5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Incredible!

I found Judy out of sheer desperation. I had been working with another company for approx. 1 1/2 years! and they never finished my site or configured...
Read More ->


Thanks to Judy....

Judy seamlessly switched my existing site over to Zencart in record time! She "listens" to what you need and makes it all come true! You can...
Read More ->


Zencart Guru

Judy Gunderson and staff are so talented if you have a Zencart website as I do. I found her on the internet while having a zencart problem and she...
Read More ->


You are so appreciated!

You are, as always, such a gem and so amazingly appreciated. I will be discussing our next steps regarding hookahshisha with my staff so we may...
Read More ->


Judy saved my company and site

Judy has saved my site ...I can honestly say this. We are 100% e-commerce. She has installed security upgrades for us. Extras on the site to make...
Read More ->


Who's Online

There currently are 9 guests online.
Copyright © 2004 - 2020 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart