AUG 11 2021

Fixing Magento 1.9 image upload after Flash deprecation (HTML5 upload patch)

As of 2021 Adobe has ended support for the Flash Player plugin and it is removed in browsers (refer to Saying goodbye to Flash in Chrome for details). Magento 1 Image Uploader depended on Flash. With flash plugin removed product image upload on Catalog > Products is now broken in Chrome and Firefox. There is official patch from Magento to overcome this issue in Magento 1.9.x and all older versions, SUPEE-8788. It comes along with… Read the rest
AUG 11 2021

“Invalid HTTP response version: 2″ PayPal Payflowpro in Magento 1.x

The following exception logged on attempt to process PayPal Payflowpro payments in Magento 1.7.0.2: ERR (3): Zend_Http_Exception: Invalid HTTP response version: 2 in lib/Zend/Http/Response.php:182 Stack trace: #0 lib/Zend/Http/Response.php(665): Zend_Http_Response->__construct(200, Array, ‘RESULT=0&PNREF=…’, ‘2’, false) #1 lib/Zend/Http/Client.php(1007): Zend_Http_Response::fromString(‘HTTP/2 200 \r\nco…’) Cause Response from PayPal server is now returned with HTTP/2 version, while old Zend Framework and Magento code is capable in parsing only HTTP/1.0 and HTTP/1.1 responses. Solution It can be fixed with adjusting regular expressions matching… Read the rest
APR 08 2021

USPS Web Tools Notice: Unsecure HTTP Endpoint Retirement

According to the following email notification from USPS Magento and OpenMage users should update USPS Endpoint to use HTTPS schema: This message explains some security improvements planned for the USPS Web Tools services. Effective June 24th, 2021, Web Tools will remove support for all unsecure HTTP endpoints. After this change, all requests to an unsecure HTTP endpoint will fail when attempting to access the Web Tools APIs and integrators may see an error message. To… Read the rest
MAY 03 2020

Magento logging not working in 1.9.4.1 or after SUPEE-11086

After upgrade to Magento 1.9.4.1 or SUPEE-11086 Magento logging not working if log file does not exist. Cause In 1.9.4.1 (and SUPEE-11086) Magento added log validation function to validate extensions and it throws error on is_readable() function in case log file does not exist yet. Solution Use MPERF-10565 patch below to correct this issue. Note: This patch will be included in the next official SUPEE-release and should be reverted priot to next SUPEE-patch installation. If… Read the rest
MAY 03 2020

Middle Name on Magento Checkout page displayed after upgrade despite configuration

After Magento upgrade up to 1.9.2.1 or newer version you may notice Middle Name field is shown on Checkout, Customer Registration and other Frontend forms despite its configuration setting in Backend, at System > Configuration > Customers > Customer Configuration > Name and Address Options > Show Middle Name (Initial) option. Yet the option is set to “No“, Middle Name initial is still shown in every form on Frontend. Cause In newer Magento version (1.9.2.1… Read the rest
SEP 09 2021

Magento 1 patches (full list with download)

This list include all Magento 1 patches (SUPEEs), including security patches, compatibility patches, USPS changes, etc. along with corresponding Magento version, where this patch was added to core Magento code. Results can be filtered with a Search field below.
MAY 28 2019

Magento :: Product image upload broken after upgrade or SUPEE-8788

Problem description After Magento upgrade to 1.9.3 or installation of SUPEE-8788 patch image upload is broken at Catalog > Manage Products > Product details > Images tab. It is not possible to upload new images, or Upload button is missing. Cause and solution See SyntaxError: expected expression, got ‘,’ for details. If you have any difficulties with solving this problem or got a similar one, please let us know in comments below, so we can… Read the rest
MAY 28 2019

Magento :: solution for customer registration spam


1 comments

If you noticed that your Magento store every day sends new account spam from registration form and user accounts are created in your store sending spam mails to random email addresses, mostly in qq.com, 168.cn, mail.ru, inbox.ru, list.ru or bk.ru domains, that means your registration form is unprotected from automatic submission. You may receive messages from your Mail Delivery System like this: Mail delivery failed: returning message to sender A message that you sent could… Read the rest
MAY 28 2019

upgrade-all: Package community/Lib_IDNA2 1.9.4.0 conflicts with: community/Mage_Core_Modules

