Having vendors is great! but the fact that they can access the admin panel is flawed.
I have just spotted a place where a vendor (with little html knowledge) can easily modify the html code (/* display: none; */) and change values in the client side that are not validated in server side.
As a store owner I would be afraid to give this kind of access to vendors as they end up modifying my home page without me knowing. Who knows where else this could be happening.
In my opinion there should be a separate admin panel for vendors. Like on eBay or Amazon, you sell something and you have a sellers area that for sure is not the same area for Admins.
I know this would be really time consuming but it could be done in the future.
