CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-0698

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0860%
EPSS Percentile44.06th
Published2006年2月15日
Last Modified2026年4月16日

Vulnerability Description

Unspecified vulnerabilities in Zen Cart before 1.2.7 allow remote attackers to cause unknown impact via unspecified vectors related to "other attempted exploits" other than SQL injection.

Affected Platforms (CPE)

📦
Zen Cart

Zen Cart

= 1.1.0
📦
Zen Cart

Zen Cart

= 1.1.1d
📦
Zen Cart

Zen Cart

= 1.1.2d
📦
Zen Cart

Zen Cart

= 1.1.3d
📦
Zen Cart

Zen Cart

= 1.1.4d
📦
Zen Cart

Zen Cart

= 1.2.0d
📦
Zen Cart

Zen Cart

= 1.2.1_patch1
📦
Zen Cart

Zen Cart

= 1.2.1d
📦
Zen Cart

Zen Cart

= 1.2.2d
📦
Zen Cart

Zen Cart

= 1.2.3d
📦
Zen Cart

Zen Cart

= 1.2.4.1
📦
Zen Cart

Zen Cart

= 1.2.4d
📦
Zen Cart

Zen Cart

= 1.2.5d
📦
Zen Cart

Zen Cart

= 1.2.6d

References & Advisories

🔗 http://secunia.com/advisories/18801
🔗 http://sourceforge.net/project/shownotes.php?release_id=392886
🔗 http://www.vupen.com/english/advisories/2006/0546
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/24701
🔗 http://secunia.com/advisories/18801
🔗 http://sourceforge.net/project/shownotes.php?release_id=392886
🔗 http://www.vupen.com/english/advisories/2006/0546
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/24701

相關漏洞威脅

CVE-2006-069710.0

Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via uns...

CVE-2015-83529.8

Directory traversal vulnerability in Zen Cart 1.5.4 allows remote attackers to include and execute arbitrary local files via a .. ...

CVE-2020-65779.8

The IT-Recht Kanzlei plugin in Zen Cart 1.5.6c (German edition) allows itrk-api.php rechtstext_language SQL Injection.

CVE-2007-35978.5

Session fixation vulnerability in Zen Cart 1.3.7 and earlier allows remote attackers to hijack web sessions by setting the Cookie ...