logo
Welcome to our new AbleCommerce forums. As a guest, you may view the information here. To post to this forum, you must have a registered account with us, either as a new user evaluating AbleCommerce or an existing user of the application. For all questions related to the older version of Gold and earlier, please go to AbleCommerce Gold forum. Please use your AbleCommerce username and password to Login. New Registrations are disabled.

Notification

Icon
Error

Options
Go to last post Go to first unread
judy at Web2Market  
#1 Posted : Friday, December 24, 2021 7:52:07 AM(UTC)
judy at Web2Market

Rank: Advanced Member

Groups: Developers
Joined: 11/7/2018(UTC)
Posts: 303

Thanks: 21 times
Was thanked: 5 time(s) in 5 post(s)
I used the SNYK extension to Visual Studio to scan a 9.0.4 project and it found vulnerabilities in some of the jQuery files, one of the high severity.
See image

2021-12-24_8-45-43.png (96kb) downloaded 17 time(s).

Wanna join the discussion?! Login to your AbleCommerce Forums forum account. New Registrations are disabled.

ray22901031  
#2 Posted : Tuesday, December 28, 2021 6:26:10 AM(UTC)
ray22901031

Rank: Advanced Member

Groups: Authorized User, Developers
Joined: 2/17/2019(UTC)
Posts: 909

Thanks: 3 times
Was thanked: 15 time(s) in 15 post(s)
I know that we are in the middle of a holiday season, but what Judy is bringing up is serious. Can this be addressed, please.

Many thanks
judy at Web2Market  
#3 Posted : Wednesday, December 29, 2021 10:54:19 AM(UTC)
judy at Web2Market

Rank: Advanced Member

Groups: Developers
Joined: 11/7/2018(UTC)
Posts: 303

Thanks: 21 times
Was thanked: 5 time(s) in 5 post(s)
I am starting to patch sites, but I couldn't figure out how to make sure the jquery.validate patch did not break something. I can't find where it is used on the site? Can you let me know what site it is used on?
Thanks
Katie S  
#4 Posted : Thursday, December 30, 2021 2:04:50 PM(UTC)
Katie S

Rank: Advanced Member

Groups: System, Administrators, Developers, Registered, HelpDesk
Joined: 10/29/2018(UTC)
Posts: 472

Thanks: 4 times
Was thanked: 34 time(s) in 33 post(s)
I'm really sorry, but we always give the entire dev team this time off. They will be back on Monday and have already been notified to answer this asap.

Hope you all had a very nice holiday.

Katie
Thanks for your support!

Katie
Secure eCommerce Software and Hosting
mazhar  
#5 Posted : Thursday, December 30, 2021 2:59:55 PM(UTC)
mazhar

Rank: Administration

Groups: Admin, Administrators, HelpDesk, System, Authorized User, Developers, Registered
Joined: 10/5/2018(UTC)
Posts: 175

Thanks: 8 times
Was thanked: 17 time(s) in 15 post(s)
jquery validation is used where client side input validation is required. In retail you would be seeing the validation in checkout, addresses and profile management. We are already working on upgrading different packages and jquery.validation is upgraded to 1.19.3 which should be available in next release.
Users browsing this topic
Guest (4)
Forum Jump  
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.