5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

Judy is the BEST!

Where does one begin? I am a VERY picky person especially when it comes to my sites. Judy has performed above and beyond each and every time. One...
Read More ->


Dreams really do come true!

I searched a long time to find the right website designer. Having a website has been a dream of mine for a long time, and Judy has made it all...
Read More ->


The best thing that happened to our website, was Judy!!!

Judy.... words can not begin to let you know how blessed we were to find YOU!!! The ease and professionalism in which you handled our needs was just...
Read More ->


Judy is the Greatest

God Bless Judy! As I struggled with my old website not working and my old webdesigner not letting me have any input or control of my own website . ....
Read More ->


Judy's THE best!!

Judy's the absolute best! I called her one day and the next day, our Zen upgrade was complete, switched over and running properly!! It would have...
Read More ->


Who's Online

There currently are 7 guests online.
Copyright © 2004 - 2020 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart