5/12/16 Patch for Admin Privilege Escalation issue in v150-v155


    

20.00

Add to Cart:

We received notification from the Zen Cart Development Team that there existed a potential admin privilege escalation issue whereby logged-in admin users of v1.5.0-to-v1.5.5 (before v1.5.5a) could change their own user profile permissions if they engaged in some hackery.

This only poses a risk when multiple admin users exist AND some have been assigned a profile restricting their privileges to disallow access to certain admin sections ... AND they have some malicious desire to gain access to changing settings or viewing data against which they've been restricted.

The fix involves replacing one file.

 


Shopping Cart

Your cart is empty.

Customer Reviews

I could not be HAPPIER that we found JUDY!!!!!!

I came across Judy on a Google search (as I read others have too). I called her after searching through her site and reading what folks had to say...
Read More ->


The best thing to happen to my website

I was at the point of wanting to completely redo my website. I couldn't take the slow loading pages and constant forum reading looking for solutions...
Read More ->


Judy and Zen Cart are awesome!!

Judy is so knowledgable and helpful! She was so patient throughout the whole process, and has so much technical know-how. She built my website:...
Read More ->


A GREAT DISCOVERY

I came across Judy by searching the web. I had no idea what I was getting into - but it turned out great. She is very professional and fast. I...
Read More ->


10+ Year Satisfied Customer!

Judy at: https://zencart-ecommerce-website-design.com, has always been the best we can find to make changes, Updates, and modifications to out...
Read More ->


Who's Online

There currently are 11 guests online.
Copyright © 2004 - 2020 ZenCart Ecommerce Website Design
Zen Cart Templates Zen Cart Guru
Powered by Zen Cart