Recently we have been informed of some vulnerabilities in the store code which could potentially allow an attacker to gain access to the Administration section. To take advantage of theses vulnerabilities, the attacker needs to know the location of the Zen Cart Administration section.
While renaming the "/admin" provides protection against this vulnerability, it has been found that "Security through obscurity" is NOT sufficient, and therefore this patch will address the vulnerability at the software level.
TRUST IT strongly recommends resolving this security vulnerability to prevent unauthorized access, theft and malicious attacks of your website data.
