cbcvebase.

Zen-Cart Zen Cart vulnerabilities

21 known vulnerabilities affecting zen-cart/zen_cart.

Total CVEs
21
CISA KEV
0
Public exploits
10
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH5MEDIUM13LOW1

Vulnerabilities

Page 1 of 2
CVE-2015-8352P2CRITICALCVSS 9.8PoCv1.5.42017-08-24
CVE-2015-8352 [CRITICAL] CWE-22 CVE-2015-8352: Directory traversal vulnerability in Zen Cart 1.5.4 allows remote attackers to include and execute a Directory traversal vulnerability in Zen Cart 1.5.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the act parameter to ajax.php.
nvd
CVE-2024-5762P2HIGHCVSS 8.1v1.5.8a2024-08-21
CVE-2024-5762 [HIGH] CWE-98 CVE-2024-5762: Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This vulnerab Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Zen Cart. Authentication is not required to exploit this vulnerability. The specific flaw exists within the findPluginAdminPage function. The issue results from the lack
nvd
CVE-2009-2255P3MEDIUMCVSS 6.8PoC≤ 1.3.8av1.1.0+7 more2009-06-30
CVE-2009-2255 [MEDIUM] CWE-287 CVE-2009-2255: Zen Cart 1.3.8a, 1.3.8, and earlier does not require administrative authentication for admin/record_ Zen Cart 1.3.8a, 1.3.8, and earlier does not require administrative authentication for admin/record_company.php, which allows remote attackers to execute arbitrary code by uploading a .php file via the record_company_image parameter in conjunction with a PATH_INFO of password_forgotten.php, then accessing this file via a direct request to the file in
nvd
CVE-2021-3291P2HIGHCVSS 7.2PoCv1.5.7b2021-01-26
CVE-2021-3291 [HIGH] CWE-78 CVE-2021-3291: Zen Cart 1.5.7b allows admins to execute arbitrary OS commands by inspecting an HTML radio input ele Zen Cart 1.5.7b allows admins to execute arbitrary OS commands by inspecting an HTML radio input element (within the modules edit page) and inserting a command.
nvd
CVE-2009-2254P3HIGHCVSS 7.5PoC≤ 1.3.8av1.1.0+7 more2009-06-30
CVE-2009-2254 [HIGH] CWE-89 CVE-2009-2254: Zen Cart 1.3.8a, 1.3.8, and earlier does not require administrative authentication for admin/sqlpatc Zen Cart 1.3.8a, 1.3.8, and earlier does not require administrative authentication for admin/sqlpatch.php, which allows remote attackers to execute arbitrary SQL commands via the query_string parameter in an execute action, in conjunction with a PATH_INFO of password_forgotten.php, related to a "SQL Execution" issue.
nvd
CVE-2008-6615P3HIGHCVSS 7.5PoCv20082009-04-06
CVE-2008-6615 [HIGH] CWE-89 CVE-2008-6615: SQL injection vulnerability in index.php in Zen Software Zen Cart 2008 allows remote attackers to ex SQL injection vulnerability in index.php in Zen Software Zen Cart 2008 allows remote attackers to execute arbitrary SQL commands via the keyword parameter in the advanced_search_result page. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd
CVE-2008-6985P3MEDIUMCVSS 6.8PoCv1.2.0dv1.2.1_patch1+14 more2009-08-19
CVE-2008-6985 [MEDIUM] CWE-89 CVE-2008-6985: Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0 throu Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0 through 1.3.8a, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter when (1) adding or (2) updating the shopping cart.
nvd
CVE-2005-3996P4MEDIUMCVSS 5.1PoC≤ 1.2.6d2005-12-05
CVE-2005-3996 [MEDIUM] CWE-89 CVE-2005-3996: SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows re SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows remote attackers to execute arbitrary SQL commands via the admin_email parameter.
nvd
CVE-2011-4403P4MEDIUMCVSS 5.8PoCv1.3.9h2015-04-24
CVE-2011-4403 [MEDIUM] CWE-352 CVE-2011-4403: Multiple cross-site request forgery (CSRF) vulnerabilities in Zen Cart 1.3.9h allow remote attackers Multiple cross-site request forgery (CSRF) vulnerabilities in Zen Cart 1.3.9h allow remote attackers to hijack the authentication of administrators for requests that (1) delete a product via a delete_product_confirm action to product.php or (2) disable a product via a setflag action to categories.php.
nvd
CVE-2017-11675P3HIGHCVSS 8.8v1.5.5e2017-07-27
CVE-2017-11675 [HIGH] CWE-94 CVE-2017-11675: The traverseStrictSanitize function in admin_dir/includes/classes/AdminRequestSanitizer.php in ZenCa The traverseStrictSanitize function in admin_dir/includes/classes/AdminRequestSanitizer.php in ZenCart 1.5.5e mishandles key strings, which allows remote authenticated users to execute arbitrary PHP code by placing that code into an invalid array index of the admin_name array parameter to admin_dir/login.php, if there is an export of an error-log entry
