Author Topic: VM1, VM2, VM3 websites are not affected by the Poodle security issue  (Read 8892 times)

alatak

  • Contributing Developer
  • Full Member
  • *
  • Posts: 1996
    • alatak.net
Hello

Due to the recent POODLE vulnerability discovery, payment processors have begun disallowing the use of SSL v3.

PayPal has officially announced that they will discontinue support for SSL 3.0 on Wednesday, December 3, 2014: https://devblog.paypal.com/poodle-ssl-3-0-vulnerability/

The issue appears when the code forces the use the SSL version 3 in curl functions.

None of our payment plugins (i.e. PayPal, authorize, heidelpay, , klarna,  realex, and sofort) uses this option, neither in VM1, VM2 or VM3.

The most important time of the year for e-websites is fast approaching, and we wanted to reassure all our merchants.