5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Professional and courteous service

Our experience with Judy has been overwhelmingly positive! She is a great communicator and a delightful person. She saved our company both time and...
Read More ->


Fantastic Job!

I highly recommend Judy and Zen Cart Ecommerce Website Design. When I told her what I needed she responded quickly and clearly, unlike other Zen Cart...
Read More ->


Judy saved my company and site

Judy has saved my site ...I can honestly say this. We are 100% e-commerce. She has installed security upgrades for us. Extras on the site to make...
Read More ->


Thank you, Judy!

With much stress and disarray of trying to install and operate Zen Cart on my own, I called Judy. Instantly we hit it off and she effortlessly got my...
Read More ->


Judy is an "Angel"

Judy is an "Angel"! She rescued us from so much frustration and wasted time that we encountered from previous "companies". It's so nice to get...
Read More ->


Who's Online

There currently are 6 guests online.
Copyright © 2004 - 2019 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart