Category Archives: Zen Cart

Make Sure Your Zen Cart Websites are Up to Date
With our Up to Date? Chrome app you can keep track of the Zen Cart versions (as well other web apps) on all of the websites you manage in one place, so you can easily check if they are in need of an upgrade.

Need Zen Cart Upgraded?
We can upgrade your Zen Cart store for you.

Zen Cart 1.5.3 Released

Zen Cart 1.5.3 was released on Friday. The new version is designed to be compatible with PHP versions 5.4 and 5.5, it also verified to be compatible with the beta version of 5.6. The new version fixes several cross-site scripting (XSS) security vulnerabilities and changes password hashing to bcrypt (requires PHP 5.3.7 or newer). The new versions also includes performance enhancements and bug fixes.

The new version increases the system requirements to PHP version 5.3.7 or greater (“may run on as low as PHP 5.2.10, but with lesser security protections available”) and MySQL 5.0 or greater.

This version is not PA-DSS certified, so those who need a PA-DSS certified version will need to remain on 1.5.0 until the next PA-DSS certified version based on 1.5.3 is released.

More information is available in the release announcement.

Posted in Security Update, Zen Cart | Leave a comment

Zen Cart 1.5 Cross-Site Scripting (XSS) Flaw Patch Released

A patch for a “minor” cross-site scripting (XSS) security vulnerability in Zen Cart 1.5.0 and 1.5.1 was released yesterday. The patch and the updated version of the vulnerable file can found here. Our patch files for upgrading from earlier versions of Zen Cart to 1.5.1 have been updated to include this patch as well.

Posted in Security Update, Zen Cart | Leave a comment

Zen Cart 1.5.1 Released

Zen Cart 1.5.1 was released today. The new version includes performance improvements and bug fixes.

More information is available in the release announcement.

Posted in Zen Cart | Leave a comment

Zen Cart 1.5.0 Released

Zen Cart 1.5.0 was released last Friday. The new version includes numerous bug fixes as well as the removal of several obsolescence features.

The new version fixes a local file inclusion security vulnerability. Numerous security enhancements have been made in the version including many needed to receive certification for Payment Application Data Security Standard (PA-DSS) (PDF) compliance. The paperwork for certification has been submitted and final approval is being awaited.

More information is available in the release announcement.

You can download our patch files for Zen Cart 1.5.0 here.

Posted in Security Update, Zen Cart | Leave a comment