Services We Offer
Sponsors
Latest News [View All]
Important Links
- FAQs
- Reset Lost Admin Password
- Adding Attributes to Products Tutorial
- Authorize.net Set Up for Zen Cart
- Creating A Custom Zen Cart Template
- Disable Category Counts
- Downloadable Products Tutorial
- EZ Pages Tutorials
- Gift Certificates Tutorial
- Metatags Tutorial
- Sidebox Tutorials
- Brief Zen Cart Store Operations Tutorial
- Adding Additional Images Through Cpanel Tutorial
- Hosting Information
Need more bandwidth or space?
IMPORTANT Security Fix for ALL versions of Zen Cart
Article Date(s): 06/28/2009 - 12/31/2035
The Zen Cart Development Team announced that a security flaw has been found in all versions of zen cart. They have released a fix for this. I am pasting their announcement below.
If you need assistance in getting this security patch installed, please visit the Zen Cart Troubleshooting tab for more information. http://zencart-ecommerce-website-design.com/index.php?main_page=product_info&cPath=18&products_id=132
----------- email from Zen Cart Dev Team -------------------
Zen Cart Security Vulnerability Alert + Patch
Please pardon this mass email. If you are running a Zen Cart store, it's important that you read this message and take action immediately.
A vulnerability has been discovered in the admin section of v1.3.8 (and previous versions). To take advantage of this vulnerability any attacker must know the URL of your admin section. As our security recommendations point out, you should change the folder that your admin resides in as soon as you installed Zen Cart.
SO -- THE FIRST STEP YOU **NEED** TO TAKE is to rename your /admin/ folder!
http://tutorials.zen-cart.com/index.php?article=33
However we realise that relying on this 'Security through Obscurity' is not foolproof, hence the release of a patch, which can be downloaded from the Zen Cart Support forum, here: http://www.zen-cart.com/forum/showthread.php?t=130161
The zip file there contains a readme.html with full details on how to install the security patch files. The security patch uses Zen Cart's override system to make installation as simple as possible.
The security patch will work for previous versions in the 1.3.x series.
Older releases i.e v1.2.x are no longer supported and the patch has not been fully tested on those versions, however some parts of the patch should still work with v1.2.x (again see the readme.html file). However we strongly advise anyone using the 1.2.x versions to upgrade to 1.3.8 as soon as possible.
The Zen Cart Team takes security matters very seriously. But security is only as good as those who follow posted recommendations. Please apply the appropriate patches and security measures promptly, for your own benefit.
SUMMARY: Your Action Steps are:
1. RENAME YOUR ADMIN FOLDER !!!!!
Yes, if you haven't already renamed your /admin/ folder, do it NOW!
Instructions can be found here: http://tutorials.zen-cart.com/index.php?article=33
2. APPLY THE SECURITY PATCH !!!
http://www.zen-cart.com/forum/showthread.php?t=130161
3. Subscribe yourself to the Zen Cart Announcements mailing list:
http://www.zen-cart.com/forum/subscription.php?do=addsubscription&f=2
4. Keep your site's Zen Cart software up-to-date at all times. Numerous bugs, improvements, and security fixes are included in every new release. It is in your best interests to remain current.
http://www.zen-cart.com/forum/forumdisplay.php?f=2
Sincerely,
The Zen Cart Team
If you need assistance in getting this security patch installed, please visit the Zen Cart Troubleshooting tab for more information. http://zencart-ecommerce-website-design.com/index.php?main_page=product_info&cPath=18&products_id=132
----------- email from Zen Cart Dev Team -------------------
Zen Cart Security Vulnerability Alert + Patch
Please pardon this mass email. If you are running a Zen Cart store, it's important that you read this message and take action immediately.
A vulnerability has been discovered in the admin section of v1.3.8 (and previous versions). To take advantage of this vulnerability any attacker must know the URL of your admin section. As our security recommendations point out, you should change the folder that your admin resides in as soon as you installed Zen Cart.
SO -- THE FIRST STEP YOU **NEED** TO TAKE is to rename your /admin/ folder!
http://tutorials.zen-cart.com/index.php?article=33
However we realise that relying on this 'Security through Obscurity' is not foolproof, hence the release of a patch, which can be downloaded from the Zen Cart Support forum, here: http://www.zen-cart.com/forum/showthread.php?t=130161
The zip file there contains a readme.html with full details on how to install the security patch files. The security patch uses Zen Cart's override system to make installation as simple as possible.
The security patch will work for previous versions in the 1.3.x series.
Older releases i.e v1.2.x are no longer supported and the patch has not been fully tested on those versions, however some parts of the patch should still work with v1.2.x (again see the readme.html file). However we strongly advise anyone using the 1.2.x versions to upgrade to 1.3.8 as soon as possible.
The Zen Cart Team takes security matters very seriously. But security is only as good as those who follow posted recommendations. Please apply the appropriate patches and security measures promptly, for your own benefit.
SUMMARY: Your Action Steps are:
1. RENAME YOUR ADMIN FOLDER !!!!!
Yes, if you haven't already renamed your /admin/ folder, do it NOW!
Instructions can be found here: http://tutorials.zen-cart.com/index.php?article=33
2. APPLY THE SECURITY PATCH !!!
http://www.zen-cart.com/forum/showthread.php?t=130161
3. Subscribe yourself to the Zen Cart Announcements mailing list:
http://www.zen-cart.com/forum/subscription.php?do=addsubscription&f=2
4. Keep your site's Zen Cart software up-to-date at all times. Numerous bugs, improvements, and security fixes are included in every new release. It is in your best interests to remain current.
http://www.zen-cart.com/forum/forumdisplay.php?f=2
Sincerely,
The Zen Cart Team
Shopping Cart
Your cart is empty.
Customer Reviews
Laurelwood Books
You're The Best!
The best thing that happened to our website, was Judy!!!
Savy and up-to-date for todays competitive markets.
Judy You Are Amazing! - The Total Zen Cart Solution
We are so glad we found Judy! The first company that we used was TERRIBLE! Judy took our website and not only fixed all the problems with it,...
Read More ->
You're The Best!
Judy has been amazingly helpful.
I highly recommend her to others for their Zen Cart design, set up, and troubleshooting.I had many website issues...
Read More ->
The best thing that happened to our website, was Judy!!!
Judy.... words can not begin to let you know how blessed we were to find YOU!!! The ease and professionalism in which you handled our needs was just...
Read More ->
Savy and up-to-date for todays competitive markets.
Judy's work is AMAZING! From the moment I first spoke to her on the phone I knew this was the person I wanted to have working to bring MY visions of...
Read More ->
Judy You Are Amazing! - The Total Zen Cart Solution
Unbelievable customer service, super attentive, no matter if you are an advanced user or total novice. If your looking for help with Zen Cart look no...
Read More ->
Who's Online
There currently are 9 guests online.
Copyright © 2004 - 2021 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart