NuytsTech Security

CVE-2005-3996

by ·

SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows remote attackers to execute arbitrary SQL commands via the admin_email parameter.

Date published : 2005-12-04

http://www.securityfocus.com/bid/15690

http://www.securityfocus.com/archive/1/418517/100/0/threaded

Tags: