5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Judy Gunderson saved my bacon!

Judy Gunderson saved my bacon! Actually, she saved my store database, putting it back together after a series of unfortunate incidents in which...
Read More ->


GOD"S HEAVEN SENT MIRACLE

I wish I would have found Judy years and years ago. Instead I was using someone else who after spending 1,000s with them only pretended to know zen...
Read More ->


Just a Great Lady

After my share of abuses like having websites paid for only to be dumped on me incomplete, Judy has stood by my side and helped me through the...
Read More ->


Zen Cart Experts

After dealing with other so called "zen cart experts" Judy truly defines the word expert!!! My site has never worked faster and she did all the work...
Read More ->


Genius

The best money that I have ever spent. My website had been at a standstill for the past 3 months...Judy was able to take my list+ (I constantly...
Read More ->


Who's Online

There currently are 10 guests online.
Copyright © 2004 - 2021 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart