Description
Zen Cart 1.5.7b allows admins to execute arbitrary OS commands by inspecting an HTML radio input element (within the modules edit page) and inserting a command.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Mailchimp Security Bypass (2.1.3)
WordPress Plugin Gallery-Image and Video Gallery with Thumbnails SQL Injection (2.0.3)
MySQL CVE-2013-1526 Vulnerability (CVE-2013-1526)
WordPress Plugin WP Yelp Review Slider SQL Injection (7.0)
WordPress 'blog.header.php' Multiple SQL Injection Vulnerabilities (0.6.2 - 0.71)