[Security] osCommerce Insecurity leads to leak
Tuesday, August 2nd, 2011 - Security
I found this article concerning the insecurities of osCommerce and how a vulnerability in the software lead to a mass compromise of potential confident information, such as credit card information.
Sneaky Trojan exploits e-commerce flaws (theregister.co.uk)
osCommerce has never been a favorite shopping cart application for me. The seemingly lack of attention the osCommerce developers give to the vulnerabilities in their product, means that an osCommerce reliant website may be vulnerable to a compromise at any time.
If you use osCommerce on your website, I would encourage you to put a lot of thought into switching to a different system. One that updates frequently to fix known security vulnerabilities. I would also encourage you to check out Mal’s E-Commerce hosted solution.
Steven