nvd
CVE-2011-4567P4MEDIUMCVSS 4.3PoC≤ 1.3.9v1.1.0+18 more2011-11-29
CVE-2011-4567 [MEDIUM] CVE-2011-4567: Cross-site scripting (XSS) vulnerability in includes/templates/template_default/templates/tpl_gv_sen Cross-site scripting (XSS) vulnerability in includes/templates/template_default/templates/tpl_gv_send_default.php in Zen Cart before 1.5 allows remote attackers to inject arbitrary web script or HTML via the message parameter in a gv_send action to index.php, a different vulnerability than CVE-2011-4547.
nvd
CVE-2008-6616P4MEDIUMCVSS 4.3PoCv20082009-04-06
CVE-2008-6616 [MEDIUM] CWE-79 CVE-2008-6616: Cross-site scripting (XSS) vulnerability in index.php in Zen Software Zen Cart 2008 allows remote at Cross-site scripting (XSS) vulnerability in index.php in Zen Software Zen Cart 2008 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in the advanced_search_result page. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd
CVE-2008-6986P3MEDIUMCVSS 6.8v1.3v1.3.0.2+6 more2009-08-19
CVE-2008-6986 [MEDIUM] CVE-2008-6986: SQL injection vulnerability in the actionMultipleAddProduct function in includes/classes/shopping_ca SQL injection vulnerability in the actionMultipleAddProduct function in includes/classes/shopping_cart.php in Zen Cart 1.3.0 through 1.3.8a, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the products_id array parameter in a multiple_products_add_product action, a different vulnerability than CVE-2008-6985.
nvd
CVE-2006-0697P4CRITICALCVSS 10.0≤ 1.2.6dv1.1.0+9 more2006-02-15
CVE-2006-0697 [CRITICAL] CWE-264 CVE-2006-0697: Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers t Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests.
nvd
CVE-2020-6578P4MEDIUMCVSS 6.1v1.5.6d2021-03-19
CVE-2020-6578 [MEDIUM] CWE-79 CVE-2020-6578: Zen Cart 1.5.6d allows reflected XSS via the main_page parameter to includes/templates/template_defa Zen Cart 1.5.6d allows reflected XSS via the main_page parameter to includes/templates/template_default/common/tpl_main_page.php or includes/templates/responsive_classic/common/tpl_main_page.php.
nvd
CVE-2009-4321P4MEDIUMCVSS 5.0v1.3.8v1.3.8a2009-12-14
CVE-2009-4321 [MEDIUM] CWE-20 CVE-2009-4321: extras/curltest.php in Zen Cart 1.3.8 and 1.3.8a, and possibly other versions, allows remote attacke extras/curltest.php in Zen Cart 1.3.8 and 1.3.8a, and possibly other versions, allows remote attackers to read arbitrary files via a file:// URI. NOTE: some of these details are obtained from third party information.
nvd
CVE-2017-8833P4MEDIUMCVSS 6.1v1.6.02017-05-08
CVE-2017-8833 [MEDIUM] CWE-79 CVE-2017-8833: Zen Cart 1.6.0 has XSS in the main_page parameter to index.php. NOTE: 1.6.0 is not an official relea Zen Cart 1.6.0 has XSS in the main_page parameter to index.php. NOTE: 1.6.0 is not an official release but the vendor's README.md file offers a link to v160.zip with a description of "Download latest in-development version from github."
nvd
CVE-2017-10667P4MEDIUMCVSS 6.1v1.6.02017-06-29
CVE-2017-10667 [MEDIUM] CWE-79 CVE-2017-10667: In index.php in Zen Cart 1.6.0, the products_id parameter can cause XSS. In index.php in Zen Cart 1.6.0, the products_id parameter can cause XSS.
nvd
CVE-2015-0882P4MEDIUMCVSS 4.3v1.3.0.0v1.3.0.1+3 more2015-02-27
CVE-2015-0882 [MEDIUM] CWE-79 CVE-2015-0882: Multiple cross-site scripting (XSS) vulnerabilities in zencart-ja (aka Zen Cart Japanese edition) 1. Multiple cross-site scripting (XSS) vulnerabilities in zencart-ja (aka Zen Cart Japanese edition) 1.3 jp through 1.3.0.2 jp8 and 1.5 ja through 1.5.1 ja allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, related to admin/includes/init_includes/init_sanitize.php and includes/init_includes/init_sanitize.php.
nvd
CVE-2011-4547P4MEDIUMCVSS 4.3v1.3.9h2011-11-29
CVE-2011-4547 [MEDIUM] CWE-79 CVE-2011-4547: Multiple cross-site scripting (XSS) vulnerabilities in includes/templates/template_default/common/tp Multiple cross-site scripting (XSS) vulnerabilities in includes/templates/template_default/common/tpl_header_test_info.php in Zen Cart 1.3.9h, when debugging is enabled, might allow remote attackers to inject arbitrary web script or HTML via the (1) main_page parameter or (2) PATH_INFO, a different vulnerability than CVE-2011-4567.
nvd
Zen-Cart Zen Cart vulnerabilities | cvebase