Trustwave Security Report Patch




This is a service provided by PRO-Webs Inc. for Zen Cart


Zen Cart Trustwave Security Patch

This patch is for Zen Cart versions 1.5.0 to 1.5.4.

This 3/17/2016 Zen Cart announced patch in response to a Trustwave security report of Zen Cart newly discovered vulnerabilities is for Zen Cart versions 1.5.0, 1.5.1, 1.5.2, 1.5.3 and 1.5.4. To perform the Zen Cart team's released patch FTP (for file transfer) and Zen Cart administration (check for errors) access are required.

The majority of the reported vulnerabilities were XSS and/or reflected XSS vulnerabilities. After a long period of discussion with Trustwave the Zen Cart team decided to implement a more global process of sanitizing GET/POST parameters in Admin. This we have the patch dated 3/17/2016.

There are no database changes, some core file edits/new files. In order to complete this installation we will need FTP credientials. Do not put these credentials in checkout or email, we will send you a secure form to collect the necessary information.


Customers who bought this product also purchased...



PRO-Webs, Inc.
63 Merganser Way
Woodbine, GA
USA 31569

(330) 871-4357
Email Us

PRO-Webs, Inc. 2021
Notice: Unauthorized attempts to access, upload information, or deface this web site is strictly prohibited and are subject to prosecution under the Computer Fraud and Abuse Act of 1986 and Title 18 U.S.C. Sec. 1001 and 1030.