ExpertoPrestaShop Posted September 19, 2016 Share Posted September 19, 2016 Hello everyone: My site has been hacked and as many of you first look for information on how to protect my Prestashop shop . Prestashop Core vulnerabilities are detected, known and fixed quickly (you can fixed without update version with this free module http://addons.prestashop.com/en/20255-securitypatch.html). Therefore, the major vulnerability comes from modules and themes. Mainly purchased outside Prestashop Addons. That's why I wanted to start a list of modules and themes with known security problems that might endanger the safety of our Prestashop shop. I thank all collaborations to expand and refine this list. Modules advancedslider attributwizardpro cartabandonmentpro columnadverts fieldvmegamenu homepageadvertise idx_config productpageadverts simpleslideshow soopabanners soopamobile videostab vtermslidesshow wdoptionpanel wg24themeadministration Themes wharehouse Link to comment Share on other sites More sharing options...
selectshop.at Posted September 19, 2016 Share Posted September 19, 2016 For the most of the modules you are talking, there are already patches or fixes available, especiall attributwizardpor and the theme warehouse. Could it be you missed this pinned topic dated July 2016 ? https://www.prestashop.com/forums/topic/544579-major-security-issues-with-few-modules-and-themes/ Link to comment Share on other sites More sharing options...
ExpertoPrestaShop Posted September 19, 2016 Author Share Posted September 19, 2016 Hello. I have read that topic and I found with a simple Google search more than 10 shops that yet use the old version of template. I was even able to browse throw all template files. Please, could you specify which version of module and template you mentioned, are already fixed to update my list? Thanks and regards. Link to comment Share on other sites More sharing options...
selectshop.at Posted September 19, 2016 Share Posted September 19, 2016 You should read the topic I've linked, there you will find the one already fixed and which you should discart, cause no reaction form developer and therefore no fix available. Link to comment Share on other sites More sharing options...
ExpertoPrestaShop Posted September 19, 2016 Author Share Posted September 19, 2016 I prefer that people know that have a theme or module that actual or in past have potential security risk, to does not have warning at all and their shops could be hacked in future. Thanks for your info. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now