magento-lts

Official OpenMage LTS codebase | Migrate easily from Magento Community Edition in minutes! Download the source code for free or contribute to OpenMage LTS | Security vulnerability patches, bug fixes, performance improvements and more.

OSL-3.0 License

Downloads
165.1K
Stars
855
Committers
216
View Code on GitHub Visit Website
Ecosystems: PHP, Composer

Bot releases are hidden (Show)

magento-lts - v19.4.16

Published by fballiano over 2 years ago

What's Changed

New Contributors

Full Changelog: https://github.com/OpenMage/magento-lts/compare/v19.4.15...v19.4.16

magento-lts - v20.0.13

Published by Flyingmana about 3 years ago

v20.0.13 - 2021-08-26

2 security updates

CVE-2021-32758 - GHSA-26rr-v2j2-25fh - Layout XML Arbitrary Code Fix
CVE-2021-32759 - GHSA-xm9f-vxmx-4m58 - Data Flow Sanitation Issue Fix

more updates:

#1735 Fixed origData is empty in a quote
#1667 Removed orphan directory and code of compiler and downloder.
#1355 Removed unused variable
#1525 Fixed incorrect datetime in block.

and merged changes from v19.4.15

magento-lts - v19.4.15

Published by Flyingmana about 3 years ago

v19.4.15 - 2021-08-26

2 security updates

CVE-2021-32758 - GHSA-26rr-v2j2-25fh - Layout XML Arbitrary Code Fix
CVE-2021-32759 - GHSA-xm9f-vxmx-4m58 - Data Flow Sanitation Issue Fi

more updates:

#1478 make composer validation workflow use --strict
#1687 Removed phpdoc to parent doc take effect
Bump Version - align version with 20.0 branch
#1698 Do not load product when it is already loaded
#1715 Fix as attribute for cookie notice
#1402 fix ArgumentCountError: array_merge_recursive()
#1713 Fix retrun type of getColumn in Column_Renderer_Interface
#1254 Fix undefined offset on redis session
#1692 Add events list
#1670 Updated new events in README.md.
#1689 Fixed phpdoc of Mage_Core_Model_Resource_Db_Collection_Abstract::addExpressionFieldToSelect
#1665 Removed deprecated flash js (AC_RunActiveContent.js)
#1718 Handle empty Order increment prefix
#1684 Enforce specific PNG compression level of 9
#1628 Do not load captcha.js when disabled
#1637 Grid range filter - optimize SQL query when from === to
#1720 rewrite isTableExists for performance reasons
#1733 fixes regression introduced by PR 1720
#1746 Fixed phpdoc of Varien_Data_Collection_Db::getSelectSql
#1711 Allow BASE_URL to be overridden by environment in install script.
#1449 Add support for maintenance mode bypass via maintenance.ip file
#1541 Move ahead commits from 1.9.3.x (#447)
#1541 Move ahead commits from 1.9.3.x (#583)
#1541 Move ahead commits from 1.9.3.x (#575)
#1755 removed space after "To" in backend grids
#1725 Log exception on api
#1701 Code style (endif)
#1594 Invalidate reset password token when user changes password.
#1724 Add event sales_order_creditmemo_refund_before
#1262 Add instruction to add him-/herself to contributors list.
#1743 Fixed docblock in addStatusHistoryComment().
#574 Mark indexProcess as STATUS_REQUIRE_REINDEX; it is cleared after
#1197 Add redis, and specify in more details + add php7.4 mention
#1243 Added proof of stability stack
#1627 Fix README.md contributors badge
#1380 Add check to avoid js error
#1676 Add OpenMage version to API 'magento.info'.
#1760 Update contributors list
#1770 Add int casting in getLogCleanTime
#1797 Phpdoc of Mage_Core_Model_Session_Abstract_Varien

magento-lts - v20.0.12

Published by Flyingmana over 3 years ago

v20.0.12 - 2021-06-25

fix version in getOpenMageVersionInfo()

