search

avstudnitz / AvS_FastSimpleImport

Wrapper for Magento ImportExport functionality, which imports products and customers from arrays
308 stars 146 forks source link

APPSEC-1110 security issue. #277

Open zainengineer opened 8 years ago

zainengineer commented 8 years ago

Module overwrites _saveValidatedBunches and it does not use $coreHelper->unEscapeCSVData($source->current());

is there any patch planed for this issue?

hostep commented 8 years ago

Good catch, I just noticed this too.

I'm willing to create a PR for this tonight.