9/12/15 Security Fix all Zen Cart Versions


    

25.00

Add to Cart:

This security fix is regarded as low risk because hacker would need to have admin access.

The popup page for additional images e.g. index.php?main_page=popup_image_additional accepts a GET parameter for products_image_large_additional.

Using a crafted URL an attacker can determine (via the html returned) whether a specific file exists on the server.  This flaw does not indicate the attacker can ACCESS the file, just find out if it exists on the server.
 

If you would like to install this fix yourself, instructions are included on the official Zen Cart website.  You may also visit the site to get technical details of this risk

 


Customers who bought this product also purchased...

Shopping Cart

Your cart is empty.

Customer Reviews

Simply the Best

Judy took special time and solved our problem that was driving us crazy. Very fast, very honest and a pleasure to work with. She should charge more,...
Read More ->


Thank you, Judy!

With much stress and disarray of trying to install and operate Zen Cart on my own, I called Judy. Instantly we hit it off and she effortlessly got my...
Read More ->


Judy is the best!

I searched for 12 frustrating years for a web designer who is an expert, professional, and thorough; someone who cares about customers' needs, who...
Read More ->


Problem Solver

Gunderson Enterprises makes it easy for the business owner. Determines the problem, develops a solution, solves the problem and charges a very...
Read More ->


Judy and Zen Cart are awesome!!

Judy is so knowledgable and helpful! She was so patient throughout the whole process, and has so much technical know-how. She built my website:...
Read More ->


Who's Online

There currently are 9 guests online.
Copyright © 2004 - 2020 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart