Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zen cart zen cart 1.2.1 patch1 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-4218
Directory traversal vulnerability in Zen Cart 1.3.0.2 and previous versions allows remote malicious users to include and possibly execute arbitrary local files via directory traversal sequences in the typefilter parameter.
Zen Cart Zen Cart 1.2.4.1
Zen Cart Zen Cart 1.2.1d
Zen Cart Zen Cart 1.2.3d
Zen Cart Zen Cart 1.2.1 Patch1
Zen Cart Zen Cart 1.2.5d
Zen Cart Zen Cart 1.2.0d
Zen Cart Zen Cart 1.3.0.2
Zen Cart Zen Cart 1.2.4d
Zen Cart Zen Cart 1.2.2d
Zen Cart Zen Cart 1.2.6d
668
VMScore
CVE-2006-0696
SQL injection vulnerability in Zen Cart prior to 1.2.7 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Zen Cart Zen Cart 1.2.4.1
Zen Cart Zen Cart 1.2.1d
Zen Cart Zen Cart 1.2.3d
Zen Cart Zen Cart 1.1.3d
Zen Cart Zen Cart 1.2.1 Patch1
Zen Cart Zen Cart 1.1.1d
Zen Cart Zen Cart 1.1.4d
Zen Cart Zen Cart 1.1.2d
Zen Cart Zen Cart 1.2.5d
Zen Cart Zen Cart 1.2.0d
Zen Cart Zen Cart 1.2.4d
Zen Cart Zen Cart 1.2.2d
Zen Cart Zen Cart 1.2.6d
Zen Cart Zen Cart 1.1.0
890
VMScore
CVE-2006-0698
Unspecified vulnerabilities in Zen Cart prior to 1.2.7 allow remote malicious users to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.
Zen Cart Zen Cart 1.2.4.1
Zen Cart Zen Cart 1.2.1d
Zen Cart Zen Cart 1.2.3d
Zen Cart Zen Cart 1.1.3d
Zen Cart Zen Cart 1.2.1 Patch1
Zen Cart Zen Cart 1.1.1d
Zen Cart Zen Cart 1.1.4d
Zen Cart Zen Cart 1.1.2d
Zen Cart Zen Cart 1.2.5d
Zen Cart Zen Cart 1.2.0d
Zen Cart Zen Cart 1.2.4d
Zen Cart Zen Cart 1.2.2d
Zen Cart Zen Cart 1.2.6d
Zen Cart Zen Cart 1.1.0
685
VMScore
CVE-2008-6985
Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0 up to and including 1.3.8a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the id parameter when (1) adding or (2) updating the sh...
Zen-cart Zen Cart 1.3.8a
Zen-cart Zen Cart 1.3.2
Zen-cart Zen Cart 1.2.4.1
Zen-cart Zen Cart 1.2.1d
Zen-cart Zen Cart 1.2.3d
Zen-cart Zen Cart 1.3.6
Zen-cart Zen Cart 1.2.1 Patch1
Zen-cart Zen Cart 1.2.6d
Zen-cart Zen Cart 1.3.7
Zen-cart Zen Cart 1.3.8
Zen-cart Zen Cart 1.2.0d
Zen-cart Zen Cart 1.2.4d
Zen-cart Zen Cart 1.2.5d
Zen-cart Zen Cart 1.3
Zen-cart Zen Cart 1.2.2d
Zen-cart Zen Cart 1.3.5
1 EDB exploit
231
VMScore
CVE-2012-1413
Cross-site scripting (XSS) vulnerability in zc_install/includes/modules/pages/database_setup/header_php.php in Zen Cart 1.5.0 and previous versions, when the software is being installed, allows remote malicious users to inject arbitrary web script or HTML via the db_username para...
Zen-cart Zen Cart 1.3.8a
Zen-cart Zen Cart 1.3.2
Zen-cart Zen Cart 1.3.0.2
Zen-cart Zen Cart
Zen-cart Zen Cart 1.2.4.1
Zen-cart Zen Cart 1.2.1d
Zen-cart Zen Cart 1.2.3d
Zen-cart Zen Cart 1.3.6
Zen-cart Zen Cart 1.3.9h
Zen-cart Zen Cart 2008
Zen-cart Zen Cart 1.1.3
Zen-cart Zen Cart 1.1.0
Zen-cart Zen Cart 1.2.1
Zen-cart Zen Cart 1.2.1 Patch1
Zen-cart Zen Cart 1.2.6d
Zen-cart Zen Cart 1.3.7
Zen-cart Zen Cart 1.3.9
Zen-cart Zen Cart 1.3.8
Zen-cart Zen Cart 1.2.0d
Zen-cart Zen Cart 1.2.4d
Zen-cart Zen Cart 1.2.5d
Zen-cart Zen Cart 1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started