Posted by Curesec Research Team (CRT) on Sep 15
Zen Cart 1.5.4: Code Execution and Information Leak
Security Advisory – Curesec Research Team
1. Introduction
Affected Product: Zen Cart 1.5.4
Fixed in: partial fix via patch
Partial Patch Link:
https://www.zen-cart.com/showthread.php?218239-curesec-security-report-Patch-Included
Vendor Contact: security () zen-cart com
Vulnerability Type: Code Execution and Information Leak
Remote Exploitable:…