5/12/16 Patch for Admin Privilege Escalation issue in v150-v155

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


         

Your header in Here

Customer Reviews


100% Fantastic, friendly support

We had some very firm ideas about how our web store should look, but we weren't sure if it could be done. Judy just did it! Despite a lot of...
Read More ->


Judy Goes ABOVE and BEYOND

From my experience with the worst, I can tell you that Zen Cart Ecommerce Web Design is the best. Judy has established prices but she goes above and...
Read More ->


Judy is the Greatest

God Bless Judy! As I struggled with my old website not working and my old webdesigner not letting me have any input or control of my own website . ....
Read More ->


Judy did an amazing job!

It was pain and frustration getting our store open. We started looking and talking to different zencart designers but ultimately she was the most...
Read More ->


Zencart Guru

Judy Gunderson and staff are so talented if you have a Zencart website as I do. I found her on the internet while having a zencart problem and she...
Read More ->


Who's Online

There currently are 9 guests online.
Copyright © 2004 - 2019 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart