A security vulnerability has been discovered in Zen-Cart which can allow for SQL Injection.
SQL Injection is a form of attack on a database-driven Web site in which the attacker executes unauthorized SQL commands by taking advantage of insecure code on a system connected to the Internet. SQL injection attacks are used to steal information from a database from which the data would normally not be available and/or to gain access to an organization's host computers through the computer that is hosting the database.
TRUST IT strongly recommends resolving this security vulnerability to prevent unauthorized access, theft and malicious attacks of your website data.
