Hello!
Recently we notified you about a major security issue and how to fix it. Since then, we received news of another, unrelated problem. It could allow administrators of your site to elevate their privileges.
There are two ways to close the vulnerability:
- If you are using CS-Cart 4.17.2 SP1, the upgrade to version 4.17.2 SP2 is already available in your Upgrade Center.
- If you are using an older version, you can still fix the problem. Go to the File area in the Help Desk and find the “Security Fixes (March 2024) for 4.0.1 - 4.17.2” add-on. Download it and install the add-on using our instructions.
We recommend installing the add-on as soon as possible.