Zen Cart Security Vulnerabilities and Issues — Zen Cart CVE List

Lucene search

Zen-cartZen Cart

2 matches found

CVE•added 2015/02/27 2:59 a.m.•48 views

CVE-2015-0882

Multiple cross-site scripting (XSS) vulnerabilities in zencart-ja (aka Zen Cart Japanese edition) 1.3 jp through 1.3.0.2 jp8 and 1.5 ja through 1.5.1 ja allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, related to admin/includes/init_includes/init_sanitize.php a...

4.3CVSS5.8AI score0.00443EPSS

CVE•added 2015/04/24 2:59 p.m.•44 views

CVE-2011-4403

Multiple cross-site request forgery (CSRF) vulnerabilities in Zen Cart 1.3.9h allow remote attackers to hijack the authentication of administrators for requests that (1) delete a product via a delete_product_confirm action to product.php or (2) disable a product via a setflag action to categories.p...

5.8CVSS7.4AI score0.00393EPSS

Web