[QUOTE]Francois Harvey has reported a vulnerability in SmartOptimizer, which can be exploited by malicious people to disclose potentially sensitive information.
The vulnerability is caused due to an error within the handling of HTTP requests containing a NULL character (“%00”) and can be exploited to disclose the source code of certain scripts (e.g. .PHP) by including “%00” in the request.
The vulnerability is reported in version 1.7. Other versions may also be affected.[/QUOTE]
…just my opinion. I think, CS-Cart works very well without any third party scripts and it’s just a question of your server speed and configuration. I don’t think some “big guys” would use ‘Smart Optimizer’ for their online shops. And if you are happy to win some 0.xx ms with this script by xxx products… it’s not valuable.
I know, it’s great for a Joomla or Wordpress site, but not for CS-Cart, not for Magento, and not for OpenCart with xxx+ produts, filters, and so on.
I don’t agree with you Indy. My site loads at least twice as fast if Smartoptimizer is turned on.
According to Pingdom, my site will average about 15 seconds without Smartoptimizer and will average 5 - 7 seconds with Smartoptimizer.
That is a pretty huge difference to me.
This is using CS-Cart 2.1.1
As for what the big guys use or don’t use, does it matter? All that matters is that I want my site to load as quickly as it can by whatever means necessary.
I agree that the big guys probably don’t use Smartoptimizer, but they aren’t using CS-Cart either, so you take that however you want. If you are raking in millions of dollars I’m sure you can afford a custom coded site optimized however you want by a huge team of people.
Since I’m not quite to the millions of dollars yet, I’ll just stick with Smartoptimizer.
Thank you for posting about the Smartoptimizer update. I probably wouldn’t have ever known without you posting it. I’ll have to look at upgrading when I upgrade to 2.1.2.
I know, I didn’t make any tests at the moment regarding SmartOptimizer, but I don’t really believe there is the problem. As I said in the first place it is the speed and cofiguration of the server you are on.