On July 3rd, Qualiteam (the authors of X-Cart) released a security bulletin that reveals several vulnerabilities in all versions of the X-Cart software that could allow malicious users to gain access to the X-Cart file system.
Additionaly, they have found a vulnerability in their Sales-n-Stats connector module in X-Cart versions 4.0.8 - 4.0.13 that could make an SQL injection possible.
These security issues make X-Cart potentially vulnerable to attackers who wish to make X-Cart-based store inoperable or gain access to the application back-end.
Due to the severity of this news, NetVision, Inc. has opened the emergency critical patch service that provides 24 hour turnaround time on patching customer websites.
The fee for this service is $45 per website.
DID YOU KNOW?