During Magento upgrade via Magento Connect Manager or from ./mage upgrade-all CLI command there is the following or similar message reported in console: upgrade-all: Package community/Lib_IDNA2 1.9.4.0 conflicts with: community/Mage_Core_Modules Cause Most likely cause of this dependency issue is the following: upgrade-all: Failed to delete files: ./pkginfo/Mage_All_Latest.txt Check permissions The actual error message is just masked in long output from ./mage upgrade-all Solution The solution is to locate actual error message and correct it, i.e…. Read the rest
MAY 28 2019

Magento: ‘undefined’ pop-up alert on Place order at checkout after upgrade

‘undefined’ alert pop-up is shown after click on Place Order button at Magento checkout page after Magento upgrade: Cause Most likely cause is missing form_key attribute in the order form. Solution Check app/design/frontend/yourpackage/yourtheme/template/checkout/onepage/review.phtml and app/design/frontend/yourpackage/yourtheme/template/checkout/onepage/review/info.phtml files and replace the following code: with Do not forget to Flush Magento cache after the changes. If the issue persist, or form_keys are in place already, to troubleshoot the problem further edit skin/design/frontend/package/theme/js/opcheckout.js in your theme, search for alert(msg);… Read the rest
SEP 09 2021

PHP 7.2 patches for Magento 1.x without SSH

PHP 7.2 support patch for Magento provides compatibility with PHP 7.2 for core Magento. The patch was released in October 2018 and can be downloaded from https://magento.com/tech-resources/download#download2240. Note, that the patch is in unified diff? format and should be applied with patch command: Alternatively, you can upgrade Magento to 1.9.4.0 version which have announced PHP 7.2 support. Note: Now there is an option to upgrade your M1 store to the latest version of OpenMage LTS… Read the rest
DEC 03 2018

Mage_Backup is disabled after SUPEE-10975 patch or after upgrade to 1.9.4.0

Mage_Backup core module is disabled after SUPEE-10975 patch or after upgrade to 1.9.4.0. It is not possible to create Magento database backup as corresponding screen in backend is missing. Also it is not possible to use any third-party extensions that rely on Mage_Backup. Cause The backup module is disabled intentionally by patch/upgrade process. Solution If you wish to use Mage_Backup core module you can enable it with completing the following steps: change <active> tag to… Read the rest
DEC 03 2018

How to install SUPEE-10975 without SSH


10 comments

November 28, 2018: SUPEE-10975 version released with fixes that help close cross-site request forgery (CSRF) and other vulnerabilities. If you have SSH access, it would be more simple to apply the patch via SSH. If you have no SSH access to apply the patch you still can apply the patch via FTP/sFTP upload as shown in this article. If you wish to save time and have us to install these patches for you, simply click… Read the rest
JUL 19 2020

How to install SUPEE-10975

SUPEE-10975 patch can be downloaded from the table below or installed as a regular Magento upgrade via Downloader (it is included in Magento 1.9.4.0 version). Download SUPEE-10975 You can install it in the same way as previous patches or by upgrading to Magento 1.9.4.0. To apply the patch you need SSH access (shell access actually, SSH is just most used way to get shell access) to the server. If you have no SSH access, you… Read the rest
JAN 15 2020

SUPEE-9767 Failed. Outdated jQuery library found (APPSEC-1622) response body contains unexpected ‘jquery 1.10.2.min.js’


2 comments

After installing SUPEE-9767 patch Magento security report show the following Failed scan: SUPEE-9767 Failed. Outdated jQuery library found (APPSEC-1622) response body contains unexpected ‘jquery 1.10.2.min.js’ Cause There is a theme override in your app/design/frontend/themepackage/themevarian/layout/page.xml. Solution Edit the theme layout replacing jquery-1.10.2.min.js with jquery-1.12.1.min.js, just like in default rwd theme: If you have any difficulties with solving this problem or got a similar one, please let us know in comments below, so we can find the… Read the rest