Zen Cart E-Commerce Shopping Cart

File Release Notes and Changelog

Release Name: Zen Cart v1.2.7 - Full Fileset - with Security Fixes

Notes:
v1.2.7 is a security bugfix release. The changes included in this release are largely intended to provide more solid protection against a potential SQL injection attack or other attempted exploits. 

No new features have been added in 1.2.7.

Five Bugfixes included:
- sanitization of input data across many files, to block hacking attempts 
- added new /admin/includes/.htaccess file to prevent mis-use of files in subfolders 
- rounding errors in tax calculations have been repaired
- music product-type had syntax error on call to extra_main_template_vars
- changed processing of SSL links in zen_redirect function to use $request_type as indicator 

For a list of changed files, see docs/changelog-v1-2-7.html 


Stay tuned for the upcoming v1.3.0 due shortly! 

Changes:
Changed Files (since initial release of v1.2.6 on Aug 21 2005)

/INSTALL.TXT
/admin/password_forgotten.php
/admin/includes/functions/general.php
/docs/INSTALL.TXT
/includes/application_top.php
/includes/version.php
/includes/classes/order.php
/includes/functions/functions_general.php
/includes/modules/pages/account/header_php.php
/includes/modules/pages/checkout_confirmation/header_php.ph
/includes/modules/pages/checkout_payment_address/header_php.php
/includes/modules/pages/checkout_shipping_address/header_php.php
/includes/modules/pages/checkout_success/header_php.php
/includes/modules/pages/contact_us/header_php.php
/includes/modules/pages/create_account/header_php.php
/includes/modules/pages/download/header_php.php
/includes/modules/pages/gv_faq/header_php.php
/includes/modules/pages/gv_redeem/header_php.php
/includes/modules/pages/gv_send/header_php.php
/includes/modules/pages/popup_image/header_php.php
/includes/modules/pages/popup_image_additional/header_php.php
/includes/modules/pages/product_music_info/main_template_vars.php
/includes/modules/pages/tell_a_friend/header_php.php
/includes/modules/pages/unsubscribe/header_php.php
/zc_install/mysql_zencart.sql
/zc_install/techsupp.php
/zc_install/version.php
/zc_install/includes/classes/installer.php
/zc_install/includes/functions/general.php
/zc_install/includes/languages/english.php
/zc_install/includes/languages/english/database_setup.php
/zc_install/includes/languages/english/inspect.php
/zc_install/includes/modules/pages/database_setup/header_php.php
/zc_install/includes/modules/pages/database_upgrade/header_php.php
/zc_install/includes/modules/pages/inspect/header_php.php
/zc_install/includes/modules/pages/system_setup/header_php.php
/zc_install/includes/templates/template_default/templates/database_upgrade_default.php

Deleted Files
<none>

New Files
/admin/includes/.htaccess
/docs/changelog-v1-2-7.html
/docs/WHATSNEW1.2.7.html
/zc_install/mysql_upgrade_zencart_126_to_127.sql