IMPORTANT Security Fix for ALL versions of Zen Cart

Article Date(s): 07/08/2014 - 12/31/2035
On July 4th, the developers of Zen Cart released a new version -1.5.3.

This version, like 1.5.1, is not PA DSS certified for the credit card industry. However, it is in the process of being certified. Once certified, it is my understanding that a new release (with new number) will come out. This could take a couple of months or longer.

Version 1.5.3 contains over 150 additions / fixes from version 1.5.1. This results in 198 CHANGED files and 12 NEW files as well as database changes.

For a detailed listing of what has changed in 1.5.3, go to the Zen Cart website here:

Some of the more interesting / needed fixes I have picked out of all of them are:

CHANGE-196 - Fix issue with Store-pickup module vs taxes
CHANGE-332 - Update PayPal WPS to prevent mistakenly entering localized country domain for accessing PayPal services (per PayPal change Q3-2012)
CHANGE-371 - Fix for checkout_shipping creating debug logs when shipping method fails to generate methods
CHANGE-386 - Fix CURL/SSL Vulnerabilities
CHANGE-435 - Set reply-to header in admin copy of order-confirmation email - to make for easier replying to customers
CHANGE-450 - Switch to SSL for contact-us form (when SSL is enabled)
CHANGE-451 - Fix canonical link handling for cases where the site operates entirely in SSL
CHANGE-484 - Quantities added to cart should adjust to stock rather than just a message
CHANGE-524 - Fix SaleMaker issues on Discount Quantity
CHANGE-527 - Add configuration-settings-search to Developers Toolkit, credit B.Bellamy,torvista (makes the search_configuration_keys plugin obsolete)
CHANGE-675 - Update country names to reflect changes in the ISO standards thru end of 2013
CHANGE-690 - Add function to do lookup of latest version of plugins

We will be using version 1.5.3 for all new installs and upgrades.

Our upgrade services can be found under Zen Cart Upgrade on our website.

Please note that modifications are not included in the upgrade price, but most are offered at 50% off when doing an upgrade. We will begin scheduling ordered upgrades immediately and will be scheduling 2 per week. Please allow 2 days for your upgrade to be completed once it has been started. As always, we schedule on a first come/pay basis. Please be sure to click the banner on the "Thank You" page when you check out, and fill out the form for Upgrade or Site Move.

If you are running version 1.3.9 of Zen Cart, it is highly recommended that you get upgraded to the latest stable version if for no other reason than security for you and your customers.

If you are at 1.5.0 or 1.5.1, you may wish to wait to upgrade until this latest version has passed PA DSS Certification - IF you are not having any issues with your shopping cart. I will be informing you once the certified version comes out.


Server Requirements: (if you are hosted with us, our server meets these requirements)

* PHP 5.2.10 to 5.6.x, Apache 2.0 to 2.4, and MySQL 4.1.3 to 5.6.x.
* Apache must be configured with AllowOverride set to either 'All' or at least both 'Limit' and 'Indexes' parameters, and preferably the 'Options' parameter as well.
* PHP must be configured to support CURL with OpenSSL

While Zen Cart® can run on Windows/IIS servers, Linux/Apache servers are recommended for best results.

THANKS!!

Judy Gunderson
Back

Shopping Cart

Your cart is empty.

Customer Reviews

Zencart Guru

Judy Gunderson and staff are so talented if you have a Zencart website as I do. I found her on the internet while having a zencart problem and she...
Read More ->


Thank you, Judy!

With much stress and disarray of trying to install and operate Zen Cart on my own, I called Judy. Instantly we hit it off and she effortlessly got my...
Read More ->


Saved our company !!

I truly thought that our site was doomed. With the Zen Cart patch vulnerability threat that I was unaware of as well as our Web Mistress. The site...
Read More ->


#1 Professional company to work with!

Zen cart review: for zencarthostingservice.com and zencart-ecommerce-website-design.com LOOK NO FURTHER! Because you will get the best of the best...
Read More ->


Judy your the best!

We wanted to build another ZenCart site. Got into it and got lost. Thankfully, we found Judy. We emailed her a brief description of where...
Read More ->


Who's Online

There currently are 12 guests online.
Copyright © 2004 - 2021 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart