Latest Magento 1.9.3.6 and Magento Security Scan Tool , not patched?

by rtk0407   Last Updated January 13, 2018 00:09 AM

I have the latest vetsion of Magento x1 version, which is 1.9.3.6. It says it

  • Includes patches: SUPEE-5344, SUPEE-5994, SUPEE-6237, SUPEE-6285, SUPEE-6482, SUPEE-6788, SUPEE-7616, SUPEE-7405, SUPEE-7405 v1.1, SUPEE-8788, SUPEE-9652, SUPEE-8167, SUPEE-9767v2, SUPEE-10266

However, when I run Magento Security Scan Tool, it says

SUPEE-9767 - Failed. Outdated JQuery library found (APPSEC-1622), got '302'.

Should I do something?



Answers 1


I had a similar issue on EE.

The 9767 patch replaced jquery-1.10.2.min.js with jquery-1.12.0.min.js in the frontend layout XML files.

Search your codebase for "1.10.2.min.js" and see what you find - I suspect you have a custom layout XML in one of your themes that is still referencing jquery-1.10.2.min.js, causing the security scanner to assume that 9767 hasn't been applied. If so, replace it with lib/jquery/jquery-1.12.0.min.js (or wherever it might be located in your project).

kmdsax
kmdsax
January 12, 2018 23:19 PM

Related Questions


404: Page not found SUPEE-14015

Updated November 30, 2017 02:09 AM

Magento 1.8.1.0 - Applying patch 6788 failed

Updated October 11, 2017 12:09 PM

Magento 1.8.1.0 - Applying patch 10266 failed

Updated October 11, 2017 09:09 AM

Magento 1.8.1.0 - Applying patch 8788 failed

Updated October 11, 2017 12:09 PM