Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zen cart zen cart 1.1.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-2023
SQL injection vulnerability in login.php in Zen Cart 1.1.2d, 1.1.4 before patch 1, and possibly other versions allows remote malicious users to execute arbitrary SQL via the (1) admin_name or (2) admin_pass parameters.
Zen Cart Zen Cart 1.1.4
Zen Cart Zen Cart 1.1.2d
7.5
CVSSv2
CVE-2004-2024
The distribution of Zen Cart 1.1.4 before patch 2 includes certain debugging code in the Admin password retrieval functionality, which allows malicious users to gain administrative privileges via password_forgotten.php.
Zen Cart Zen Cart 1.1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started