Vulnerabilities > ZEN Cart > High

DATE CVE VULNERABILITY TITLE RISK
2004-12-31 CVE-2004-2023 SQL Injection vulnerability in ZEN Cart ZEN Cart 1.1.2D/1.1.4
SQL injection vulnerability in login.php in Zen Cart 1.1.2d, 1.1.4 before patch 1, and possibly other versions allows remote attackers to execute arbitrary SQL via the (1) admin_name or (2) admin_pass parameters.
network
low complexity
zen-cart
7.5
7.5