Vulnerabilities > ZEN Cart > ZEN Cart > 1.6.0

DATE CVE VULNERABILITY TITLE RISK
2017-06-29 CVE-2017-10667 Cross-site Scripting vulnerability in Zen-Cart ZEN Cart 1.6.0
In index.php in Zen Cart 1.6.0, the products_id parameter can cause XSS.
network
zen-cart CWE-79
4.3
4.3
2017-05-08 CVE-2017-8833 Cross-site Scripting vulnerability in Zen-Cart ZEN Cart 1.6.0
Zen Cart 1.6.0 has XSS in the main_page parameter to index.php.
network
zen-cart CWE-79
4.3
4.3