We have identified and fixed a new security issue on module Product Comments.
This issue is fixed in latest version 4.2.1.
One security fix has been included in this minor version:
- Blind SQL injection during the CommentGrade process (security advisory)
More information about why it is important to update:
The version v4.2.1 of the module also brings some new improvements, you can read the full Changelog here.
How to upgrade
You should be able to download the latest version from your Back Office.