Zen Cart record_company Remote Code Execution Exploit

Zen Cart is prone to a vulnerability that attackers can leverage to execute arbitrary code. This issue occurs in the 'admin/record_company.php' script. Specifically, the application fails to sufficiently sanitize user-supplied input to the 'frmdt_content' parameter of the 'record_company_image' array.
Platform: 
Vulnerabilty ID: 
NOCVE-9999-38922
Product Version: 
9.0
Released Date: 
Wednesday, July 29, 2009 - 00:00