Security fix for edx-ecommerce service

August 16, 2016 | By

Simon Chen (edX)

Edx just released a security fix for the ecommerce service

The patch removes the public access to the ecommerce catalogue directory and it’s content. A user before the fix can take advantage of the visibility and use any edx course coupons to checkout enrollment seats.

Please see the fix here https://github.com/edx/ecommerce/commit/5ddce0941bc9521bd52b0bd68d531daf04500942

Thanks, and please let us know if you have any questions!

Loading

Resources

Time For More? Check out the articles below.

Solving Problems Together: Community-Driven Platform Development
Skill & Scale the Future at the Open edX Conference
Open edX Conference Developer’s Workshops
Reclaiming Our Digital Future: Why I’ve Joined the Open Renaissance Group
Join the Open edX Conference 2026!

The 2026 Open edX Conference will present innovative use cases for one of the world’s best open source online learning management systems, the Open edX platform, and discover the latest advancements in instructional design, course constellation, and methods for operating & extending the Open edX platform, including breakthrough technologies, such as generative AI.

Register Now