ChinaWeb.JP
info****@china*****
2004年 12月 28日 (火) 00:57:53 JST
いつもお世話になっております。 今R5でショップを運営しています。 セッションハイジャック対策がうまくいきませんので、R6aにバージョンアップしよ うと思いますが。 R5からのバージョンアップキットをご提供していませんか? ファイルとデータベース更新の詳細手順を教えていただけないのでしょうか? 宜しくお願いします。 > -----Original Message----- > From: tep-j****@lists***** > [mailto:tep-j****@lists*****] On Behalf > Of TAMURA Toshihiko > Sent: Thursday, July 01, 2004 5:36 PM > To: tep-j****@lists***** > Subject: [Tep-j-general] osCommerce MS1 日本語版 R6a をリリースします > > こんにちは、田村です。 > > osCommerce MS1 日本語版 R6a をリリースします。 > > 下のURLからダウンロードできます。 > http://prdownloads.sourceforge.jp/tep-j/3606/oscommerce-2.2ms1 > j-R6a.tar.gz > > ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ > ■R5 からの主な変更点 > > o SQLインジェクション脆弱性対策 > o クロスサイトスクリプティング脆弱性対策 > o セッションハイジャック対策 > o ブラウザの言語設定の取得を修正 > o 一般小包郵便物の価格変更に対応 > o ヤマト運輸、佐川急便、一般小包郵便物の複数個数の配送料金計算の修正 > o ルミーズ決済モジュール(クレジットカード/コンビニ決済)を追加 > > ---------------------------------------------------------------------- > [詳細な変更点] > > 2004-07-01 11:27 ptosh > > * catalog/includes/: application_bottom.php, > languages/japanese/modules/payment/remise.php, > languages/japanese/modules/payment/remisecsp.php, > modules/payment/remise.php, modules/payment/remisecsp.php: add > remise payment modules (credit card / convenience store). > > 2004-06-13 11:52 ptosh > > * catalog/includes/classes/language.php: update language codes for > Japanese. > > 2004-06-03 09:34 ptosh > > * catalog/_install/oscommerce.sql: add $telephone to > address_format > (address_format_id=7). > > 2004-06-03 09:19 ptosh > > * catalog/checkout_payment_address.php: add check > MAX_ADDRESS_BOOK_ENTRIES > > 2004-05-31 19:48 ptosh > > * admin/: invoice.php, packingslip.php: Against XSS attacks in > admin. > > 2004-05-28 20:01 ptosh > > * admin/orders.php: Against XSS attacks in admin. > > 2004-05-26 20:16 ptosh > > * catalog/includes/functions/database.php: Against XSS attacks in > admin. > > 2004-05-26 15:18 ptosh > > * catalog/checkout_payment_address.php, > catalog/checkout_shipping_address.php, > catalog/product_reviews_write.php, catalog/tell_a_friend.php, > catalog/includes/functions/whos_online.php, > admin/stats_customers.php: Against XSS attacks in admin. > > 2004-05-26 14:05 ptosh > > * admin/orders.php, admin/reviews.php, > admin/includes/functions/general.php, > catalog/account_history.php, catalog/address_book.php, > catalog/product_reviews.php, catalog/product_reviews_info.php, > catalog/reviews.php, catalog/includes/functions/general.php: > Against XSS attacks in admin. > > 2004-05-22 13:18 ptosh > > * catalog/includes/modules/account_details.php: Sanitize account > information. > > 2004-05-22 12:45 ptosh > > * admin/: customers.php, reviews.php, > includes/functions/database.php: Against XSS attacks in admin. > > 2004-05-16 11:55 suzukawa > > * catalog/: includes/modules/address_book_details.php, > includes/modules/checkout_new_address.php, > address_book_process.php: update check for input ($telephone) > > 2004-04-25 11:29 ptosh > > * catalog/: create_account_process.php, login.php, > _install/oscommerce.sql, includes/functions/html_output.php, > includes/functions/sessions.php: add session management(Recreate > Session). > > 2004-03-22 22:14 ptosh > > * catalog/includes/modules/shipping/: sagawaex.php, yamato.php, > yuupack.php: correct shipping cost by $shipping_num_boxes. > > 2004-03-19 20:38 ptosh > > * admin/includes/classes/user_certify.php: replace get_cfg_var() > with ini_get(). > > 2004-01-21 16:59 ptosh > > * admin/customers.php: add hidden strings for 'search' form. > > 2004-01-15 19:01 ptosh > > * catalog/includes/functions/html_output.php: fixed fixed a sid > parameter bag. > > 2004-01-13 19:20 ptosh > > * catalog/includes/functions/: general.php, html_output.php: wrap > the session ID to close a cross site scripting possibility > > 2004-01-07 15:57 ptosh > > * catalog/includes/classes/_yuupack.php: support - 25kg, 30kg. > > 2003-12-22 17:41 ptosh > > * catalog/includes/modules/shipping/zones.php: add Japanee > description. > > 2003-12-22 17:38 ptosh > > * catalog/includes/functions/general.php: protection agaist SQL > Injection. > > 2003-12-11 14:04 hiroshi_sato > > * admin/includes/languages/: english.php, espanol.php, german.php: > scheduling file `mbstring_wrapper.php' for addition > > 2003-12-11 14:03 hiroshi_sato > > * admin/includes/languages/espanol/mbstring_wrapper.php: > scheduling file `mbstring_wrapper.php' for addition > > 2003-12-11 13:59 hiroshi_sato > > * admin/includes/languages/: german/mbstring_wrapper.php, > english/mbstring_wrapper.php: > scheduling file `mbstring_wrapper.php' for addition > > 2003-12-03 20:09 ptosh > > * catalog/includes/classes/_yamato.php: modify fee tables. > ---------------------------------------------------------------------- > > -- > 田村敏彦 / 株式会社ビットスコープ > E-mail:tamur****@bitsc***** > http://www.bitscope.co.jp/ > > > _______________________________________________ > Tep-j-general mailing list > Tep-j****@lists***** > http://lists.sourceforge.jp/mailman/listinfo/tep-j-general >