v20.0.11 - 2021-06-25

#1567 Fixed incorrect regex in Varien_Object _underscore()
#1544 Prevent backend_type from being changed automatically on attribute save without the admin realizing
#1555 Performance improvement for catalog product images
#1600 Remove "default" themes from 20.x
#1610 Reinstate getters and setters for $_pageHelpUrl which some third party modules still use
#1532 add Possibility to disable global search in backend
#1513 Add redis as a valid option for global/session_save (and activate Cm_RedisSession module by default)
#1499 Set proper HTTP response code on error
#1623 steamClose dosent void this->_streamHandler in php8
#1073 (BC) Removed IE compatibility
#1523 don't redirect to "downloader" (which doesn't exists)

and merged changes from v19.4.14

magento-lts - v20.0.11

Published by Flyingmana over 3 years ago

v20.0.11 - 2021-06-25

#1567 Fixed incorrect regex in Varien_Object _underscore()
#1544 Prevent backend_type from being changed automatically on attribute save without the admin realizing
#1555 Performance improvement for catalog product images
#1600 Remove "default" themes from 20.x
#1610 Reinstate getters and setters for $_pageHelpUrl which some third party modules still use
#1532 add Possibility to disable global search in backend
#1513 Add redis as a valid option for global/session_save (and activate Cm_RedisSession module by default)
#1499 Set proper HTTP response code on error
#1623 steamClose dosent void this->_streamHandler in php8
#1073 (BC) Removed IE compatibility
#1523 don't redirect to "downloader" (which doesn't exists)

and merged changes from v19.4.14

magento-lts - v19.4.14

Published by Flyingmana over 3 years ago

v19.4.14 - 2021-06-25

#1202 Fix #1190 - Fix the "$_FILES array is empty" exception when assiging products to a category or creating a category with the XMLRPC-API
#1227 modified nav-bar padding to prevent the search box hiding menu items
#1326 Fix notice when there are no sales rules for a given situation
#1443 Log Exception the right way in Session, no need for custom message formatting anymore
#1505 Fix the deprecation problem of idn_to_ascii() since php7.2
#1484 Fix unserialization error when saving dataflow advanced profile.
#1483 Mage_Core_Model_Abstract: Fix rollback when Throwable is thrown in save/delete method
#1466 Improve error message of product required option by including option …
#1035 Code style (endif endforeach endfor and more)
#1577 Code style (endif and break)
#1575 Product qty is incremented when comment is added on a Credit Memo from SOAP API v2
#1557 Mark invoice as last when dummy items included
#1554 Fix Coments in .htaccess
#1571 Reduce getId calls
#1565 Log exceptions when generating images
#1582 Reset array on product reset
#1598 fixed twitter share link, issue 1595
#1591 removed magento logo in demo notice
#1494 Update default USPS endpoint to HTTPS schema
#1448 Remove _isDownloader flag
#1481 DEV: add docker-dde setup
#1534 Cleanup of getMimeType()
#1384 Add icons in admin (icon-head)
#1568 Fixes for #1564 and #1289

  • #1564 Checkout - Agreement content when empty (Terms and Conditions)
  • #1289 Wrong attributes order in comparison window
    #1593 fix documentation updateAttributeGroup()
    #640 add some logging for errors during paypal response validation
    #1169 do not connect to write adapter when getting the read adapter (#1167 )
    #1255 Change lowest PHP version to 7
    #1616 Revert "cleanup - remove orphan js/jscolor/* from XmlConnect package (#1436)" - as its used by MageWorx Advanced Product Options
    #1613 Fix getChildren must be compatible with SimpleXMLElement with PHP 8
    #1392 Fix PHP8 Deprecated: Required parameter $A follows optional parameter
    #1183 Fixes cloning of a collection by also cloning the internal select object
    #802 Fix widgets layout handle on edit
    #1416 Page title for credit memo and shipment
    #1644 Fix fatal error - getRegionCollection() - issue #713
    #1588 Update report.php
    #1674 Resolves the PHP 7 error: Declaration of Mage_Tag_Model_Api_V2::items($productId, $store) should be compatible with Mage_Tag_Model_Api::items($productId, $store = NULL)
magento-lts - v20.0.10

