CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zen Cart: >> Zen Cart >> 1.2.1_patch1 Security Vulnerabilities

CVE-2006-4218

Directory traversal vulnerability in Zen Cart 1.3.0.2 and earlier allows remote attackers to include and possibly execute arbitrary local files via directory traversal sequences in the typefilter parameter.

CVSS Score

7.5

EPSS Score

0.011

Published

2006-08-17

CVE-2006-0696

SQL injection vulnerability in Zen Cart before 1.2.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVSS Score

7.5

EPSS Score

0.006

Published

2006-02-15

CVE-2006-0698

Unspecified vulnerabilities in Zen Cart before 1.2.7 allow remote attackers to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.

CVSS Score

10.0

EPSS Score

0.005

Published

2006-02-15

Page 1

Vulnerabilities

Vulnerable Software

Zen Cart: >> Zen Cart >> 1.2.1_patch1 Security Vulnerabilities

Products

Pricing

Contact Us