Key Features
- Customizable Storefront: Easily design and modify your online store with user-friendly templates and editing tools.
- Product Management: Organize your inventory, create product categories, and upload product details with ease.
- Responsive Design: Ensures seamless browsing on desktops, tablets, and mobile devices.
- Analytics Dashboard: Track your sales performance and customer activity with a built-in analytics system that displays key metrics.
- Order Management: Process orders efficiently, view order histories, and manage customer information all from one interface.
- Extensions & Integrations: Expand functionality with a wide range of plugins and integrations available in the CubeCart marketplace.
CubeCart offers a solid foundation for anyone looking to launch or expand their online store with full control over design and functionality. It can be deployed as a self hosted solution or with our specially optimised official hosting packages.
CubeCart Hosting
CubeCart optimised hosting free for 14 days.
Fast and secure without the middleman.
Self Hosted
Self manage on 3rd party Linux web hosting.
License: GPL 3.0 • GitHub: cubecart/v6
Latest News
United States Postal Service - (API 3.0)
USPS are soon to discontinue their old RateV4 shipping calculator. In response to this we have released a free new USPS extension to connect to the current API (3.0). We recommend that all our US merchants upgrade to this extension.
More Information: https://www.cubecart.com/extensions/shipping-methods/united-states-postal-service-usps-api-3-0
Public forum discussion can be found here. To use this new extension, merchants will need to obtain a new Consumer Key and Consumer Secret.
Permalink | 9th September 2024 11:31
CubeCart 6.5.6 Released - SQL Injection Vulnerability
We are pleased to announce the release of 6.5.6. This version contains an important security patch to prevent SQL injection but also contains a number of new features. Many thanks goes to Tim for disclosing this vulnerability responsibly. Upgrade is strongly recommended as this vulnerability exists in all versions up to and including 6.5.5.
All official CubeCart Hosted stores have all been proactively patched at their current version and are not vulnerable to this security issue.
What's New?
Issue | Description |
---|---|
#3622 | Security: Password reset SQL injection vulnerability & misc. improvements. |
#3591 | Store credit: Allows customers to use a stored amount of credit. Requires skin changes if Foundation skin isn't used. |
#3620 | Elasticsearch: Feature to only index items that are in stock. |
#3605 | Default Gravatar changed to person silhouette. |
#3603 | Customer group discount by category. |
#3599 | Foundation skin to have styles related products on checkout. |
#3595 | Anonymous reviews for unauthenticated customers. |
Can I patch store manually without upgrading?
This can be done by updating one line of code.
Open classes/admin.class.php. Find:
public function passwordRequest($username, $email)
{
Replace with:
public function passwordRequest($username, $email)
{
$username = preg_replace('/[^a-z0-9.@_\-\+]/i', '', $username);
Download: CubeCart-6.5.6.zip
Permalink | 6th August 2024 11:59
New CubeCart Hosting "Starter" Plan
We are pleased to announce a new hosting plan designed for very tight budgets.
Our "Starter" plan has a monthly fee of €10.00 / CA$16.00 / A$17.00 / US$11.00 / £9.00 per month and includes everything you need to start an eCommerce business online. This includes free installation of CubeCart and an email account.
Find out more and sign up at https://hosted.cubecart.com
Permalink | 21st June 2024 10:46
14 Day Trial & Free Migration on all Official CubeCart Hosting Plans
We are offering a 14 day free trial on all web hosting plans including free migration from your existing web host. We'll even upgrade your store to the latest version at no extra cost!
Our hosting is specially optimised for CubeCart stores which include;
- lightening fast dedicated memory caching.
- elasticsearch for search as you type functionality.
- the best CubeCart technical support direct from our developers.
No more hosting middle man! Come and give us a try.
Sign up now at https://hosted.cubecart.com
Permalink | 14th May 2024 11:31
CubeCart 6.5.5 Released - Minor Security Update
This release of CubeCart not only resolves a number of stability issues found in the previous version but patches a minor security vulnerability. We are grateful and thankful to Julio Araujo for reporting this so clearly and responsibly.
The security patch (GitHub issue #3570) prevents malicious .phar type files from being uploaded via the back office of the store. Please note that a bad actor would need to have successfully authenticated into the back office in order to take advantage of this vulnerability. On those grounds we do not consider this to be a significant threat.
To patch this vulnerability please either upgrade to CubeCart 6.5.5 or amend the code in the security patch linked above.
Download: CubeCart-6.5.5.zip