Skip to content


Repository files navigation

Zen Cart® - The Art of E-Commerce

Zen Cart® was the first Open Source e-Commerce web application to be fully PA-DSS Certified.

Zen Cart v2.0.0 is the latest major update to the project. It contains bugfixes and updates for PHP8 applied on top of the PA-DSS Certified version v1.5.4.

Zen Cart is free and open source software, with free community-driven support available 24/7 on the Zen Cart® Support Site forums at

Zen Cart® v2.1.0-dev


Zen Cart v2.1.0 is designed for:

  • PHP 8.0 to PHP 8.4
  • MySQL 5.7.8+ or MariaDB 10.2.7+
  • Apache 2.2 and 2.4

Refer to compatibility requirements for additional details.


Installation is simple:

  1. Download Zen Cart
  2. Ensure you check that the md5/sha1 hash of the Zip matches those publicly posted.
  1. Unzip the downloaded zip file
  2. Everything inside the folder you unzipped needs to be uploaded to your webserver … for example, into your public_html or www or html folder (the folder will already exist on your webserver)
  3. In your browser, enter the address to your site, such as: (or if you uploaded it into another subdirectory such as foldername use
  4. Rename the /includes/dist-configure.php and /admin/includes/dist-configure.php files to "configure.php" and make the files writable (so the install process can write your configuration information into them after you answer a few questions in the following steps).
  5. Also make the /cache and /logs folders writable. (You will be prompted about making other folders writable during installation)
  6. Follow the instructions that appear in your browser for installation.

If some of the terms used in these brief instructions are things you don't understand, there is a much more detailed set of instructions in the /docs/Implementation-Guide PDF.


Recommended reading related to upgrading:

Guidance for Secure Installations

The Implementation Guide document is provided to give detailed instructions on how to install and secure your site in accordance with PCI Compliance requirements. Whether your site "needs" PCI Compliance or not is up to you to decide, but you should still follow the documented principles to maximize your site's resilience against troublesome access attempted by any undesired/unauthorized visitors.


Use your browser to open the /docs/index.html page for links to release documentation and the Implementation Guide. A storeowner documentation repository also exists at

Developer Documentation

Developers wishing to contribute to the Zen Cart® core code may fork the zencart/zencart repository on github and issue Pull Requests from their own feature branches. Please see CONTRIBUTING.

Visit for guidance on issues relevant to developers. This documentation site is very new, but content will be added over time.

Developers wishing to contribute documentation should fork zencart/documentation and contribute PRs. Please see CONTRIBUTING to documentation.


The Zen Cart source code is available at:


For free community-driven support with Zen Cart, visit our support site:


Sponsorship through GitHub is a simple and convenient way to say "thank you" to Zen Cart's maintainers and contributors, and to help fund its ongoing development.

Just click the "Sponsor" button on the Zen Cart page on GitHub.

If your company uses Zen Cart, note that sponsorship and donations to the project are a valid regular business expense.

You may also donate via our website at


We take security very seriously.

If you have discovered a critical security bug in Zen Cart, please email security [at] zen-cart [.] com with the details of the problem and how to trigger it. Issues will be responded to in a timely manner.

Follow Us

For news and updates about Zen Cart®, follow us on Twitter and Facebook

Sign up for our free Newsletter

Subscribe to Critical News Updates And Release Announcements


This project is supported by:


©Copyright 2003-2024, Zen Cart®. All rights reserved.