Zen Cart v1.3.5 XSS PATCH Released Oct 1, 2006
=================================================
To combat a reported XSS exploit vulnerability in Zen Cart, simply download the files from the patch ZIP and copy the enclosed /admin files for login.php and password_forgotten.php to your admin folder.
Remember, if you have renamed your admin folder, you will have to use *that*
folder name when copying/uploading.
File can be downloaded here:
These fixes are NOT included in the main "full-fileset" zip.
Please apply these fixes AFTER unzipping the main full-fileset zip contents.
Alternatively, you may wish to apply the edits manually:
=================================================
To combat a reported XSS exploit vulnerability in Zen Cart, simply download the files from the patch ZIP and copy the enclosed /admin files for login.php and password_forgotten.php to your admin folder.
Remember, if you have renamed your admin folder, you will have to use *that*
folder name when copying/uploading.
File can be downloaded here:
These fixes are NOT included in the main "full-fileset" zip.
Please apply these fixes AFTER unzipping the main full-fileset zip contents.
Alternatively, you may wish to apply the edits manually:
Kommentar