Published by Flyingmana over 3 years ago

v20.0.10 - 2021-04-20

New Release, because v20.0.9 was tagged wrong

2 security updates

CVE-2021-21426 - GHSA-m496-x567-f98c - Fixing a bug in Zend Framework's Stream HTTP Wrapper
CVE-2021-21427 - GHSA-fvrf-9428-527m - Security Update for SQLi for Magento 2 (a backport of CVE-2021-3007 of laminas-http)

more updates:

#1536 Remove the documentation Hint "(?)" functionality

and merged changes from v19.4.13

magento-lts - v19.4.13

Published by Flyingmana over 3 years ago

v19.4.13 - 2021-04-20

2 security updates

CVE-2021-21426 - GHSA-m496-x567-f98c - Fixing a bug in Zend Framework's Stream HTTP Wrapper
CVE-2021-21427 - GHSA-fvrf-9428-527m - Security Update for SQLi for Magento 2 (a backport of CVE-2021-3007 of laminas-http)

more updates:

#1531 Throw an Exception in resource model if column not exists, instead of E_NOTICE
#1454 Fix doc getCountry - returning string instead of int
#1545 Re-add LICENSE.html because of errors during install process (#1542, #1160)
#1540 Fix PHP8 error in App.php: method_exists() now throws an exception if the first argument is not string|object
#1391 Fixes core and lib issues for PHP 8.0 compatibility
#1552 Revert update to Prototype serialize method that breaks OpenMage functionality / Can not select multiple statuses with Prototype 1.7.3 in Reports (#1549, #1497)

magento-lts - v20.0.8

Published by Flyingmana over 3 years ago

v20.0.8

#1477 Remove invalid branch alias to make the branch importable on packagist.org
#1252 Directory currency - performance optimalization
#1325 Move orig data to abstract model (according to Magento 2.x)
#1502 Remove Deprecated _afterSaveCommit from Mage_Core_Model_Abstract

and merged changes from v19.4.12

magento-lts - v19.4.12

Published by Flyingmana over 3 years ago

v19.4.12

#1459 make Mage::getOpenMageVersionInfo() more stable for the release process
#1468 fix markup in README.md
#1469 Delete RELEASE_NOTES.txt
#1436 Remove orphan js/jscolor
#1201 Fix wrong payment info template paths
#1439 Fixed syntax error ytheme-magento.css
#1473 Fix integrity constraint violation when order is canceled (#1220 #1472)
#1424 Ascending alphabetical sort for Attribute Set Name
#1464 Updated composer.json branch alias (#1160 #1460)
#194 fix paypal IPN postback response parsing
#1446 Better error handling when store is disabled
#1404 [BUGFIX] Count doesn't work with group by columns. This fix keeps the group by
#1365 Updating phpstorm meta files with magerun 2.1.0
#1156 Removed observer adminhtml_sales_order_create_create_order (#1154)
#1358 Add a new event adminhtml_block_widget_tabs_html_before, for adding custom tab (#879)
#1445 make Developer Mode controllable by environment variable for all execution paths
#1302 Fix a bug where product media upload via API was not possible anymore (#1178 #1125 #666)
#1485 New event "init_form_values_after" after data set on a form
#1394 Replace alias methods (#986)
#1480 Add checkout agreement position, closes #1288
#1406 Mage_Rss - DOC block update
#1398 Simplified true/false
#1496 Mage_Core_Model_Translate: Removed unused local variable
#1051 Add features from N98 layout helper (#321 #336 #416)
#1276 Fix array_key_exists on objects (deprecated notice or fatal error)
#1495 Removed unnecessary replacing of variable from parent
#1456 Correct password length message grammar
#1291 Removed redundant if statement
#1324 Notification_Security block - private to protected for easier extending
#1309 Removed unnecessary joins for global attributes
#1497 Upgrade prototype to version 1.7.3
#1450 Fixed CRLF to LF
#1455 Massaction items - removed unused switch
#1467 _exportIterateCollection performance optimization

magento-lts - v20.0.7

Published by Flyingmana over 3 years ago

#1149 add logging to lockfile related Exceptions

merged changes from v19.4.11

magento-lts - v19.4.11

Published by Flyingmana over 3 years ago

#1248 mark trigger_recollect before collectTotals
#1418 Fix regression in configuration scope code. Refs #1417
#1281 remove-reference-to-magentocommerce
#1383 Remove latest occurrences of XmlConnect
#1429 Revert "Removed 2 unneeded function calls. Local var is already there."
Ignore media/captcha directory.
#1412 Update static-code-analyses.yml
#1441 Fixed menu cursor
#1160 Updated README.md, closes #985 #992
#1407 Reduced multiple dispatch events in login form for other themes.

