kutukutubuku oscommerce security bug
I was browsing around and then i found this ecommerce website from indonesia which is selling a book online ‘www.kutukutubuku.com’. As i know, its not too many ecommerce site in indonesia can survive because it looks like not too many indonesian is ready yet to purchase stuff online from internet. But lately, because the internet connection is getting faster in indonesia which indirectly increase the internet user, i notice that there are some new comers in this market. And one of them is this indonesia online book shop called http://www.kutukutubuku.com/. The collection is quite complete, and it looks like it is managed professionally. It’s good to see that ecommerce is starting to emerge in indonesia.
But the reason i’m writing this topic is because of security reason. For some reason , when i visit the site i was logged in as registered user with user id=’ulzana’. It’s surprise me because i never register with them and i didn’t try to hack their site either. Please notice that i didn’t change anything or do anything harmful to their site. The reason why i wrote about this is because i wanna know if the problem is from oscommerce bug or other reason . I notice that they are using the free oscommerce as the ecommerce script, so this might be a bug from oscommerce. Anybody know about this problem from oscommerce?
And for the owner of http://www.kutukutubuku.com/, you guys need to put more effort to secure your site, because for ecommerce website, this is very crucial to make customer confidence and wanna buy from your site.
Comments
2 Responses to “kutukutubuku oscommerce security bug”
Leave a Reply
is it possible the problem is caused by oscommerce bug itself?
They are probably not closing their user sessions explicitly, but with regards to e-commerce progress in Indonesia, its global everyone will be online by 2012…