Hi,
we discovered a severe security issue in CS-Cart 4.
It basically allows any Administrative user with restricted privileges to become Top-Admin (with all privileges).
Where shall we send details about this? The CS-cart site shows no dedicated contact for security issues.
Regards,
Raphael
axess-security.com