Responsible Disclosure
Recently I made a Responsible Disclosure for 2 security vulnerabilities in Prestashop Module Send to a Friend and provided also the fixes for them in a Github Pull Request.
This was done in coordination with Prestashop Core Team to ensure the issue was not public until Prestashop owners of Online Stores have the time to update the module and also to guarantee that the code for the fixes was according to their rules.
Update Now
Before I reveal details in another Blog Post, about the security issues, I would like to give another opportunity to all Prestashop owners of an E-commerce Store to update the Send to a Friend module.
So do not let for tomorrow what you can do now… Please update your module ASAP, it will take only 1 minute of your time.
Why I Need to Update Now?
Because your Prestashop Online Store is now vulnerable to be heavy abused by Spammers and as consequence being Black Listed by any email provider like Gmail, Hotmail or any other one processing lot of spam emails per minute from your Online Store.
Prestashop Module Send to a Friend can be abused by Spammers when is Enabled or Disabled
So if you are not using it you still need to updated it.
How to Update
If you are a experienced user you probably already know how to upgrade a module, but Prestashop beginners may need a Tutorial with a detailed How To for updating their Prestashop Send to a Friend Module.
Please refer to the Tutorial How to Update only one Prestashop Module.
Disclaimer: What I expressed here is only in my behalf and doesn't represent the company I work for, or any previous one, neither my family, friends, colleagues or anyone else unless I explicitly say so.
Comments
Disqus is disabled on my Blog because I don't agree with their policies.