CVE-2008-6986

Name of the Vulnerable Software and Affected Versions Zen Cart versions 1.3.0 through 1.3.8a

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved through the actionMultipleAddProduct function in includes/classes/shopping cart.php, specifically when magic quotes gpc is disabled. The exploitation vector is the products id array parameter in a multiple products add product action.

Recommendations For Zen Cart versions 1.3.0 through 1.3.8a, consider disabling the actionMultipleAddProduct function until a patch is available, or restrict access to the shopping cart.php file to minimize the risk of exploitation. Additionally, enabling magic quotes gpc can mitigate this issue.