By In Magento

MAGMI multiselect issue with Magento 1.9.3

If you updated Magento to the latest version 1.9.3 you noticed that there are many changes done to Magento core and that some of the extensions doesn’t work properly anymore. So be sure to check patch noticed to avoid issues and it is highly recommended to make upgrade on development server first.

One of the issues that you may encounter is that MAGMI does not import multi-select attributes anymore. We found that Magento has changed attribute type for multi-select attributes from VARCHAR to TEXT, probably due limitations that existed with number of available attribute options in VARCHAR configuration (limitation for number of characters per field).

MAGMI still looks for multi-select attributes into VARCHAR attribute type and since it’s not there he can’t assign proper ID to that values. It is possible to replace attribute option labels with attribute option IDs and in that case it might work, however we didn’t had enough time to test this option properly (also modifying CSV file can be very time consuming).

So we decided to created patch for MAGMI that will correct this issue, until official update is available. We are not responsible for any unwanted actions that might be caused by this patch and so far we didn’t encounter a single issue, after extensive use on several big projects.


Patch is created by my colleague Dr. Srdjan Janjic, Magento developer at SMDesign Studio 

Read more

By In Magento

USPS shipping service issue in Magento back-end

Since USPS shipping method comes with Magento installation as one of basic shipping methods it is quite normal that we expect it to work ‘out of box’. That was correct until recently ‘WebShopApps’ didn’t patched Magento core module. When you open System->Configuration->Shipping Methods section and tab for USPS you will notice a small message that will inform you that module is patched.

First reported issue after patch is missing shipping options when you want to create a order form Magento back end, for now it is confirmed that issue happen with USA addresses. Quickest way to find out what is happening is to enable ‘Debug’ option and try to create one test order. Key step in this process is requesting shipping and payment methods, after you selected user and added products into cart. If USPS method is missing connect via FTP to server and search for debug file, it should in folder var/report by default. Open file with some editor that can handle XML output (I prefer Notepad++ – with nice plugin to format XML) and try to find what is causing issue.


So far most common error message is: RECTANGULAR is an invalid container type for a REGULAR package and ALL service.

To resolve issue go back to System->Configuration->Shipping Methods section and open USPS tab, under settings search for ‘Container’ type and switch it to ‘Variable’. Save changes and try to create order again, USPS should appear among other shipping options.

Issue is known for Magento from up to, if anyone else notice similar issue but find different error and solution please shear ti via comment so we can help other people that are stuck.


Read more

By In Magento

VladimirPopov_WebForms security issue

WebForms by VladimirPopov is very popular free module that allow you to create a custom contact forms and embed them on your Magento site easily. Recently a security issue is discovered in module that allow attacker to inject a script that will allow him to upload any file to server through URL and browser. Updating module to latest version is highly recommended however if your site is already hacked that will not resolve a issue. To make things worst some Magento administrators reported that hack can send a email with server data to specified email address, extending vulnerability of  hacked Magento.

After updating module to latest version I strongly suggest complete scan of your file system using MageFence tool that will run through server and search for suspicious files and malware code in files. Once scan is completed you can see results and remove injected and infected files, if infected files are located in app/code/core/Mage folder you can use Magento installation package to overwrite those files and upload clean one.

MageFence comes with built in file scanner that will create a starting point on installation and after that any changes in files will be recorded and reported. So you will be able to see and track any changes that are made, this is key feature in early detection of hack attempts. ExtensionsMall update their security module on regular base and all confirmed security issues are included in vulnerability checklist and malware definition base.









Read more