Vulnerabilities > CVE-2006-0698 - SQL-Injection vulnerability in Zen Cart

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

zen-cart

critical

NVD

Published: 2006-02-15

Updated: 2017-07-20

Summary

Unspecified vulnerabilities in Zen Cart before 1.2.7 allow remote attackers to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.

Vulnerable Configurations

Part	Description	Count
Application	Zen_Cart ZEN Cart ZEN Cart 1.1.0 ZEN Cart ZEN Cart 1.1.1D ZEN Cart ZEN Cart 1.1.2D ZEN Cart ZEN Cart 1.1.3D ZEN Cart ZEN Cart 1.1.4D ZEN Cart ZEN Cart 1.2.0D ZEN Cart ZEN Cart 1.2.1_Patch1 ZEN Cart ZEN Cart 1.2.1D ZEN Cart ZEN Cart 1.2.2D ZEN Cart ZEN Cart 1.2.3D ZEN Cart ZEN Cart 1.2.4.1 ZEN Cart ZEN Cart 1.2.4D ZEN Cart ZEN Cart 1.2.5D ZEN Cart ZEN Cart 1.2.6D	14

References

http://secunia.com/advisories/18801
http://sourceforge.net/project/shownotes.php?release_id=392886
http://www.vupen.com/english/advisories/2006/0546
https://exchange.xforce.ibmcloud.com/vulnerabilities/24701