CRE Loaded template selection can sometimes be a very difficult task to understake by any store owner. eCommerce templates must meet the cart version requirements. For example, cre loaded 6.4 templates will only work on 6.4 stores. If you are running a B2B eCommerce website, the template must indicate that there is a B2B version. Not every template vendor will maintain the templates they sell to keep up to date with security and cart updates. In all likelyhood, you will need to hire a designer and a programming service that understands the under-belly of the cart and template functionality to bring the template purchase up to date with security and technology.

Software: CRE Loaded Cart
CVE Identifier:CVE-2009-5076
Vendor: http://www.creloaded.com
Contact: Vendor Patch
Version: Prior to 6.4.0
Severity: CRITICAL
Affected File: /includes/application_top.php and /admin/includes/application_top.php
Affected line(s): ~ approximately lines 75-76

We recently completed PCI SAQ-D over the course of two months. What we did learn is that PCI for CRE Loaded Cart begins at your home office! You will most likely work from PCI SAQ-A. Beginning with Requirements 1 to the end, your home office connects over your network to the cardholder data to either your dedicated server or shared hosting account.