2 matches found
CVE-2006-5119
Multiple cross-site scripting XSS vulnerabilities in Zen Cart 1.3.5 allow remote attackers to inject arbitrary web script or HTML via the 1 adminname or 2 adminpass parameter in a admin/login.php, or the 3 adminemail parameter in b admin/passwordforgotten.php...
CVE-2006-5119
Zen Cart 1.3.5 is affected by multiple XSS vulnerabilities: remote attackers can inject arbitrary script or HTML via admin_name or admin_pass in admin/login.php, or admin_email in admin/password_forgotten.php. The CVE-2006-5119 entry records this with a MEDIUM base score (CVSSv2). Connected sourc...