Happy easter, new VirtueMart 2.0.4 released, security update SQLi

The VirtueMart team wish happy eastern. Some days ago, a small security issue appeared. As far as we know no one got trouble due it, anyway we fixed it. The issues create possibilities for vandalism and data griefing, then actually hacking your store. Therefore we advice everyone to update to vm2.0.4 as soon as possible.
VirtueMart 2.0.4 has various fixes and small enhancements to improve the usability.

Download VirtueMart 2.0.4

I am sorry to say that we had to change a bit the layouts of the templates and that 1-2 functions have a slighty different parameters now. To help templaters and developers, we created a change log page . This page is now also displayed directly in the liveupdater. We will also going to add a rss feed in the backend.

The long time promised manuals are on the way, you can read some free english tutorials by Kerry Watson. She is a book author since a long time for internet software and in special ecommerce systems. Interesting is her opinion about virtuemart 2: "I am getting pretty comfortable with the VirtueMart. I realize the lack of documentation is one of the problems people are having with the program". The tutorials are nice written and with good illustrations:
For the german speakers, there is already a manual written by DerHake further more the famous book of Martin Blaszyk by the publisher addison wesley is on the way.

A lot new extensions and various templates appeared already for VirtueMart 2. Valérie and Patrick will be at the j and beyond 201 to present the VirtueMart framework, which extends the joomla framework for ecommerce purposes. Extending VirtueMart 2 becomes easier and easier.

New features, or fixed ones:
- Fixed security issue with uncasted virtuemart_userinfo_id, and two other
- Fixed security issue, it was possible to reveal address data of other shoppers

- Migrator enhanced to migrate bigger shops, code is more robust now, and faster.
- Migrator has now an option to migrate the old vm1 order_ids as vm2 order_numbers

- Advice for the safe path in the config

- Added plugin triggers for userfields (euvatid, captcha)

- Fix, enhancements for paginations, ordering

- Product edit allows to enter the final price and calculates the cost price for you
- Product edit displays all children, when it has a the customfield "dynamic child variant" attached

- Text input plugin and similar working again

- Cart is now also rounding prices
- Cart shows now values according to quantity
- Internal rounding decimals increased.
- Reduce of cart session data

- Custom orderstatus are now better useable without code hack
- Template override of plugins

- Some country, states fixes
- Some router fixes
- Js uses its own namespace now, added different fixes for better compatibility

- Waiting list by Seyi Awofadeju

- And many other small fixes, enhancements not written

Enjoy Download VirtueMart 2.0.4


#22 bathroom décor 2012-08-31 06:30
The phraseology victimized is sincere tempting and appreciatable. It is ofttimes pleasance for me that I interpret the record as i occurrence. I am straightlaced thankful to you for the aforementioned
Report to administrator
#21 artist 2012-04-28 10:14
when i change stock count also see
View Not Found [name, type, prefix]: waitinglist, html, virtuemartView
Report to administrator
#20 cesar_med 2012-04-18 13:42

i have problem with the waiting list, i have joomla 2.5.4 and VM 2.0.4,

when i have a product with zero (0) stock, and users waiting for notifiy. Change the stock to 50, click in save, appear some like this.

View Not Found [nombre, tipo, prefijo]: waitinglist, html, virtuemartView

best regards.
any help is welcome.!!
Report to administrator
#19 PieterW 2012-04-16 14:43
@snowstorm: if that is what is proposed to you: yes just try it.
Report to administrator
#18 Grubby Paws 2012-04-13 11:19
Is it safe to install this update in terms of data already inserted?
Report to administrator
#17 PieterW 2012-04-13 10:27
Go to Configuration - Templates, there you will find the input box for the Safe path
Report to administrator
#16 PieterW 2012-04-13 10:24
When a customer orders a product the "Booked, ordered products" is set to -1. In VM 2.0.2 this was set to 1. Why is this changed? Now the frontend doesnot see that the product is 'soldout'.
Report to administrator
#15 Snowstorm 2012-04-13 09:37
How to fix this. I am not very good in joomla
Warning, the Safe path is empty, for safety reasons it is very important to create a folder in a path not accessible by an URL, create also a folder invoices in it to store your sensible data secure. Our suggested path is for your system /customers/5/9/ 9/ tpd.www/vmfiles
Report to administrator
#14 PieterW 2012-04-13 08:48
After upgrading (Joomla 2.5.4) Virtuemart doesnot show up under Components-menu of Joomla. How to fix?

Thans for your reply!
Report to administrator
#13 VJ Templates 2012-04-12 10:48
Our VirtueMart 2.0 templates are compatible with VM 2.0.4 now.
Report to administrator

Add comment

Security code