magento-lts - v20.0.6

Published by mark-netalico over 3 years ago

merged changes from v19.4.10

magento-lts - v19.4.10

Published by mark-netalico over 3 years ago

3 security updates

https://github.com/OpenMage/magento-lts/security/advisories/GHSA-jrgf-vfw2-hj26 CMS Editor code execution
https://github.com/OpenMage/magento-lts/security/advisories/GHSA-hj6w-xrv3-wjj9 Widget instances allows a hacker to inject an executable file on the server
https://github.com/OpenMage/magento-lts/security/advisories/GHSA-99m6-r53j-4hh2 Layout XML RCE Vulnerability

More Changes:
https://github.com/OpenMage/magento-lts/pull/1246 Adds support for "SameSite" cookie property
https://github.com/OpenMage/magento-lts/pull/1356 Fixed return type of Mage_Adminhtml_Block_System_Config_Form::_canShowField
https://github.com/OpenMage/magento-lts/pull/1275 Add start & stop commands to ddev setup in readme
https://github.com/OpenMage/magento-lts/pull/1273 Update static-code-analyses.yml
https://github.com/OpenMage/magento-lts/pull/1206 Reduced multiple dispatch events in login form.
https://github.com/OpenMage/magento-lts/issues/1140 Github Action Labeler Bot
https://github.com/OpenMage/magento-lts/pull/1337 Allow rewrite of Mage_Core_Model_File_Validator_Image
https://github.com/OpenMage/magento-lts/pull/1086 Allow debug in admin
https://github.com/OpenMage/magento-lts/pull/1378 Declare two variables
https://github.com/OpenMage/magento-lts/pull/1330 Allow min pass length to 5 during login
https://github.com/OpenMage/magento-lts/pull/1373 Removed 2 unneeded function calls. Local var is already there.
https://github.com/OpenMage/magento-lts/pull/1390 Fix class name and filename for case sensitive filesystems
https://github.com/OpenMage/magento-lts/pull/1336 Fix getId() on bool when primary billing address is null
https://github.com/OpenMage/magento-lts/pull/1370 Fixed adminhtml boxes.css fieldset-wide for note.
https://github.com/OpenMage/magento-lts/pull/1168 New event "adminhtml_sales_order_create_save_before" when editing an order.
https://github.com/OpenMage/magento-lts/pull/1393 Fixes PHP7.4 deprecated nested ternary operators
https://github.com/OpenMage/magento-lts/pull/1403 TypeError: round(): Argument #1 ($num) must be of type int|float

magento-lts - v20.0.5

Published by Flyingmana almost 4 years ago

merged changes from v19.4.9

magento-lts - v19.4.9

Published by Flyingmana almost 4 years ago

increase composer.json php version range to include 8.0
#1349 Fixed Zend Lib Deprecated Notice PHP8
#1213 Fix strpos with non-string needle
add UnitTests to Github Actions
#1348 Fixed Zend Lib Tool Deprecated Notice
#1347 Fixed Zend Lib Amf Deprecated Notice
#1340 Fixed Zend Lib Barcode Deprecated
#1346 Fixed Zend Lib Validate Deprecated Notice
#1256 Fix libxml_disable_entity_loader for PHP 8
#1251 Disable class unserialization where it is not needed.
#1350 Trim values from XML so auto-formatting our XML does not break the autoloader.
#1345 Fixed Zend Lib Wildfire Deprecated Notice
#1344 Fixed Zend Lib View Deprecated Notice
#1343 Fixed Zend Lib JSON Deprecated Notice
#1342 Fixed Zend Lib Filter Deprecated Notice
#1341 fix "Cannot unset $this" error
#1261 getAttributeRawValue() move operations with store to if statement
#1274 Removed unused fetchAll in addRatingInfo()
#1278 Handled the case where the coupon no longer exists
#1328 Fix phpDoc for set/getStepData in Checkout
#1323 Improve PHPDoc
#1319 Fix for currency symbol not saved with fatal PHP error #1318
#1297 Update SECURITY.md
allow version 4 of hackathon composer installer
#1292 Support the logging of Throwables
#1285 Mage core model url - method call is provided 2 parameters, but the method signature uses 1 parameters
#1161 cleanup: Remove some files left in previous PRs
#1207 bugfix: don't cast min_sale_qty to int as it can be a decimal
#1279 Remove php short open tag

