5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Judy did an amazing job!

It was pain and frustration getting our store open. We started looking and talking to different zencart designers but ultimately she was the most...
Read More ->


Saved The Day!

Judy helped us after we were abandoned by another company. Knowing that our website was down, she immediately went to work and upgraded our zen cart...
Read More ->


Thank you Judy the Zen Cart Guru

I don’t generally write reviews, but Judy is the exception. She and her team took my old antique website, moved it into Zen Cart, gave the site a...
Read More ->


Judy is the best!

I searched for 12 frustrating years for a web designer who is an expert, professional, and thorough; someone who cares about customers' needs, who...
Read More ->


A Knightess in Shining armor

Miss Judy has been a great help setting up and improving our cart. She is an honest person I do not worry about her when she is working on my site....
Read More ->


Who's Online

There currently are 6 guests online.
Copyright © 2004 - 2021 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart