SQL injection vulnerability in login.php in Zen Cart 1.1.2d, 1.1.4 before patch 1, and possibly other versions allows remote attackers to execute arbitrary SQL via the (1) admin_name or (2) admin_pass parameters.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2004-12-30 21:00
Updated : 2018-10-19 08:30
NVD link : CVE-2004-2023
Mitre link : CVE-2004-2023
JSON object : View
CWE
Products Affected
zen_cart
- zen_cart