blog-posts Posted December 3, 2020 Share Posted December 3, 2020 We have identified and fixed a new security issue on module Product Comments. This issue is fixed in latest version 4.2.1. Security fix One security fix has been included in this minor version: Blind SQL injection during the CommentGrade process (security advisory) More information about why it is important to update: SQL Injection (CWE-89) Other changes The version v4.2.1 of the module also brings some new improvements, you can read the full Changelog here. How to upgrade You should be able to download the latest version from your Back Office. View the full article Link to comment Share on other sites More sharing options...
Recommended Posts