9/12/15 Security Fix all Zen Cart Versions


    

25.00

Add to Cart:

This security fix is regarded as low risk because hacker would need to have admin access.

The popup page for additional images e.g. index.php?main_page=popup_image_additional accepts a GET parameter for products_image_large_additional.

Using a crafted URL an attacker can determine (via the html returned) whether a specific file exists on the server.  This flaw does not indicate the attacker can ACCESS the file, just find out if it exists on the server.
 

If you would like to install this fix yourself, instructions are included on the official Zen Cart website.  You may also visit the site to get technical details of this risk

 


Customers who bought this product also purchased...

Shopping Cart

Your cart is empty.

Customer Reviews

I could not be HAPPIER that we found JUDY!!!!!!

I came across Judy on a Google search (as I read others have too). I called her after searching through her site and reading what folks had to say...
Read More ->


5 Star Rating

No, I take that back, she gets a 10 Star rating!!! I have been in business a long time and used a lot of IT people during that time, but Judy...
Read More ->


Professional and nice

She did exactly what I needed!
Read More ->


I'm glad I Googled!

I found Judy on Google and am so glad I did. Judy added some mods to my shopping cart and worked diligently to make sure everything worked correctly....
Read More ->


Zen Cart Experts

After dealing with other so called "zen cart experts" Judy truly defines the word expert!!! My site has never worked faster and she did all the work...
Read More ->


Who's Online

There currently are 3 guests online.
Copyright © 2004 - 2022 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart