Info SPECIFIC to v1.3.7.1 patch release
A number of patches as well as a security fix have been made for v1.3.7.
While existing installations do not specifically require a formal "upgrade" the v1.3.7.1 patch release has been prepared to allow folks an easy install of all the known patches when installing a new site. Individual patches may be applied separately by obtaining zips from SourceForge and/or by following forum discussions.
This v1.3.7.1 patch release includes the following updates over the original v1.3.7 distribution:
- XSS vulnerability fix April 2007
- Admin security fix June 2007
- USPS patch for May 2007
- Resource allocation problems caused by missing dir->close() function calls
- PHPMailer vulnerability patch
- Payment Method footer problems in order-confirmation emails (order class)
- PayPal patches for IPN and Express Checkout -- ie: June 17/07 patch contents included
- Shipping Estimator display glitch (previously included in PayPal patch)
- $this_is_home_page fix to tpl_main_page
The files which have changed between v1.3.7 and v1.3.7.1 are:
- NEW: /docs/whatsnew_1.3.7-1.html
- NEW: /extras/ipncheck.php
- NEW: /images/banners/big-book-ad.gif
- NEW: /images/banners/tall-book.gif
- NEW: /images/large/e-start-book.gif
- /install.txt
- /ipn_main_handler.php
- /admin/invoice.php
- /admin/login.php
- /admin/orders.php
- /admin/packingslip.php
- /admin/includes/application_top.php
- /admin/includes/init_includes/init_general_funcs.php
- /admin/includes/init_includes/init_languages.php
- /docs/changelog-v1-3-7-1.html
- /docs/important_site_security_recommendations.html (updated to match updates previously posted on main website)
- /docs/index.html
- /docs/INSTALL.TXT
- /docs/whatsnew_1.3.7.html
- /includes/application_top.php
- /includes/version.php
- /includes/classes/class.phpmailer.php
- /includes/classes/order.php
- /includes/classes/template_func.php
- /includes/classes/support/phpmailer.lang-en.php
- /includes/extra_datafiles/music_type_database_names.php
- /includes/functions/functions_email.php
- /includes/functions/sessions.php
- /includes/languages/english/index.php
- /includes/languages/english/html_includes/define_main_page.php
- /includes/languages/english/html_includes/classic/define_main_page.php
- /includes/languages/english/modules/payment/paypalwpp.php
- /includes/modules/pages/login/header_php.php
- /includes/modules/pages/shopping_cart/header_php.php
- /includes/modules/payment/paypal.php
- /includes/modules/payment/paypalwpp.php
- /includes/modules/payment/paypal/ipn_application_top.php
- /includes/modules/payment/paypal/paypal_admin_notification.php
- /includes/modules/payment/paypal/paypal_curl.php
- /includes/modules/payment/paypal/paypal_functions.php
- /includes/modules/payment/paypal/paypalwpp_admin_notification.php
- /includes/modules/payment/paypal/tpl_ec_button.php
- /includes/modules/shipping/usps.php
- /includes/templates/template_default/common/tpl_main_page.php
- /includes/templates/template_default/templates/tpl_account_history_info_default.php
- /includes/templates/template_default/templates/tpl_checkout_confirmation_default.php
- /includes/templates/template_default/templates/tpl_create_account_default.php
- /includes/templates/template_default/templates/tpl_login_default.php
- /includes/templates/template_default/templates/tpl_shopping_cart_default.php
- /zc_install/techsupp.php
- /zc_install/version.php
- /zc_install/sql/mysql_upgrade_zencart_1301_to_1302.sql
- /zc_install/sql/mysql_upgrade_zencart_1302_to_135.sql
- /zc_install/sql/mysql_zencart.sql
For details of features and issues related to upgrading to v1.3.7, see the other documentation files
|