SQL injection vulnerability in Zen Cart before 1.2.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Zen_cart | Zen_cart | 1.1.0 (including) | 1.1.0 (including) |
| Zen_cart | Zen_cart | 1.1.1d (including) | 1.1.1d (including) |
| Zen_cart | Zen_cart | 1.1.2d (including) | 1.1.2d (including) |
| Zen_cart | Zen_cart | 1.1.3d (including) | 1.1.3d (including) |
| Zen_cart | Zen_cart | 1.1.4d (including) | 1.1.4d (including) |
| Zen_cart | Zen_cart | 1.2.0d (including) | 1.2.0d (including) |
| Zen_cart | Zen_cart | 1.2.1_patch1 (including) | 1.2.1_patch1 (including) |
| Zen_cart | Zen_cart | 1.2.1d (including) | 1.2.1d (including) |
| Zen_cart | Zen_cart | 1.2.2d (including) | 1.2.2d (including) |
| Zen_cart | Zen_cart | 1.2.3d (including) | 1.2.3d (including) |
| Zen_cart | Zen_cart | 1.2.4.1 (including) | 1.2.4.1 (including) |
| Zen_cart | Zen_cart | 1.2.4d (including) | 1.2.4d (including) |
| Zen_cart | Zen_cart | 1.2.5d (including) | 1.2.5d (including) |
| Zen_cart | Zen_cart | 1.2.6d (including) | 1.2.6d (including) |