We have to announce that security vulnerability found in CS-Cart. If PHP “register_globals” setting is enabled on the server (although, this is not recommended for security reasons), an unauthenticated attacker may be able to exploit this flaw to remote code execution for obtaining sensitive information from the CS-Cart installation.
It’s HIGHLY recommended to download and apply security patch from your file area in Help Desk.
thank you for the update zeke. My cs-cart installation has been attacked already but luckely my hosting account suspended my account immediately. I’ve just applied the patch and passwords changed.
nevermind, I answered my own question 
Which patch is this ? Can you please name the file so that I can go in my file area to download and apply this ?
Thanks a lot.
[quote name=‘bangl4’]Which patch is this ? Can you please name the file so that I can go in my file area to download and apply this ?
Thanks a lot.[/QUOTE]
Dude, do you know what year it is?