CyberSec.Space Logo
Back to CVE Browser

CVE-2006-0698

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0860%
EPSS Percentile44.06th
PublishedFeb 15, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Unspecified vulnerabilities in Zen Cart before 1.2.7 allow remote attackers to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.

Affected Platforms (CPE)

πŸ“¦
Zen Cart

Zen Cart

= 1.1.0
πŸ“¦
Zen Cart

Zen Cart

= 1.1.1d
πŸ“¦
Zen Cart

Zen Cart

= 1.1.2d
πŸ“¦
Zen Cart

Zen Cart

= 1.1.3d
πŸ“¦
Zen Cart

Zen Cart

= 1.1.4d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.0d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.1_patch1
πŸ“¦
Zen Cart

Zen Cart

= 1.2.1d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.2d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.3d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.4.1
πŸ“¦
Zen Cart

Zen Cart

= 1.2.4d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.5d
πŸ“¦
Zen Cart

Zen Cart

= 1.2.6d

References & Advisories

πŸ”— http://secunia.com/advisories/18801
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=392886
πŸ”— http://www.vupen.com/english/advisories/2006/0546
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24701
πŸ”— http://secunia.com/advisories/18801
πŸ”— http://sourceforge.net/project/shownotes.php?release_id=392886
πŸ”— http://www.vupen.com/english/advisories/2006/0546
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24701

Related Vulnerabilities

CVE-2006-069710.0

Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via uns...

CVE-2015-83529.8

Directory traversal vulnerability in Zen Cart 1.5.4 allows remote attackers to include and execute arbitrary local files via a .. ...

CVE-2020-65779.8

The IT-Recht Kanzlei plugin in Zen Cart 1.5.6c (German edition) allows itrk-api.php rechtstext_language SQL Injection.

CVE-2007-35978.5

Session fixation vulnerability in Zen Cart 1.3.7 and earlier allows remote attackers to hijack web sessions by setting the Cookie ...