magento-lts - v20.0.4

Published by Flyingmana almost 4 years ago

v20.0.4 - 2020-10-20

merged changes from v19.4.8
including
CVE-2020-15244 RCE via PHP Object injection via SOAP Requests

magento-lts - v19.4.8

Published by Flyingmana almost 4 years ago

v19.4.8 - 2020-10-20

CVE-2020-15244 RCE via PHP Object injection via SOAP Requests
#1250 removed use of travisCI
#1236 Adds missing meta tags to prevent SUPEE-11295 related warnings from Magereport
#991 Migrate to new frontend cookie name (session namespace) (#990)
#1266 Add ddev based development setup to Readme
#1247 Fix call_user_func_array arguments for PHP 8
#1242 update mcrypt related explanation in Readme
#1184 Add php-74 to static tests

magento-lts - v20.0.3

Published by Flyingmana about 4 years ago

v20.0.3 - 2020-09-15

merged changes from v19.4.7

magento-lts - v19.4.7

Published by Flyingmana about 4 years ago

v19.4.7 - 2020-09-15

#952 Remove Magento Connect, Downloader and PEAR
#1181 Updated lib Net/IDNA2 to latest version
#1185 Removed unused class Varien_Filter_Money
#1182 Mage_Eav - Fix PHP 7.4 deprecation: array/string curly braces access
#1108 Ensure correctly sorted block children after unset some of them
#969 Fix checkout address for guest order
#1170 Throw exception when editing an order and the old order could not be cancelled
#1130 Change default db name
#510 Fix _addUrlRewrite() ignoring collection store scope
#1117 Prevent duplicate entry when updating salesrule_coupon_usage
#1146 Add doc comments to image related classes
#1008 add OpenMage admin theme and theme switcher
#1012 Add development environment setup files and README

Package Rankings
Top 1.27% on Packagist.org
Related Projects
magento-api2basicauth

HTTP Basic authentication support for Magento 1.9 and OpenMage's Api2.

24 Oct 2021 3
magento-Defcon2-Imaclean

Free extension from magento connect.

05 Nov 2015 10
magento2-floating-buy-button

Get your customer attention the most important action in your online store, the purchase.

01 Feb 2018 10
magento-community

THIS REPOSITORY IS DEPRECATED - PLEASE USE https://github.com/firegento/magento. THERE WILL BE NO...

08 Dec 2014 11
openmage-translations

Translations for OpenMage from Magento 1/2 and old languages packs.

12 Jan 2022 8
openmage-rector

Refactor OpenMage/Magento 1 code.

31 Dec 2022 1
magento2-phpstorm-plugin

PHPStorm Plugin for Magento 2

05 Dec 2017 435
openmage-minifier

A module to minify and merge CSS/JS files for OpenMage.

11 Nov 2020 4
magento-module-composer-installer

A Composer plugin to manage Magento Modules: Fork of: https://github.com/magento-hackathon/magent...

03 Jan 2015 10
magento2

Prior to making any Submission(s), you must sign an Adobe Contributor License Agreement, availabl...

30 Nov 2011 11,239
app-search-magento

A first party module to integrate Elastic App Search in Magento 2.

20 Mar 2019 26
magento2-skipcart

21 Nov 2015 6
openmage-versioning

A module to automatize the updates using GIT for OpenMage.

13 Sep 2017 7
opencart

A free shopping cart system. OpenCart is an open source PHP-based online e-commerce solution.

02 Aug 2011 7,227
magento2-fast-vm

Optimal vagrant developer box for Magento2. Folders synced by nfs/rsync. This box includes Magent...

06 Sep 2018 108