Zen Cart record_company Remote Code Execution Exploit

Zen Cart is prone to a vulnerability that attackers can leverage to execute arbitrary code. This issue occurs in the 'admin/record_company.php' script. Specifically, the application fails to sufficiently sanitize user-supplied input to the 'frmdt_content' parameter of the 'record_company_image' array.
Vulnerabilty ID: 
Released Date: 
Tuesday, July 28, 2009 - 19:00