5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Thanks Judy

Judy thanks for all your help on my website... It's nice to know there are still honest people in the world! I now have the website I wanted...I wish...
Read More ->


You're The Best!

Judy has been amazingly helpful. I highly recommend her to others for their Zen Cart design, set up, and troubleshooting.I had many website issues...
Read More ->


Wholesale By Nanas

Judy Gunderson just completed our wholesale dropship business website where people that wish to have an online ecommerce home based business can...
Read More ->


I'm glad I Googled!

I found Judy on Google and am so glad I did. Judy added some mods to my shopping cart and worked diligently to make sure everything worked correctly....
Read More ->


Judy the Savior of our business

Judy, Words can not express the gratitude,we at werbeautiful.com feel. Our website was down due to hackers, we were making no money. We called...
Read More ->


Who's Online

There currently are 17 guests online.
Copyright © 2004 - 2021 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart