Secunia Security Advisory – Multiple vulnerabilities have been reported in Zen Cart, which can be exploited by malicious people to conduct SQL injection and cross-site scripting attacks and to disclose sensitive information.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/94424/sa41666.txt
Source: https://packetstormsecurity.com/files/94424/Secunia-Security-Advisory-41666.html