| Developer | JustinSainton |
| Plugin |  WP eCommerce |
| Version | 3.11.4 |
| Comparing to | |
| See all releases | |
Code changes from version 3.11.3 to 3.11.4
readme.txt
CHANGED
|
@@ -3,8 +3,8 @@ Contributors: JustinSainton
|
|
| 3 |
Donate link: https://wpecommerce.org
|
| 4 |
Tags: e-commerce, digital downloads, wp-e-commerce, shop, cart, paypal, authorize, stock control, ecommerce, shipping, tax
|
| 5 |
Requires at least: 4.1
|
| 6 |
-
Tested up to: 4.
|
| 7 |
-
Stable tag: 3.11.
|
| 8 |
|
| 9 |
WP eCommerce is a free, powerful plugin that empowers you to sell anything online, quickly and easily.
|
| 10 |
|
|
@@ -36,6 +36,10 @@ After upgrading from earlier versions look for link "Update Store". This will up
|
|
| 36 |
|
| 37 |
== Changelog ==
|
| 38 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 39 |
= 3.11.3 [2016-5-23] =
|
| 40 |
|
| 41 |
* Fix: WordPress 4.4 introduced changes to the WPDB class that caused loosely typed data to fail upon insert, causing empty cart contents entries when taxes were applied and coupons not being created.
|
| 3 |
Donate link: https://wpecommerce.org
|
| 4 |
Tags: e-commerce, digital downloads, wp-e-commerce, shop, cart, paypal, authorize, stock control, ecommerce, shipping, tax
|
| 5 |
Requires at least: 4.1
|
| 6 |
+
Tested up to: 4.7
|
| 7 |
+
Stable tag: 3.11.4
|
| 8 |
|
| 9 |
WP eCommerce is a free, powerful plugin that empowers you to sell anything online, quickly and easily.
|
| 10 |
|
| 36 |
|
| 37 |
== Changelog ==
|
| 38 |
|
| 39 |
+
= 3.11.4 [2016-11-11] =
|
| 40 |
+
|
| 41 |
+
* Security Fix: Under specific conditions (Gold Cart enabled, using eWay as a payment processor, and using the yet-to-be-released 2.0 Theme Engine) - a SQL vulnerability has been patched.
|
| 42 |
+
|
| 43 |
= 3.11.3 [2016-5-23] =
|
| 44 |
|
| 45 |
* Fix: WordPress 4.4 introduced changes to the WPDB class that caused loosely typed data to fail upon insert, causing empty cart contents entries when taxes were applied and coupons not being created.
|
wp-shopping-cart.php
CHANGED
|
@@ -3,7 +3,7 @@
|
|
| 3 |
* Plugin Name: WP eCommerce
|
| 4 |
* Plugin URI: http://wpecommerce.org/
|
| 5 |
* Description: A plugin that provides a WordPress Shopping Cart. See also: <a href="http://wpecommerce.org" target="_blank">WPeCommerce.org</a> | <a href="https://wordpress.org/support/plugin/wp-e-commerce/" target="_blank">Support Forum</a> | <a href="http://docs.wpecommerce.org/" target="_blank">Documentation</a>
|
| 6 |
-
* Version: 3.11.
|
| 7 |
* Author: WP eCommerce
|
| 8 |
* Author URI: http://wpecommerce.org/
|
| 9 |
* Text Domain: wp-e-commerce
|
| 3 |
* Plugin Name: WP eCommerce
|
| 4 |
* Plugin URI: http://wpecommerce.org/
|
| 5 |
* Description: A plugin that provides a WordPress Shopping Cart. See also: <a href="http://wpecommerce.org" target="_blank">WPeCommerce.org</a> | <a href="https://wordpress.org/support/plugin/wp-e-commerce/" target="_blank">Support Forum</a> | <a href="http://docs.wpecommerce.org/" target="_blank">Documentation</a>
|
| 6 |
+
* Version: 3.11.4
|
| 7 |
* Author: WP eCommerce
|
| 8 |
* Author URI: http://wpecommerce.org/
|
| 9 |
* Text Domain: wp-e-commerce
|
wpsc-components/theme-engine-v2/helpers/checkout-results.php
CHANGED
|
@@ -97,8 +97,7 @@ function wpsc_transaction_theme() {
|
|
| 97 |
case 'wpsc_merchant_paymentexpress' :
|
| 98 |
// Payment Express sends back there own session id, which is temporarily stored in the Auth field
|
| 99 |
// so just swapping that over here
|
| 100 |
-
|
| 101 |
-
$result = $wpdb->get_var($query);
|
| 102 |
if($result != null){
|
| 103 |
// just in case they are using an older version old gold cart (pre 2.9.5)
|
| 104 |
$sessionid = $result;
|
| 97 |
case 'wpsc_merchant_paymentexpress' :
|
| 98 |
// Payment Express sends back there own session id, which is temporarily stored in the Auth field
|
| 99 |
// so just swapping that over here
|
| 100 |
+
$result = $wpdb->get_var( $wpdb->prepare( "SELECT `sessionid` FROM `" .WPSC_TABLE_PURCHASE_LOGS. "` WHERE `authcode` = %s", $sessionid ) );
|
|
|
|
| 101 |
if($result != null){
|
| 102 |
// just in case they are using an older version old gold cart (pre 2.9.5)
|
| 103 |
$sessionid = $result;
|
wpsc-core/wpsc-constants.php
CHANGED
|
@@ -55,15 +55,15 @@ function wpsc_core_constants() {
|
|
| 55 |
|
| 56 |
// Define Plugin version
|
| 57 |
if ( ! defined( 'WPSC_VERSION' ) ) {
|
| 58 |
-
define( 'WPSC_VERSION' , '3.11.
|
| 59 |
}
|
| 60 |
|
| 61 |
if ( ! defined( 'WPSC_MINOR_VERSION' ) ) {
|
| 62 |
-
define( 'WPSC_MINOR_VERSION' , '
|
| 63 |
}
|
| 64 |
|
| 65 |
if ( ! defined( 'WPSC_PRESENTABLE_VERSION' ) ) {
|
| 66 |
-
define( 'WPSC_PRESENTABLE_VERSION', '3.11.
|
| 67 |
}
|
| 68 |
|
| 69 |
// Define a salt to use when we hash, WPSC_SALT may be defined for us in our config file, so check first
|
| 55 |
|
| 56 |
// Define Plugin version
|
| 57 |
if ( ! defined( 'WPSC_VERSION' ) ) {
|
| 58 |
+
define( 'WPSC_VERSION' , '3.11.4' );
|
| 59 |
}
|
| 60 |
|
| 61 |
if ( ! defined( 'WPSC_MINOR_VERSION' ) ) {
|
| 62 |
+
define( 'WPSC_MINOR_VERSION' , '6fd2d64' );
|
| 63 |
}
|
| 64 |
|
| 65 |
if ( ! defined( 'WPSC_PRESENTABLE_VERSION' ) ) {
|
| 66 |
+
define( 'WPSC_PRESENTABLE_VERSION', '3.11.4' );
|
| 67 |
}
|
| 68 |
|
| 69 |
// Define a salt to use when we hash, WPSC_SALT may be defined for us in our config file, so check first
|
