jjmmortiz

Place your code right after the add to cart form in your product.tpl file (/themes/default-bootstrap/product.tpl), and it should work for prestashop 1.6.1.16 <!-- add to cart form--> Your code here

selectshop.at, Thank for your fast response. Will a coder know where the security hole/source of the problem is and fix it? Thanks.

selectshop.at, My shop is new, fresh installation, no products have been loaded yet. I am testing it and security is a concern. How can a scam message get into the customer admin area in this version, how to prevent it? I am posting it to let the prestashop community know of the problem. I have 4 other sites in prestshop 1.6, I have never seen a scam message finds its way to the internal messaging system. Thanks for your help.

selectshop.at, Are you saying we should install PS 1.7.1.2 only for testing purposes, that is not reliable to go live? Thanks

SelectShop.at I already reported it as you suggested. Here is the link: http://forge.prestashop.com/browse/BOOM-3677 Any suggestion on steps I should take to avoid any security concerns in prestashop 1.7.1.2? Please note this is a fresh, out the box installation, with no customization done to any files, only a module Installation done named Delete Order from MyPresta.eu. Thanks for your help.

I recently I received a malicious email from www.domainwebcentral.org in my back office, in the "customer service" area in Prestashop 1.7.1.2. The message was sent by [email protected] and some how introduced in the internal messaging system in Prestashop 1.7 Customer Service, an area reserved (I thought) only for communication between authorized employees and registered customers. Any help to prevent these messages would be highly appreciated. I attach a copy of the message. Thanks for your help: Disclaimer: We are not responsible for any financial loss, data loss, downgrade in search engine rankings, missed customers, undeliverable email or any other damages that you may suffer upon the expiration of www.dcbestmovers.com. For more information please refer to section 17.c.1a of our User Agreement. This is your final notice to renew www.dcbestmovers.com: https://domainwebcentral.org/?n=www.dcbestmovers.com&r=c In the event that www.dcbestmovers.com expires, we reserve the right to offer your listing to competing businesses in the same niche and region after 3 business days on an auction basis. This is the final communication that we are required to send out regarding the expiration of www.dcbestmovers.com Secure Online Payment: https://domainwebcentral.org/?n=www.dcbestmovers.com&r=c All services will be automatically restored on www.dcbestmovers.com if payment is received in full before expiration. Thank you for your cooperation.

I have an identical problem: can not access product tab with more than 50+ combinations. Please share it in case you found the solution. Thanks.