Place your online stores in security with Hikashop 2.3.3

September.26.2014

Published in News & Updates

(1 vote)

As informed by the security firm sucuri.net, HikaShop 2.3.2 caught a security issue that arose in the activation of the user registration process. The issue has been scrapped in HikaShop 2.3.3 immediately.

hikashop 2.3.3 with security release

For updating: HikaShop team also announced that they have extended the expired subscriptions of all their commercial editions of HikaShop to the 10th of October. You must go to "My account > My subscriptions" to access the latest HikaShop version.

For patching: The current HikaShop version, you should follow the below steps:

In the file administrator/components/com_hikashop/classes/user.php, replace the line:

$vars = urlencode(base64_encode(serialize(array('passwd'=>$this->registerData->
password,'username'=>$this->registerData->username))));

with:

$vars = urlencode(base64_encode(json_encode(array('passwd'=>$this->registerData->
password,'username'=> $this->registerData->username))));

And in the file components/com_hikashop/controllers/checkout.php, replace the line:

$infos = unserialize(base64_decode($infos));

with:

$infos = json_decode(base64_decode($infos),true);

Understanding the affection of this security issue as well as to ensure all our products reaching the best performance, we also update our templates to be compatible with the latest version of HikaShop. Let's browse to our HikaShop templates and our all responsive Joomla templates, you may find the most suitable ones.

Thanks for your attention!

Tagged under:

Or share it with your friends

Place your online stores in security with Hikashop 2.3.3

Related items (by tag)

Love all our templates?

From Our Blog

All-in-One Solution

Custom Work Service

Our Services

Joomla Extensions

Our Brands

Connect with us